@cloud-copilot/iam-data 0.9.202505021 → 0.9.202505071
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/data/actions/qbusiness.json +21 -0
- package/data/actions/verifiedpermissions.json +58 -2
- package/data/conditionKeys/sso.json +1 -1
- package/data/conditionKeys/verifiedpermissions.json +17 -1
- package/data/resourceTypes/backup-gateway.json +3 -3
- package/data/resourceTypes/verifiedpermissions.json +4 -1
- package/package.json +2 -2
|
@@ -156,6 +156,27 @@
|
|
|
156
156
|
"conditionKeys": [],
|
|
157
157
|
"dependentActions": []
|
|
158
158
|
},
|
|
159
|
+
"createanonymouswebexperienceurl": {
|
|
160
|
+
"name": "CreateAnonymousWebExperienceUrl",
|
|
161
|
+
"description": "Grants permission to create a unique URL for anonymous Amazon Q Business web experience",
|
|
162
|
+
"accessLevel": "Write",
|
|
163
|
+
"resourceTypes": [
|
|
164
|
+
{
|
|
165
|
+
"name": "application",
|
|
166
|
+
"required": true,
|
|
167
|
+
"conditionKeys": [],
|
|
168
|
+
"dependentActions": []
|
|
169
|
+
},
|
|
170
|
+
{
|
|
171
|
+
"name": "web-experience",
|
|
172
|
+
"required": true,
|
|
173
|
+
"conditionKeys": [],
|
|
174
|
+
"dependentActions": []
|
|
175
|
+
}
|
|
176
|
+
],
|
|
177
|
+
"conditionKeys": [],
|
|
178
|
+
"dependentActions": []
|
|
179
|
+
},
|
|
159
180
|
"createapplication": {
|
|
160
181
|
"name": "CreateApplication",
|
|
161
182
|
"description": "Grants permission to create an application",
|
|
@@ -34,7 +34,11 @@
|
|
|
34
34
|
"description": "Grants permission to create a Cedar policy and save it in the specified policy store",
|
|
35
35
|
"accessLevel": "Write",
|
|
36
36
|
"resourceTypes": [],
|
|
37
|
-
"conditionKeys": [
|
|
37
|
+
"conditionKeys": [
|
|
38
|
+
"aws:ResourceTag/${TagKey}",
|
|
39
|
+
"aws:RequestTag/${TagKey}",
|
|
40
|
+
"aws:TagKeys"
|
|
41
|
+
],
|
|
38
42
|
"dependentActions": []
|
|
39
43
|
},
|
|
40
44
|
"createpolicytemplate": {
|
|
@@ -155,7 +159,9 @@
|
|
|
155
159
|
}
|
|
156
160
|
],
|
|
157
161
|
"conditionKeys": [],
|
|
158
|
-
"dependentActions": [
|
|
162
|
+
"dependentActions": [
|
|
163
|
+
"verifiedpermissions:ListTagsForResource"
|
|
164
|
+
]
|
|
159
165
|
},
|
|
160
166
|
"getpolicytemplate": {
|
|
161
167
|
"name": "GetPolicyTemplate",
|
|
@@ -270,6 +276,21 @@
|
|
|
270
276
|
"conditionKeys": [],
|
|
271
277
|
"dependentActions": []
|
|
272
278
|
},
|
|
279
|
+
"listtagsforresource": {
|
|
280
|
+
"name": "ListTagsForResource",
|
|
281
|
+
"description": "Grants permission to view a list of resource tags for the specified policy store",
|
|
282
|
+
"accessLevel": "Read",
|
|
283
|
+
"resourceTypes": [
|
|
284
|
+
{
|
|
285
|
+
"name": "policy-store",
|
|
286
|
+
"required": true,
|
|
287
|
+
"conditionKeys": [],
|
|
288
|
+
"dependentActions": []
|
|
289
|
+
}
|
|
290
|
+
],
|
|
291
|
+
"conditionKeys": [],
|
|
292
|
+
"dependentActions": []
|
|
293
|
+
},
|
|
273
294
|
"putschema": {
|
|
274
295
|
"name": "PutSchema",
|
|
275
296
|
"description": "Grants permission to create or update the policy schema in the specified policy store",
|
|
@@ -285,6 +306,41 @@
|
|
|
285
306
|
"conditionKeys": [],
|
|
286
307
|
"dependentActions": []
|
|
287
308
|
},
|
|
309
|
+
"tagresource": {
|
|
310
|
+
"name": "TagResource",
|
|
311
|
+
"description": "Grants permission to add tags to the specified policy store",
|
|
312
|
+
"accessLevel": "Tagging",
|
|
313
|
+
"resourceTypes": [
|
|
314
|
+
{
|
|
315
|
+
"name": "policy-store",
|
|
316
|
+
"required": true,
|
|
317
|
+
"conditionKeys": [],
|
|
318
|
+
"dependentActions": []
|
|
319
|
+
}
|
|
320
|
+
],
|
|
321
|
+
"conditionKeys": [
|
|
322
|
+
"aws:RequestTag/${TagKey}",
|
|
323
|
+
"aws:TagKeys"
|
|
324
|
+
],
|
|
325
|
+
"dependentActions": []
|
|
326
|
+
},
|
|
327
|
+
"untagresource": {
