@cloud-copilot/iam-data 0.9.202411221 → 0.9.202411231
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/data/actions/application-autoscaling.json +8 -0
- package/data/actions/artifact.json +76 -0
- package/data/actions/ce.json +24 -0
- package/data/actions/chatbot.json +134 -2
- package/data/actions/cleanrooms.json +32 -0
- package/data/actions/cloudtrail.json +155 -6
- package/data/actions/iot.json +189 -0
- package/data/actions/iotfleetwise.json +113 -0
- package/data/actions/logs.json +93 -0
- package/data/actions/qapps.json +74 -0
- package/data/actions/resiliencehub.json +24 -0
- package/data/actions/s3express.json +42 -0
- package/data/actions/ssm-quicksetup.json +62 -4
- package/data/actions/ssm.json +54 -1
- package/data/conditionKeys/iot.json +15 -0
- package/data/conditionKeys/iotfleetwise.json +5 -0
- package/data/conditionKeys/ssm.json +0 -5
- package/data/resourceTypes/chatbot.json +4 -0
- package/data/resourceTypes/cloudtrail.json +7 -0
- package/data/resourceTypes/iot.json +7 -0
- package/data/resourceTypes/iotfleetwise.json +7 -0
- package/data/resourceTypes/ssm-quicksetup.json +1 -1
- package/package.json +2 -2
|
@@ -130,6 +130,27 @@
|
|
|
130
130
|
],
|
|
131
131
|
"dependentActions": []
|
|
132
132
|
},
|
|
133
|
+
"getlifecycleconfiguration": {
|
|
134
|
+
"name": "GetLifecycleConfiguration",
|
|
135
|
+
"description": "Grants permission to return the lifecycle configuration information set on a directory bucket",
|
|
136
|
+
"accessLevel": "Read",
|
|
137
|
+
"resourceTypes": [
|
|
138
|
+
{
|
|
139
|
+
"name": "bucket",
|
|
140
|
+
"required": true,
|
|
141
|
+
"conditionKeys": [],
|
|
142
|
+
"dependentActions": []
|
|
143
|
+
}
|
|
144
|
+
],
|
|
145
|
+
"conditionKeys": [
|
|
146
|
+
"s3express:authType",
|
|
147
|
+
"s3express:ResourceAccount",
|
|
148
|
+
"s3express:signatureversion",
|
|
149
|
+
"s3express:TlsVersion",
|
|
150
|
+
"s3express:x-amz-content-sha256"
|
|
151
|
+
],
|
|
152
|
+
"dependentActions": []
|
|
153
|
+
},
|
|
133
154
|
"listallmydirectorybuckets": {
|
|
134
155
|
"name": "ListAllMyDirectoryBuckets",
|
|
135
156
|
"description": "Grants permission to list all directory buckets owned by the authenticated sender of the request",
|
|
@@ -185,5 +206,26 @@
|
|
|
185
206
|
"s3express:x-amz-content-sha256"
|
|
186
207
|
],
|
|
187
208
|
"dependentActions": []
|
|
209
|
+
},
|
|
210
|
+
"putlifecycleconfiguration": {
|
|
211
|
+
"name": "PutLifecycleConfiguration",
|
|
212
|
+
"description": "Grants permission to create a new lifecycle configuration for the directory bucket or replace an existing lifecycle configuration",
|
|
213
|
+
"accessLevel": "Write",
|
|
214
|
+
"resourceTypes": [
|
|
215
|
+
{
|
|
216
|
+
"name": "bucket",
|
|
217
|
+
"required": true,
|
|
218
|
+
"conditionKeys": [],
|
|
219
|
+
"dependentActions": []
|
|
220
|
+
}
|
|
221
|
+
],
|
|
222
|
+
"conditionKeys": [
|
|
223
|
+
"s3express:authType",
|
|
224
|
+
"s3express:ResourceAccount",
|
|
225
|
+
"s3express:signatureversion",
|
|
226
|
+
"s3express:TlsVersion",
|
|
227
|
+
"s3express:x-amz-content-sha256"
|
|
228
|
+
],
|
|
229
|
+
