From de06ad36ae7bf76ac700b1ab5430dab17c307bb9 Mon Sep 17 00:00:00 2001
From: Chris Wright <chris@dxw.com>
Date: Mon, 18 Nov 2024 14:25:25 +0000
Subject: [PATCH] [FCL-447] Fix workflow permissions

* The AWS OIDC requires the `id-token` permission
---
 .github/workflows/deploy-production.yml | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.github/workflows/deploy-production.yml b/.github/workflows/deploy-production.yml
index cf0e514..a50c44e 100644
--- a/.github/workflows/deploy-production.yml
+++ b/.github/workflows/deploy-production.yml
@@ -4,6 +4,10 @@ on:
   release:
     types: [published]
 
+permissions:
+  id-token: write
+  contents: read
+
 jobs:
   build-deploy:
     runs-on: ubuntu-latest