From e77ac9f1064871076f8eb96691299752f817dc7d Mon Sep 17 00:00:00 2001
From: Tim Nguyen <thingut@amazon.com>
Date: Wed, 9 Feb 2022 13:27:41 -0500
Subject: [PATCH] Add AdminDeleteUser and SignUp permission

---
 main/cicd/cicd-pipeline/config/infra/cloudformation.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/main/cicd/cicd-pipeline/config/infra/cloudformation.yml b/main/cicd/cicd-pipeline/config/infra/cloudformation.yml
index d8eb6e9535..a59e49d362 100644
--- a/main/cicd/cicd-pipeline/config/infra/cloudformation.yml
+++ b/main/cicd/cicd-pipeline/config/infra/cloudformation.yml
@@ -418,6 +418,8 @@ Resources:
             - Effect: 'Allow'
               Action:
                 - cognito-idp:AdminInitiateAuth
+                - cognito-idp:AdminDeleteUser
+                - cognito-idp:SignUp
               Resource:
                 - !Sub 'arn:aws:cognito-idp:${AWS::Region}:${AWS::AccountId}:userpool/*'
             - !Ref AWS::NoValue