aws-iam-ls 0.0.0

package/src/data/servicereference/services/devicefarm.json

@@ -0,0 +1 @@
+{"name":"devicefarm","actions":{"CreateDevicePool":{"conditionKeys":[],"resources":[{"name":"project"}],"description":"Grants permission to create a device pool within a project","accessLevel":"Write","resourceTypes":[{"name":"project","required":true}]},"CreateInstanceProfile":{"conditionKeys":[],"resources":[],"description":"Grants permission to create a device instance profile","accessLevel":"Write","resourceTypes":[]},"CreateNetworkProfile":{"conditionKeys":[],"resources":[{"name":"project"}],"description":"Grants permission to create a network profile within a project","accessLevel":"Write","resourceTypes":[{"name":"project","required":true}]},"CreateProject":{"conditionKeys":[],"resources":[],"description":"Grants permission to create a project for mobile testing","accessLevel":"Write","resourceTypes":[],"dependentActions":["ec2:CreateNetworkInterface","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcs","iam:CreateServiceLinkedRole"]},"CreateRemoteAccessSession":{"conditionKeys":[],"resources":[{"name":"device"},{"name":"deviceinstance"},{"name":"project"},{"name":"upload"}],"description":"Grants permission to start a remote access session to a device instance","accessLevel":"Write","resourceTypes":[{"name":"device","required":true},{"name":"project","required":true},{"name":"deviceinstance","required":false},{"name":"upload","required":false}]},"CreateTestGridProject":{"conditionKeys":[],"resources":[],"description":"Grants permission to create a project for desktop testing","accessLevel":"Write","resourceTypes":[],"dependentActions":["ec2:CreateNetworkInterface","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcs","iam:CreateServiceLinkedRole"]},"CreateTestGridUrl":{"conditionKeys":[],"resources":[{"name":"testgrid-project"}],"description":"Grants permission to generate a new pre-signed url used to access our test grid service","accessLevel":"Write","resourceTypes":[{"name":"testgrid-project","required":true}]},"CreateUpload":{"conditionKeys":[],"resources":[{"name":"project"}],"description":"Grants permission to upload a new file or app within a project","accessLevel":"Write","resourceTypes":[{"name":"project","required":true}]},"CreateVPCEConfiguration":{"conditionKeys":[],"resources":[],"description":"Grants permission to create an Amazon Virtual Private Cloud (VPC) endpoint configuration","accessLevel":"Write","resourceTypes":[]},"DeleteDevicePool":{"conditionKeys":[],"resources":[{"name":"devicepool"}],"description":"Grants permission to delete a user-generated device pool","accessLevel":"Write","resourceTypes":[{"name":"devicepool","required":true}]},"DeleteInstanceProfile":{"conditionKeys":[],"resources":[{"name":"instanceprofile"}],"description":"Grants permission to delete a user-generated instance profile","accessLevel":"Write","resourceTypes":[{"name":"instanceprofile","required":true}]},"DeleteNetworkProfile":{"conditionKeys":[],"resources":[{"name":"networkprofile"}],"description":"Grants permission to delete a user-generated network profile","accessLevel":"Write","resourceTypes":[{"name":"networkprofile","required":true}]},"DeleteProject":{"conditionKeys":[],"resources":[{"name":"project"}],"description":"Grants permission to delete a mobile testing project","accessLevel":"Write","resourceTypes":[{"name":"project","required":true}]},"DeleteRemoteAccessSession":{"conditionKeys":[],"resources":[{"name":"session"}],"description":"Grants permission to delete a completed remote access session and its results","accessLevel":"Write","resourceTypes":[{"name":"session","required":true}]},"DeleteRun":{"conditionKeys":[],"resources":[{"name":"run"}],"description":"Grants permission to delete a run","accessLevel":"Write","resourceTypes":[{"name":"run","required":true}]},"DeleteTestGridProject":{"conditionKeys":[],"resources":[{"name":"testgrid-project"}],"description":"Grants permission to delete a desktop testing project","accessLevel":"Write","resourceTypes":[{"name":"testgrid-project","required":true}]},"DeleteUpload":{"conditionKeys":[],"resources":[{"name":"upload"}],"description":"Grants permission to delete a user-uploaded file","accessLevel":"Write","resourceTypes":[{"name":"upload","required":true}]},"DeleteVPCEConfiguration":{"conditionKeys":[],"resources":[{"name":"vpceconfiguration"}],"description":"Grants permission to delete an Amazon Virtual Private Cloud (VPC) endpoint