@cloud-copilot/iam-data 0.15.202510251 → 0.15.202511061
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/data/actions/aps.json +190 -0
- package/data/actions/autoscaling.json +18 -0
- package/data/actions/bedrock-agentcore.json +8 -17
- package/data/actions/bedrock.json +15 -0
- package/data/actions/cloudfront.json +71 -88
- package/data/actions/cognito-idp.json +75 -0
- package/data/actions/connect.json +48 -0
- package/data/actions/ec2.json +219 -33
- package/data/actions/elasticloadbalancing.json +9 -0
- package/data/actions/emr-containers.json +15 -0
- package/data/actions/iotmanagedintegrations.json +15 -0
- package/data/actions/kinesis.json +50 -0
- package/data/actions/kms.json +4 -1
- package/data/actions/lambda.json +2 -1
- package/data/actions/mediaconnect.json +83 -10
- package/data/actions/redshift-serverless.json +2 -2
- package/data/actions/rtbfabric.json +116 -12
- package/data/actions/support.json +8 -0
- package/data/actions/vpc-lattice-svcs.json +2 -0
- package/data/conditionKeys/bedrock-agentcore.json +0 -10
- package/data/conditionKeys/ec2.json +15 -15
- package/data/conditionKeys/lambda.json +5 -0
- package/data/conditionKeys/mediaconnect.json +17 -1
- package/data/conditionKeys/vpc-lattice-svcs.json +5 -0
- package/data/resourceTypes/aps.json +9 -0
- package/data/resourceTypes/bedrock.json +4 -0
- package/data/resourceTypes/ec2.json +19 -5
- package/data/resourceTypes/mediaconnect.json +16 -4
- package/data/resourceTypes/rtbfabric.json +5 -0
- package/package.json +2 -2
package/data/actions/lambda.json
CHANGED
|
@@ -34,7 +34,10 @@
|
|
|
34
34
|
"description": "Grants permission to add media streams to any flow",
|
|
35
35
|
"accessLevel": "Write",
|
|
36
36
|
"resourceTypes": [],
|
|
37
|
-
"conditionKeys": [
|
|
37
|
+
"conditionKeys": [
|
|
38
|
+
"aws:TagKeys",
|
|
39
|
+
"aws:RequestTag/${TagKey}"
|
|
40
|
+
],
|
|
38
41
|
"dependentActions": []
|
|
39
42
|
},
|
|
40
43
|
"addflowoutputs": {
|
|
@@ -42,7 +45,10 @@
|
|
|
42
45
|
"description": "Grants permission to add outputs to any flow",
|
|
43
46
|
"accessLevel": "Write",
|
|
44
47
|
"resourceTypes": [],
|
|
45
|
-
"conditionKeys": [
|
|
48
|
+
"conditionKeys": [
|
|
49
|
+
"aws:TagKeys",
|
|
50
|
+
"aws:RequestTag/${TagKey}"
|
|
51
|
+
],
|
|
46
52
|
"dependentActions": []
|
|
47
53
|
},
|
|
48
54
|
"addflowsources": {
|
|
@@ -50,7 +56,10 @@
|
|
|
50
56
|
"description": "Grants permission to add sources to any flow",
|
|
51
57
|
"accessLevel": "Write",
|
|
52
58
|
"resourceTypes": [],
|
|
53
|
-
"conditionKeys": [
|
|
59
|
+
"conditionKeys": [
|
|
60
|
+
"aws:TagKeys",
|
|
61
|
+
"aws:RequestTag/${TagKey}"
|
|
62
|
+
],
|
|
54
63
|
"dependentActions": []
|
|
55
64
|
},
|
|
56
65
|
"addflowvpcinterfaces": {
|
|
@@ -58,7 +67,10 @@
|
|
|
58
67
|
"description": "Grants permission to add VPC interfaces to any flow",
|
|
59
68
|
"accessLevel": "Write",
|
|
60
69
|
"resourceTypes": [],
|
|
61
|
-
"conditionKeys": [
|
|
70
|
+
"conditionKeys": [
|
|
71
|
+
"aws:TagKeys",
|
|
72
|
+
"aws:RequestTag/${TagKey}"
|
|
73
|
+
],
|
|
62
74
|
"dependentActions": []
|
|
63
75
|
},
|
|
64
76
|
"createbridge": {
