@cloud-copilot/iam-data 0.9.202502071 → 0.9.202502111
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/data/actions/cloudformation.json +75 -0
- package/data/actions/kms.json +169 -2
- package/data/actions/q.json +72 -0
- package/data/conditionKeys/kms.json +159 -4
- package/package.json +2 -2
|
@@ -203,6 +203,21 @@
|
|
|
203
203
|
],
|
|
204
204
|
"dependentActions": []
|
|
205
205
|
},
|
|
206
|
+
"createstackrefactor": {
|
|
207
|
+
"name": "CreateStackRefactor",
|
|
208
|
+
"description": "Grants permission to create a stack refactor",
|
|
209
|
+
"accessLevel": "Write",
|
|
210
|
+
"resourceTypes": [
|
|
211
|
+
{
|
|
212
|
+
"name": "stack",
|
|
213
|
+
"required": true,
|
|
214
|
+
"conditionKeys": [],
|
|
215
|
+
"dependentActions": []
|
|
216
|
+
}
|
|
217
|
+
],
|
|
218
|
+
"conditionKeys": [],
|
|
219
|
+
"dependentActions": []
|
|
220
|
+
},
|
|
206
221
|
"createstackset": {
|
|
207
222
|
"name": "CreateStackSet",
|
|
208
223
|
"description": "Grants permission to create a stackset as specified in the template",
|
|
@@ -447,6 +462,21 @@
|
|
|
447
462
|
"conditionKeys": [],
|
|
448
463
|
"dependentActions": []
|
|
449
464
|
},
|
|
465
|
+
"describestackrefactor": {
|
|
466
|
+
"name": "DescribeStackRefactor",
|
|
467
|
+
"description": "Grants permission to return the description for the specified stack refactor",
|
|
468
|
+
"accessLevel": "Read",
|
|
469
|
+
"resourceTypes": [
|
|
470
|
+
{
|
|
471
|
+
"name": "stack",
|
|
472
|
+
"required": true,
|
|
473
|
+
"conditionKeys": [],
|
|
474
|
+
"dependentActions": []
|
|
475
|
+
}
|
|
476
|
+
],
|
|
477
|
+
"conditionKeys": [],
|
|
478
|
+
"dependentActions": []
|
|
479
|
+
},
|
|
450
480
|
"describestackresource": {
|
|
451
481
|
"name": "DescribeStackResource",
|
|
452
482
|
"description": "Grants permission to return a description of the specified resource in the specified stack",
|
|
@@ -627,6 +657,21 @@
|
|
|
627
657
|
],
|
|
628
658
|
"dependentActions": []
|
|
629
659
|
},
|
|
660
|
+
"executestackrefactor": {
|
|
661
|
+
"name": "ExecuteStackRefactor",
|
|
662
|
+
"description": "Grants permission to execute a stack refactor using the input information that was provided when the specified stack refactor was created",
|
|
663
|
+
"accessLevel": "Write",
|
|
664
|
+
"resourceTypes": [
|
|
665
|
+
{
|
|
666
|
+
"name": "stack",
|
|
667
|
+
"required": true,
|
|
668
|
+
"conditionKeys": [],
|
|
669
|
+
"dependentActions": []
|
|
670
|
+
}
|
|
671
|
+
],
|
|
672
|
+
"conditionKeys": [],
|
|
673
|
+
"dependentActions": []
|
|
674
|
+
},
|
|
630
675
|
"getgeneratedtemplate": {
|
|
631
676
|
"name": "GetGeneratedTemplate",
|
|
632
677
|
"description": "Grants permission to retrieve a generated template",
|
|
@@ -813,6 +858,36 @@
|
|
|
813
858
|
"conditionKeys": [],
|
|
814
859
|
"dependentActions": []
|
|
815
860
|
},
|
|
861
|
+
"liststackrefactoractions": {
|
|
862
|
+
"name": "ListStackRefactorActions",
|
|
863
|
+
"description": "Grants permission to return the list of actions of the specified stack refactor",
|
|
864
|
+
"accessLevel": "List",
|
|
865
|
+
"resourceTypes": [
|
|
866
|
+
{
|
|
867
|
+
"name": "stack",
|
|
868
|
+
"required": true,
|
|
869
|
+
"conditionKeys": [],
|
|
870
|
+
"dependentActions": []
|
|
871
|
+
}
|
|
872
|
+
],
|
|
873
|
+
"conditionKeys": [],
|
|
874
|
+
"dependentActions": []
|
|
875
|
+
},
|
|
876
|
+
"liststackrefactors": {
|
|
877
|
+
"name": "ListStackRefactors",
|
|
878
|
+
"description": "Grants permission to return the ID and status of each active stack refactor",
|
|
879
|
+
"accessLevel": "List",
|
|
880
|
+
"resourceTypes": [
|
|
881
|
+
{
|
|
882
|
+
"name": "stack",
|
|
883
|
+
"required": true,
|
|
884
|
+
