aws-iam-language-server 0.0.9 → 0.0.11
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/package.json +1 -1
- package/readme.md +20 -0
- package/src/data/servicereference/services/a2c.json +1 -1
- package/src/data/servicereference/services/a4b.json +1 -1
- package/src/data/servicereference/services/access-analyzer.json +1 -1
- package/src/data/servicereference/services/account.json +1 -1
- package/src/data/servicereference/services/acm-pca.json +1 -1
- package/src/data/servicereference/services/acm.json +1 -1
- package/src/data/servicereference/services/aco-automation.json +1 -1
- package/src/data/servicereference/services/action-recommendations.json +1 -1
- package/src/data/servicereference/services/activate.json +1 -1
- package/src/data/servicereference/services/aidevops.json +1 -1
- package/src/data/servicereference/services/aiops.json +1 -1
- package/src/data/servicereference/services/airflow-serverless.json +1 -1
- package/src/data/servicereference/services/airflow.json +1 -1
- package/src/data/servicereference/services/amplify.json +1 -1
- package/src/data/servicereference/services/amplifybackend.json +1 -1
- package/src/data/servicereference/services/amplifyuibuilder.json +1 -1
- package/src/data/servicereference/services/aoss.json +1 -1
- package/src/data/servicereference/services/apigateway.json +1 -1
- package/src/data/servicereference/services/app-integrations.json +1 -1
- package/src/data/servicereference/services/appconfig.json +1 -1
- package/src/data/servicereference/services/appfabric.json +1 -1
- package/src/data/servicereference/services/appflow.json +1 -1
- package/src/data/servicereference/services/application-autoscaling.json +1 -1
- package/src/data/servicereference/services/application-signals.json +1 -1
- package/src/data/servicereference/services/application-transformation.json +1 -1
- package/src/data/servicereference/services/applicationinsights.json +1 -1
- package/src/data/servicereference/services/appmesh-preview.json +1 -1
- package/src/data/servicereference/services/appmesh.json +1 -1
- package/src/data/servicereference/services/apprunner.json +1 -1
- package/src/data/servicereference/services/appstream.json +1 -1
- package/src/data/servicereference/services/appstudio.json +1 -1
- package/src/data/servicereference/services/appsync.json +1 -1
- package/src/data/servicereference/services/apptest.json +1 -1
- package/src/data/servicereference/services/aps.json +1 -1
- package/src/data/servicereference/services/arc-region-switch.json +1 -1
- package/src/data/servicereference/services/arc-zonal-shift.json +1 -1
- package/src/data/servicereference/services/arsenal.json +1 -1
- package/src/data/servicereference/services/artifact.json +1 -1
- package/src/data/servicereference/services/athena.json +1 -1
- package/src/data/servicereference/services/auditmanager.json +1 -1
- package/src/data/servicereference/services/autoscaling-plans.json +1 -1
- package/src/data/servicereference/services/autoscaling.json +1 -1
- package/src/data/servicereference/services/aws-marketplace-management.json +1 -1
- package/src/data/servicereference/services/aws-marketplace.json +1 -1
- package/src/data/servicereference/services/aws-mcp.json +1 -1
- package/src/data/servicereference/services/aws-portal.json +1 -1
- package/src/data/servicereference/services/awsconnector.json +1 -1
- package/src/data/servicereference/services/b2bi.json +1 -1
- package/src/data/servicereference/services/backup-gateway.json +1 -1
- package/src/data/servicereference/services/backup-search.json +1 -1
- package/src/data/servicereference/services/backup-storage.json +1 -1
- package/src/data/servicereference/services/backup.json +1 -1
- package/src/data/servicereference/services/batch.json +1 -1
- package/src/data/servicereference/services/bcm-dashboards.json +1 -1
- package/src/data/servicereference/services/bcm-data-exports.json +1 -1
- package/src/data/servicereference/services/bcm-pricing-calculator.json +1 -1
- package/src/data/servicereference/services/bcm-recommended-actions.json +1 -1
- package/src/data/servicereference/services/bedrock-agentcore.json +1 -1
- package/src/data/servicereference/services/bedrock-mantle.json +1 -1
- package/src/data/servicereference/services/bedrock.json +1 -1
- package/src/data/servicereference/services/billing.json +1 -1
- package/src/data/servicereference/services/billingconductor.json +1 -1
- package/src/data/servicereference/services/braket.json +1 -1
- package/src/data/servicereference/services/budgets.json +1 -1
- package/src/data/servicereference/services/bugbust.json +1 -1
- package/src/data/servicereference/services/cases.json +1 -1
- package/src/data/servicereference/services/cassandra.json +1 -1
- package/src/data/servicereference/services/ce.json +1 -1
- package/src/data/servicereference/services/chatbot.json +1 -1
- package/src/data/servicereference/services/chime.json +1 -1
- package/src/data/servicereference/services/cleanrooms-ml.json +1 -1
- package/src/data/servicereference/services/cleanrooms.json +1 -1
- package/src/data/servicereference/services/cloud9.json +1 -1
- package/src/data/servicereference/services/clouddirectory.json +1 -1
- package/src/data/servicereference/services/cloudformation.json +1 -1
- package/src/data/servicereference/services/cloudfront-keyvaluestore.json +1 -1
- package/src/data/servicereference/services/cloudfront.json +1 -1
- package/src/data/servicereference/services/cloudhsm.json +1 -1
- package/src/data/servicereference/services/cloudsearch.json +1 -1
- package/src/data/servicereference/services/cloudshell.json +1 -1
- package/src/data/servicereference/services/cloudtrail-data.json +1 -1
- package/src/data/servicereference/services/cloudtrail.json +1 -1
- package/src/data/servicereference/services/cloudwatch.json +1 -1
- package/src/data/servicereference/services/codeartifact.json +1 -1
- package/src/data/servicereference/services/codebuild.json +1 -1
- package/src/data/servicereference/services/codecatalyst.json +1 -1
- package/src/data/servicereference/services/codecommit.json +1 -1
- package/src/data/servicereference/services/codeconnections.json +1 -1
- package/src/data/servicereference/services/codedeploy-commands-secure.json +1 -1
- package/src/data/servicereference/services/codedeploy.json +1 -1
- package/src/data/servicereference/services/codeguru-profiler.json +1 -1
- package/src/data/servicereference/services/codeguru-reviewer.json +1 -1
- package/src/data/servicereference/services/codeguru-security.json +1 -1
- package/src/data/servicereference/services/codeguru.json +1 -1
- package/src/data/servicereference/services/codepipeline.json +1 -1
- package/src/data/servicereference/services/codestar-connections.json +1 -1
- package/src/data/servicereference/services/codestar-notifications.json +1 -1
- package/src/data/servicereference/services/codestar.json +1 -1
- package/src/data/servicereference/services/codewhisperer.json +1 -1
- package/src/data/servicereference/services/cognito-identity.json +1 -1
- package/src/data/servicereference/services/cognito-idp.json +1 -1
- package/src/data/servicereference/services/cognito-sync.json +1 -1
- package/src/data/servicereference/services/comprehend.json +1 -1
- package/src/data/servicereference/services/comprehendmedical.json +1 -1
- package/src/data/servicereference/services/compute-optimizer.json +1 -1
- package/src/data/servicereference/services/config.json +1 -1
- package/src/data/servicereference/services/connect-campaigns.json +1 -1
- package/src/data/servicereference/services/connect.json +1 -1
- package/src/data/servicereference/services/consoleapp.json +1 -1
- package/src/data/servicereference/services/consolidatedbilling.json +1 -1
- package/src/data/servicereference/services/controlcatalog.json +1 -1
- package/src/data/servicereference/services/controltower.json +1 -1
- package/src/data/servicereference/services/cost-optimization-hub.json +1 -1
- package/src/data/servicereference/services/cur.json +1 -1
- package/src/data/servicereference/services/customer-verification.json +1 -1
- package/src/data/servicereference/services/databrew.json +1 -1
- package/src/data/servicereference/services/dataexchange.json +1 -1
- package/src/data/servicereference/services/datapipeline.json +1 -1
- package/src/data/servicereference/services/datasync.json +1 -1
- package/src/data/servicereference/services/datazone.json +1 -1
- package/src/data/servicereference/services/dax.json +1 -1
- package/src/data/servicereference/services/dbqms.json +1 -1
- package/src/data/servicereference/services/deadline.json +1 -1
- package/src/data/servicereference/services/detective.json +1 -1
- package/src/data/servicereference/services/devicefarm.json +1 -1
- package/src/data/servicereference/services/devops-guru.json +1 -1
- package/src/data/servicereference/services/directconnect.json +1 -1
- package/src/data/servicereference/services/discovery.json +1 -1
- package/src/data/servicereference/services/dlm.json +1 -1
- package/src/data/servicereference/services/dms.json +1 -1
- package/src/data/servicereference/services/docdb-elastic.json +1 -1
- package/src/data/servicereference/services/drs.json +1 -1
- package/src/data/servicereference/services/ds-data.json +1 -1
