adding permissions

- Allowing SES to use CMK for SNS topic through resource policy

src/components/egress_app_backend/egress_backend/egress_backend_stack.py

@@ -162,6 +162,22 @@ def __init__(
             )
         )
 
+        sns_kms_key.add_to_resource_policy(
+            iam.PolicyStatement(
+                effect=iam.Effect.ALLOW,
+                principals=[
+                    iam.ServicePrincipal("ses.amazonaws.com"),
+                ],
+                resources=[
+                    "*",
+                ],
+                actions=[
+                    "kms:GenerateDataKey*",
+                    "kms:Decrypt",
+                ],
+            )
+        )
+
         # Custom resource to handle email identity verification
         ses_sender_email_verification = EmailIdentityVerificationCustomResource(
             self,