"conditionKeys": [],
|
|
885
|
+
"dependentActions": []
|
|
886
|
+
}
|
|
887
|
+
],
|
|
888
|
+
"conditionKeys": [],
|
|
889
|
+
"dependentActions": []
|
|
890
|
+
},
|
|
816
891
|
"liststackresources": {
|
|
817
892
|
"name": "ListStackResources",
|
|
818
893
|
"description": "Grants permission to return descriptions of all resources of the specified stack",
|
package/data/actions/kms.json
CHANGED
|
@@ -131,6 +131,38 @@
|
|
|
131
131
|
"kms:EncryptionContext:${EncryptionContextKey}",
|
|
132
132
|
"kms:EncryptionContextKeys",
|
|
133
133
|
"kms:RecipientAttestation:ImageSha384",
|
|
134
|
+
"kms:RecipientAttestation:PCR0",
|
|
135
|
+
"kms:RecipientAttestation:PCR1",
|
|
136
|
+
"kms:RecipientAttestation:PCR2",
|
|
137
|
+
"kms:RecipientAttestation:PCR3",
|
|
138
|
+
"kms:RecipientAttestation:PCR4",
|
|
139
|
+
"kms:RecipientAttestation:PCR5",
|
|
140
|
+
"kms:RecipientAttestation:PCR6",
|
|
141
|
+
"kms:RecipientAttestation:PCR7",
|
|
142
|
+
"kms:RecipientAttestation:PCR8",
|
|
143
|
+
"kms:RecipientAttestation:PCR9",
|
|
144
|
+
"kms:RecipientAttestation:PCR10",
|
|
145
|
+
"kms:RecipientAttestation:PCR11",
|
|
146
|
+
"kms:RecipientAttestation:PCR12",
|
|
147
|
+
"kms:RecipientAttestation:PCR13",
|
|
148
|
+
"kms:RecipientAttestation:PCR14",
|
|
149
|
+
"kms:RecipientAttestation:PCR15",
|
|
150
|
+
"kms:RecipientAttestation:PCR16",
|
|
151
|
+
"kms:RecipientAttestation:PCR17",
|
|
152
|
+
"kms:RecipientAttestation:PCR18",
|
|
153
|
+
"kms:RecipientAttestation:PCR19",
|
|
154
|
+
"kms:RecipientAttestation:PCR20",
|
|
155
|
+
"kms:RecipientAttestation:PCR21",
|
|
156
|
+
"kms:RecipientAttestation:PCR22",
|
|
157
|
+
"kms:RecipientAttestation:PCR23",
|
|
158
|
+
"kms:RecipientAttestation:PCR24",
|
|
159
|
+
"kms:RecipientAttestation:PCR25",
|
|
160
|
+
"kms:RecipientAttestation:PCR26",
|
|
161
|
+
"kms:RecipientAttestation:PCR27",
|
|
162
|
+
"kms:RecipientAttestation:PCR28",
|
|
163
|
+
"kms:RecipientAttestation:PCR29",
|
|
164
|
+
"kms:RecipientAttestation:PCR30",
|
|
165
|
+
"kms:RecipientAttestation:PCR31",
|
|
134
166
|
"kms:RequestAlias",
|
|
135
167
|
"kms:ViaService"
|
|
136
168
|
],
|
|
@@ -204,6 +236,38 @@
|
|
|
204
236
|
"kms:CallerAccount",
|
|
205
237
|
"kms:KeyAgreementAlgorithm",
|
|
206
238
|
"kms:RecipientAttestation:ImageSha384",
|
|
239
|
+
"kms:RecipientAttestation:PCR0",
|
|
240
|
+
"kms:RecipientAttestation:PCR1",
|
|
241
|
+
"kms:RecipientAttestation:PCR2",
|
|
242
|
+
"kms:RecipientAttestation:PCR3",
|
|
243
|
+
"kms:RecipientAttestation:PCR4",
|
|
244
|
+
"kms:RecipientAttestation:PCR5",
|
|
245
|
+
"kms:RecipientAttestation:PCR6",
|
|
246
|
+
"kms:RecipientAttestation:PCR7",
|
|
247
|
+
"kms:RecipientAttestation:PCR8",
|
|
248
|
+
"kms:RecipientAttestation:PCR9",
|
|
249
|
+
"kms:RecipientAttestation:PCR10",
|
|
250
|
+
"kms:RecipientAttestation:PCR11",
|
|
251
|
+
"kms:RecipientAttestation:PCR12",
|
|
252
|
+
"kms:RecipientAttestation:PCR13",
|
|
253
|
+
"kms:RecipientAttestation:PCR14",
|
|
254
|
+
"kms:RecipientAttestation:PCR15",
|
|
255
|
+
"kms:RecipientAttestation:PCR16",
|
|
256
|
+
"kms:RecipientAttestation:PCR17",
|
|
257
|
+
"kms:RecipientAttestation:PCR18",
|
|
258
|
+
"kms:RecipientAttestation:PCR19",
|
|
259
|
+
"kms:RecipientAttestation:PCR20",
|
|
260
|
+
"kms:RecipientAttestation:PCR21",
|
|
261
|
+
"kms:RecipientAttestation:PCR22",
|
|
262
|
+
"kms:RecipientAttestation:PCR23",
|
|
263
|
+
"kms:RecipientAttestation:PCR24",
|
|
264
|
+
"kms:RecipientAttestation:PCR25",
|
|
265
|
+
"kms:RecipientAttestation:PCR26",
|
|
266
|
+
"kms:RecipientAttestation:PCR27",
|
|
267
|
+
"kms:RecipientAttestation:PCR28",
|
|
268
|
+
"kms:RecipientAttestation:PCR29",
|
|
269
|
+
"kms:RecipientAttestation:PCR30",