- package/src/data/servicereference/services/ds.json +1 -1
- package/src/data/servicereference/services/dsql.json +1 -1
- package/src/data/servicereference/services/dynamodb.json +1 -1
- package/src/data/servicereference/services/ebs.json +1 -1
- package/src/data/servicereference/services/ec2-instance-connect.json +1 -1
- package/src/data/servicereference/services/ec2.json +1 -1
- package/src/data/servicereference/services/ec2messages.json +1 -1
- package/src/data/servicereference/services/ecr-public.json +1 -1
- package/src/data/servicereference/services/ecr.json +1 -1
- package/src/data/servicereference/services/ecs-mcp.json +1 -1
- package/src/data/servicereference/services/ecs.json +1 -1
- package/src/data/servicereference/services/eks-auth.json +1 -1
- package/src/data/servicereference/services/eks-mcp.json +1 -1
- package/src/data/servicereference/services/eks.json +1 -1
- package/src/data/servicereference/services/elasticache.json +1 -1
- package/src/data/servicereference/services/elasticbeanstalk.json +1 -1
- package/src/data/servicereference/services/elasticfilesystem.json +1 -1
- package/src/data/servicereference/services/elasticloadbalancing.json +1 -1
- package/src/data/servicereference/services/elasticmapreduce.json +1 -1
- package/src/data/servicereference/services/elastictranscoder.json +1 -1
- package/src/data/servicereference/services/elemental-activations.json +1 -1
- package/src/data/servicereference/services/elemental-appliances-software.json +1 -1
- package/src/data/servicereference/services/elemental-inference.json +1 -1
- package/src/data/servicereference/services/elemental-support-cases.json +1 -1
- package/src/data/servicereference/services/elemental-support-content.json +1 -1
- package/src/data/servicereference/services/emr-containers.json +1 -1
- package/src/data/servicereference/services/emr-serverless.json +1 -1
- package/src/data/servicereference/services/entityresolution.json +1 -1
- package/src/data/servicereference/services/es.json +1 -1
- package/src/data/servicereference/services/events.json +1 -1
- package/src/data/servicereference/services/evidently.json +1 -1
- package/src/data/servicereference/services/evs.json +1 -1
- package/src/data/servicereference/services/execute-api.json +1 -1
- package/src/data/servicereference/services/finspace-api.json +1 -1
- package/src/data/servicereference/services/finspace.json +1 -1
- package/src/data/servicereference/services/firehose.json +1 -1
- package/src/data/servicereference/services/fis.json +1 -1
- package/src/data/servicereference/services/fms.json +1 -1
- package/src/data/servicereference/services/forecast.json +1 -1
- package/src/data/servicereference/services/frauddetector.json +1 -1
- package/src/data/servicereference/services/freertos.json +1 -1
- package/src/data/servicereference/services/freetier.json +1 -1
- package/src/data/servicereference/services/fsx.json +1 -1
- package/src/data/servicereference/services/gamelift.json +1 -1
- package/src/data/servicereference/services/gameliftstreams.json +1 -1
- package/src/data/servicereference/services/geo-maps.json +1 -1
- package/src/data/servicereference/services/geo-places.json +1 -1
- package/src/data/servicereference/services/geo-routes.json +1 -1
- package/src/data/servicereference/services/geo.json +1 -1
- package/src/data/servicereference/services/glacier.json +1 -1
- package/src/data/servicereference/services/globalaccelerator.json +1 -1
- package/src/data/servicereference/services/glue.json +1 -1
- package/src/data/servicereference/services/grafana.json +1 -1
- package/src/data/servicereference/services/greengrass.json +1 -1
- package/src/data/servicereference/services/groundstation.json +1 -1
- package/src/data/servicereference/services/groundtruthlabeling.json +1 -1
- package/src/data/servicereference/services/guardduty.json +1 -1
- package/src/data/servicereference/services/health-agent.json +1 -1
- package/src/data/servicereference/services/health.json +1 -1
- package/src/data/servicereference/services/healthlake.json +1 -1
- package/src/data/servicereference/services/honeycode.json +1 -1
- package/src/data/servicereference/services/iam.json +1 -1
- package/src/data/servicereference/services/identity-sync.json +1 -1
- package/src/data/servicereference/services/identitystore-auth.json +1 -1
- package/src/data/servicereference/services/identitystore.json +1 -1
- package/src/data/servicereference/services/imagebuilder.json +1 -1
- package/src/data/servicereference/services/importexport.json +1 -1
- package/src/data/servicereference/services/inspector-scan.json +1 -1
- package/src/data/servicereference/services/inspector.json +1 -1
- package/src/data/servicereference/services/inspector2-telemetry.json +1 -1
- package/src/data/servicereference/services/inspector2.json +1 -1
- package/src/data/servicereference/services/interconnect.json +1 -1
- package/src/data/servicereference/services/internetmonitor.json +1 -1
- package/src/data/servicereference/services/invoicing.json +1 -1
- package/src/data/servicereference/services/iot-device-tester.json +1 -1
- package/src/data/servicereference/services/iot.json +1 -1
- package/src/data/servicereference/services/iotanalytics.json +1 -1
- package/src/data/servicereference/services/iotdeviceadvisor.json +1 -1
- package/src/data/servicereference/services/iotevents.json +1 -1
- package/src/data/servicereference/services/iotfleethub.json +1 -1
- package/src/data/servicereference/services/iotfleetwise.json +1 -1
- package/src/data/servicereference/services/iotjobsdata.json +1 -1
- package/src/data/servicereference/services/iotmanagedintegrations.json +1 -1
- package/src/data/servicereference/services/iotsitewise.json +1 -1
- package/src/data/servicereference/services/iottwinmaker.json +1 -1
- package/src/data/servicereference/services/iotwireless.json +1 -1
- package/src/data/servicereference/services/iq-permission.json +1 -1
- package/src/data/servicereference/services/iq.json +1 -1
- package/src/data/servicereference/services/ivs.json +1 -1
- package/src/data/servicereference/services/ivschat.json +1 -1
- package/src/data/servicereference/services/kafka-cluster.json +1 -1
- package/src/data/servicereference/services/kafka.json +1 -1
- package/src/data/servicereference/services/kafkaconnect.json +1 -1
- package/src/data/servicereference/services/kendra-ranking.json +1 -1
- package/src/data/servicereference/services/kendra.json +1 -1
- package/src/data/servicereference/services/kinesis.json +1 -1
- package/src/data/servicereference/services/kinesisanalytics.json +1 -1
- package/src/data/servicereference/services/kinesisvideo.json +1 -1
- package/src/data/servicereference/services/kms.json +1 -1
- package/src/data/servicereference/services/lakeformation.json +1 -1
- package/src/data/servicereference/services/lambda.json +1 -1
- package/src/data/servicereference/services/launchwizard.json +1 -1
- package/src/data/servicereference/services/lex.json +1 -1
- package/src/data/servicereference/services/license-manager-linux-subscriptions.json +1 -1
- package/src/data/servicereference/services/license-manager-user-subscriptions.json +1 -1
- package/src/data/servicereference/services/license-manager.json +1 -1
- package/src/data/servicereference/services/lightsail.json +1 -1
- package/src/data/servicereference/services/logs.json +1 -1
- package/src/data/servicereference/services/lookoutequipment.json +1 -1
- package/src/data/servicereference/services/lookoutmetrics.json +1 -1
- package/src/data/servicereference/services/lookoutvision.json +1 -1
- package/src/data/servicereference/services/m2.json +1 -1
- package/src/data/servicereference/services/machinelearning.json +1 -1
- package/src/data/servicereference/services/macie2.json +1 -1
- package/src/data/servicereference/services/managedblockchain-query.json +1 -1
- package/src/data/servicereference/services/managedblockchain.json +1 -1
- package/src/data/servicereference/services/mapcredits.json +1 -1
- package/src/data/servicereference/services/marketplacecommerceanalytics.json +1 -1
- package/src/data/servicereference/services/mechanicalturk.json +1 -1
- package/src/data/servicereference/services/mediaconnect.json +1 -1
- package/src/data/servicereference/services/mediaconvert.json +1 -1
- package/src/data/servicereference/services/mediaimport.json +1 -1
- package/src/data/servicereference/services/medialive.json +1 -1
- package/src/data/servicereference/services/mediapackage-vod.json +1 -1
- package/src/data/servicereference/services/mediapackage.json +1 -1
- package/src/data/servicereference/services/mediapackagev2.json +1 -1
- package/src/data/servicereference/services/mediastore.json +1 -1
- package/src/data/servicereference/services/mediatailor.json +1 -1
- package/src/data/servicereference/services/medical-imaging.json +1 -1
- package/src/data/servicereference/services/memorydb.json +1 -1
- package/src/data/servicereference/services/mgh.json +1 -1
- package/src/data/servicereference/services/mgn.json +1 -1
- package/src/data/servicereference/services/migrationhub-orchestrator.json +1 -1
- package/src/data/servicereference/services/migrationhub-strategy.json +1 -1