|
|
@@ -74,7 +86,10 @@
|
|
|
74
86
|
"description": "Grants permission to create flows",
|
|
75
87
|
"accessLevel": "Write",
|
|
76
88
|
"resourceTypes": [],
|
|
77
|
-
"conditionKeys": [
|
|
89
|
+
"conditionKeys": [
|
|
90
|
+
"aws:TagKeys",
|
|
91
|
+
"aws:RequestTag/${TagKey}"
|
|
92
|
+
],
|
|
78
93
|
"dependentActions": []
|
|
79
94
|
},
|
|
80
95
|
"creategateway": {
|
|
@@ -236,7 +251,10 @@
|
|
|
236
251
|
"description": "Grants permission to grant entitlements on any flow",
|
|
237
252
|
"accessLevel": "Write",
|
|
238
253
|
"resourceTypes": [],
|
|
239
|
-
"conditionKeys": [
|
|
254
|
+
"conditionKeys": [
|
|
255
|
+
"aws:TagKeys",
|
|
256
|
+
"aws:RequestTag/${TagKey}"
|
|
257
|
+
],
|
|
240
258
|
"dependentActions": []
|
|
241
259
|
},
|
|
242
260
|
"listbridges": {
|
|
@@ -431,16 +449,71 @@
|
|
|
431
449
|
"name": "TagResource",
|
|
432
450
|
"description": "Grants permission to associate tags with resources",
|
|
433
451
|
"accessLevel": "Tagging",
|
|
434
|
-
"resourceTypes": [
|
|
435
|
-
|
|
452
|
+
"resourceTypes": [
|
|
453
|
+
{
|
|
454
|
+
"name": "Entitlement",
|
|
455
|
+
"required": false,
|
|
456
|
+
"conditionKeys": [],
|
|
457
|
+
"dependentActions": []
|
|
458
|
+
},
|
|
459
|
+
{
|
|
460
|
+
"name": "Flow",
|
|
461
|
+
"required": false,
|
|
462
|
+
"conditionKeys": [],
|
|
463
|
+
"dependentActions": []
|
|
464
|
+
},
|
|
465
|
+
{
|
|
466
|
+
"name": "Output",
|
|
467
|
+
"required": false,
|
|
468
|
+
"conditionKeys": [],
|
|
469
|
+
"dependentActions": []
|
|
470
|
+
},
|
|
471
|
+
{
|
|
472
|
+
"name": "Source",
|
|
473
|
+
"required": false,
|
|
474
|
+
"conditionKeys": [],
|
|
475
|
+
"dependentActions": []
|
|
476
|
+
}
|
|
477
|
+
],
|
|
478
|
+
"conditionKeys": [
|
|
479
|
+
"aws:TagKeys",
|
|
480
|
+
"aws:RequestTag/${TagKey}"
|
|
481
|
+
],
|
|
436
482
|
"dependentActions": []
|
|
437
483
|
},
|
|
438
484
|
"untagresource": {
|
|
439
485
|
"name": "UntagResource",
|
|
440
486
|
"description": "Grants permission to remove tags from resources",
|
|
441
487
|
"accessLevel": "Tagging",
|
|
442
|
-
"resourceTypes": [
|
|
443
|
-
|
|
488
|
+
"resourceTypes": [
|
|
489
|
+
{
|
|
490
|
+
"name": "Entitlement",
|
|
491
|
+
"required": false,
|
|
492
|
+
"conditionKeys": [],
|
|
493
|
+
"dependentActions": []
|
|
494
|
+
},
|
|
495
|
+
{
|
|
496
|
+
"name": "Flow",
|
|
497
|
+
"required": false,
|
|
498
|
+
"conditionKeys": [],
|
|
499
|
+
"dependentActions": []
|
|
500
|
+
},
|
|
501
|
+
{
|
|
502
|
+
"name": "Output",
|
|
503
|
+
"required": false,
|
|
504
|
+
"conditionKeys": [],
|
|
505
|
+
"dependentActions": []
|
|
506
|
+
},
|
|
507
|
+
{
|
|
508
|
+
"name": "Source",
|
|
509
|
+
"required": false,
|
|
510
|
+
"conditionKeys": [],
|
|
511
|
+
"dependentActions": []
|
|
512
|
+
}
|
|
513
|
+
],
|
|
514
|
+
"conditionKeys": [
|
|
515
|
+
"aws:TagKeys"
|
|
516
|
+
],
|
|
444
517
|
"dependentActions": []
|
|
445
518
|
},
|
|
446
519
|
"updatebridge": {
|
|
@@ -26,7 +26,10 @@
|
|
|
26
26
|
"dependentActions": []
|
|
27
27
|
}
|
|
28
28
|
],
|
|
29
|
-
"conditionKeys": [
|
|
29
|
+
"conditionKeys": [
|
|
30
|
+
"aws:RequestTag/${TagKey}",
|
|