|
|
270
|
+
"kms:RecipientAttestation:PCR31",
|
|
207
271
|
"kms:RequestAlias",
|
|
208
272
|
"kms:ViaService"
|
|
209
273
|
],
|
|
@@ -361,6 +425,38 @@
|
|
|
361
425
|
"kms:EncryptionContext:${EncryptionContextKey}",
|
|
362
426
|
"kms:EncryptionContextKeys",
|
|
363
427
|
"kms:RecipientAttestation:ImageSha384",
|
|
428
|
+
"kms:RecipientAttestation:PCR0",
|
|
429
|
+
"kms:RecipientAttestation:PCR1",
|
|
430
|
+
"kms:RecipientAttestation:PCR2",
|
|
431
|
+
"kms:RecipientAttestation:PCR3",
|
|
432
|
+
"kms:RecipientAttestation:PCR4",
|
|
433
|
+
"kms:RecipientAttestation:PCR5",
|
|
434
|
+
"kms:RecipientAttestation:PCR6",
|
|
435
|
+
"kms:RecipientAttestation:PCR7",
|
|
436
|
+
"kms:RecipientAttestation:PCR8",
|
|
437
|
+
"kms:RecipientAttestation:PCR9",
|
|
438
|
+
"kms:RecipientAttestation:PCR10",
|
|
439
|
+
"kms:RecipientAttestation:PCR11",
|
|
440
|
+
"kms:RecipientAttestation:PCR12",
|
|
441
|
+
"kms:RecipientAttestation:PCR13",
|
|
442
|
+
"kms:RecipientAttestation:PCR14",
|
|
443
|
+
"kms:RecipientAttestation:PCR15",
|
|
444
|
+
"kms:RecipientAttestation:PCR16",
|
|
445
|
+
"kms:RecipientAttestation:PCR17",
|
|
446
|
+
"kms:RecipientAttestation:PCR18",
|
|
447
|
+
"kms:RecipientAttestation:PCR19",
|
|
448
|
+
"kms:RecipientAttestation:PCR20",
|
|
449
|
+
"kms:RecipientAttestation:PCR21",
|
|
450
|
+
"kms:RecipientAttestation:PCR22",
|
|
451
|
+
"kms:RecipientAttestation:PCR23",
|
|
452
|
+
"kms:RecipientAttestation:PCR24",
|
|
453
|
+
"kms:RecipientAttestation:PCR25",
|
|
454
|
+
"kms:RecipientAttestation:PCR26",
|
|
455
|
+
"kms:RecipientAttestation:PCR27",
|
|
456
|
+
"kms:RecipientAttestation:PCR28",
|
|
457
|
+
"kms:RecipientAttestation:PCR29",
|
|
458
|
+
"kms:RecipientAttestation:PCR30",
|
|
459
|
+
"kms:RecipientAttestation:PCR31",
|
|
364
460
|
"kms:RequestAlias",
|
|
365
461
|
"kms:ViaService"
|
|
366
462
|
],
|
|
@@ -384,6 +480,39 @@
|
|
|
384
480
|
"kms:EncryptionAlgorithm",
|
|
385
481
|
"kms:EncryptionContext:${EncryptionContextKey}",
|
|
386
482
|
"kms:EncryptionContextKeys",
|
|
483
|
+
"kms:RecipientAttestation:ImageSha384",
|
|
484
|
+
"kms:RecipientAttestation:PCR0",
|
|
485
|
+
"kms:RecipientAttestation:PCR1",
|
|
486
|
+
"kms:RecipientAttestation:PCR2",
|
|
487
|
+
"kms:RecipientAttestation:PCR3",
|
|
488
|
+
"kms:RecipientAttestation:PCR4",
|
|
489
|
+
"kms:RecipientAttestation:PCR5",
|
|
490
|
+
"kms:RecipientAttestation:PCR6",
|
|
491
|
+
"kms:RecipientAttestation:PCR7",
|
|
492
|
+
"kms:RecipientAttestation:PCR8",
|
|
493
|
+
"kms:RecipientAttestation:PCR9",
|
|
494
|
+
"kms:RecipientAttestation:PCR10",
|
|
495
|
+
"kms:RecipientAttestation:PCR11",
|
|
496
|
+
"kms:RecipientAttestation:PCR12",
|
|
497
|
+
"kms:RecipientAttestation:PCR13",
|
|
498
|
+
"kms:RecipientAttestation:PCR14",
|
|
499
|
+
"kms:RecipientAttestation:PCR15",
|
|
500
|
+
"kms:RecipientAttestation:PCR16",
|
|
501
|
+
"kms:RecipientAttestation:PCR17",
|
|
502
|
+
"kms:RecipientAttestation:PCR18",
|
|
503
|
+
"kms:RecipientAttestation:PCR19",
|
|
504
|
+
"kms:RecipientAttestation:PCR20",
|
|
505
|
+
"kms:RecipientAttestation:PCR21",
|
|
506
|
+
"kms:RecipientAttestation:PCR22",
|
|
507
|
+
"kms:RecipientAttestation:PCR23",
|
|
508
|
+
"kms:RecipientAttestation:PCR24",
|
|
509
|
+
"kms:RecipientAttestation:PCR25",
|
|
510
|
+
"kms:RecipientAttestation:PCR26",
|
|
511
|
+
"kms:RecipientAttestation:PCR27",
|
|
512
|
+
"kms:RecipientAttestation:PCR28",
|
|
513
|
+
"kms:RecipientAttestation:PCR29",
|
|
514
|
+
"kms:RecipientAttestation:PCR30",
|
|
515
|
+
"kms:RecipientAttestation:PCR31",
|
|
387
516
|
"kms:RequestAlias",
|
|
388
517
|
"kms:ViaService"
|
|
389
518
|
],
|
|
@@ -460,7 +589,39 @@
|
|
|
460
589
|
"accessLevel": "Write",
|
|
