From fec56815804e1c4930db45bec2787a34c839222b Mon Sep 17 00:00:00 2001
From: reubenmiller <reuben.d.miller@gmail.com>
Date: Fri, 4 Jul 2025 13:47:02 +0200
Subject: [PATCH] add the iot:RetainPublish permissions to the default policy

---
 AWS/policy.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/AWS/policy.py b/AWS/policy.py
index fdd3571..ecd5bb1 100644
--- a/AWS/policy.py
+++ b/AWS/policy.py
@@ -40,7 +40,7 @@ class Policy:
     },
     {
       "Effect": "Allow",
-      "Action": "iot:Publish",
+      "Action": ["iot:Publish", "iot:RetainPublish"],
       "Resource": [
         "arn:aws:iot:{{REGION}}:{{ACCOUNT_ID}}:topic/thinedge/${iot:Connection.Thing.ThingName}/td",
         "arn:aws:iot:{{REGION}}:{{ACCOUNT_ID}}:topic/thinedge/${iot:Connection.Thing.ThingName}/td/*",