- package/src/data/servicereference/services/mobileanalytics.json +1 -1
- package/src/data/servicereference/services/mobiletargeting.json +1 -1
- package/src/data/servicereference/services/monitron.json +1 -1
- package/src/data/servicereference/services/mpa.json +1 -1
- package/src/data/servicereference/services/mq.json +1 -1
- package/src/data/servicereference/services/neptune-db.json +1 -1
- package/src/data/servicereference/services/neptune-graph.json +1 -1
- package/src/data/servicereference/services/network-firewall.json +1 -1
- package/src/data/servicereference/services/network-security-director.json +1 -1
- package/src/data/servicereference/services/networkflowmonitor.json +1 -1
- package/src/data/servicereference/services/networkmanager-chat.json +1 -1
- package/src/data/servicereference/services/networkmanager.json +1 -1
- package/src/data/servicereference/services/networkmonitor.json +1 -1
- package/src/data/servicereference/services/nimble.json +1 -1
- package/src/data/servicereference/services/notifications-contacts.json +1 -1
- package/src/data/servicereference/services/notifications.json +1 -1
- package/src/data/servicereference/services/nova-act.json +1 -1
- package/src/data/servicereference/services/oam.json +1 -1
- package/src/data/servicereference/services/observabilityadmin.json +1 -1
- package/src/data/servicereference/services/odb.json +1 -1
- package/src/data/servicereference/services/omics.json +1 -1
- package/src/data/servicereference/services/one.json +1 -1
- package/src/data/servicereference/services/opensearch.json +1 -1
- package/src/data/servicereference/services/opsworks-cm.json +1 -1
- package/src/data/servicereference/services/opsworks.json +1 -1
- package/src/data/servicereference/services/organizations.json +1 -1
- package/src/data/servicereference/services/osis.json +1 -1
- package/src/data/servicereference/services/outposts.json +1 -1
- package/src/data/servicereference/services/panorama.json +1 -1
- package/src/data/servicereference/services/partnercentral-account-management.json +1 -1
- package/src/data/servicereference/services/partnercentral.json +1 -1
- package/src/data/servicereference/services/payment-cryptography.json +1 -1
- package/src/data/servicereference/services/payments.json +1 -1
- package/src/data/servicereference/services/pca-connector-ad.json +1 -1
- package/src/data/servicereference/services/pca-connector-scep.json +1 -1
- package/src/data/servicereference/services/pcs.json +1 -1
- package/src/data/servicereference/services/personalize.json +1 -1
- package/src/data/servicereference/services/pi.json +1 -1
- package/src/data/servicereference/services/pipes.json +1 -1
- package/src/data/servicereference/services/polly.json +1 -1
- package/src/data/servicereference/services/pricing.json +1 -1
- package/src/data/servicereference/services/pricingplanmanager.json +1 -1
- package/src/data/servicereference/services/private-networks.json +1 -1
- package/src/data/servicereference/services/profile.json +1 -1
- package/src/data/servicereference/services/proton.json +1 -1
- package/src/data/servicereference/services/purchase-orders.json +1 -1
- package/src/data/servicereference/services/q.json +1 -1
- package/src/data/servicereference/services/qapps.json +1 -1
- package/src/data/servicereference/services/qbusiness.json +1 -1
- package/src/data/servicereference/services/qdeveloper.json +1 -1
- package/src/data/servicereference/services/qldb.json +1 -1
- package/src/data/servicereference/services/quicksight.json +1 -1
- package/src/data/servicereference/services/ram.json +1 -1
- package/src/data/servicereference/services/rbin.json +1 -1
- package/src/data/servicereference/services/rds-data.json +1 -1
- package/src/data/servicereference/services/rds-db.json +1 -1
- package/src/data/servicereference/services/rds.json +1 -1
- package/src/data/servicereference/services/redshift-data.json +1 -1
- package/src/data/servicereference/services/redshift-serverless.json +1 -1
- package/src/data/servicereference/services/redshift.json +1 -1
- package/src/data/servicereference/services/refactor-spaces.json +1 -1
- package/src/data/servicereference/services/rekognition.json +1 -1
- package/src/data/servicereference/services/repostspace.json +1 -1
- package/src/data/servicereference/services/resiliencehub.json +1 -1
- package/src/data/servicereference/services/resource-explorer-2.json +1 -1
- package/src/data/servicereference/services/resource-explorer.json +1 -1
- package/src/data/servicereference/services/resource-groups.json +1 -1
- package/src/data/servicereference/services/rhelkb.json +1 -1
- package/src/data/servicereference/services/robomaker.json +1 -1
- package/src/data/servicereference/services/rolesanywhere.json +1 -1
- package/src/data/servicereference/services/route53-recovery-cluster.json +1 -1
- package/src/data/servicereference/services/route53-recovery-control-config.json +1 -1
- package/src/data/servicereference/services/route53-recovery-readiness.json +1 -1
- package/src/data/servicereference/services/route53.json +1 -1
- package/src/data/servicereference/services/route53domains.json +1 -1
- package/src/data/servicereference/services/route53globalresolver.json +1 -1
- package/src/data/servicereference/services/route53profiles.json +1 -1
- package/src/data/servicereference/services/route53resolver.json +1 -1
- package/src/data/servicereference/services/rtbfabric.json +1 -1
- package/src/data/servicereference/services/rum.json +1 -1
- package/src/data/servicereference/services/s3-object-lambda.json +1 -1
- package/src/data/servicereference/services/s3-outposts.json +1 -1
- package/src/data/servicereference/services/s3.json +1 -1
- package/src/data/servicereference/services/s3express.json +1 -1
- package/src/data/servicereference/services/s3tables.json +1 -1
- package/src/data/servicereference/services/s3vectors.json +1 -1
- package/src/data/servicereference/services/sagemaker-data-science-assistant.json +1 -1
- package/src/data/servicereference/services/sagemaker-geospatial.json +1 -1
- package/src/data/servicereference/services/sagemaker-mlflow.json +1 -1
- package/src/data/servicereference/services/sagemaker-unified-studio-mcp.json +1 -1
- package/src/data/servicereference/services/sagemaker.json +1 -1
- package/src/data/servicereference/services/savingsplans.json +1 -1
- package/src/data/servicereference/services/scheduler.json +1 -1
- package/src/data/servicereference/services/schemas.json +1 -1
- package/src/data/servicereference/services/scn.json +1 -1
- package/src/data/servicereference/services/sdb.json +1 -1
- package/src/data/servicereference/services/secretsmanager.json +1 -1
- package/src/data/servicereference/services/security-ir.json +1 -1
- package/src/data/servicereference/services/securityagent.json +1 -1
- package/src/data/servicereference/services/securityhub.json +1 -1
- package/src/data/servicereference/services/securitylake.json +1 -1
- package/src/data/servicereference/services/serverlessrepo.json +1 -1
- package/src/data/servicereference/services/servicecatalog.json +1 -1
- package/src/data/servicereference/services/servicediscovery.json +1 -1
- package/src/data/servicereference/services/serviceextract.json +1 -1
- package/src/data/servicereference/services/servicequotas.json +1 -1
- package/src/data/servicereference/services/ses.json +1 -1
- package/src/data/servicereference/services/shield.json +1 -1
- package/src/data/servicereference/services/signer.json +1 -1
- package/src/data/servicereference/services/signin.json +1 -1
- package/src/data/servicereference/services/simspaceweaver.json +1 -1
- package/src/data/servicereference/services/sms-voice.json +1 -1
- package/src/data/servicereference/services/sms.json +1 -1
- package/src/data/servicereference/services/snow-device-management.json +1 -1
- package/src/data/servicereference/services/snowball.json +1 -1
- package/src/data/servicereference/services/sns.json +1 -1
- package/src/data/servicereference/services/social-messaging.json +1 -1
- package/src/data/servicereference/services/sqlworkbench.json +1 -1
- package/src/data/servicereference/services/sqs.json +1 -1
- package/src/data/servicereference/services/ssm-contacts.json +1 -1
- package/src/data/servicereference/services/ssm-guiconnect.json +1 -1
- package/src/data/servicereference/services/ssm-incidents.json +1 -1
- package/src/data/servicereference/services/ssm-quicksetup.json +1 -1
- package/src/data/servicereference/services/ssm-sap.json +1 -1
- package/src/data/servicereference/services/ssm.json +1 -1
- package/src/data/servicereference/services/ssmmessages.json +1 -1
- package/src/data/servicereference/services/sso-directory.json +1 -1
- package/src/data/servicereference/services/sso-oauth.json +1 -1
- package/src/data/servicereference/services/sso.json +1 -1
- package/src/data/servicereference/services/states.json +1 -1
- package/src/data/servicereference/services/storagegateway.json +1 -1
- package/src/data/servicereference/services/sts.json +1 -1
- package/src/data/servicereference/services/support-console.json +1 -1
- package/src/data/servicereference/services/support.json +1 -1
- package/src/data/servicereference/services/supportapp.json +1 -1