461
590
|
"resourceTypes": [],
|
|
462
591
|
"conditionKeys": [
|
|
463
|
-
"kms:RecipientAttestation:ImageSha384"
|
|
592
|
+
"kms:RecipientAttestation:ImageSha384",
|
|
593
|
+
"kms:RecipientAttestation:PCR0",
|
|
594
|
+
"kms:RecipientAttestation:PCR1",
|
|
595
|
+
"kms:RecipientAttestation:PCR2",
|
|
596
|
+
"kms:RecipientAttestation:PCR3",
|
|
597
|
+
"kms:RecipientAttestation:PCR4",
|
|
598
|
+
"kms:RecipientAttestation:PCR5",
|
|
599
|
+
"kms:RecipientAttestation:PCR6",
|
|
600
|
+
"kms:RecipientAttestation:PCR7",
|
|
601
|
+
"kms:RecipientAttestation:PCR8",
|
|
602
|
+
"kms:RecipientAttestation:PCR9",
|
|
603
|
+
"kms:RecipientAttestation:PCR10",
|
|
604
|
+
"kms:RecipientAttestation:PCR11",
|
|
605
|
+
"kms:RecipientAttestation:PCR12",
|
|
606
|
+
"kms:RecipientAttestation:PCR13",
|
|
607
|
+
"kms:RecipientAttestation:PCR14",
|
|
608
|
+
"kms:RecipientAttestation:PCR15",
|
|
609
|
+
"kms:RecipientAttestation:PCR16",
|
|
610
|
+
"kms:RecipientAttestation:PCR17",
|
|
611
|
+
"kms:RecipientAttestation:PCR18",
|
|
612
|
+
"kms:RecipientAttestation:PCR19",
|
|
613
|
+
"kms:RecipientAttestation:PCR20",
|
|
614
|
+
"kms:RecipientAttestation:PCR21",
|
|
615
|
+
"kms:RecipientAttestation:PCR22",
|
|
616
|
+
"kms:RecipientAttestation:PCR23",
|
|
617
|
+
"kms:RecipientAttestation:PCR24",
|
|
618
|
+
"kms:RecipientAttestation:PCR25",
|
|
619
|
+
"kms:RecipientAttestation:PCR26",
|
|
620
|
+
"kms:RecipientAttestation:PCR27",
|
|
621
|
+
"kms:RecipientAttestation:PCR28",
|
|
622
|
+
"kms:RecipientAttestation:PCR29",
|
|
623
|
+
"kms:RecipientAttestation:PCR30",
|
|
624
|
+
"kms:RecipientAttestation:PCR31"
|
|
464
625
|
],
|
|
465
626
|
"dependentActions": []
|
|
466
627
|
},
|
|
@@ -757,7 +918,13 @@
|
|
|
757
918
|
"dependentActions": []
|
|
758
919
|
}
|
|
759
920
|
],
|
|
760
|
-
"conditionKeys": [
|
|
921
|
+
"conditionKeys": [
|
|
922
|
+
"kms:CallerAccount",
|
|
923
|
+
"kms:EncryptionContext:${EncryptionContextKey}",
|
|
924
|
+
"kms:EncryptionContextKeys",
|
|
925
|
+
"kms:GrantConstraintType",
|
|
926
|
+
"kms:ViaService"
|
|
927
|
+
],
|
|
761
928
|
"dependentActions": []
|
|
762
929
|
},
|
|
763
930
|
"revokegrant": {
|
package/data/actions/q.json
CHANGED
|
@@ -1,4 +1,13 @@
|
|
|
1
1
|
{
|
|
2
|
+
"associateconnectorresource": {
|
|
3
|
+
"name": "AssociateConnectorResource",
|
|
4
|
+
"isPermissionOnly": true,
|
|
5
|
+
"description": "Grants permission to associate an AWS resource with an Amazon Q connector",
|
|
6
|
+
"accessLevel": "Write",
|
|
7
|
+
"resourceTypes": [],
|
|
8
|
+
"conditionKeys": [],
|
|
9
|
+
"dependentActions": []
|
|
10
|
+
},
|
|
2
11
|
"createassignment": {
|
|
3
12
|
"name": "CreateAssignment",
|
|
4
13
|
"isPermissionOnly": true,
|
|
@@ -18,6 +27,24 @@
|
|
|
18
27
|
],
|
|
19
28
|
"dependentActions": []
|
|
20
29
|
},
|
|
30
|
+
"createauthgrant": {
|
|
31
|
+
"name": "CreateAuthGrant",
|
|
32
|
+
"isPermissionOnly": true,
|
|
33
|
+
"description": "Grants permission to create OAuth user in Amazon Q",
|
|
34
|
+
"accessLevel": "Write",
|
|
35
|
+
"resourceTypes": [],
|
|
36
|
+
"conditionKeys": [],
|
|
37
|
+
"dependentActions": []
|
|
38
|
+
},
|
|
39
|
+
"createoauthappconnection": {
|
|
40
|
+
"name": "CreateOAuthAppConnection",
|
|
41
|
+
"isPermissionOnly": true,
|
|
42
|
+
"description": "Grants permission to register an OAuth application in Amazon Q",
|
|
43
|
+
"accessLevel": "Write",
|
|
44
|
+
"resourceTypes": [],
|
|
45
|
+
"conditionKeys": [],
|
|
46
|
+
"dependentActions": []
|
|
47
|
+
},
|
|
21
48
|
"createplugin": {
|
|
22
49
|
"name": "CreatePlugin",
|
|
23
50
|
"isPermissionOnly": true,
|
|
@@ -83,6 +110,15 @@
|
|
|
83
110
|
"conditionKeys": [],
|
|
84
111
|
"dependentActions": []
