aws-iam-data 0.0.594 → 0.0.596

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. package/dist/data/json/changelog.json +68 -0
  2. package/dist/data/json/iam.json +740 -2
  3. package/dist/data/json/metadata.json +61 -14
  4. package/dist/data/json/reports.json +5 -5
  5. package/package.json +1 -1
package/dist/data/json/iam.json CHANGED
@@ -54120,6 +54120,23 @@
54120
54120
  }
54121
54121
  ]
54122
54122
  },
54123
+ {
54124
+ "name": "CreateWebhook",
54125
+ "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
54126
+ "permissionOnly": false,
54127
+ "description": "Grants permission to create a webhook in a workspace",
54128
+ "accessLevel": "Write",
54129
+ "resourceTypes": [
54130
+ {
54131
+ "resourceType": "workspace",
54132
+ "required": true,
54133
+ "conditionKeys": [
54134
+ "aws:ResourceTag/${TagKey}"
54135
+ ],
54136
+ "dependentActions": []
54137
+ }
54138
+ ]
54139
+ },
54123
54140
  {
54124
54141
  "name": "CreateWorkspace",
54125
54142
  "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
@@ -54257,6 +54274,23 @@
54257
54274
  }
54258
54275
  ]
54259
54276
  },
54277
+ {
54278
+ "name": "DeleteWebhook",
54279
+ "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
54280
+ "permissionOnly": false,
54281
+ "description": "Grants permission to delete a webhook",
54282
+ "accessLevel": "Write",
54283
+ "resourceTypes": [
54284
+ {
54285
+ "resourceType": "workspace",
54286
+ "required": true,
54287
+ "conditionKeys": [
54288
+ "aws:ResourceTag/${TagKey}"
54289
+ ],
54290
+ "dependentActions": []
54291
+ }
54292
+ ]
54293
+ },
54260
54294
  {
54261
54295
  "name": "GetAccountStatus",
54262
54296
  "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
@@ -54442,6 +54476,23 @@
54442
54476
  }
54443
54477
  ]
54444
54478
  },
54479
+ {
54480
+ "name": "GetWebhook",
54481
+ "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
54482
+ "permissionOnly": false,
54483
+ "description": "Grants permission to retrieve details of a webhook",
54484
+ "accessLevel": "Read",
54485
+ "resourceTypes": [
54486
+ {
54487
+ "resourceType": "workspace",
54488
+ "required": true,
54489
+ "conditionKeys": [
54490
+ "aws:ResourceTag/${TagKey}"
54491
+ ],
54492
+ "dependentActions": []
54493
+ }
54494
+ ]
54495
+ },
54445
54496
  {
54446
54497
  "name": "GetWorkspace",
54447
54498
  "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
@@ -54646,6 +54697,23 @@
54646
54697
  }
54647
54698
  ]
54648
54699
  },
54700
+ {
54701
+ "name": "ListWebhooks",
54702
+ "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
54703
+ "permissionOnly": false,
54704
+ "description": "Grants permission to list webhooks in a workspace",
54705
+ "accessLevel": "List",
54706
+ "resourceTypes": [
54707
+ {
54708
+ "resourceType": "workspace",
54709
+ "required": true,
54710
+ "conditionKeys": [
54711
+ "aws:ResourceTag/${TagKey}"
54712
+ ],
54713
+ "dependentActions": []
54714
+ }
54715
+ ]
54716
+ },
54649
54717
  {
54650
54718
  "name": "ListWorkspaces",
54651
54719
  "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
@@ -54661,6 +54729,40 @@
54661
54729
  }
54662
54730
  ]
54663
54731
  },
54732
+ {
54733
+ "name": "ProcessEnvironmentWork",
54734
+ "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
54735
+ "permissionOnly": false,
54736
+ "description": "Grants permission to process work items in a self-hosted managed agent environment",
54737
+ "accessLevel": "Write",
54738
+ "resourceTypes": [
54739
+ {
54740
+ "resourceType": "workspace",
54741
+ "required": true,
54742
+ "conditionKeys": [
54743
+ "aws:ResourceTag/${TagKey}"
54744
+ ],
54745
+ "dependentActions": []
54746
+ }
54747
+ ]
54748
+ },
54749
+ {
54750
+ "name": "RotateWebhookSecret",
54751
+ "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
54752
+ "permissionOnly": false,
54753
+ "description": "Grants permission to rotate the signing secret of a webhook",
54754
+ "accessLevel": "Write",
54755
+ "resourceTypes": [
54756
+ {
54757
+ "resourceType": "workspace",
54758
+ "required": true,
54759
+ "conditionKeys": [
54760
+ "aws:ResourceTag/${TagKey}"
54761
+ ],
54762
+ "dependentActions": []
54763
+ }
54764
+ ]
54765
+ },
54664
54766
  {
54665
54767
  "name": "TagResource",
54666
54768
  "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
@@ -54831,6 +54933,23 @@
54831
54933
  }
54832
54934
  ]
54833
54935
  },
54936
+ {
54937
+ "name": "UpdateWebhook",
54938
+ "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
54939
+ "permissionOnly": false,
54940
+ "description": "Grants permission to update a webhook",
54941
+ "accessLevel": "Write",