- package/src/data/servicereference/services/supportplans.json +1 -1
- package/src/data/servicereference/services/sustainability.json +1 -1
- package/src/data/servicereference/services/swf.json +1 -1
- package/src/data/servicereference/services/synthetics.json +1 -1
- package/src/data/servicereference/services/tag.json +1 -1
- package/src/data/servicereference/services/tax.json +1 -1
- package/src/data/servicereference/services/textract.json +1 -1
- package/src/data/servicereference/services/thinclient.json +1 -1
- package/src/data/servicereference/services/timestream-influxdb.json +1 -1
- package/src/data/servicereference/services/timestream.json +1 -1
- package/src/data/servicereference/services/tiros.json +1 -1
- package/src/data/servicereference/services/tnb.json +1 -1
- package/src/data/servicereference/services/transcribe.json +1 -1
- package/src/data/servicereference/services/transfer.json +1 -1
- package/src/data/servicereference/services/transform-custom.json +1 -1
- package/src/data/servicereference/services/transform.json +1 -1
- package/src/data/servicereference/services/translate.json +1 -1
- package/src/data/servicereference/services/trustedadvisor.json +1 -1
- package/src/data/servicereference/services/ts.json +1 -1
- package/src/data/servicereference/services/user-subscriptions.json +1 -1
- package/src/data/servicereference/services/uxc.json +1 -1
- package/src/data/servicereference/services/vendor-insights.json +1 -1
- package/src/data/servicereference/services/verified-access.json +1 -1
- package/src/data/servicereference/services/verifiedpermissions.json +1 -1
- package/src/data/servicereference/services/voiceid.json +1 -1
- package/src/data/servicereference/services/vpc-lattice-svcs.json +1 -1
- package/src/data/servicereference/services/vpc-lattice.json +1 -1
- package/src/data/servicereference/services/vpce.json +1 -1
- package/src/data/servicereference/services/waf-regional.json +1 -1
- package/src/data/servicereference/services/waf.json +1 -1
- package/src/data/servicereference/services/wafv2.json +1 -1
- package/src/data/servicereference/services/wam.json +1 -1
- package/src/data/servicereference/services/wellarchitected.json +1 -1
- package/src/data/servicereference/services/wickr.json +1 -1
- package/src/data/servicereference/services/wisdom.json +1 -1
- package/src/data/servicereference/services/workdocs.json +1 -1
- package/src/data/servicereference/services/worklink.json +1 -1
- package/src/data/servicereference/services/workmail.json +1 -1
- package/src/data/servicereference/services/workmailmessageflow.json +1 -1
- package/src/data/servicereference/services/workspaces-instances.json +1 -1
- package/src/data/servicereference/services/workspaces-web.json +1 -1
- package/src/data/servicereference/services/workspaces.json +1 -1
- package/src/data/servicereference/services/xray.json +1 -1
- package/src/extension.js +1 -6
- package/src/handlers/completion/action-value.d.ts +2 -2
- package/src/handlers/completion/action-value.js +37 -20
- package/src/handlers/completion/condition-block.d.ts +1 -1
- package/src/handlers/completion/condition-block.js +3 -0
- package/src/handlers/completion/condition-key.d.ts +1 -1
- package/src/handlers/completion/condition-key.js +4 -0
- package/src/handlers/completion/condition-operator.d.ts +1 -1
- package/src/handlers/completion/condition-operator.js +3 -0
- package/src/handlers/completion/effect-value.d.ts +2 -2
- package/src/handlers/completion/effect-value.js +4 -1
- package/src/handlers/completion/index.d.ts +15 -2
- package/src/handlers/completion/index.js +21 -3
- package/src/handlers/completion/principal-block-identifier.d.ts +1 -1
- package/src/handlers/completion/principal-block-identifier.js +2 -2
- package/src/handlers/completion/principal-block-type.d.ts +2 -2
- package/src/handlers/completion/principal-block-type.js +4 -1
- package/src/handlers/completion/principal-block.d.ts +1 -1
- package/src/handlers/completion/principal-block.js +3 -0
- package/src/handlers/completion/principal-identifier-completions.d.ts +4 -1
- package/src/handlers/completion/principal-identifier-completions.js +10 -6
- package/src/handlers/completion/principal-type.d.ts +1 -1
- package/src/handlers/completion/principal-type.js +3 -0
- package/src/handlers/completion/principal-typed-value.d.ts +1 -1
- package/src/handlers/completion/principal-typed-value.js +2 -2
- package/src/handlers/completion/principal-value.d.ts +2 -2
- package/src/handlers/completion/principal-value.js +4 -1
- package/src/handlers/completion/resource-value.d.ts +1 -1
- package/src/handlers/completion/resource-value.js +8 -1
- package/src/handlers/completion/statement-block.d.ts +1 -1
- package/src/handlers/completion/statement-block.js +3 -0
- package/src/handlers/completion/statement-key.d.ts +1 -1
- package/src/handlers/completion/statement-key.js +3 -0
- package/src/handlers/diagnostics/action.d.ts +6 -0
- package/src/handlers/diagnostics/action.js +14 -0
- package/src/handlers/diagnostics/base.d.ts +9 -0
- package/src/handlers/diagnostics/base.js +21 -0
- package/src/handlers/diagnostics/condition.d.ts +6 -0
- package/src/handlers/diagnostics/condition.js +7 -0
- package/src/handlers/diagnostics/diagnostics.d.ts +4 -0
- package/src/handlers/diagnostics/diagnostics.js +121 -0
- package/src/handlers/diagnostics/effect.d.ts +6 -0
- package/src/handlers/diagnostics/effect.js +12 -0
- package/src/handlers/diagnostics/principal.d.ts +6 -0
- package/src/handlers/diagnostics/principal.js +7 -0
- package/src/handlers/diagnostics/resource.d.ts +6 -0
- package/src/handlers/diagnostics/resource.js +7 -0
- package/src/handlers/diagnostics/sid.d.ts +8 -0
- package/src/handlers/diagnostics/sid.js +21 -0
- package/src/handlers/diagnostics/utils.d.ts +3 -0
- package/src/handlers/diagnostics/utils.js +19 -0
- package/src/handlers/document-link/document-link.d.ts +2 -2
- package/src/handlers/document-link/document-link.js +38 -27
- package/src/lib/iam-policy/reference/services.d.ts +2 -2
- package/src/lib/iam-policy/reference/services.js +9 -3
- package/src/lib/iam-policy/reference/types.d.ts +2 -0
- package/src/lib/treesitter/base.d.ts +28 -2
- package/src/lib/treesitter/base.js +9 -0
- package/src/lib/treesitter/hcl.d.ts +2 -1
- package/src/lib/treesitter/hcl.js +262 -1
- package/src/lib/treesitter/json.d.ts +2 -1
- package/src/lib/treesitter/json.js +126 -1
- package/src/lib/treesitter/manager.d.ts +2 -0
- package/src/lib/treesitter/manager.js +7 -0
- package/src/lib/treesitter/yaml.d.ts +2 -1
- package/src/lib/treesitter/yaml.js +150 -1
- package/src/server.js +16 -7
|
@@ -1 +1 @@
|
|
|
1
|
-
{"name":"ssmmessages","actions":{"CreateControlChannel":{"conditionKeys":["ec2:SourceInstanceARN","ssm:SourceInstanceARN"],"resources":[],"description":"Grants permission to register a control channel for an instance to send control messages to Systems Manager service","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/systems-manager/latest/userguide/getting-started-create-iam-instance-profile.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonmessagegatewayservice.html#amazonmessagegatewayservice-CreateControlChannel"},"CreateDataChannel":{"conditionKeys":[],"resources":[],"description":"Grants permission to register a data channel for an instance to send data messages to Systems Manager service","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/systems-manager/latest/userguide/getting-started-create-iam-instance-profile.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonmessagegatewayservice.html#amazonmessagegatewayservice-CreateDataChannel"},"OpenControlChannel":{"conditionKeys":[],"resources":[],"description":"Grants permission to open a websocket connection for a registered control channel stream from an instance to Systems Manager service","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/systems-manager/latest/userguide/getting-started-create-iam-instance-profile.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonmessagegatewayservice.html#amazonmessagegatewayservice-OpenControlChannel"},"OpenDataChannel":{"conditionKeys":[],"resources":[],"description":"Grants permission to open a websocket connection for a registered data channel stream from an instance to Systems Manager service","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/systems-manager/latest/userguide/getting-started-create-iam-instance-profile.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonmessagegatewayservice.html#amazonmessagegatewayservice-OpenDataChannel"}},"resources":[],"conditionKeys":{"ec2:SourceInstanceARN":{"types":["ARN"],"description":"Filters access by the ARN of the instance from which the request originated"},"ssm:SourceInstanceARN":{"types":["ARN"],"description":"Filters access by verifying the Amazon Resource Name (ARN) of the AWS Systems Manager's managed instance from which the request is made. This key is not present when the request comes from the managed instance authenticated with an IAM role associated with EC2 instance profile"}},"url":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonmessagegatewayservice.html"}
|
|
1
|
+