|
|
85
112
|
},
|
|
113
|
+
"getconnector": {
|
|
114
|
+
"name": "GetConnector",
|
|
115
|
+
"isPermissionOnly": true,
|
|
116
|
+
"description": "Grants permission to view information about a specific Amazon Q connector",
|
|
117
|
+
"accessLevel": "Read",
|
|
118
|
+
"resourceTypes": [],
|
|
119
|
+
"conditionKeys": [],
|
|
120
|
+
"dependentActions": []
|
|
121
|
+
},
|
|
86
122
|
"getconversation": {
|
|
87
123
|
"name": "GetConversation",
|
|
88
124
|
"isPermissionOnly": true,
|
|
@@ -198,6 +234,24 @@
|
|
|
198
234
|
"conditionKeys": [],
|
|
199
235
|
"dependentActions": []
|
|
200
236
|
},
|
|
237
|
+
"rejectconnector": {
|
|
238
|
+
"name": "RejectConnector",
|
|
239
|
+
"isPermissionOnly": true,
|
|
240
|
+
"description": "Grants permission to reject a connection request for an Amazon Q connector",
|
|
241
|
+
"accessLevel": "Write",
|
|
242
|
+
"resourceTypes": [],
|
|
243
|
+
"conditionKeys": [],
|
|
244
|
+
"dependentActions": []
|
|
245
|
+
},
|
|
246
|
+
"sendevent": {
|
|
247
|
+
"name": "SendEvent",
|
|
248
|
+
"isPermissionOnly": true,
|
|
249
|
+
"description": "Grants permission to trigger asynchronous Amazon Q actions",
|
|
250
|
+
"accessLevel": "Write",
|
|
251
|
+
"resourceTypes": [],
|
|
252
|
+
"conditionKeys": [],
|
|
253
|
+
"dependentActions": []
|
|
254
|
+
},
|
|
201
255
|
"sendmessage": {
|
|
202
256
|
"name": "SendMessage",
|
|
203
257
|
"isPermissionOnly": true,
|
|
@@ -273,6 +327,24 @@
|
|
|
273
327
|
],
|
|
274
328
|
"dependentActions": []
|
|
275
329
|
},
|
|
330
|
+
"updateauthgrant": {
|
|
331
|
+
"name": "UpdateAuthGrant",
|
|
332
|
+
"isPermissionOnly": true,
|
|
333
|
+
"description": "Grants permission to update OAuth user in Amazon Q",
|
|
334
|
+
"accessLevel": "Write",
|
|
335
|
+
"resourceTypes": [],
|
|
336
|
+
"conditionKeys": [],
|
|
337
|
+
"dependentActions": []
|
|
338
|
+
},
|
|
339
|
+
"updateoauthappconnection": {
|
|
340
|
+
"name": "UpdateOAuthAppConnection",
|
|
341
|
+
"isPermissionOnly": true,
|
|
342
|
+
"description": "Grants permission to update an OAuth application in Amazon Q",
|
|
343
|
+
"accessLevel": "Write",
|
|
344
|
+
"resourceTypes": [],
|
|
345
|
+
"conditionKeys": [],
|
|
346
|
+
"dependentActions": []
|
|
347
|
+
},
|
|
276
348
|
"updatetroubleshootingcommandresult": {
|
|
277
349
|
"name": "UpdateTroubleshootingCommandResult",
|
|
278
350
|
"isPermissionOnly": true,
|
|
@@ -131,12 +131,167 @@
|
|
|
131
131
|
},
|
|
132
132
|
"kms:recipientattestation:imagesha384": {
|
|
133
133
|
"key": "kms:RecipientAttestation:ImageSha384",
|
|
134
|
-
"description": "Filters access to the
|
|
134
|
+
"description": "Filters access to the API operations based on the image hash in the attestation document in the request",
|
|
135
135
|
"type": "String"
|
|
136
136
|
},
|
|
137
|
-
"kms:recipientattestation:
|
|
138
|
-
"key": "kms:RecipientAttestation:
|
|
139
|
-
"description": "Filters access
|
|
137
|
+
"kms:recipientattestation:pcr0": {
|
|
138
|
+
"key": "kms:RecipientAttestation:PCR0",
|
|
139
|
+
"description": "Filters access by the platform configuration register (PCR) 0 in the attestation document. PCR0 is a contiguous measure of the contents of the enclave image file, without the section data",
|
|
140
|
+
"type": "String"
|
|
141
|
+
},
|
|
142
|
+
"kms:recipientattestation:pcr1": {
|
|
143
|
+
"key": "kms:RecipientAttestation:PCR1",
|
|
144
|
+
"description": "Filters access by the platform configuration register (PCR) 1 in the attestation document. PCR1 is a contiguous measurement of the Linux kernel and bootstrap data",
|
|
145
|
+
"type": "String"
|
|
146
|
+
},
|
|
147
|
+
"kms:recipientattestation:pcr10": {
|
|
148
|
+
"key": "kms:RecipientAttestation:PCR10",