54942
+ "resourceTypes": [
54943
+ {
54944
+ "resourceType": "workspace",
54945
+ "required": true,
54946
+ "conditionKeys": [
54947
+ "aws:ResourceTag/${TagKey}"
54948
+ ],
54949
+ "dependentActions": []
54950
+ }
54951
+ ]
54952
+ },
54834
54953
  {
54835
54954
  "name": "UpdateWorkspace",
54836
54955
  "apiReferenceUrl": "https://docs.aws.amazon.com/claude-platform/latest/userguide/iam-actions.html#iam-actions",
@@ -128528,6 +128647,21 @@
128528
128647
  }
128529
128648
  ]
128530
128649
  },
128650
+ {
128651
+ "name": "CreateAccessToken",
128652
+ "apiReferenceUrl": "https://docs.aws.amazon.com/devopsagent/latest/APIReference/API_CreateAccessToken.html",
128653
+ "permissionOnly": false,
128654
+ "description": "Grants permission to create an access token",
128655
+ "accessLevel": "Write",
128656
+ "resourceTypes": [
128657
+ {
128658
+ "resourceType": "agentspace",
128659
+ "required": true,
128660
+ "conditionKeys": [],
128661
+ "dependentActions": []
128662
+ }
128663
+ ]
128664
+ },
128531
128665
  {
128532
128666
  "name": "CreateAgentSpace",
128533
128667
  "apiReferenceUrl": "https://docs.aws.amazon.com/devopsagent/latest/APIReference/API_CreateAgentSpace.html",
@@ -128946,6 +129080,21 @@
128946
129080
  }
128947
129081
  ]
128948
129082
  },
129083
+ {
129084
+ "name": "GetAccessToken",
129085
+ "apiReferenceUrl": "https://docs.aws.amazon.com/devopsagent/latest/APIReference/API_GetAccessToken.html",
129086
+ "permissionOnly": false,
129087
+ "description": "Grants permission to get access token details",
129088
+ "accessLevel": "Read",
129089
+ "resourceTypes": [
129090
+ {
129091
+ "resourceType": "agentspace",
129092
+ "required": true,
129093
+ "conditionKeys": [],
129094
+ "dependentActions": []
129095
+ }
129096
+ ]
129097
+ },
128949
129098
  {
128950
129099
  "name": "GetAccountUsage",
128951
129100
  "apiReferenceUrl": "https://docs.aws.amazon.com/devopsagent/latest/APIReference/API_GetAccountUsage.html",
@@ -129163,6 +129312,21 @@
129163
129312
  }
129164
129313
  ]
129165
129314
  },
129315
+ {
129316
+ "name": "ListAccessTokens",
129317
+ "apiReferenceUrl": "https://docs.aws.amazon.com/devopsagent/latest/APIReference/API_ListAccessTokens.html",
129318
+ "permissionOnly": false,
129319
+ "description": "Grants permission to list access tokens",
129320
+ "accessLevel": "List",
129321
+ "resourceTypes": [
129322
+ {
129323
+ "resourceType": "agentspace",
129324
+ "required": true,
129325
+ "conditionKeys": [],
129326
+ "dependentActions": []
129327
+ }
129328
+ ]
129329
+ },
129166
129330
  {
129167
129331
  "name": "ListAgentSpaces",
129168
129332
  "apiReferenceUrl": "https://docs.aws.amazon.com/devopsagent/latest/APIReference/API_ListAgentSpaces.html",
@@ -129526,6 +129690,36 @@
129526
129690
  }
129527
129691
  ]
129528
129692
  },
129693
+ {
129694
+ "name": "RevokeAccessToken",
129695
+ "apiReferenceUrl": "https://docs.aws.amazon.com/devopsagent/latest/APIReference/API_RevokeAccessToken.html",
129696
+ "permissionOnly": false,
129697
+ "description": "Grants permission to revoke an access token",
129698
+ "accessLevel": "Write",
129699
+ "resourceTypes": [
129700
+ {
129701
+ "resourceType": "agentspace",
129702
+ "required": true,
129703
+ "conditionKeys": [],
129704
+ "dependentActions": []
129705
+ }
129706
+ ]
129707
+ },
129708
+ {
129709
+ "name": "RotateAccessToken",
129710
+ "apiReferenceUrl": "https://docs.aws.amazon.com/devopsagent/latest/APIReference/API_RotateAccessToken.html",
129711
+ "permissionOnly": false,
129712
+ "description": "Grants permission to rotate an access token",
129713
+ "accessLevel": "Write",
129714
+ "resourceTypes": [
129715
+ {
129716
+ "resourceType": "agentspace",
129717
+ "required": true,
129718
+ "conditionKeys": [],
129719
+ "dependentActions": []
129720
+ }
129721
+ ]
129722
+ },
129529
129723
  {
129530
129724
  "name": "SearchServiceAccessibleResource",
129531
129725
  "apiReferenceUrl": "https://docs.aws.amazon.com/devopsagent/latest/APIReference/what-is.html",
@@ -225516,6 +225710,21 @@
225516
225710
  }
225517
225711
  ]
225518
225712
  },
225713
+ {
225714
+ "name": "UpdateFHIRDatastore",
225715
+ "apiReferenceUrl": "https://docs.aws.amazon.com/healthlake/latest/APIReference/API_UpdateFHIRDatastore.html",
225716
+ "permissionOnly": false,
225717
+ "description": "Grants permission to update the configuration of a datastore",
225718
+ "accessLevel": "Write",
225719
+ "resourceTypes": [
225720
+ {
225721
+ "resourceType": "datastore",
225722
+ "required": true,
225723
+ "conditionKeys": [],
225724
+ "dependentActions": []
