Allow Queue construct to perform action sqs:ChangeMessageVisibility

[martindanielsson]

Start from the Use-case

I want to be able to release a job back to a SQS queue, to be attempted in X time, from the job handling lambda. This requires the sqs permission: SQS:ChangeMessageVisibility

Example Config

No response

Implementation Idea

Could be fixed by adding the permission to src/constructs/aws/Queue.ts

    permissions(): PolicyStatement[] {
        return [new PolicyStatement(["sqs:SendMessage", "sqs:ChangeMessageVisibility"], [this.queue.queueArn])];
    }

[mnapoli]

Makes sense to me (this permission is part of the "usage" of SQS), interesting that nobody brought that up before. @fredericbarthelet wdyt?

[fredericbarthelet]

Agreed, let's merge that in :) Thanks @martindanielsson for reporting the issue