|
|
149
|
+
"description": "Filters access by the platform configuration register (PCR) 10 in the attestation document in the request. PCR10 is a custom PCR that can be defined by the user for specific use cases",
|
|
150
|
+
"type": "String"
|
|
151
|
+
},
|
|
152
|
+
"kms:recipientattestation:pcr11": {
|
|
153
|
+
"key": "kms:RecipientAttestation:PCR11",
|
|
154
|
+
"description": "Filters access by the platform configuration register (PCR) 11 in the attestation document in the request. PCR11 is a custom PCR that can be defined by the user for specific use cases",
|
|
155
|
+
"type": "String"
|
|
156
|
+
},
|
|
157
|
+
"kms:recipientattestation:pcr12": {
|
|
158
|
+
"key": "kms:RecipientAttestation:PCR12",
|
|
159
|
+
"description": "Filters access by the platform configuration register (PCR) 12 in the attestation document in the request. PCR12 is a custom PCR that can be defined by the user for specific use cases",
|
|
160
|
+
"type": "String"
|
|
161
|
+
},
|
|
162
|
+
"kms:recipientattestation:pcr13": {
|
|
163
|
+
"key": "kms:RecipientAttestation:PCR13",
|
|
164
|
+
"description": "Filters access by the platform configuration register (PCR) 13 in the attestation document in the request. PCR13 is a custom PCR that can be defined by the user for specific use cases",
|
|
165
|
+
"type": "String"
|
|
166
|
+
},
|
|
167
|
+
"kms:recipientattestation:pcr14": {
|
|
168
|
+
"key": "kms:RecipientAttestation:PCR14",
|
|
169
|
+
"description": "Filters access by the platform configuration register (PCR) 14 in the attestation document in the request. PCR14 is a custom PCR that can be defined by the user for specific use cases",
|
|
170
|
+
"type": "String"
|
|
171
|
+
},
|
|
172
|
+
"kms:recipientattestation:pcr15": {
|
|
173
|
+
"key": "kms:RecipientAttestation:PCR15",
|
|
174
|
+
"description": "Filters access by the platform configuration register (PCR) 15 in the attestation document in the request. PCR15 is a custom PCR that can be defined by the user for specific use cases",
|
|
175
|
+
"type": "String"
|
|
176
|
+
},
|
|
177
|
+
"kms:recipientattestation:pcr16": {
|
|
178
|
+
"key": "kms:RecipientAttestation:PCR16",
|
|
179
|
+
"description": "Filters access by the platform configuration register (PCR) 16 in the attestation document in the request. PCR16 is a custom PCR that can be defined by the user for specific use cases",
|
|
180
|
+
"type": "String"
|
|
181
|
+
},
|
|
182
|
+
"kms:recipientattestation:pcr17": {
|
|
183
|
+
"key": "kms:RecipientAttestation:PCR17",
|
|
184
|
+
"description": "Filters access by the platform configuration register (PCR) 17 in the attestation document in the request. PCR17 is a custom PCR that can be defined by the user for specific use cases",
|
|
185
|
+
"type": "String"
|
|
186
|
+
},
|
|
187
|
+
"kms:recipientattestation:pcr18": {
|
|
188
|
+
"key": "kms:RecipientAttestation:PCR18",
|
|
189
|
+
"description": "Filters access by the platform configuration register (PCR) 18 in the attestation document in the request. PCR18 is a custom PCR that can be defined by the user for specific use cases",
|
|
190
|
+
"type": "String"
|
|
191
|
+
},
|
|
192
|
+
"kms:recipientattestation:pcr19": {
|
|
193
|
+
"key": "kms:RecipientAttestation:PCR19",
|
|
194
|
+
"description": "Filters access by the platform configuration register (PCR) 19 in the attestation document in the request. PCR19 is a custom PCR that can be defined by the user for specific use cases",
|
|
195
|
+
"type": "String"
|
|
196
|
+
},
|
|
197
|
+
"kms:recipientattestation:pcr2": {
|
|
198
|
+
"key": "kms:RecipientAttestation:PCR2",
|
|
199
|
+