{"name":"ssmmessages","actions":{"CreateControlChannel":{"name":"CreateControlChannel","service":"ssmmessages","conditionKeys":["ec2:SourceInstanceARN","ssm:SourceInstanceARN"],"resources":[],"description":"Grants permission to register a control channel for an instance to send control messages to Systems Manager service","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/systems-manager/latest/userguide/getting-started-create-iam-instance-profile.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonmessagegatewayservice.html#amazonmessagegatewayservice-CreateControlChannel"},"CreateDataChannel":{"name":"CreateDataChannel","service":"ssmmessages","conditionKeys":[],"resources":[],"description":"Grants permission to register a data channel for an instance to send data messages to Systems Manager service","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/systems-manager/latest/userguide/getting-started-create-iam-instance-profile.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonmessagegatewayservice.html#amazonmessagegatewayservice-CreateDataChannel"},"OpenControlChannel":{"name":"OpenControlChannel","service":"ssmmessages","conditionKeys":[],"resources":[],"description":"Grants permission to open a websocket connection for a registered control channel stream from an instance to Systems Manager service","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/systems-manager/latest/userguide/getting-started-create-iam-instance-profile.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonmessagegatewayservice.html#amazonmessagegatewayservice-OpenControlChannel"},"OpenDataChannel":{"name":"OpenDataChannel","service":"ssmmessages","conditionKeys":[],"resources":[],"description":"Grants permission to open a websocket connection for a registered data channel stream from an instance to Systems Manager service","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/systems-manager/latest/userguide/getting-started-create-iam-instance-profile.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonmessagegatewayservice.html#amazonmessagegatewayservice-OpenDataChannel"}},"resources":[],"conditionKeys":{"ec2:SourceInstanceARN":{"types":["ARN"],"description":"Filters access by the ARN of the instance from which the request originated"},"ssm:SourceInstanceARN":{"types":["ARN"],"description":"Filters access by verifying the Amazon Resource Name (ARN) of the AWS Systems Manager's managed instance from which the request is made. This key is not present when the request comes from the managed instance authenticated with an IAM role associated with EC2 instance profile"}},"url":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonmessagegatewayservice.html"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"name":"sso-directory","actions":{"AddMemberToGroup":{"conditionKeys":[],"resources":[],"description":"Grants permission to add a member to a group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_CreateGroupMembership.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-AddMemberToGroup"},"CompleteVirtualMfaDeviceRegistration":{"conditionKeys":[],"resources":[],"description":"Grants permission to complete the creation process of a virtual MFA device","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CompleteVirtualMfaDeviceRegistration"},"CompleteWebAuthnDeviceRegistration":{"conditionKeys":[],"resources":[],"description":"Grants permission to complete the registration process of a WebAuthn device","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CompleteWebAuthnDeviceRegistration"},"CreateAlias":{"conditionKeys":[],"resources":[],"description":"Grants permission to create an alias for the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateAlias"},"CreateBearerToken":{"conditionKeys":[],"resources":[],"description":"Grants permission to create a bearer token for a given provisioning tenant","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateBearerToken"},"CreateExternalIdPConfigurationForDirectory":{"conditionKeys":[],"resources":[],"description":"Grants permission to create an External Identity Provider configuration for the directory","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateExternalIdPConfigurationForDirectory"},"CreateGroup":{"conditionKeys":[],"resources":[],"description":"Grants permission to create a group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_CreateGroup.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateGroup"},"CreateProvisioningTenant":{"conditionKeys":[],"resources":[],"description":"Grants permission to create a provisioning tenant for a given directory","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateProvisioningTenant"},"CreateUser":{"conditionKeys":[],"resources":[],"description":"Grants permission to create a user in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_CreateUser.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateUser"},"DeleteBearerToken":{"conditionKeys":[],"resources":[],"description":"Grants permission to delete a bearer token","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteBearerToken"},"DeleteExternalIdPCertificate":{"conditionKeys":[],"resources":[],"description":"Grants permission to delete the given external IdP certificate","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteExternalIdPCertificate"},"DeleteExternalIdPConfigurationForDirectory":{"conditionKeys":[],"resources":[],"description":"Grants permission to delete an External Identity Provider configuration associated with the directory","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteExternalIdPConfigurationForDirectory"},"DeleteGroup":{"conditionKeys":[],"resources":[],"description":"Grants permission to delete a group from the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DeleteGroup.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteGroup"},"DeleteMfaDeviceForUser":{"conditionKeys":[],"resources":[],"description":"Grants permission to delete a MFA device by device name for a given user","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteMfaDeviceForUser"},"DeleteProvisioningTenant":{"conditionKeys":[],"resources":[],"description":"Grants permission to delete the provisioning tenant","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteProvisioningTenant"},"DeleteUser":{"conditionKeys":[],"resources":[],"description":"Grants permission to delete a user from the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DeleteUser.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteUser"},"DescribeDirectory":{"conditionKeys":[],"resources":[],"description":"Grants permission to retrieve information about the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeDirectory"},"DescribeGroup":{"conditionKeys":[],"resources":[],"description":"Grants permission to query the group data, not including user and group members","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DescribeGroup.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeGroup"},"DescribeGroups":{"conditionKeys":[],"resources":[],"description":"Grants permission to retrieve information about groups from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DescribeGroup.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeGroups"},"DescribeProvisioningTenant":{"conditionKeys":[],"resources":[],"description":"Grants permission to describes the provisioning tenant","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeProvisioningTenant"},"DescribeUser":{"conditionKeys":[],"resources":[],"description":"Grants permission to retrieve information about a user from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DescribeUser.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeUser"},"DescribeUserByUniqueAttribute":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe user with a valid unique attribute represented for the user","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeUserByUniqueAttribute"},"DescribeUsers":{"conditionKeys":[],"resources":[],"description":"Grants permission to retrieve information about user from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DescribeUser.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeUsers"},"DisableExternalIdPConfigurationForDirectory":{"conditionKeys":[],"resources":[],"description":"Grants permission to disable authentication of end users with an External Identity Provider","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DisableExternalIdPConfigurationForDirectory"},"DisableUser":{"conditionKeys":[],"resources":[],"description":"Grants permission to deactivate a user in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DisableUser"},"EnableExternalIdPConfigurationForDirectory":{"conditionKeys":[],"resources":[],"description":"Grants permission to enable authentication of end users with an External Identity Provider","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-EnableExternalIdPConfigurationForDirectory"},"EnableUser":{"conditionKeys":[],"resources":[],"description":"Grants permission to activate user in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-EnableUser"},"GetAWSSPConfigurationForDirectory":{"conditionKeys":[],"resources":[],"description":"Grants permission to retrieve the AWS IAM Identity Center Service Provider configurations for the directory","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-GetAWSSPConfigurationForDirectory"},"GetGroupId":{"conditionKeys":[],"resources":[],"description":"Grants permission to retrieve ID information about group from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_GetGroupId.