225725
+ }
225726
+ ]
225727
+ },
225519
225728
  {
225520
225729
  "name": "UpdateResource",
225521
225730
  "apiReferenceUrl": "https://docs.aws.amazon.com/healthlake/latest/devguide/crud-healthlake.html",
@@ -369329,6 +369538,31 @@
369329
369538
  }
369330
369539
  ]
369331
369540
  },
369541
+ {
369542
+ "name": "AllowVendedLogDeliveryForResource",
369543
+ "apiReferenceUrl": "https://docs.aws.amazon.com/AmazonS3/latest/userguide/ServerLogs.html",
369544
+ "permissionOnly": false,
369545
+ "description": "Grants permission to configure server access logs delivery to CloudWatch",
369546
+ "accessLevel": "Read",
369547
+ "resourceTypes": [
369548
+ {
369549
+ "resourceType": "bucket",
369550
+ "required": true,
369551
+ "conditionKeys": [],
369552
+ "dependentActions": []
369553
+ },
369554
+ {
369555
+ "resourceType": "",
369556
+ "required": false,
369557
+ "conditionKeys": [
369558
+ "s3:resourceArnBeingAuthorized",
369559
+ "s3:deliverySourceArn",
369560
+ "s3:logType"
369561
+ ],
369562
+ "dependentActions": []
369563
+ }
369564
+ ]
369565
+ },
369332
369566
  {
369333
369567
  "name": "AssociateAccessGrantsIdentityCenter",
369334
369568
  "apiReferenceUrl": "https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_AssociateAccessGrantsIdentityCenter.html",
@@ -374749,6 +374983,12 @@
374749
374983
  "description": "Filters access by delimiter parameter",
374750
374984
  "type": "String"
374751
374985
  },
374986
+ {
374987
+ "name": "s3:deliverySourceArn",
374988
+ "apiReferenceUrl": "https://docs.aws.amazon.com/AmazonS3/latest/userguide/ServerLogs.html",
374989
+ "description": "Filters access by specific delivery source Amazon Resource Name (ARN)",
374990
+ "type": "ARN"
374991
+ },
374752
374992
  {
374753
374993
  "name": "s3:destinationRegion",
374754
374994
  "apiReferenceUrl": "https://docs.aws.amazon.com/AmazonS3/latest/userguide/replication.html",
@@ -374779,6 +375019,12 @@
374779
375019
  "description": "Filters access by a specific Region",
374780
375020
  "type": "String"
374781
375021
  },
375022
+ {
375023
+ "name": "s3:logType",
375024
+ "apiReferenceUrl": "https://docs.aws.amazon.com/AmazonS3/latest/userguide/ServerLogs.html",
375025
+ "description": "Filters access by specific log type, currently supports S3_SERVER_ACCESS_LOGS",
375026
+ "type": "String"
375027
+ },
374782
375028
  {
374783
375029
  "name": "s3:max-keys",
374784
375030
  "apiReferenceUrl": "https://docs.aws.amazon.com/AmazonS3/latest/userguide/amazon-s3-policy-keys.html#example-numeric-condition-operators",
@@ -374815,6 +375061,12 @@
374815
375061
  "description": "Filters access by key name prefix",
374816
375062
  "type": "String"
374817
375063
  },
375064
+ {
375065
+ "name": "s3:resourceArnBeingAuthorized",
375066
+ "apiReferenceUrl": "https://docs.aws.amazon.com/AmazonS3/latest/userguide/ServerLogs.html",
375067
+ "description": "Filters access by source bucket Amazon Resource Name (ARN)",
375068
+ "type": "ARN"
375069
+ },
374818
375070
  {
374819
375071
  "name": "s3:signatureAge",
374820
375072
  "apiReferenceUrl": "https://docs.aws.amazon.com/AmazonS3/latest/API/bucket-policy-s3-sigv4-conditions.html",
@@ -393773,6 +394025,26 @@
393773
394025
  }
393774
394026
  ]
393775
394027
  },
394028
+ {
394029
+ "name": "BatchCreateSecurityRequirements",
394030
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_BatchCreateSecurityRequirements.html",
394031
+ "permissionOnly": false,
394032
+ "description": "Grants permission to batch create security requirements in a customer managed pack",
394033
+ "accessLevel": "Write",
394034
+ "resourceTypes": [
394035
+ {
394036
+ "resourceType": "SecurityRequirementPack",
394037
+ "required": true,
394038
+ "conditionKeys": [],
394039
+ "dependentActions": [
394040
+ "kms:Decrypt",
394041
+ "kms:GenerateDataKeyWithoutPlaintext",
394042
+ "kms:ReEncryptFrom",
394043
+ "kms:ReEncryptTo"
394044
+ ]
394045
+ }
394046
+ ]
394047
+ },
393776
394048
  {
393777
394049
  "name": "BatchDeleteCodeReviews",
393778
394050
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_BatchDeleteCodeReviews.html",
@@ -393807,6 +394079,21 @@
393807
394079
  }
393808
394080
  ]
393809
394081
  },
394082
+ {
394083
+ "name": "BatchDeleteSecurityRequirements",
394084
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_BatchDeleteSecurityRequirements.html",
394085
+ "permissionOnly": false,
394086
+ "description": "Grants permission to batch delete security requirements from a customer managed pack",
394087
+ "accessLevel": "Write",
394088
+ "resourceTypes": [
394089
+ {
394090
