From af58173f61ae1c0d296844eed6e65b093feaf11a Mon Sep 17 00:00:00 2001
From: Patrick MARIE <pm@mkz.me>
Date: Sat, 19 Feb 2022 17:20:02 +0100
Subject: [PATCH] Adding missing permission.

Also, force auto_destroy when cleaning up s3.
---
 README.md   | 5 +++++
 state/s3.tf | 1 +
 2 files changed, 6 insertions(+)

diff --git a/README.md b/README.md
index e44335b..164c4a7 100644
--- a/README.md
+++ b/README.md
@@ -18,6 +18,11 @@ Permissions required:
 * AmazonVPCFullAccess
 * AmazonEKSServicePolicy
 
+To save state, those extras are needed:
+
+* AmazonS3FullAccess
+* AmazonDynamoDBFullAccess
+
 Required policy:
 
 ```json
diff --git a/state/s3.tf b/state/s3.tf
index 7d62bb2..e63bc63 100644
--- a/state/s3.tf
+++ b/state/s3.tf
@@ -4,6 +4,7 @@ resource "aws_s3_bucket" "terraform_state" {
     # lifecycle {
     #     prevent_destroy = true
     # }
+    force_destroy = true
 
     versioning {
         enabled = true