|
|
328
|
+
"name": "UntagResource",
|
|
329
|
+
"description": "Grants permission to remove tags from the specified policy store",
|
|
330
|
+
"accessLevel": "Tagging",
|
|
331
|
+
"resourceTypes": [
|
|
332
|
+
{
|
|
333
|
+
"name": "policy-store",
|
|
334
|
+
"required": true,
|
|
335
|
+
"conditionKeys": [],
|
|
336
|
+
"dependentActions": []
|
|
337
|
+
}
|
|
338
|
+
],
|
|
339
|
+
"conditionKeys": [
|
|
340
|
+
"aws:TagKeys"
|
|
341
|
+
],
|
|
342
|
+
"dependentActions": []
|
|
343
|
+
},
|
|
288
344
|
"updateidentitysource": {
|
|
289
345
|
"name": "UpdateIdentitySource",
|
|
290
346
|
"description": "Grants permission to update the specified identity source to use a new identity provider (IdP) source, or to change the mapping of identities from the IdP to a different principal entity type",
|
|
@@ -16,7 +16,7 @@
|
|
|
16
16
|
},
|
|
17
17
|
"sso:applicationaccount": {
|
|
18
18
|
"key": "sso:ApplicationAccount",
|
|
19
|
-
"description": "Filters access by the account which creates the application",
|
|
19
|
+
"description": "Filters access by the account which creates the application. This condition key is not supported for customer managed SAML applications",
|
|
20
20
|
"type": "String"
|
|
21
21
|
}
|
|
22
22
|
}
|
|
@@ -1 +1,17 @@
|
|
|
1
|
-
{
|
|
1
|
+
{
|
|
2
|
+
"aws:requesttag/${tagkey}": {
|
|
3
|
+
"key": "aws:RequestTag/${TagKey}",
|
|
4
|
+
"description": "Filters access by a tag key and value pair that is allowed in the request",
|
|
5
|
+
"type": "String"
|
|
6
|
+
},
|
|
7
|
+
"aws:resourcetag/${tagkey}": {
|
|
8
|
+
"key": "aws:ResourceTag/${TagKey}",
|
|
9
|
+
"description": "Filters access by a tag key and value pair of a resource",
|
|
10
|
+
"type": "String"
|
|
11
|
+
},
|
|
12
|
+
"aws:tagkeys": {
|
|
13
|
+
"key": "aws:TagKeys",
|
|
14
|
+
"description": "Filters access by a list of tag keys that are allowed in the request",
|
|
15
|
+
"type": "ArrayOfString"
|
|
16
|
+
}
|
|
17
|
+
}
|
|
@@ -1,21 +1,21 @@
|
|
|
1
1
|
{
|
|
2
2
|
"gateway": {
|
|
3
3
|
"key": "gateway",
|
|
4
|
-
"arn": "arn:${Partition}:backup-gateway
|
|
4
|
+
"arn": "arn:${Partition}:backup-gateway:${Region}:${Account}:gateway/${GatewayId}",
|
|
5
5
|
"conditionKeys": [
|
|
6
6
|
"aws:ResourceTag/${TagKey}"
|
|
7
7
|
]
|
|
8
8
|
},
|
|
9
9
|
"hypervisor": {
|
|
10
10
|
"key": "hypervisor",
|
|
11
|
-
"arn": "arn:${Partition}:backup-gateway
|
|
11
|
+
"arn": "arn:${Partition}:backup-gateway:${Region}:${Account}:hypervisor/${HypervisorId}",
|
|
12
12
|
"conditionKeys": [
|
|
13
13
|
"aws:ResourceTag/${TagKey}"
|
|
14
14
|
]
|
|
15
15
|
},
|
|
16
16
|
"virtualmachine": {
|
|
17
17
|
"key": "virtualmachine",
|
|
18
|
-
"arn": "arn:${Partition}:backup-gateway
|
|
18
|
+
"arn": "arn:${Partition}:backup-gateway:${Region}:${Account}:vm/${VirtualmachineId}",
|
|
19
19
|
"conditionKeys": [
|
|
20
20
|
"aws:ResourceTag/${TagKey}"
|
|
21
21
|
]
|
|
@@ -1,6 +1,9 @@
|
|
|
1
1
|
{
|
|
2
2
|
"policy-store": {
|
|
3
3
|
"key": "policy-store",
|
|
4
|
-
"arn": "arn:${Partition}:verifiedpermissions::${Account}:policy-store/${PolicyStoreId}"
|
|
4
|
+
"arn": "arn:${Partition}:verifiedpermissions::${Account}:policy-store/${PolicyStoreId}",
|
|
5
|
+
"conditionKeys": [
|
|
6
|
+
"aws:ResourceTag/${TagKey}"
|
|
7
|
+
]
|
|
5
8
|
}
|
|
6
9
|
}
|
package/package.json
CHANGED
|
@@ -1,9 +1,9 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@cloud-copilot/iam-data",
|
|
3
|
-
"version": "0.9.
|
|
3
|
+
"version": "0.9.202505071",
|
|
4
4
|
"description": "AWS IAM Data",
|
|
5
5
|
"repository": "github:cloud-copilot/iam-data",
|
|
6
|
-
"updatedAt": "2025-05-
|
|
6
|
+
"updatedAt": "2025-05-07T04:48:14.735Z",
|
|
7
7
|
"exports": {
|
|
8
8
|
".": {
|
|
9
9
|
"import": "./dist/esm/index.js",
|