+ "resourceType": "SecurityRequirementPack",
394091
+ "required": true,
394092
+ "conditionKeys": [],
394093
+ "dependentActions": []
394094
+ }
394095
+ ]
394096
+ },
393810
394097
  {
393811
394098
  "name": "BatchDeleteThreatModels",
393812
394099
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_BatchDeleteThreatModels.html",
@@ -394009,6 +394296,26 @@
394009
394296
  }
394010
394297
  ]
394011
394298
  },
394299
+ {
394300
+ "name": "BatchGetSecurityRequirements",
394301
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_BatchGetSecurityRequirements.html",
394302
+ "permissionOnly": false,
394303
+ "description": "Grants permission to retrieve multiple security requirements in a single request",
394304
+ "accessLevel": "Read",
394305
+ "resourceTypes": [
394306
+ {
394307
+ "resourceType": "SecurityRequirementPack",
394308
+ "required": true,
394309
+ "conditionKeys": [],
394310
+ "dependentActions": [
394311
+ "kms:Decrypt",
394312
+ "kms:GenerateDataKeyWithoutPlaintext",
394313
+ "kms:ReEncryptFrom",
394314
+ "kms:ReEncryptTo"
394315
+ ]
394316
+ }
394317
+ ]
394318
+ },
394012
394319
  {
394013
394320
  "name": "BatchGetTargetDomains",
394014
394321
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_BatchGetTargetDomains.html",
@@ -394092,6 +394399,26 @@
394092
394399
  }
394093
394400
  ]
394094
394401
  },
394402
+ {
394403
+ "name": "BatchUpdateSecurityRequirements",
394404
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_BatchUpdateSecurityRequirements.html",
394405
+ "permissionOnly": false,
394406
+ "description": "Grants permission to batch update security requirements within a customer managed pack",
394407
+ "accessLevel": "Write",
394408
+ "resourceTypes": [
394409
+ {
394410
+ "resourceType": "SecurityRequirementPack",
394411
+ "required": true,
394412
+ "conditionKeys": [],
394413
+ "dependentActions": [
394414
+ "kms:Decrypt",
394415
+ "kms:GenerateDataKeyWithoutPlaintext",
394416
+ "kms:ReEncryptFrom",
394417
+ "kms:ReEncryptTo"
394418
+ ]
394419
+ }
394420
+ ]
394421
+ },
394095
394422
  {
394096
394423
  "name": "CreateAgentSpace",
394097
394424
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_CreateAgentSpace.html",
@@ -394233,6 +394560,24 @@
394233
394560
  }
394234
394561
  ]
394235
394562
  },
394563
+ {
394564
+ "name": "CreatePrivateConnection",
394565
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_CreatePrivateConnection.html",
394566
+ "permissionOnly": false,
394567
+ "description": "Grants permission to create a private connection for VPC Lattice integration",
394568
+ "accessLevel": "Write",
394569
+ "resourceTypes": [
394570
+ {
394571
+ "resourceType": "",
394572
+ "required": false,
394573
+ "conditionKeys": [
394574
+ "aws:RequestTag/${TagKey}",
394575
+ "aws:TagKeys"
394576
+ ],
394577
+ "dependentActions": []
394578
+ }
394579
+ ]
394580
+ },
394236
394581
  {
394237
394582
  "name": "CreateSecurityRequirement",
394238
394583
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_CreateSecurityRequirement.html",
@@ -394248,6 +394593,30 @@
394248
394593
  }
394249
394594
  ]
394250
394595
  },
394596
+ {
394597
+ "name": "CreateSecurityRequirementPack",
394598
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_CreateSecurityRequirementPack.html",
394599
+ "permissionOnly": false,
394600
+ "description": "Grants permission to create a customer managed security requirement pack",
394601
+ "accessLevel": "Write",
394602
+ "resourceTypes": [
394603
+ {
394604
+ "resourceType": "",
394605
+ "required": false,
394606
+ "conditionKeys": [
394607
+ "aws:RequestTag/${TagKey}",
394608
+ "aws:TagKeys"
394609
+ ],
394610
+ "dependentActions": [
394611
+ "kms:Decrypt",
394612
+ "kms:DescribeKey",
394613
+ "kms:GenerateDataKeyWithoutPlaintext",
394614
+ "kms:ReEncryptFrom",
394615
+ "kms:ReEncryptTo"
394616
+ ]
394617
+ }
394618
+ ]
394619
+ },
394251
394620
  {
394252
394621
  "name": "CreateTargetDomain",
394253
394622
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_CreateTargetDomain.html",
@@ -394389,6 +394758,21 @@
394389
394758
  }
394390
394759
  ]
394391
394760
  },
394761
+ {
394762
+ "name": "DeletePrivateConnection",
394763
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_DeletePrivateConnection.html",
394764
+ "permissionOnly": false,
394765
+ "description": "Grants permission to delete a private connection",
394766
+ "accessLevel": "Write",
394767
+ "resourceTypes": [
394768
+ {
394769
+ "resourceType": "PrivateConnection",
394770
+ "required": true,
394771
+ "conditionKeys": [],
394772
+ "dependentActions": []
394773
