Allow writing to notification queue

copilot/fsd-application-store/addons/notification-queue-policy.yml

@@ -0,0 +1,29 @@
+Parameters:
+  App:
+    Type: String
+    Description: Your application's name.
+  Env:
+    Type: String
+    Description: The environment name your service, job, or workflow is being deployed to.
+  Name:
+    Type: String
+    Description: The name of the service, job, or workflow being deployed.
+
+Resources:
+  NotificationQueuePolicy:
+    Type: AWS::IAM::ManagedPolicy
+    Properties:
+      PolicyDocument:
+        Version: "2012-10-17"
+        Statement:
+          - Sid: NotificationQueuePolicy
+            Effect: Allow
+            Action:
+              - sqs:SendMessage
+            Resource:
+              - Fn::ImportValue: !Sub ${App}-${Env}-NotificationQueueArn
+
+Outputs:
+  NotificationQueuePolicyArn:
+    Description: "The ARN of the ManagedPolicy to attach to the task role."
+    Value: !Ref NotificationQueuePolicy