31
|
+
"aws:TagKeys"
|
|
32
|
+
],
|
|
30
33
|
"dependentActions": []
|
|
31
34
|
},
|
|
32
35
|
"createlink": {
|
|
@@ -34,7 +37,10 @@
|
|
|
34
37
|
"description": "Grants permission to create a new link between RTB applications",
|
|
35
38
|
"accessLevel": "Write",
|
|
36
39
|
"resourceTypes": [],
|
|
37
|
-
"conditionKeys": [
|
|
40
|
+
"conditionKeys": [
|
|
41
|
+
"aws:RequestTag/${TagKey}",
|
|
42
|
+
"aws:TagKeys"
|
|
43
|
+
],
|
|
38
44
|
"dependentActions": []
|
|
39
45
|
},
|
|
40
46
|
"createoutboundexternallink": {
|
|
@@ -49,7 +55,10 @@
|
|
|
49
55
|
"dependentActions": []
|
|
50
56
|
}
|
|
51
57
|
],
|
|
52
|
-
"conditionKeys": [
|
|
58
|
+
"conditionKeys": [
|
|
59
|
+
"aws:RequestTag/${TagKey}",
|
|
60
|
+
"aws:TagKeys"
|
|
61
|
+
],
|
|
53
62
|
"dependentActions": []
|
|
54
63
|
},
|
|
55
64
|
"createrequestergateway": {
|
|
@@ -57,7 +66,10 @@
|
|
|
57
66
|
"description": "Grants permission to create a requester gateway",
|
|
58
67
|
"accessLevel": "Write",
|
|
59
68
|
"resourceTypes": [],
|
|
60
|
-
"conditionKeys": [
|
|
69
|
+
"conditionKeys": [
|
|
70
|
+
"aws:RequestTag/${TagKey}",
|
|
71
|
+
"aws:TagKeys"
|
|
72
|
+
],
|
|
61
73
|
"dependentActions": []
|
|
62
74
|
},
|
|
63
75
|
"createrespondergateway": {
|
|
@@ -65,7 +77,10 @@
|
|
|
65
77
|
"description": "Grants permission to create a responder gateway",
|
|
66
78
|
"accessLevel": "Write",
|
|
67
79
|
"resourceTypes": [],
|
|
68
|
-
"conditionKeys": [
|
|
80
|
+
"conditionKeys": [
|
|
81
|
+
"aws:RequestTag/${TagKey}",
|
|
82
|
+
"aws:TagKeys"
|
|
83
|
+
],
|
|
69
84
|
"dependentActions": []
|
|
70
85
|
},
|
|
71
86
|
"deleteinboundexternallink": {
|
|
@@ -270,10 +285,39 @@
|
|
|
270
285
|
"name": "ListTagsForResource",
|
|
271
286
|
"description": "Grants permission to list tags for a resource",
|
|
272
287
|
"accessLevel": "Read",
|
|
273
|
-
"resourceTypes": [
|
|
274
|
-
|
|
275
|
-
|
|
288
|
+
"resourceTypes": [
|
|
289
|
+
{
|
|
290
|
+
"name": "InboundExternalLink",
|
|
291
|
+
"required": false,
|
|
292
|
+
"conditionKeys": [],
|
|
293
|
+
"dependentActions": []
|
|
294
|
+
},
|
|
295
|
+
{
|
|
296
|
+
"name": "Link",
|
|
297
|
+
"required": false,
|
|
298
|
+
"conditionKeys": [],
|
|
299
|
+
"dependentActions": []
|
|
300
|
+
},
|
|
301
|
+
{
|
|
302
|
+
"name": "OutboundExternalLink",
|
|
303
|
+
"required": false,
|
|
304
|
+
"conditionKeys": [],
|
|
305
|
+
"dependentActions": []
|
|
306
|
+
},
|
|
307
|
+
{
|
|
308
|
+
"name": "RequesterGateway",
|
|
309
|
+
"required": false,
|
|
310
|
+
"conditionKeys": [],
|
|
311
|
+
"dependentActions": []
|
|
312
|
+
},
|
|
313
|
+
{
|
|
314
|
+
"name": "ResponderGateway",
|
|
315
|
+
"required": false,
|
|
316
|
+
"conditionKeys": [],
|
|
317
|
+
"dependentActions": []
|
|
318
|
+
}
|
|
276
319
|
],
|
|
320
|
+
"conditionKeys": [],
|
|
277
321
|
"dependentActions": []
|
|
278
322
|
},
|
|
279
323
|
"rejectlink": {
|
|
@@ -295,10 +339,40 @@
|
|
|
295
339
|
"name": "TagResource",
|
|
296
340
|
"description": "Grants permission to assign one or more tags (key-value pairs) to the specified resource",
|
|
297
341
|
"accessLevel": "Tagging",
|
|
298
|
-