+ }
394774
+ ]
394775
+ },
394392
394776
  {
394393
394777
  "name": "DeleteSecurityRequirement",
394394
394778
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_DeleteSecurityRequirement.html",
@@ -394404,6 +394788,21 @@
394404
394788
  }
394405
394789
  ]
394406
394790
  },
394791
+ {
394792
+ "name": "DeleteSecurityRequirementPack",
394793
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_DeleteSecurityRequirementPack.html",
394794
+ "permissionOnly": false,
394795
+ "description": "Grants permission to delete a customer managed security requirement pack and all its associated security requirements",
394796
+ "accessLevel": "Write",
394797
+ "resourceTypes": [
394798
+ {
394799
+ "resourceType": "SecurityRequirementPack",
394800
+ "required": true,
394801
+ "conditionKeys": [],
394802
+ "dependentActions": []
394803
+ }
394804
+ ]
394805
+ },
394407
394806
  {
394408
394807
  "name": "DeleteTargetDomain",
394409
394808
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_DeleteTargetDomain.html",
@@ -394419,6 +394818,21 @@
394419
394818
  }
394420
394819
  ]
394421
394820
  },
394821
+ {
394822
+ "name": "DescribePrivateConnection",
394823
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_DescribePrivateConnection.html",
394824
+ "permissionOnly": false,
394825
+ "description": "Grants permission to describe a private connection",
394826
+ "accessLevel": "Read",
394827
+ "resourceTypes": [
394828
+ {
394829
+ "resourceType": "PrivateConnection",
394830
+ "required": true,
394831
+ "conditionKeys": [],
394832
+ "dependentActions": []
394833
+ }
394834
+ ]
394835
+ },
394422
394836
  {
394423
394837
  "name": "GetApplication",
394424
394838
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_GetApplication.html",
@@ -394509,6 +394923,21 @@
394509
394923
  }
394510
394924
  ]
394511
394925
  },
394926
+ {
394927
+ "name": "GetProviderRegistrationManifest",
394928
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_GetProviderRegistrationManifest.html",
394929
+ "permissionOnly": false,
394930
+ "description": "Grants permission to retrieve the provider registration manifest used for browser-based integration registration",
394931
+ "accessLevel": "Read",
394932
+ "resourceTypes": [
394933
+ {
394934
+ "resourceType": "",
394935
+ "required": false,
394936
+ "conditionKeys": [],
394937
+ "dependentActions": []
394938
+ }
394939
+ ]
394940
+ },
394512
394941
  {
394513
394942
  "name": "GetSecurityRequirement",
394514
394943
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_GetSecurityRequirement.html",
@@ -394524,6 +394953,56 @@
394524
394953
  }
394525
394954
  ]
394526
394955
  },
394956
+ {
394957
+ "name": "GetSecurityRequirementPack",
394958
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_GetSecurityRequirementPack.html",
394959
+ "permissionOnly": false,
394960
+ "description": "Grants permission to retrieve a security requirement pack",
394961
+ "accessLevel": "Read",
394962
+ "resourceTypes": [
394963
+ {
394964
+ "resourceType": "SecurityRequirementPack",
394965
+ "required": true,
394966
+ "conditionKeys": [],
394967
+ "dependentActions": []
394968
+ }
394969
+ ]
394970
+ },
394971
+ {
394972
+ "name": "HandleProviderRegistrationCallback",
394973
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_HandleProviderRegistrationCallback.html",
394974
+ "permissionOnly": false,
394975
+ "description": "Grants permission to handle the provider OAuth registration callback that completes integration setup",
394976
+ "accessLevel": "Write",
394977
+ "resourceTypes": [
394978
+ {
394979
+ "resourceType": "",
394980
+ "required": false,
394981
+ "conditionKeys": [],
394982
+ "dependentActions": []
394983
+ }
394984
+ ]
394985
+ },
394986
+ {
394987
+ "name": "ImportSecurityRequirements",
394988
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_ImportSecurityRequirements.html",
394989
+ "permissionOnly": false,
394990
+ "description": "Grants permission to import security requirements from uploaded documents for a customer managed security requirement pack",
394991
+ "accessLevel": "Write",
394992
+ "resourceTypes": [
394993
+ {
394994
+ "resourceType": "SecurityRequirementPack",
394995
+ "required": true,
394996
+ "conditionKeys": [],
394997
+ "dependentActions": [
394998
+ "kms:Decrypt",
394999
+ "kms:GenerateDataKeyWithoutPlaintext",
395000
+ "kms:ReEncryptFrom",
395001
+ "kms:ReEncryptTo"
395002
+ ]
395003
+ }
395004
+ ]
395005
+ },
394527
395006
  {
394528
395007
  "name": "InitiateProviderRegistration",
394529
395008