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-GetGroupId"},"GetUserId":{"conditionKeys":[],"resources":[],"description":"Grants permission to retrieve ID information about user from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_GetUserId.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-GetUserId"},"GetUserPoolInfo":{"conditionKeys":[],"resources":[],"description":"(Deprecated) Grants permission to get UserPool Info","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-GetUserPoolInfo"},"ImportExternalIdPCertificate":{"conditionKeys":[],"resources":[],"description":"Grants permission to import the IdP certificate used for verifying external IdP responses","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ImportExternalIdPCertificate"},"IsMemberInGroup":{"conditionKeys":[],"resources":[],"description":"Grants permission to check if a member is a part of the group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_IsMemberInGroups.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-IsMemberInGroup"},"IsMemberInGroups":{"conditionKeys":[],"resources":[],"description":"Grants permission to check if a member is a part of multiple groups in the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_IsMemberInGroups.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-IsMemberInGroups"},"ListBearerTokens":{"conditionKeys":[],"resources":[],"description":"Grants permission to list bearer tokens for a given provisioning tenant","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListBearerTokens"},"ListExternalIdPCertificates":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the external IdP certificates of a given directory and IdP","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListExternalIdPCertificates"},"ListExternalIdPConfigurationsForDirectory":{"conditionKeys":[],"resources":[],"description":"Grants permission to list all the External Identity Provider configurations created for the directory","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListExternalIdPConfigurationsForDirectory"},"ListGroups":{"conditionKeys":[],"resources":[],"description":"Grants permission to list groups from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_ListGroups.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListGroups"},"ListGroupsForMember":{"conditionKeys":[],"resources":[],"description":"Grants permission to list groups of the target member","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_ListGroupMembershipsForMember.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListGroupsForMember"},"ListGroupsForUser":{"conditionKeys":[],"resources":[],"description":"Grants permission to list groups for a user from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_ListGroupMembershipsForMember.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListGroupsForUser"},"ListMembersInGroup":{"conditionKeys":[],"resources":[],"description":"Grants permission to retrieve all members that are part of a group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_ListGroupMemberships.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListMembersInGroup"},"ListMfaDevicesForUser":{"conditionKeys":[],"resources":[],"description":"Grants permission to list all active MFA devices and their MFA device metadata for a user","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListMfaDevicesForUser"},"ListProvisioningTenants":{"conditionKeys":[],"resources":[],"description":"Grants permission to list provisioning tenants for a given directory","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListProvisioningTenants"},"ListUsers":{"conditionKeys":[],"resources":[],"description":"Grants permission to list users from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_ListUsers.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListUsers"},"RemoveMemberFromGroup":{"conditionKeys":[],"resources":[],"description":"Grants permission to remove a member that is part of a group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DeleteGroupMembership.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-RemoveMemberFromGroup"},"SearchGroups":{"conditionKeys":[],"resources":[],"description":"Grants permission to search for groups within the associated directory","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-SearchGroups"},"SearchUsers":{"conditionKeys":[],"resources":[],"description":"Grants permission to search for users within the associated directory","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-SearchUsers"},"StartVirtualMfaDeviceRegistration":{"conditionKeys":[],"resources":[],"description":"Grants permission to begin the creation process of virtual mfa device","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-StartVirtualMfaDeviceRegistration"},"StartWebAuthnDeviceRegistration":{"conditionKeys":[],"resources":[],"description":"Grants permission to begin the registration process of a WebAuthn device","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-StartWebAuthnDeviceRegistration"},"UpdateExternalIdPConfigurationForDirectory":{"conditionKeys":[],"resources":[],"description":"Grants permission to update an External Identity Provider configuration associated with the directory","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateExternalIdPConfigurationForDirectory"},"UpdateGroup":{"conditionKeys":[],"resources":[],"description":"Grants permission to update information about a group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_UpdateGroup.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateGroup"},"UpdateGroupDisplayName":{"conditionKeys":[],"resources":[],"description":"Grants permission to update group display name update group display name response","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateGroupDisplayName"},"UpdateMfaDeviceForUser":{"conditionKeys":[],"resources":[],"description":"Grants permission to update MFA device information","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateMfaDeviceForUser"},"UpdatePassword":{"conditionKeys":[],"resources":[],"description":"Grants permission to update a password by sending password reset link via email or generating one time password for a user in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdatePassword"},"UpdateUser":{"conditionKeys":[],"resources":[],"description":"Grants permission to update user information in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_UpdateUser.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateUser"},"UpdateUserName":{"conditionKeys":[],"resources":[],"description":"Grants permission to update user name update user name response","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateUserName"},"VerifyEmail":{"conditionKeys":[],"resources":[],"description":"Grants permission to verify an email address of an User","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-VerifyEmail"}},"resources":[],"conditionKeys":{},"url":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html"}
|
|
1
|
+
{"name":"sso-directory","actions":{"AddMemberToGroup":{"name":"AddMemberToGroup","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to add a member to a group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_CreateGroupMembership.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-AddMemberToGroup"},"CompleteVirtualMfaDeviceRegistration":{"name":"CompleteVirtualMfaDeviceRegistration","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to complete the creation process of a virtual MFA device","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CompleteVirtualMfaDeviceRegistration"},"CompleteWebAuthnDeviceRegistration":{"name":"CompleteWebAuthnDeviceRegistration","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to complete the registration process of a WebAuthn device","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CompleteWebAuthnDeviceRegistration"},"CreateAlias":{"name":"CreateAlias","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to create an alias for the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateAlias"},"CreateBearerToken":{"name":"CreateBearerToken","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to create a bearer token for a given provisioning tenant","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateBearerToken"},"CreateExternalIdPConfigurationForDirectory":{"name":"CreateExternalIdPConfigurationForDirectory","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to create an External Identity Provider configuration for the directory","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateExternalIdPConfigurationForDirectory"},"CreateGroup":{"name":"CreateGroup","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to create a group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_CreateGroup.