"dependentActions": []
|
|
188
230
|
}
|
|
189
231
|
}
|
|
@@ -22,7 +22,29 @@
|
|
|
22
22
|
"name": "DeleteConfigurationManager",
|
|
23
23
|
"description": "Grants permission to delete a configuration manager",
|
|
24
24
|
"accessLevel": "Write",
|
|
25
|
-
"resourceTypes": [
|
|
25
|
+
"resourceTypes": [
|
|
26
|
+
{
|
|
27
|
+
"name": "configuration-manager",
|
|
28
|
+
"required": true,
|
|
29
|
+
"conditionKeys": [],
|
|
30
|
+
"dependentActions": []
|
|
31
|
+
}
|
|
32
|
+
],
|
|
33
|
+
"conditionKeys": [],
|
|
34
|
+
"dependentActions": []
|
|
35
|
+
},
|
|
36
|
+
"getconfiguration": {
|
|
37
|
+
"name": "GetConfiguration",
|
|
38
|
+
"description": "Grants permission to get Quick Setup configuration",
|
|
39
|
+
"accessLevel": "Read",
|
|
40
|
+
"resourceTypes": [
|
|
41
|
+
{
|
|
42
|
+
"name": "configuration-manager",
|
|
43
|
+
"required": false,
|
|
44
|
+
"conditionKeys": [],
|
|
45
|
+
"dependentActions": []
|
|
46
|
+
}
|
|
47
|
+
],
|
|
26
48
|
"conditionKeys": [],
|
|
27
49
|
"dependentActions": []
|
|
28
50
|
},
|
|
@@ -30,7 +52,14 @@
|
|
|
30
52
|
"name": "GetConfigurationManager",
|
|
31
53
|
"description": "Grants permission to get a configuration manager",
|
|
32
54
|
"accessLevel": "Read",
|
|
33
|
-
"resourceTypes": [
|
|
55
|
+
"resourceTypes": [
|
|
56
|
+
{
|
|
57
|
+
"name": "configuration-manager",
|
|
58
|
+
"required": true,
|
|
59
|
+
"conditionKeys": [],
|
|
60
|
+
"dependentActions": []
|
|
61
|
+
}
|
|
62
|
+
],
|
|
34
63
|
"conditionKeys": [],
|
|
35
64
|
"dependentActions": []
|
|
36
65
|
},
|
|
@@ -50,6 +79,21 @@
|
|
|
50
79
|
"conditionKeys": [],
|
|
51
80
|
"dependentActions": []
|
|
52
81
|
},
|
|
82
|
+
"listconfigurations": {
|
|
83
|
+
"name": "ListConfigurations",
|
|
84
|
+
"description": "Grants permission to list Quick Setup configurations",
|
|
85
|
+
"accessLevel": "List",
|
|
86
|
+
"resourceTypes": [
|
|
87
|
+
{
|
|
88
|
+
"name": "configuration-manager",
|
|
89
|
+
"required": false,
|
|
90
|
+
"conditionKeys": [],
|
|
91
|
+
"dependentActions": []
|
|
92
|
+
}
|
|
93
|
+
],
|
|
94
|
+
"conditionKeys": [],
|
|
95
|
+
"dependentActions": []
|
|
96
|
+
},
|
|
53
97
|
"listquicksetuptypes": {
|
|
54
98
|
"name": "ListQuickSetupTypes",
|
|
55
99
|
"description": "Grants permission to list the available Quick Setup types",
|
|
@@ -112,7 +156,14 @@
|
|
|
112
156
|
"name": "UpdateConfigurationDefinition",
|
|
113
157
|
"description": "Grants permission to update a Quick Setup configuration definition",
|
|
114
158
|
"accessLevel": "Write",
|
|
115
|
-
"resourceTypes": [
|
|
159
|
+
"resourceTypes": [
|
|
160
|
+
{
|
|
161
|
+
"name": "configuration-manager",
|
|
162
|
+
"required": true,
|
|
163
|
+
"conditionKeys": [],
|
|
164
|
+
"dependentActions": []
|
|
165
|
+
}
|
|
166
|
+
],
|
|
116
167
|
"conditionKeys": [],
|
|
117
168
|
"dependentActions": []
|
|
118
169
|
},
|
|
@@ -120,7 +171,14 @@
|
|
|
120
171
|
"name": "UpdateConfigurationManager",
|
|
121
172
|
"description": "Grants permission to update a Quick Setup configuration manager",
|
|
122
173
|
"accessLevel": "Write",
|
|
123
|
-
"resourceTypes": [