"description": "Filters access by the platform configuration register (PCR) 2 in the attestation document. PCR2 is a contiguous, in-order measurement of the user applications, without the boot ramfs",
|
|
200
|
+
"type": "String"
|
|
201
|
+
},
|
|
202
|
+
"kms:recipientattestation:pcr20": {
|
|
203
|
+
"key": "kms:RecipientAttestation:PCR20",
|
|
204
|
+
"description": "Filters access by the platform configuration register (PCR) 20 in the attestation document in the request. PCR20 is a custom PCR that can be defined by the user for specific use cases",
|
|
205
|
+
"type": "String"
|
|
206
|
+
},
|
|
207
|
+
"kms:recipientattestation:pcr21": {
|
|
208
|
+
"key": "kms:RecipientAttestation:PCR21",
|
|
209
|
+
"description": "Filters access by the platform configuration register (PCR) 21 in the attestation document in the request. PCR21 is a custom PCR that can be defined by the user for specific use cases",
|
|
210
|
+
"type": "String"
|
|
211
|
+
},
|
|
212
|
+
"kms:recipientattestation:pcr22": {
|
|
213
|
+
"key": "kms:RecipientAttestation:PCR22",
|
|
214
|
+
"description": "Filters access by the platform configuration register (PCR) 22 in the attestation document in the request. PCR22 is a custom PCR that can be defined by the user for specific use cases",
|
|
215
|
+
"type": "String"
|
|
216
|
+
},
|
|
217
|
+
"kms:recipientattestation:pcr23": {
|
|
218
|
+
"key": "kms:RecipientAttestation:PCR23",
|
|
219
|
+
"description": "Filters access by the platform configuration register (PCR) 23 in the attestation document in the request. PCR23 is a custom PCR that can be defined by the user for specific use cases",
|
|
220
|
+
"type": "String"
|
|
221
|
+
},
|
|
222
|
+
"kms:recipientattestation:pcr24": {
|
|
223
|
+
"key": "kms:RecipientAttestation:PCR24",
|
|
224
|
+
"description": "Filters access by the platform configuration register (PCR) 24 in the attestation document in the request. PCR24 is a custom PCR that can be defined by the user for specific use cases",
|
|
225
|
+
"type": "String"
|
|
226
|
+
},
|
|
227
|
+
"kms:recipientattestation:pcr25": {
|
|
228
|
+
"key": "kms:RecipientAttestation:PCR25",
|
|
229
|
+
"description": "Filters access by the platform configuration register (PCR) 25 in the attestation document in the request. PCR25 is a custom PCR that can be defined by the user for specific use cases",
|
|
230
|
+
"type": "String"
|
|
231
|
+
},
|
|
232
|
+
"kms:recipientattestation:pcr26": {
|
|
233
|
+
"key": "kms:RecipientAttestation:PCR26",
|
|
234
|
+
"description": "Filters access by the platform configuration register (PCR) 26 in the attestation document in the request. PCR26 is a custom PCR that can be defined by the user for specific use cases",
|
|
235
|
+
"type": "String"
|
|
236
|
+
},
|
|
237
|
+
"kms:recipientattestation:pcr27": {
|
|
238
|
+
"key": "kms:RecipientAttestation:PCR27",
|
|
239
|
+
"description": "Filters access by the platform configuration register (PCR) 27 in the attestation document in the request. PCR27 is a custom PCR that can be defined by the user for specific use cases",
|
|
240
|
+
"type": "String"
|
|
241
|
+
},
|
|
242
|
+
"kms:recipientattestation:pcr28": {
|
|
243
|
+
"key": "kms:RecipientAttestation:PCR28",
|
|
244
|
+
"description": "Filters access by the platform configuration register (PCR) 28 in the attestation document in the request. PCR28 is a custom PCR that can be defined by the user for specific use cases",
|
|
245
|
+
"type": "String"
|
|
246
|
+
},
|
|
247
|
+
"kms:recipientattestation:pcr29": {
|
|
248
|
+
"key": "kms:RecipientAttestation:PCR29",
|
|
249
|
+
"description": "Filters access by the platform configuration register (PCR) 29 in the attestation document in the request. PCR29 is a custom PCR that can be defined by the user for specific use cases",