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateGroup"},"CreateProvisioningTenant":{"name":"CreateProvisioningTenant","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to create a provisioning tenant for a given directory","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateProvisioningTenant"},"CreateUser":{"name":"CreateUser","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to create a user in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_CreateUser.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-CreateUser"},"DeleteBearerToken":{"name":"DeleteBearerToken","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to delete a bearer token","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteBearerToken"},"DeleteExternalIdPCertificate":{"name":"DeleteExternalIdPCertificate","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to delete the given external IdP certificate","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteExternalIdPCertificate"},"DeleteExternalIdPConfigurationForDirectory":{"name":"DeleteExternalIdPConfigurationForDirectory","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to delete an External Identity Provider configuration associated with the directory","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteExternalIdPConfigurationForDirectory"},"DeleteGroup":{"name":"DeleteGroup","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to delete a group from the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DeleteGroup.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteGroup"},"DeleteMfaDeviceForUser":{"name":"DeleteMfaDeviceForUser","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to delete a MFA device by device name for a given user","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteMfaDeviceForUser"},"DeleteProvisioningTenant":{"name":"DeleteProvisioningTenant","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to delete the provisioning tenant","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteProvisioningTenant"},"DeleteUser":{"name":"DeleteUser","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to delete a user from the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DeleteUser.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DeleteUser"},"DescribeDirectory":{"name":"DescribeDirectory","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to retrieve information about the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeDirectory"},"DescribeGroup":{"name":"DescribeGroup","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to query the group data, not including user and group members","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DescribeGroup.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeGroup"},"DescribeGroups":{"name":"DescribeGroups","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to retrieve information about groups from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DescribeGroup.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeGroups"},"DescribeProvisioningTenant":{"name":"DescribeProvisioningTenant","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to describes the provisioning tenant","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeProvisioningTenant"},"DescribeUser":{"name":"DescribeUser","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to retrieve information about a user from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DescribeUser.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeUser"},"DescribeUserByUniqueAttribute":{"name":"DescribeUserByUniqueAttribute","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to describe user with a valid unique attribute represented for the user","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeUserByUniqueAttribute"},"DescribeUsers":{"name":"DescribeUsers","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to retrieve information about user from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DescribeUser.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DescribeUsers"},"DisableExternalIdPConfigurationForDirectory":{"name":"DisableExternalIdPConfigurationForDirectory","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to disable authentication of end users with an External Identity Provider","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DisableExternalIdPConfigurationForDirectory"},"DisableUser":{"name":"DisableUser","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to deactivate a user in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-DisableUser"},"EnableExternalIdPConfigurationForDirectory":{"name":"EnableExternalIdPConfigurationForDirectory","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to enable authentication of end users with an External Identity Provider","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-EnableExternalIdPConfigurationForDirectory"},"EnableUser":{"name":"EnableUser","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to activate user in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-EnableUser"},"GetAWSSPConfigurationForDirectory":{"name":"GetAWSSPConfigurationForDirectory","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to retrieve the AWS IAM Identity Center Service Provider configurations for the directory","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-GetAWSSPConfigurationForDirectory"},"GetGroupId":{"name":"GetGroupId","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to retrieve ID information about group from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_GetGroupId.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-GetGroupId"},"GetUserId":{"name":"GetUserId","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to retrieve ID information about user from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_GetUserId.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-GetUserId"},"GetUserPoolInfo":{"name":"GetUserPoolInfo","service":"sso-directory","conditionKeys":[],"resources":[],"description":"(Deprecated) Grants permission to get UserPool Info","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-GetUserPoolInfo"},"ImportExternalIdPCertificate":{"name":"ImportExternalIdPCertificate","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to import the IdP certificate used for verifying external IdP responses","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ImportExternalIdPCertificate"},"IsMemberInGroup":{"name":"IsMemberInGroup","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to check if a member is a part of the group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_IsMemberInGroups.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-IsMemberInGroup"},"IsMemberInGroups":{"name":"IsMemberInGroups","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to check if a member is a part of multiple groups in the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_IsMemberInGroups.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-IsMemberInGroups"},"ListBearerTokens":{"name":"ListBearerTokens","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to list bearer tokens for a given provisioning tenant","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListBearerTokens"},"ListExternalIdPCertificates":{"name":"ListExternalIdPCertificates","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to list the external IdP certificates of a given directory and IdP","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListExternalIdPCertificates"},"ListExternalIdPConfigurationsForDirectory":{"name":"ListExternalIdPConfigurationsForDirectory","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to list all the External Identity Provider configurations created for the directory","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListExternalIdPConfigurationsForDirectory"},"ListGroups":{"name":"ListGroups","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to list groups from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_ListGroups.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListGroups"},"ListGroupsForMember":{"name":"ListGroupsForMember","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to list groups of the target member","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_ListGroupMembershipsForMember.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListGroupsForMember"},"ListGroupsForUser":{"name":"ListGroupsForUser","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to list groups for a user from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_ListGroupMembershipsForMember.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListGroupsForUser"},"ListMembersInGroup":{"name":"ListMembersInGroup","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to retrieve all members that are part of a group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_ListGroupMemberships.