|
|
174
|
+
"resourceTypes": [
|
|
175
|
+
{
|
|
176
|
+
"name": "configuration-manager",
|
|
177
|
+
"required": true,
|
|
178
|
+
"conditionKeys": [],
|
|
179
|
+
"dependentActions": []
|
|
180
|
+
}
|
|
181
|
+
],
|
|
124
182
|
"conditionKeys": [],
|
|
125
183
|
"dependentActions": []
|
|
126
184
|
},
|
package/data/actions/ssm.json
CHANGED
|
@@ -986,6 +986,14 @@
|
|
|
986
986
|
"conditionKeys": [],
|
|
987
987
|
"dependentActions": []
|
|
988
988
|
},
|
|
989
|
+
"executeapi": {
|
|
990
|
+
"name": "ExecuteAPI",
|
|
991
|
+
"description": "Grants permission to a Systems Manager delegated administrator to view related resource details about OpsItems across multiple AWS accounts in the AWS Management Console",
|
|
992
|
+
"accessLevel": "Read",
|
|
993
|
+
"resourceTypes": [],
|
|
994
|
+
"conditionKeys": [],
|
|
995
|
+
"dependentActions": []
|
|
996
|
+
},
|
|
989
997
|
"getautomationexecution": {
|
|
990
998
|
"name": "GetAutomationExecution",
|
|
991
999
|
"description": "Grants permission to view details of a specified Automation execution",
|
|
@@ -1110,6 +1118,14 @@
|
|
|
1110
1118
|
],
|
|
1111
1119
|
"dependentActions": []
|
|
1112
1120
|
},
|
|
1121
|
+
"getexecutionpreview": {
|
|
1122
|
+
"name": "GetExecutionPreview",
|
|
1123
|
+
"description": "Grants permission to retrieve an existing preview that shows the effects that running a specified Automation runbook would have on the targeted resources",
|
|
1124
|
+
"accessLevel": "Read",
|
|
1125
|
+
"resourceTypes": [],
|
|
1126
|
+
"conditionKeys": [],
|
|
1127
|
+
"dependentActions": []
|
|
1128
|
+
},
|
|
1113
1129
|
"getinventory": {
|
|
1114
1130
|
"name": "GetInventory",
|
|
1115
1131
|
"description": "Grants permission to view instance inventory details per the specified criteria",
|
|
@@ -1504,6 +1520,36 @@
|
|
|
1504
1520
|
"conditionKeys": [],
|
|
1505
1521
|
"dependentActions": []
|
|
1506
1522
|
},
|
|
1523
|
+
"listnodes": {
|
|
1524
|
+
"name": "ListNodes",
|
|
1525
|
+
"description": "Grants permission to view details about managed nodes based on specified filters",
|
|
1526
|
+
"accessLevel": "List",
|
|
1527
|
+
"resourceTypes": [
|
|
1528
|
+
{
|
|
1529
|
+
"name": "resourcedatasync",
|
|
1530
|
+
"required": true,
|
|
1531
|
+
"conditionKeys": [],
|
|
1532
|
+
"dependentActions": []
|
|
1533
|
+
}
|
|
1534
|
+
],
|
|
1535
|
+
"conditionKeys": [],
|
|
1536
|
+
"dependentActions": []
|
|
1537
|
+
},
|
|
1538
|
+
"listnodessummary": {
|
|
1539
|
+
"name": "ListNodesSummary",
|
|
1540
|
+
"description": "Grants permission to view summary information about managed nodes based on specified filters and aggregators",
|
|
1541
|
+
"accessLevel": "List",
|
|
1542
|
+
"resourceTypes": [
|
|
1543
|
+
{
|
|
1544
|
+
"name": "resourcedatasync",
|
|
1545
|
+
"required": true,
|
|
1546
|
+
"conditionKeys": [],
|
|
1547
|
+
"dependentActions": []
|
|
1548
|
+
}
|
|
1549
|
+
],
|
|
1550
|
+
"conditionKeys": [],
|
|
1551
|
+
"dependentActions": []
|
|
1552
|
+
},
|
|
1507
1553
|
"listopsitemevents": {
|
|
1508
1554
|
"name": "ListOpsItemEvents",
|
|
1509
1555
|