configuration","accessLevel":"Write","resourceTypes":[{"name":"vpceconfiguration","required":true}]},"GetAccountSettings":{"conditionKeys":[],"resources":[],"description":"Grants permission to retrieve the number of unmetered iOS and/or unmetered Android devices purchased by the account","accessLevel":"Read","resourceTypes":[]},"GetDevice":{"conditionKeys":[],"resources":[{"name":"device"}],"description":"Grants permission to retrieve the information of a unique device type","accessLevel":"Read","resourceTypes":[{"name":"device","required":true}]},"GetDeviceInstance":{"conditionKeys":[],"resources":[{"name":"deviceinstance"}],"description":"Grants permission to retireve the information of a device instance","accessLevel":"Read","resourceTypes":[{"name":"deviceinstance","required":true}]},"GetDevicePool":{"conditionKeys":[],"resources":[{"name":"devicepool"}],"description":"Grants permission to retireve the information of a device pool","accessLevel":"Read","resourceTypes":[{"name":"devicepool","required":true}]},"GetDevicePoolCompatibility":{"conditionKeys":[],"resources":[{"name":"devicepool"},{"name":"upload"}],"description":"Grants permission to retrieve information about the compatibility of a test and/or app with a device pool","accessLevel":"Read","resourceTypes":[{"name":"devicepool","required":true},{"name":"upload","required":false}]},"GetInstanceProfile":{"conditionKeys":[],"resources":[{"name":"instanceprofile"}],"description":"Grants permission to retireve the information of an instance profile","accessLevel":"Read","resourceTypes":[{"name":"instanceprofile","required":true}]},"GetJob":{"conditionKeys":[],"resources":[{"name":"job"}],"description":"Grants permission to retireve the information of a job","accessLevel":"Read","resourceTypes":[{"name":"job","required":true}]},"GetNetworkProfile":{"conditionKeys":[],"resources":[{"name":"networkprofile"}],"description":"Grants permission to retireve the information of a network profile","accessLevel":"Read","resourceTypes":[{"name":"networkprofile","required":true}]},"GetOfferingStatus":{"conditionKeys":[],"resources":[],"description":"Grants permission to retrieve the current status and future status of all offerings purchased by an AWS account","accessLevel":"Read","resourceTypes":[]},"GetProject":{"conditionKeys":[],"resources":[{"name":"project"}],"description":"Grants permission to retrieve information about a mobile testing project","accessLevel":"Read","resourceTypes":[{"name":"project","required":true}]},"GetRemoteAccessSession":{"conditionKeys":[],"resources":[{"name":"session"}],"description":"Grants permission to retireve the link to a currently running remote access session","accessLevel":"Read","resourceTypes":[{"name":"session","required":true}]},"GetRun":{"conditionKeys":[],"resources":[{"name":"run"}],"description":"Grants permission to retireve the information of a run","accessLevel":"Read","resourceTypes":[{"name":"run","required":true}]},"GetSuite":{"conditionKeys":[],"resources":[{"name":"suite"}],"description":"Grants permission to retireve the information of a testing suite","accessLevel":"Read","resourceTypes":[{"name":"suite","required":true}]},"GetTest":{"conditionKeys":[],"resources":[{"name":"test"}],"description":"Grants permission to retireve the information of a test case","accessLevel":"Read","resourceTypes":[{"name":"test","required":true}]},"GetTestGridProject":{"conditionKeys":[],"resources":[{"name":"testgrid-project"}],"description":"Grants permission to retrieve information about a desktop testing project","accessLevel":"Read","resourceTypes":[{"name":"testgrid-project","required":true}]},"GetTestGridSession":{"conditionKeys":[],"resources":[{"name":"testgrid-project"},{"name":"testgrid-session"}],"description":"Grants permission to retireve the information of a test grid session","accessLevel":"Read","resourceTypes":[{"name":"testgrid-project","required":false},{"name":"testgrid-session","required":false}]},"GetUpload":{"conditionKeys":[],"resources":[{"name":"upload"}],"description":"Grants permission to retireve the information of an uploaded file","accessLevel":"Read","resourceTypes":[{"name":"upload","required":true}]},"GetVPCEConfiguration":{"conditionKeys":[],"resources":[{"name":"vpceconfiguration"}],"description":"Grants permission to retireve the information of an Amazon Virtual Private Cloud (VPC) endpoint configuration","accessLevel":"Read","resourceTypes":[{"name":"vpceconfiguration","required":true}]},"InstallToRemoteAccessSession":{"conditionKeys":[],"resources":[{"name":"session"},{"name":"upload"}],"description":"Grants