Creating the access policy and applying it to the AWS Cognito role