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_InitiateProviderRegistration.html",
@@ -394795,6 +395274,21 @@
394795
395274
  }
394796
395275
  ]
394797
395276
  },
395277
+ {
395278
+ "name": "ListPrivateConnections",
395279
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_ListPrivateConnections.html",
395280
+ "permissionOnly": false,
395281
+ "description": "Grants permission to list private connections in the account",
395282
+ "accessLevel": "List",
395283
+ "resourceTypes": [
395284
+ {
395285
+ "resourceType": "",
395286
+ "required": false,
395287
+ "conditionKeys": [],
395288
+ "dependentActions": []
395289
+ }
395290
+ ]
395291
+ },
394798
395292
  {
394799
395293
  "name": "ListResourcesFromIntegration",
394800
395294
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_ListResourcesFromIntegration.html",
@@ -394810,6 +395304,21 @@
394810
395304
  }
394811
395305
  ]
394812
395306
  },
395307
+ {
395308
+ "name": "ListSecurityRequirementPacks",
395309
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_ListSecurityRequirementPacks.html",
395310
+ "permissionOnly": false,
395311
+ "description": "Grants permission to list all security requirement packs in the account",
395312
+ "accessLevel": "List",
395313
+ "resourceTypes": [
395314
+ {
395315
+ "resourceType": "",
395316
+ "required": false,
395317
+ "conditionKeys": [],
395318
+ "dependentActions": []
395319
+ }
395320
+ ]
395321
+ },
394813
395322
  {
394814
395323
  "name": "ListSecurityRequirements",
394815
395324
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_ListSecurityRequirements.html",
@@ -394821,7 +395330,12 @@
394821
395330
  "resourceType": "SecurityRequirementPack",
394822
395331
  "required": true,
394823
395332
  "conditionKeys": [],
394824
- "dependentActions": []
395333
+ "dependentActions": [
395334
+ "kms:Decrypt",
395335
+ "kms:GenerateDataKeyWithoutPlaintext",
395336
+ "kms:ReEncryptFrom",
395337
+ "kms:ReEncryptTo"
395338
+ ]
394825
395339
  }
394826
395340
  ]
394827
395341
  },
@@ -394850,6 +395364,12 @@
394850
395364
  "conditionKeys": [],
394851
395365
  "dependentActions": []
394852
395366
  },
395367
+ {
395368
+ "resourceType": "PrivateConnection",
395369
+ "required": false,
395370
+ "conditionKeys": [],
395371
+ "dependentActions": []
395372
+ },
394853
395373
  {
394854
395374
  "resourceType": "SecurityRequirementPack",
394855
395375
  "required": false,
@@ -395110,6 +395630,12 @@
395110
395630
  "conditionKeys": [],
395111
395631
  "dependentActions": []
395112
395632
  },
395633
+ {
395634
+ "resourceType": "PrivateConnection",
395635
+ "required": false,
395636
+ "conditionKeys": [],
395637
+ "dependentActions": []
395638
+ },
395113
395639
  {
395114
395640
  "resourceType": "SecurityRequirementPack",
395115
395641
  "required": false,
@@ -395173,6 +395699,12 @@
395173
395699
  "conditionKeys": [],
395174
395700
  "dependentActions": []
395175
395701
  },
395702
+ {
395703
+ "resourceType": "PrivateConnection",
395704
+ "required": false,
395705
+ "conditionKeys": [],
395706
+ "dependentActions": []
395707
+ },
395176
395708
  {
395177
395709
  "resourceType": "SecurityRequirementPack",
395178
395710
  "required": false,
@@ -395296,6 +395828,21 @@
395296
395828
  }
395297
395829
  ]
395298
395830
  },
395831
+ {
395832
+ "name": "UpdatePrivateConnectionCertificate",
395833
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_UpdatePrivateConnectionCertificate.html",
395834
+ "permissionOnly": false,
395835
+ "description": "Grants permission to update the certificate associated with a private connection",
395836
+ "accessLevel": "Write",
395837
+ "resourceTypes": [
395838
+ {
395839
+ "resourceType": "PrivateConnection",
395840
+ "required": true,
395841
+ "conditionKeys": [],
395842
+ "dependentActions": []
395843
+ }
395844
+ ]
395845
+ },
395299
395846
  {
395300
395847
  "name": "UpdateSecurityRequirement",
395301
395848
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_UpdateSecurityRequirement.html",
@@ -395311,6 +395858,21 @@
395311
395858
  }
395312
395859
  ]
395313
395860
  },
395861
+ {
395862
+ "name": "UpdateSecurityRequirementPack",
395863
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_UpdateSecurityRequirementPack.html",
395864
+ "permissionOnly": false,
395865
+ "description": "Grants permission to update a security requirement pack",
395866
+ "accessLevel": "Write",
395867
+ "resourceTypes": [
395868
+ {
395869
+ "resourceType": "SecurityRequirementPack",
395870
+ "required": true,
395871
+ "conditionKeys": [],
395872
+ "dependentActions": []
395873
+ }
395874
+ ]
395875
+ },
395314