"resourceTypes": [
|
|
342
|
+
"resourceTypes": [
|
|
343
|
+
{
|
|
344
|
+
"name": "InboundExternalLink",
|
|
345
|
+
"required": false,
|
|
346
|
+
"conditionKeys": [],
|
|
347
|
+
"dependentActions": []
|
|
348
|
+
},
|
|
349
|
+
{
|
|
350
|
+
"name": "Link",
|
|
351
|
+
"required": false,
|
|
352
|
+
"conditionKeys": [],
|
|
353
|
+
"dependentActions": []
|
|
354
|
+
},
|
|
355
|
+
{
|
|
356
|
+
"name": "OutboundExternalLink",
|
|
357
|
+
"required": false,
|
|
358
|
+
"conditionKeys": [],
|
|
359
|
+
"dependentActions": []
|
|
360
|
+
},
|
|
361
|
+
{
|
|
362
|
+
"name": "RequesterGateway",
|
|
363
|
+
"required": false,
|
|
364
|
+
"conditionKeys": [],
|
|
365
|
+
"dependentActions": []
|
|
366
|
+
},
|
|
367
|
+
{
|
|
368
|
+
"name": "ResponderGateway",
|
|
369
|
+
"required": false,
|
|
370
|
+
"conditionKeys": [],
|
|
371
|
+
"dependentActions": []
|
|
372
|
+
}
|
|
373
|
+
],
|
|
299
374
|
"conditionKeys": [
|
|
300
375
|
"aws:RequestTag/${TagKey}",
|
|
301
|
-
"aws:ResourceTag/${TagKey}",
|
|
302
376
|
"aws:TagKeys"
|
|
303
377
|
],
|
|
304
378
|
"dependentActions": []
|
|
@@ -307,9 +381,39 @@
|
|
|
307
381
|
"name": "UntagResource",
|
|
308
382
|
"description": "Grants permission to remove a tag or tags from a resource",
|
|
309
383
|
"accessLevel": "Tagging",
|
|
310
|
-
"resourceTypes": [
|
|
384
|
+
"resourceTypes": [
|
|
385
|
+
{
|
|
386
|
+
"name": "InboundExternalLink",
|
|
387
|
+
"required": false,
|
|
388
|
+
"conditionKeys": [],
|
|
389
|
+
"dependentActions": []
|
|
390
|
+
},
|
|
391
|
+
{
|
|
392
|
+
"name": "Link",
|
|
393
|
+
"required": false,
|
|
394
|
+
"conditionKeys": [],
|
|
395
|
+
"dependentActions": []
|
|
396
|
+
},
|
|
397
|
+
{
|
|
398
|
+
"name": "OutboundExternalLink",
|
|
399
|
+
"required": false,
|
|
400
|
+
"conditionKeys": [],
|
|
401
|
+
"dependentActions": []
|
|
402
|
+
},
|
|
403
|
+
{
|
|
404
|
+
"name": "RequesterGateway",
|
|
405
|
+
"required": false,
|
|
406
|
+
"conditionKeys": [],
|
|
407
|
+
"dependentActions": []
|
|
408
|
+
},
|
|
409
|
+
{
|
|
410
|
+
"name": "ResponderGateway",
|
|
411
|
+
"required": false,
|
|
412
|
+
"conditionKeys": [],
|
|
413
|
+
"dependentActions": []
|
|
414
|
+
}
|
|
415
|
+
],
|
|
311
416
|
"conditionKeys": [
|
|
312
|
-
"aws:ResourceTag/${TagKey}",
|
|
313
417
|
"aws:TagKeys"
|
|
314
418
|
],
|
|
315
419
|
"dependentActions": []
|
|
@@ -175,6 +175,14 @@
|
|
|
175
175
|
"conditionKeys": [],
|
|
176
176
|
"dependentActions": []
|
|
177
177
|
},
|
|
178
|
+
"initiatelivecontactforcase": {
|
|
179
|
+
"name": "InitiateLiveContactForCase",
|
|
180
|
+
"description": "Grants permission to initiate a live contact on AWS Support Center. This is an internally managed function",
|
|
181
|
+
"accessLevel": "Write",
|
|
182
|
+
"resourceTypes": [],
|
|
183
|
+
"conditionKeys": [],
|
|
184
|
+
"dependentActions": []
|
|
185
|
+
},
|
|
178
186
|
"putcaseattributes": {
|
|
179
187
|
"name": "PutCaseAttributes",
|
|
180
188
|
"description": "Grants permission to allow secondary services to attach attributes to AWS Support cases. This is an internally managed function",
|
|
@@ -38,6 +38,8 @@
|
|
|
38
38
