Attempted fix

Author: stevebux

infrastructure/terraform/components/api/module_sqs_amendments_queue.tf

@@ -35,7 +35,7 @@ data "aws_iam_policy_document" "amendments_queue_policy" {
     ]
 
     resources = [
-      "arn:aws:sqs:${var.region}:${var.aws_account_id}:${local.csi}-amendments-queue.fifo"
+      "arn:aws:sqs:${var.region}:${var.aws_account_id}:${var.project}-${var.environment}-${var.component}-amendments-queue.fifo"
     ]
 
     condition {

infrastructure/terraform/components/api/module_sqs_supplier_events_queue.tf

@@ -44,4 +44,31 @@ data "aws_iam_policy_document" "supplier_events_queue_policy" {
       values   = [module.eventsub.sns_topic_supplier.arn]
     }
   }
+
+  statement {
+    sid    = "AllowSNSPermissions"
+    effect = "Allow"
+
+    principals {
+      type        = "Service"
+      identifiers = ["sns.amazonaws.com"]
+    }
+
+    actions = [
+      "sqs:SendMessage",
+      "sqs:ListQueueTags",
+      "sqs:GetQueueUrl",
+      "sqs:GetQueueAttributes",
+    ]
+
+    resources = [
+      "arn:aws:sqs:${var.region}:${var.aws_account_id}:${var.project}-${var.environment}-${var.component}-amendments-queue.fifo"
+    ]
+
+    condition {
+      test     = "ArnEquals"
+      variable = "aws:SourceArn"
+      values   = [module.eventsub.sns_topic_supplier.arn]
+    }
+  }
 }