395876
  {
395315
395877
  "name": "UpdateTargetDomain",
395316
395878
  "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/API_UpdateTargetDomain.html",
@@ -395416,6 +395978,14 @@
395416
395978
  "conditionKeys": [
395417
395979
  "aws:ResourceTag/${TagKey}"
395418
395980
  ]
395981
+ },
395982
+ {
395983
+ "name": "PrivateConnection",
395984
+ "apiReferenceUrl": "https://docs.aws.amazon.com/securityagent/latest/userguide/auth-and-access-control-iam-access-control-identity-based.html#arn-formats",
395985
+ "arnPattern": "arn:${Partition}:securityagent:${Region}:${Account}:private-connection/${PrivateConnectionName}",
395986
+ "conditionKeys": [
395987
+ "aws:ResourceTag/${TagKey}"
395988
+ ]
395419
395989
  }
395420
395990
  ],
395421
395991
  "conditionKeys": [
@@ -407733,6 +408303,29 @@
407733
408303
  "authReferenceUrl": "https://docs.aws.amazon.com/service-authorization/latest/reference/list_awssignin.html",
407734
408304
  "servicePrefix": "signin",
407735
408305
  "actions": [
408306
+ {
408307
+ "name": "Authenticate",
408308
+ "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference/API_Authenticate.html",
408309
+ "permissionOnly": false,
408310
+ "description": "Grants permission to authenticate to the AWS Management Console",
408311
+ "accessLevel": "Read",
408312
+ "resourceTypes": [
408313
+ {
408314
+ "resourceType": "console",
408315
+ "required": true,
408316
+ "conditionKeys": [],
408317
+ "dependentActions": []
408318
+ },
408319
+ {
408320
+ "resourceType": "",
408321
+ "required": false,
408322
+ "conditionKeys": [
408323
+ "signin:PrincipalArn"
408324
+ ],
408325
+ "dependentActions": []
408326
+ }
408327
+ ]
408328
+ },
407736
408329
  {
407737
408330
  "name": "AuthorizeOAuth2Access",
407738
408331
  "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference/API_AuthorizeOAuth2Access.html",
@@ -407740,6 +408333,12 @@
407740
408333
  "description": "Grants permission to authenticate through a browser and obtain an OAuth 2.0 authorization code for credential exchange",
407741
408334
  "accessLevel": "Read",
407742
408335
  "resourceTypes": [
408336
+ {
408337
+ "resourceType": "console",
408338
+ "required": true,
408339
+ "conditionKeys": [],
408340
+ "dependentActions": []
408341
+ },
407743
408342
  {
407744
408343
  "resourceType": "oauth2-public-client-localhost",
407745
408344
  "required": true,
@@ -407754,6 +408353,21 @@
407754
408353
  }
407755
408354
  ]
407756
408355
  },
408356
+ {
408357
+ "name": "CreateAccount",
408358
+ "apiReferenceUrl": "https://docs.aws.amazon.com/awsconsolehelpdocs/latest/gsg/console-private-access.html",
408359
+ "permissionOnly": true,
408360
+ "description": "Grants permission to create an AWS account through the AWS Management Console sign-up flow",
408361
+ "accessLevel": "Write",
408362
+ "resourceTypes": [
408363
+ {
408364
+ "resourceType": "console",
408365
+ "required": true,
408366
+ "conditionKeys": [],
408367
+ "dependentActions": []
408368
+ }
408369
+ ]
408370
+ },
407757
408371
  {
407758
408372
  "name": "CreateOAuth2Token",
407759
408373
  "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference/API_CreateOAuth2Token.html",
@@ -407761,6 +408375,12 @@
407761
408375
  "description": "Grants permission to exchange an authorization code for OAuth 2.0 access token and refresh token that can be used to access AWS services from developer tools and applications",
407762
408376
  "accessLevel": "Read",
407763
408377
  "resourceTypes": [
408378
+ {
408379
+ "resourceType": "console",
408380
+ "required": true,
408381
+ "conditionKeys": [],
408382
+ "dependentActions": []
408383
+ },
407764
408384
  {
407765
408385
  "resourceType": "oauth2-public-client-localhost",
407766
408386
  "required": true,
@@ -407798,6 +408418,81 @@
407798
408418
  }
407799
408419
  ]
407800
408420
  },
408421
+ {
408422
+ "name": "DeleteConsoleAuthorizationConfiguration",
408423
+ "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference/API_DeleteConsoleAuthorizationConfiguration.html",
408424
+ "permissionOnly": false,
408425
+ "description": "Grants permission to disable console authorization configuration for an AWS account or organization",
408426
+ "accessLevel": "Write",
408427
+ "resourceTypes": [
408428
+ {
408429
+ "resourceType": "",
408430
+ "required": false,
408431
+ "conditionKeys": [],
408432
+ "dependentActions": []
408433
+ }
408434
+ ]
408435
+ },
408436
+ {
408437
+ "name": "DeleteResourcePermissionStatement",
408438
+ "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference/API_DeleteResourcePermissionStatement.html",