"description": "Grants permission to view details about OpsItemEvents",
|
|
@@ -2011,6 +2057,14 @@
|
|
|
2011
2057
|
],
|
|
2012
2058
|
"dependentActions": []
|
|
2013
2059
|
},
|
|
2060
|
+
"startexecutionpreview": {
|
|
2061
|
+
"name": "StartExecutionPreview",
|
|
2062
|
+
"description": "Grants permission to create a preview showing the effects that running a specified Automation runbook would have on the targeted resources",
|
|
2063
|
+
"accessLevel": "Read",
|
|
2064
|
+
"resourceTypes": [],
|
|
2065
|
+
"conditionKeys": [],
|
|
2066
|
+
"dependentActions": []
|
|
2067
|
+
},
|
|
2014
2068
|
"startsession": {
|
|
2015
2069
|
"name": "StartSession",
|
|
2016
2070
|
"description": "Grants permission to initiate a connection to a specified target for a Session Manager session",
|
|
@@ -2042,7 +2096,6 @@
|
|
|
2042
2096
|
}
|
|
2043
2097
|
],
|
|
2044
2098
|
"conditionKeys": [
|
|
2045
|
-
"ssm:SessionDocumentAccessCheck",
|
|
2046
2099
|
"ssm:resourceTag/${TagKey}",
|
|
2047
2100
|
"aws:ResourceTag/${TagKey}"
|
|
2048
2101
|
],
|
|
@@ -19,6 +19,21 @@
|
|
|
19
19
|
"description": "Filters access by the mode of the client for IoT Tunnel",
|
|
20
20
|
"type": "String"
|
|
21
21
|
},
|
|
22
|
+
"iot:commandexecutionparameterboolean/${commandparametername}": {
|
|
23
|
+
"key": "iot:CommandExecutionParameterBoolean/${CommandParameterName}",
|
|
24
|
+
"description": "Filters access by the command parameter name and boolean value",
|
|
25
|
+
"type": "Bool"
|
|
26
|
+
},
|
|
27
|
+
"iot:commandexecutionparameternumber/${commandparametername}": {
|
|
28
|
+
"key": "iot:CommandExecutionParameterNumber/${CommandParameterName}",
|
|
29
|
+
"description": "Filters access by the command parameter name and numeric value",
|
|
30
|
+
"type": "Numeric"
|
|
31
|
+
},
|
|
32
|
+
"iot:commandexecutionparameterstring/${commandparametername}": {
|
|
33
|
+
"key": "iot:CommandExecutionParameterString/${CommandParameterName}",
|
|
34
|
+
"description": "Filters access by the command parameter name and string value",
|
|
35
|
+
"type": "String"
|
|
36
|
+
},
|
|
22
37
|
"iot:delete": {
|
|
23
38
|
"key": "iot:Delete",
|
|
24
39
|
"description": "Filters access by a flag indicating whether or not to also delete an IoT Tunnel immediately when making iot:CloseTunnel request",
|
|
@@ -19,6 +19,11 @@
|
|
|
19
19
|
"description": "Filters access by campaign destination ARN, eg. an S3 bucket ARN or a Timestream ARN",
|
|
20
20
|
"type": "ARN"
|
|
21
21
|
},
|
|
22
|
+
"iotfleetwise:signals": {
|
|
23
|
+
"key": "iotfleetwise:Signals",
|
|
24
|
+
"description": "Filters access by fully qualified signal names",
|
|
25
|
+
"type": "ArrayOfString"
|
|
26
|
+
},
|
|
22
27
|
"iotfleetwise:updatetodecodermanifestarn": {
|
|
23
28
|
"key": "iotfleetwise:UpdateToDecoderManifestArn",
|
|
24
29
|
"description": "Filters access by a list of IoT FleetWise Decoder Manifest ARNs",
|
|
@@ -44,11 +44,6 @@
|
|
|
44
44
|
"description": "Filters access by Systems Manager parameters created in a hierarchical structure",
|
|
45
45
|
"type": "String"
|
|
46
46
|
},
|
|
47
|
-
"ssm:sessiondocumentaccesscheck": {
|
|
48
|
-