|
"vpc-lattice-svcs:ServiceArn",
|
|
39
39
|
"vpc-lattice-svcs:SourceVpc",
|
|
40
40
|
"vpc-lattice-svcs:SourceVpcOwnerAccount",
|
|
41
|
+
"vpc-lattice-svcs:RequestMethod",
|
|
42
|
+
"vpc-lattice-svcs:RequestPath",
|
|
41
43
|
"vpc-lattice-svcs:RequestHeader/${HeaderName}",
|
|
42
44
|
"vpc-lattice-svcs:RequestQueryString/${QueryStringKey}"
|
|
43
45
|
],
|
|
@@ -54,11 +54,6 @@
|
|
|
54
54
|
"description": "Filters access by namespace",
|
|
55
55
|
"type": "String"
|
|
56
56
|
},
|
|
57
|
-
"bedrock-agentcore:securitygroups": {
|
|
58
|
-
"key": "bedrock-agentcore:securityGroups",
|
|
59
|
-
"description": "Filters access by the ID of security groups configured for the AgentCore runtime",
|
|
60
|
-
"type": "ArrayOfString"
|
|
61
|
-
},
|
|
62
57
|
"bedrock-agentcore:sessionid": {
|
|
63
58
|
"key": "bedrock-agentcore:sessionId",
|
|
64
59
|
"description": "Filters access by Session Id",
|
|
@@ -69,11 +64,6 @@
|
|
|
69
64
|
"description": "Filters access by Memory Strategy Id",
|
|
70
65
|
"type": "String"
|
|
71
66
|
},
|
|
72
|
-
"bedrock-agentcore:subnets": {
|
|
73
|
-
"key": "bedrock-agentcore:subnets",
|
|
74
|
-
"description": "Filters access by the ID of subnets configured for the AgentCore runtime",
|
|
75
|
-
"type": "ArrayOfString"
|
|
76
|
-
},
|
|
77
67
|
"bedrock-agentcore:userid": {
|
|
78
68
|
"key": "bedrock-agentcore:userid",
|
|
79
69
|
"description": "Filters access by the static user ID value passed in the request",
|
|
@@ -624,6 +624,11 @@
|
|
|
624
624
|
"description": "Filters access by the ID of a VPC peering connection",
|
|
625
625
|
"type": "String"
|
|
626
626
|
},
|
|
627
|
+
"ec2:vpcemultiregion": {
|
|
628
|
+
"key": "ec2:VpceMultiRegion",
|
|
629
|
+
"description": "Filters access by multi region of the VPC endpoint service",
|
|
630
|
+
"type": "String"
|
|
631
|
+
},
|
|
627
632
|
"ec2:vpceservicename": {
|
|
628
633
|
"key": "ec2:VpceServiceName",
|
|
629
634
|
"description": "Filters access by the name of the VPC endpoint service",
|
|
@@ -639,6 +644,16 @@
|
|
|
639
644
|
"description": "Filters access by the private DNS name of the VPC endpoint service",
|
|
640
645
|
"type": "String"
|
|
641
646
|
},
|
|
647
|
+
"ec2:vpceserviceregion": {
|
|
648
|
+
"key": "ec2:VpceServiceRegion",
|
|
649
|
+
"description": "Filters access by the region of the VPC endpoint service",
|
|
650
|
+
"type": "String"
|
|
651
|
+
},
|
|
652
|
+
"ec2:vpcesupportedregion": {
|
|
653
|
+
"key": "ec2:VpceSupportedRegion",
|
|
654
|
+
"description": "Filters access by the supported region of the VPC endpoint service",
|
|
655
|
+
"type": "String"
|
|
656
|
+
},
|
|
642
657
|
"ec2:transitgatewayattachmentid": {
|
|
643
658
|
"key": "ec2:transitGatewayAttachmentId",
|
|
644
659
|
"description": "Filters access by the ID of a transit gateway attachment",
|
|
@@ -673,20 +688,5 @@
|
|
|
673
688
|
"key": "ec2:transitGatewayRouteTableId",
|
|
674
689
|
"description": "Filters access by the ID of a transit gateway route table",
|
|
675
690
|
"type": "String"
|
|
676
|
-
},
|
|
677
|
-
"ec2:vpcemultiregion": {
|
|
678
|
-
"key": "ec2:vpceMultiRegion",
|
|
679
|
-
