Add additional permissions needed for hosted zone lookup by name

[dav3r]

🗣 Description

This PR adds additional permissions that are needed when looking up the hosted zone by name.

💭 Motivation and Context

This PR was needed due to the changes in https://github.com/cisagov/pca-teamserver-aws/pull/30.

🧪 Testing

terraform apply was executed successfully in the production workspace. Then, the code from https://github.com/cisagov/pca-teamserver-aws/pull/30 was used to successfully add a DNS record in this zone.

📷 Screenshots (if appropriate)

🚥 Types of Changes

• [ ] Bug fix (non-breaking change which fixes an issue)
• [ ] New feature (non-breaking change which adds functionality)
• [ ] Breaking change (causes existing functionality to change)

✅ Checklist

• [x] My code follows the code style of this project.
• [ ] My change requires a change to the documentation.
• [ ] I have updated the documentation accordingly.
• [x] I have read the CONTRIBUTING document.
• [ ] I have added tests to cover my changes.
• [x] All new and existing tests passed.

[felddy]

Also I believe I clobbered your policy changes with my ongoing work to get SES domain and DKIM records fixed:

https://github.com/cisagov/cool-dns-cyber.dhs.gov/tree/bugfix/amazonses-dmarc-txt

[jsf9k]

Also I believe I clobbered your policy changes with my ongoing work to get SES domain and DKIM records fixed:

You just pulled a Dennis Brake!

[jsf9k]

Please use the output of this module to get the hosted zone.

See this comment from @jsf9k 's PR 5 days ago: #8 (comment)

I don't know how I feel about sharing state with projects that are unrelated to the COOL. Feels like we need more social distancing.

[felddy]

If it's in the cloud it's in the COOL™.

[dav3r]

With the latest changes in https://github.com/cisagov/pca-teamserver-aws/pull/30 (mainly https://github.com/cisagov/pca-teamserver-aws/pull/30/commits/a0ebe15d5e731e262f889f7ce04961f70632e772), this PR is no longer necessary, so I am closing it out.