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListMembersInGroup"},"ListMfaDevicesForUser":{"name":"ListMfaDevicesForUser","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to list all active MFA devices and their MFA device metadata for a user","accessLevel":"Read","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListMfaDevicesForUser"},"ListProvisioningTenants":{"name":"ListProvisioningTenants","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to list provisioning tenants for a given directory","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListProvisioningTenants"},"ListUsers":{"name":"ListUsers","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to list users from the directory that AWS IAM Identity Center provides by default","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_ListUsers.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-ListUsers"},"RemoveMemberFromGroup":{"name":"RemoveMemberFromGroup","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to remove a member that is part of a group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_DeleteGroupMembership.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-RemoveMemberFromGroup"},"SearchGroups":{"name":"SearchGroups","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to search for groups within the associated directory","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-SearchGroups"},"SearchUsers":{"name":"SearchUsers","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to search for users within the associated directory","accessLevel":"Read","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-SearchUsers"},"StartVirtualMfaDeviceRegistration":{"name":"StartVirtualMfaDeviceRegistration","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to begin the creation process of virtual mfa device","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-StartVirtualMfaDeviceRegistration"},"StartWebAuthnDeviceRegistration":{"name":"StartWebAuthnDeviceRegistration","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to begin the registration process of a WebAuthn device","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-StartWebAuthnDeviceRegistration"},"UpdateExternalIdPConfigurationForDirectory":{"name":"UpdateExternalIdPConfigurationForDirectory","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to update an External Identity Provider configuration associated with the directory","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateExternalIdPConfigurationForDirectory"},"UpdateGroup":{"name":"UpdateGroup","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to update information about a group in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_UpdateGroup.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateGroup"},"UpdateGroupDisplayName":{"name":"UpdateGroupDisplayName","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to update group display name update group display name response","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateGroupDisplayName"},"UpdateMfaDeviceForUser":{"name":"UpdateMfaDeviceForUser","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to update MFA device information","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateMfaDeviceForUser"},"UpdatePassword":{"name":"UpdatePassword","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to update a password by sending password reset link via email or generating one time password for a user in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdatePassword"},"UpdateUser":{"name":"UpdateUser","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to update user information in the directory that AWS IAM Identity Center provides by default","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/API_UpdateUser.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateUser"},"UpdateUserName":{"name":"UpdateUserName","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to update user name update user name response","accessLevel":"Write","resourceTypes":[],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-UpdateUserName"},"VerifyEmail":{"name":"VerifyEmail","service":"sso-directory","conditionKeys":[],"resources":[],"description":"Grants permission to verify an email address of an User","accessLevel":"Write","resourceTypes":[],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-id-policies.html#policyexample","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html#awsiamidentitycenterdirectory-VerifyEmail"}},"resources":[],"conditionKeys":{},"url":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenterdirectory.html"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"name":"sso-oauth","actions":{"CreateTokenWithIAM":{"conditionKeys":[],"resources":[{"name":"Application"}],"description":"Grants permission to create and return OAuth 2.0 access tokens and refresh tokens for authorized client applications. These tokens might contain defined scopes that specify permissions such as `read:profile` or `write:data`","accessLevel":"Write","resourceTypes":[{"name":"Application","required":true}],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/API_CreateTokenWithIAM.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenteroidcservice.html#awsiamidentitycenteroidcservice-CreateTokenWithIAM"},"IntrospectTokenWithIAM":{"conditionKeys":[],"resources":[{"name":"Application"}],"description":"Grants permission to validate and retrieve information about active OAuth 2.0 access tokens and refresh tokens, including their associated scopes and permissions. This permission is used only by AWS managed applications and is not documented in the IAM Identity Center OIDC API Reference","accessLevel":"Write","resourceTypes":[{"name":"Application","required":true}],"dependentActions":["kms:Decrypt"],"permissionOnly":true,"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-resource-based-policies.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenteroidcservice.html#awsiamidentitycenteroidcservice-IntrospectTokenWithIAM"},"RevokeTokenWithIAM":{"conditionKeys":[],"resources":[{"name":"Application"}],"description":"Grants permission to revoke OAuth 2.0 access tokens and refresh tokens, invalidating them before their normal expiration. This permission is used only by AWS managed applications and is not documented in the IAM Identity Center OIDC API Reference","accessLevel":"Write","resourceTypes":[{"name":"Application","required":true}],"dependentActions":["kms:Decrypt"],"permissionOnly":true,"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-resource-based-policies.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenteroidcservice.html#awsiamidentitycenteroidcservice-RevokeTokenWithIAM"}},"resources":[{"name":"Application","arnFormats":["arn:${Partition}:sso::${AccountId}:application/${InstanceId}/${ApplicationId}"],"conditionKeys":[]}],"conditionKeys":{},"url":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenteroidcservice.html"}
|
|
1
|
+
{"name":"sso-oauth","actions":{"CreateTokenWithIAM":{"name":"CreateTokenWithIAM","service":"sso-oauth","conditionKeys":[],"resources":[{"name":"Application"}],"description":"Grants permission to create and return OAuth 2.0 access tokens and refresh tokens for authorized client applications. These tokens might contain defined scopes that specify permissions such as `read:profile` or `write:data`","accessLevel":"Write","resourceTypes":[{"name":"Application","required":true}],"dependentActions":["kms:Decrypt"],"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/API_CreateTokenWithIAM.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenteroidcservice.html#awsiamidentitycenteroidcservice-CreateTokenWithIAM"},"IntrospectTokenWithIAM":{"name":"IntrospectTokenWithIAM","service":"sso-oauth","conditionKeys":[],"resources":[{"name":"Application"}],"description":"Grants permission to validate and retrieve information about active OAuth 2.0 access tokens and refresh tokens, including their associated scopes and permissions. This permission is used only by AWS managed applications and is not documented in the IAM Identity Center OIDC API Reference","accessLevel":"Write","resourceTypes":[{"name":"Application","required":true}],"dependentActions":["kms:Decrypt"],"permissionOnly":true,"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-resource-based-policies.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenteroidcservice.html#awsiamidentitycenteroidcservice-IntrospectTokenWithIAM"},"RevokeTokenWithIAM":{"name":"RevokeTokenWithIAM","service":"sso-oauth","conditionKeys":[],"resources":[{"name":"Application"}],"description":"Grants permission to revoke OAuth 2.0 access tokens and refresh tokens, invalidating them before their normal expiration. This permission is used only by AWS managed applications and is not documented in the IAM Identity Center OIDC API Reference","accessLevel":"Write","resourceTypes":[{"name":"Application","required":true}],"dependentActions":["kms:Decrypt"],"permissionOnly":true,"operationUrl":"https://docs.aws.amazon.com/singlesignon/latest/userguide/iam-auth-access-using-resource-based-policies.html","iamUrl":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenteroidcservice.html#awsiamidentitycenteroidcservice-RevokeTokenWithIAM"}},"resources":[{"name":"Application","arnFormats":["arn:${Partition}:sso::${AccountId}:application/${InstanceId}/${ApplicationId}"],"conditionKeys":[]}],"conditionKeys":{},"url":"https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiamidentitycenteroidcservice.html"}
|