"description": "Filters access by multi region of the VPC endpoint service",
|
|
680
|
-
"type": "String"
|
|
681
|
-
},
|
|
682
|
-
"ec2:vpceserviceregion": {
|
|
683
|
-
"key": "ec2:vpceServiceRegion",
|
|
684
|
-
"description": "Filters access by the region of the VPC endpoint service",
|
|
685
|
-
"type": "String"
|
|
686
|
-
},
|
|
687
|
-
"ec2:vpcesupportedregion": {
|
|
688
|
-
"key": "ec2:vpceSupportedRegion",
|
|
689
|
-
"description": "Filters access by the supported region of the VPC endpoint service",
|
|
690
|
-
"type": "String"
|
|
691
691
|
}
|
|
692
692
|
}
|
|
@@ -34,6 +34,11 @@
|
|
|
34
34
|
"description": "Filters access by authorization type specified in request. Available during CreateFunctionUrlConfig, UpdateFunctionUrlConfig, DeleteFunctionUrlConfig, GetFunctionUrlConfig, ListFunctionUrlConfig, AddPermission and RemovePermission operations",
|
|
35
35
|
"type": "String"
|
|
36
36
|
},
|
|
37
|
+
"lambda:invokedviafunctionurl": {
|
|
38
|
+
"key": "lambda:InvokedViaFunctionUrl",
|
|
39
|
+
"description": "Limits the scope of lambda:InvokeFunction action to Function URLs only. Available during AddPermission operation",
|
|
40
|
+
"type": "Bool"
|
|
41
|
+
},
|
|
37
42
|
"lambda:layer": {
|
|
38
43
|
"key": "lambda:Layer",
|
|
39
44
|
"description": "Filters access by the ARN of a version of an AWS Lambda layer",
|
|
@@ -1 +1,17 @@
|
|
|
1
|
-
{
|
|
1
|
+
{
|
|
2
|
+
"aws:requesttag/${tagkey}": {
|
|
3
|
+
"key": "aws:RequestTag/${TagKey}",
|
|
4
|
+
"description": "Filters access by tags that are passed in the request",
|
|
5
|
+
"type": "String"
|
|
6
|
+
},
|
|
7
|
+
"aws:resourcetag/${tagkey}": {
|
|
8
|
+
"key": "aws:ResourceTag/${TagKey}",
|
|
9
|
+
"description": "Filters access by tags associated with the resource",
|
|
10
|
+
"type": "String"
|
|
11
|
+
},
|
|
12
|
+
"aws:tagkeys": {
|
|
13
|
+
"key": "aws:TagKeys",
|
|
14
|
+
"description": "Filters access by tag keys that are passed in the request",
|
|
15
|
+
"type": "ArrayOfString"
|
|
16
|
+
}
|
|
17
|
+
}
|
|
@@ -14,6 +14,11 @@
|
|
|
14
14
|
"description": "Filters access by the method of the request",
|
|
15
15
|
"type": "String"
|
|
16
16
|
},
|
|
17
|
+
"vpc-lattice-svcs:requestpath": {
|
|
18
|
+
"key": "vpc-lattice-svcs:RequestPath",
|
|
19
|
+
"description": "Filters access by the path portion of the request URL",
|
|
20
|
+
"type": "String"
|
|
21
|
+
},
|
|
17
22
|
"vpc-lattice-svcs:requestquerystring/${querystringkey}": {
|
|
18
23
|
"key": "vpc-lattice-svcs:RequestQueryString/${QueryStringKey}",
|
|
19
24
|
"description": "Filters access by the query string key-value pairs in the request URL",
|
|
@@ -17,6 +17,15 @@
|
|
|
17
17
|
"aws:TagKeys"
|
|
18
18
|
]
|
|
19
19
|
},
|
|
20
|
+
"anomalydetector": {
|
|
21
|
+
"key": "anomalydetector",
|
|
22
|
+
"arn": "arn:${Partition}:aps:${Region}:${Account}:anomalydetector/${WorkspaceId}/${AnomalyDetectorId}",
|
|
23
|
+
"conditionKeys": [
|
|
24
|
+
"aws:RequestTag/${TagKey}",
|
|
25
|
+
"aws:ResourceTag/${TagKey}",
|
|
26
|
+
"aws:TagKeys"
|
|
27
|
+
]
|
|
28
|
+
},
|
|
20
29
|
"scraper": {
|
|
21
30
|
"key": "scraper",
|
|
22
31
|