408439
+ "permissionOnly": false,
408440
+ "description": "Grants permission to remove a permission statement from the account's SignIn Resource Based Policy",
408441
+ "accessLevel": "Write",
408442
+ "resourceTypes": [
408443
+ {
408444
+ "resourceType": "",
408445
+ "required": false,
408446
+ "conditionKeys": [],
408447
+ "dependentActions": []
408448
+ }
408449
+ ]
408450
+ },
408451
+ {
408452
+ "name": "GetConsoleAuthorizationConfiguration",
408453
+ "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference/API_GetConsoleAuthorizationConfiguration.html",
408454
+ "permissionOnly": false,
408455
+ "description": "Grants permission to retrieve console authorization configuration for an AWS account or organization",
408456
+ "accessLevel": "Read",
408457
+ "resourceTypes": [
408458
+ {
408459
+ "resourceType": "",
408460
+ "required": false,
408461
+ "conditionKeys": [],
408462
+ "dependentActions": []
408463
+ }
408464
+ ]
408465
+ },
408466
+ {
408467
+ "name": "GetResourcePolicy",
408468
+ "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference/API_GetResourcePolicy.html",
408469
+ "permissionOnly": false,
408470
+ "description": "Grants permission to retrieve SignIn Resource Based Policy document that is attached with your account",
408471
+ "accessLevel": "Read",
408472
+ "resourceTypes": [
408473
+ {
408474
+ "resourceType": "",
408475
+ "required": false,
408476
+ "conditionKeys": [],
408477
+ "dependentActions": []
408478
+ }
408479
+ ]
408480
+ },
408481
+ {
408482
+ "name": "ListResourcePermissionStatements",
408483
+ "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference/API_ListResourcePermissionStatements.html",
408484
+ "permissionOnly": false,
408485
+ "description": "Grants permission to list the SignIn Resource Based Policy statements in your account",
408486
+ "accessLevel": "List",
408487
+ "resourceTypes": [
408488
+ {
408489
+ "resourceType": "",
408490
+ "required": false,
408491
+ "conditionKeys": [],
408492
+ "dependentActions": []
408493
+ }
408494
+ ]
408495
+ },
407801
408496
  {
407802
408497
  "name": "ListTrustedIdentityPropagationApplicationsForConsole",
407803
408498
  "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference/API_ListTrustedIdentityPropagationApplicationsForConsole.html",
@@ -407815,6 +408510,36 @@
407815
408510
  ]
407816
408511
  }
407817
408512
  ]
408513
+ },
408514
+ {
408515
+ "name": "PutConsoleAuthorizationConfiguration",
408516
+ "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference/API_PutConsoleAuthorizationConfiguration.html",
408517
+ "permissionOnly": false,
408518
+ "description": "Grants permission to enable console authorization configuration for an AWS account or organization",
408519
+ "accessLevel": "Write",
408520
+ "resourceTypes": [
408521
+ {
408522
+ "resourceType": "",
408523
+ "required": false,
408524
+ "conditionKeys": [],
408525
+ "dependentActions": []
408526
+ }
408527
+ ]
408528
+ },
408529
+ {
408530
+ "name": "PutResourcePermissionStatement",
408531
+ "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference/API_PutResourcePermissionStatement.html",
408532
+ "permissionOnly": false,
408533
+ "description": "Grants permission to create a permission statement in the account's SignIn resource-based policy",
408534
+ "accessLevel": "Write",
408535
+ "resourceTypes": [
408536
+ {
408537
+ "resourceType": "",
408538
+ "required": false,
408539
+ "conditionKeys": [],
408540
+ "dependentActions": []
408541
+ }
408542
+ ]
407818
408543
  }
407819
408544
  ],
407820
408545
  "resourceTypes": [
@@ -407829,9 +408554,22 @@
407829
408554
  "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference",
407830
408555
  "arnPattern": "arn:${Partition}:signin:${Region}:${Account}:oauth2/public-client/remote",
407831
408556
  "conditionKeys": []
408557
+ },
408558
+ {
408559
+ "name": "console",
408560
+ "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/APIReference",
408561
+ "arnPattern": "arn:${Partition}:signin:::console/${ConsoleName}",
408562
+ "conditionKeys": []
407832
408563
  }
407833
408564
  ],
407834
- "conditionKeys": []
408565
+ "conditionKeys": [
408566
+ {
408567
+ "name": "signin:PrincipalArn",
408568
+ "apiReferenceUrl": "https://docs.aws.amazon.com/signin/latest/userguide/reference-signin-condition-keys.html",
408569
+ "description": "Filters access by the principal ARN during pre-authentication console sign-in",
408570
+ "type": "ARN"
408571
+ }
408572
+ ]
407835
408573
  },
407836
408574
  {
407837
408575
  "name": "Amazon Simple Email Service - Mail Manager",