|
|
250
|
+
"type": "String"
|
|
251
|
+
},
|
|
252
|
+
"kms:recipientattestation:pcr3": {
|
|
253
|
+
"key": "kms:RecipientAttestation:PCR3",
|
|
254
|
+
"description": "Filters access by the platform configuration register (PCR) 3 in the attestation document. PCR3 is a contiguous measurement of the IAM role assigned to the parent instance",
|
|
255
|
+
"type": "String"
|
|
256
|
+
},
|
|
257
|
+
"kms:recipientattestation:pcr30": {
|
|
258
|
+
"key": "kms:RecipientAttestation:PCR30",
|
|
259
|
+
"description": "Filters access by the platform configuration register (PCR) 30 in the attestation document in the request. PCR30 is a custom PCR that can be defined by the user for specific use cases",
|
|
260
|
+
"type": "String"
|
|
261
|
+
},
|
|
262
|
+
"kms:recipientattestation:pcr31": {
|
|
263
|
+
"key": "kms:RecipientAttestation:PCR31",
|
|
264
|
+
"description": "Filters access by the platform configuration register (PCR) 31 in the attestation document in the request. PCR31 is a custom PCR that can be defined by the user for specific use cases",
|
|
265
|
+
"type": "String"
|
|
266
|
+
},
|
|
267
|
+
"kms:recipientattestation:pcr4": {
|
|
268
|
+
"key": "kms:RecipientAttestation:PCR4",
|
|
269
|
+
"description": "Filters access by the platform configuration register (PCR) 4 in the attestation document. PCR4 is a contiguous measurement of the ID of the parent instance",
|
|
270
|
+
"type": "String"
|
|
271
|
+
},
|
|
272
|
+
"kms:recipientattestation:pcr5": {
|
|
273
|
+
"key": "kms:RecipientAttestation:PCR5",
|
|
274
|
+
"description": "Filters access by the platform configuration register (PCR) 5 in the attestation document in the request. PCR5 is a custom PCR that can be defined by the user for specific use cases",
|
|
275
|
+
"type": "String"
|
|
276
|
+
},
|
|
277
|
+
"kms:recipientattestation:pcr6": {
|
|
278
|
+
"key": "kms:RecipientAttestation:PCR6",
|
|
279
|
+
"description": "Filters access by the platform configuration register (PCR) 6 in the attestation document in the request. PCR6 is a custom PCR that can be defined by the user for specific use cases",
|
|
280
|
+
"type": "String"
|
|
281
|
+
},
|
|
282
|
+
"kms:recipientattestation:pcr7": {
|
|
283
|
+
"key": "kms:RecipientAttestation:PCR7",
|
|
284
|
+
"description": "Filters access by platform configuration register (PCR) 7 in the attestation document in the request. PCR7 is a custom PCR that can be defined by the user for specific use cases",
|
|
285
|
+
"type": "String"
|
|
286
|
+
},
|
|
287
|
+
"kms:recipientattestation:pcr8": {
|
|
288
|
+
"key": "kms:RecipientAttestation:PCR8",
|
|
289
|
+
"description": "Filters access by the platform configuration register (PCR) 8 in the attestation document. PCR8 is a measure of the signing certificate specified for the enclave image file",
|
|
290
|
+
"type": "String"
|
|
291
|
+
},
|
|
292
|
+
"kms:recipientattestation:pcr9": {
|
|
293
|
+
"key": "kms:RecipientAttestation:PCR9",
|
|
294
|
+
"description": "Filters access by the platform configuration register (PCR) 9 in the attestation document in the request. PCR9 is a custom PCR that can be defined by the user for specific use cases",
|
|
140
295
|
"type": "String"
|
|
141
296
|
},
|
|
142
297
|
"kms:replicaregion": {
|
package/package.json
CHANGED
|
@@ -1,9 +1,9 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@cloud-copilot/iam-data",
|
|
3
|
-
"version": "0.9.
|
|
3
|
+
"version": "0.9.202502111",
|
|
4
4
|
"description": "AWS IAM Data",
|
|
5
5
|
"repository": "github:cloud-copilot/iam-data",
|
|
6
|
-
"updatedAt": "2025-02-
|
|
6
|
+
"updatedAt": "2025-02-11T04:43:54.035Z",
|
|
7
7
|
"exports": {
|
|
8
8
|
".": {
|
|
9
9
|
"import": "./dist/esm/index.js",
|