"arn": "arn:${Partition}:aps:${Region}:${Account}:scraper/${ScraperId}",
|
|
@@ -3,6 +3,10 @@
|
|
|
3
3
|
"key": "foundation-model",
|
|
4
4
|
"arn": "arn:${Partition}:bedrock:${Region}::foundation-model/${ResourceId}"
|
|
5
5
|
},
|
|
6
|
+
"system-tool": {
|
|
7
|
+
"key": "system-tool",
|
|
8
|
+
"arn": "arn:${Partition}:bedrock::${Account}:system-tool/${ResourceId}"
|
|
9
|
+
},
|
|
6
10
|
"async-invoke": {
|
|
7
11
|
"key": "async-invoke",
|
|
8
12
|
"arn": "arn:${Partition}:bedrock:${Region}:${Account}:async-invoke/${ResourceId}",
|
|
@@ -28,6 +28,19 @@
|
|
|
28
28
|
"ec2:ResourceTag/${TagKey}"
|
|
29
29
|
]
|
|
30
30
|
},
|
|
31
|
+
"capacity-manager-data-export": {
|
|
32
|
+
"key": "capacity-manager-data-export",
|
|
33
|
+
"arn": "arn:${Partition}:ec2:${Region}:${Account}:capacity-manager-data-export/${CapacityManagerDataExportId}",
|
|
34
|
+
"conditionKeys": [
|
|
35
|
+
"aws:RequestTag/${TagKey}",
|
|
36
|
+
"aws:ResourceTag/${TagKey}",
|
|
37
|
+
"aws:TagKeys",
|
|
38
|
+
"ec2:Attribute",
|
|
39
|
+
"ec2:Attribute/${AttributeName}",
|
|
40
|
+
"ec2:Region",
|
|
41
|
+
"ec2:ResourceTag/${TagKey}"
|
|
42
|
+
]
|
|
43
|
+
},
|
|
31
44
|
"capacity-reservation-fleet": {
|
|
32
45
|
"key": "capacity-reservation-fleet",
|
|
33
46
|
"arn": "arn:${Partition}:ec2:${Region}:${Account}:capacity-reservation-fleet/${CapacityReservationFleetId}",
|
|
@@ -1163,6 +1176,7 @@
|
|
|
1163
1176
|
"ec2:LaunchTemplate",
|
|
1164
1177
|
"ec2:ManagedResourceOperator",
|
|
1165
1178
|
"ec2:ParentSnapshot",
|
|
1179
|
+
"ec2:ParentVolume",
|
|
1166
1180
|
"ec2:Region",
|
|
1167
1181
|
"ec2:ResourceTag/${TagKey}",
|
|
1168
1182
|
"ec2:VolumeID",
|
|
@@ -1208,10 +1222,10 @@
|
|
|
1208
1222
|
"ec2:Attribute/${AttributeName}",
|
|
1209
1223
|
"ec2:Region",
|
|
1210
1224
|
"ec2:ResourceTag/${TagKey}",
|
|
1225
|
+
"ec2:VpceMultiRegion",
|
|
1211
1226
|
"ec2:VpceServiceName",
|
|
1212
1227
|
"ec2:VpceServiceOwner",
|
|
1213
|
-
"ec2:
|
|
1214
|
-
"ec2:vpceServiceRegion"
|
|
1228
|
+
"ec2:VpceServiceRegion"
|
|
1215
1229
|
]
|
|
1216
1230
|
},
|
|
1217
1231
|
"vpc-endpoint-service": {
|
|
@@ -1225,10 +1239,10 @@
|
|
|
1225
1239
|
"ec2:Attribute/${AttributeName}",
|
|
1226
1240
|
"ec2:Region",
|
|
1227
1241
|
"ec2:ResourceTag/${TagKey}",
|
|
1242
|
+
"ec2:VpceMultiRegion",
|
|
1228
1243
|
"ec2:VpceServicePrivateDnsName",
|
|
1229
|
-
"ec2:
|
|
1230
|
-
"ec2:
|
|
1231
|
-
"ec2:vpceSupportedRegion"
|
|
1244
|
+
"ec2:VpceServiceRegion",
|
|
1245
|
+
"ec2:VpceSupportedRegion"
|
|
1232
1246
|
]
|
|
1233
1247
|
},
|
|
1234
1248
|
"vpc-endpoint-service-permission": {
|
|
@@ -1,19 +1,31 @@
|
|
|
1
1
|
{
|
|
2
2
|
"entitlement": {
|
|
3
3
|
"key": "Entitlement",
|
|
4
|
-
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:entitlement:${FlowId}:${EntitlementName}"
|
|
4
|
+
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:entitlement:${FlowId}:${EntitlementName}",
|
|
5
|
+
"conditionKeys": [
|
|
6
|
+
"aws:ResourceTag/${TagKey}"
|
|
7
|
+
]
|
|
5
8
|
},
|
|
6
9
|
"flow": {
|
|
7
10
|
"key": "Flow",
|
|
8
|
-
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:flow:${FlowId}:${FlowName}"
|
|
11
|
+