"key": "ssm:SessionDocumentAccessCheck",
|
|
49
|
-
"description": "Filters access by verifying that a user has permission to access either the default Session Manager configuration document or the custom configuration document specified in a request",
|
|
50
|
-
"type": "Bool"
|
|
51
|
-
},
|
|
52
47
|
"ssm:sourceinstancearn": {
|
|
53
48
|
"key": "ssm:SourceInstanceARN",
|
|
54
49
|
"description": "Filters access by verifying the Amazon Resource Name (ARN) of the AWS Systems Manager's managed instance from which the request is made. This key is not present when the request comes from the managed instance authenticated with an IAM role associated with EC2 instance profile",
|
|
@@ -2,5 +2,9 @@
|
|
|
2
2
|
"chatbotconfiguration": {
|
|
3
3
|
"key": "ChatbotConfiguration",
|
|
4
4
|
"arn": "arn:${Partition}:chatbot::${Account}:chat-configuration/${ConfigurationType}/${ChatbotConfigurationName}"
|
|
5
|
+
},
|
|
6
|
+
"custom-action": {
|
|
7
|
+
"key": "custom-action",
|
|
8
|
+
"arn": "arn:${Partition}:chatbot::${Account}:custom-action/${ActionName}"
|
|
5
9
|
}
|
|
6
10
|
}
|
|
@@ -19,5 +19,12 @@
|
|
|
19
19
|
"conditionKeys": [
|
|
20
20
|
"aws:ResourceTag/${TagKey}"
|
|
21
21
|
]
|
|
22
|
+
},
|
|
23
|
+
"dashboard": {
|
|
24
|
+
"key": "dashboard",
|
|
25
|
+
"arn": "arn:${Partition}:cloudtrail:${Region}:${Account}:dashboard/${DashboardName}",
|
|
26
|
+
"conditionKeys": [
|
|
27
|
+
"aws:ResourceTag/${TagKey}"
|
|
28
|
+
]
|
|
22
29
|
}
|
|
23
30
|
}
|
|
@@ -201,5 +201,12 @@
|
|
|
201
201
|
"conditionKeys": [
|
|
202
202
|
"aws:ResourceTag/${TagKey}"
|
|
203
203
|
]
|
|
204
|
+
},
|
|
205
|
+
"command": {
|
|
206
|
+
"key": "command",
|
|
207
|
+
"arn": "arn:${Partition}:iot:${Region}:${Account}:command/${CommandId}",
|
|
208
|
+
"conditionKeys": [
|
|
209
|
+
"aws:ResourceTag/${TagKey}"
|
|
210
|
+
]
|
|
204
211
|
}
|
|
205
212
|
}
|
|
@@ -40,5 +40,12 @@
|
|
|
40
40
|
"conditionKeys": [
|
|
41
41
|
"aws:ResourceTag/${TagKey}"
|
|
42
42
|
]
|
|
43
|
+
},
|
|
44
|
+
"statetemplate": {
|
|
45
|
+
"key": "statetemplate",
|
|
46
|
+
"arn": "arn:${Partition}:iotfleetwise:${Region}:${Account}:state-template/${StateTemplateId}",
|
|
47
|
+
"conditionKeys": [
|
|
48
|
+
"aws:ResourceTag/${TagKey}"
|
|
49
|
+
]
|
|
43
50
|
}
|
|
44
51
|
}
|
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
{
|
|
2
2
|
"configuration-manager": {
|
|
3
3
|
"key": "configuration-manager",
|
|
4
|
-
"arn": "arn:${Partition}:ssm-quicksetup
|
|
4
|
+
"arn": "arn:${Partition}:ssm-quicksetup:${Region}:${Account}:configuration-manager/${ConfigurationManagerId}",
|
|
5
5
|
"conditionKeys": [
|
|
6
6
|
"aws:ResourceTag/${TagKey}"
|
|
7
7
|
]
|
package/package.json
CHANGED
|
@@ -1,9 +1,9 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@cloud-copilot/iam-data",
|
|
3
|
-
"version": "0.9.
|
|
3
|
+
"version": "0.9.202411231",
|
|
4
4
|
"description": "AWS IAM Data",
|
|
5
5
|
"repository": "github:cloud-copilot/iam-data",
|
|
6
|
-
"updatedAt": "2024-11-
|
|
6
|
+
"updatedAt": "2024-11-23T12:43:08.712Z",
|
|
7
7
|
"exports": {
|
|
8
8
|
".": {
|
|
9
9
|
"import": "./dist/esm/index.js",
|