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:flow:${FlowId}:${FlowName}",
|
|
12
|
+
"conditionKeys": [
|
|
13
|
+
"aws:ResourceTag/${TagKey}"
|
|
14
|
+
]
|
|
9
15
|
},
|
|
10
16
|
"output": {
|
|
11
17
|
"key": "Output",
|
|
12
|
-
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:output:${OutputId}:${OutputName}"
|
|
18
|
+
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:output:${OutputId}:${OutputName}",
|
|
19
|
+
"conditionKeys": [
|
|
20
|
+
"aws:ResourceTag/${TagKey}"
|
|
21
|
+
]
|
|
13
22
|
},
|
|
14
23
|
"source": {
|
|
15
24
|
"key": "Source",
|
|
16
|
-
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:source:${SourceId}:${SourceName}"
|
|
25
|
+
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:source:${SourceId}:${SourceName}",
|
|
26
|
+
"conditionKeys": [
|
|
27
|
+
"aws:ResourceTag/${TagKey}"
|
|
28
|
+
]
|
|
17
29
|
},
|
|
18
30
|
"gateway": {
|
|
19
31
|
"key": "Gateway",
|
|
@@ -3,6 +3,7 @@
|
|
|
3
3
|
"key": "InboundExternalLink",
|
|
4
4
|
"arn": "arn:${Partition}:rtbfabric:${Region}:${Account}:gateway/${GatewayId}/link/${LinkId}",
|
|
5
5
|
"conditionKeys": [
|
|
6
|
+
"aws:ResourceTag/${TagKey}",
|
|
6
7
|
"rtbfabric:InboundExternalLinkLinkId",
|
|
7
8
|
"rtbfabric:ResponderGatewayGatewayId"
|
|
8
9
|
]
|
|
@@ -11,6 +12,7 @@
|
|
|
11
12
|
"key": "Link",
|
|
12
13
|
"arn": "arn:${Partition}:rtbfabric:${Region}:${Account}:gateway/${GatewayId}/link/${LinkId}",
|
|
13
14
|
"conditionKeys": [
|
|
15
|
+
"aws:ResourceTag/${TagKey}",
|
|
14
16
|
"rtbfabric:LinkLinkId",
|
|
15
17
|
"rtbfabric:RequesterGatewayGatewayId",
|
|
16
18
|
"rtbfabric:ResponderGatewayGatewayId"
|
|
@@ -20,6 +22,7 @@
|
|
|
20
22
|
"key": "OutboundExternalLink",
|
|
21
23
|
"arn": "arn:${Partition}:rtbfabric:${Region}:${Account}:gateway/${GatewayId}/link/${LinkId}",
|
|
22
24
|
"conditionKeys": [
|
|
25
|
+
"aws:ResourceTag/${TagKey}",
|
|
23
26
|
"rtbfabric:OutboundExternalLinkLinkId",
|
|
24
27
|
"rtbfabric:RequesterGatewayGatewayId"
|
|
25
28
|
]
|
|
@@ -28,6 +31,7 @@
|
|
|
28
31
|
"key": "RequesterGateway",
|
|
29
32
|
"arn": "arn:${Partition}:rtbfabric:${Region}:${Account}:gateway/${GatewayId}",
|
|
30
33
|
"conditionKeys": [
|
|
34
|
+
"aws:ResourceTag/${TagKey}",
|
|
31
35
|
"rtbfabric:RequesterGatewayGatewayId"
|
|
32
36
|
]
|
|
33
37
|
},
|
|
@@ -35,6 +39,7 @@
|
|
|
35
39
|
"key": "ResponderGateway",
|
|
36
40
|
"arn": "arn:${Partition}:rtbfabric:${Region}:${Account}:gateway/${GatewayId}",
|
|
37
41
|
"conditionKeys": [
|
|
42
|
+
"aws:ResourceTag/${TagKey}",
|
|
38
43
|
"rtbfabric:ResponderGatewayGatewayId"
|
|
39
44
|
]
|
|
40
45
|
}
|
package/package.json
CHANGED
|
@@ -1,12 +1,12 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@cloud-copilot/iam-data",
|
|
3
|
-
"version": "0.15.
|
|
3
|
+
"version": "0.15.202511061",
|
|
4
4
|
"description": "AWS IAM Data",
|
|
5
5
|
"repository": {
|
|
6
6
|
"type": "git",
|
|
7
7
|
"url": "git+https://github.com/cloud-copilot/iam-data.git"
|
|
8
8
|
},
|
|
9
|
-
"updatedAt": "2025-
|
|
9
|
+
"updatedAt": "2025-11-06T04:51:09.499Z",
|
|
10
10
|
"exports": {
|
|
11
11
|
".": {
|
|
12
12
|
"import": "./dist/esm/index.js",
|