permission to install an application to a device in a remote access session","accessLevel":"Write","resourceTypes":[{"name":"session","required":true},{"name":"upload","required":true}]},"ListArtifacts":{"conditionKeys":[],"resources":[{"name":"job"},{"name":"run"},{"name":"suite"},{"name":"test"}],"description":"Grants permission to list the artifacts in a project","accessLevel":"List","resourceTypes":[{"name":"job","required":false},{"name":"run","required":false},{"name":"suite","required":false},{"name":"test","required":false}]},"ListDeviceInstances":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the information of device instances","accessLevel":"List","resourceTypes":[]},"ListDevicePools":{"conditionKeys":[],"resources":[{"name":"project"}],"description":"Grants permission to list the information of device pools","accessLevel":"List","resourceTypes":[{"name":"project","required":true}]},"ListDevices":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the information of unique device types","accessLevel":"List","resourceTypes":[]},"ListInstanceProfiles":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the information of device instance profiles","accessLevel":"List","resourceTypes":[]},"ListJobs":{"conditionKeys":[],"resources":[{"name":"run"}],"description":"Grants permission to list the information of jobs within a run","accessLevel":"List","resourceTypes":[{"name":"run","required":true}]},"ListNetworkProfiles":{"conditionKeys":[],"resources":[{"name":"project"}],"description":"Grants permission to list the information of network profiles within a project","accessLevel":"List","resourceTypes":[{"name":"project","required":true}]},"ListOfferingPromotions":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the offering promotions","accessLevel":"List","resourceTypes":[]},"ListOfferingTransactions":{"conditionKeys":[],"resources":[],"description":"Grants permission to list all of the historical purchases, renewals, and system renewal transactions for an AWS account","accessLevel":"List","resourceTypes":[]},"ListOfferings":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the products or offerings that the user can manage through the API","accessLevel":"List","resourceTypes":[]},"ListProjects":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the information of mobile testing projects for an AWS account","accessLevel":"List","resourceTypes":[]},"ListRemoteAccessSessions":{"conditionKeys":[],"resources":[{"name":"project"}],"description":"Grants permission to list the information of currently running remote access sessions","accessLevel":"List","resourceTypes":[{"name":"project","required":true}]},"ListRuns":{"conditionKeys":[],"resources":[{"name":"project"}],"description":"Grants permission to list the information of runs within a project","accessLevel":"List","resourceTypes":[{"name":"project","required":true}]},"ListSamples":{"conditionKeys":[],"resources":[{"name":"job"}],"description":"Grants permission to list the information of samples within a project","accessLevel":"List","resourceTypes":[{"name":"job","required":true}]},"ListSuites":{"conditionKeys":[],"resources":[{"name":"job"}],"description":"Grants permission to list the information of testing suites within a job","accessLevel":"List","resourceTypes":[{"name":"job","required":true}]},"ListTagsForResource":{"conditionKeys":[],"resources":[{"name":"device"},{"name":"deviceinstance"},{"name":"devicepool"},{"name":"instanceprofile"},{"name":"networkprofile"},{"name":"project"},{"name":"run"},{"name":"session"},{"name":"testgrid-project"},{"name":"testgrid-session"},{"name":"vpceconfiguration"}],"description":"Grants permission to list the tags of a resource","accessLevel":"List","resourceTypes":[{"name":"device","required":false},{"name":"deviceinstance","required":false},{"name":"devicepool","required":false},{"name":"instanceprofile","required":false},{"name":"networkprofile","required":false},{"name":"project","required":false},{"name":"run","required":false},{"name":"session","required":false},{"name":"testgrid-project","required":false},{"name":"testgrid-session","required":false},{"name":"vpceconfiguration","required":false}]},"ListTestGridProjects":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the information of desktop testing projects for an AWS account","accessLevel":"List","resourceTypes":[]},"ListTestGridSessionActions":{"conditionKeys":[],"resources":[{"name":"testgrid-session"}],"description":"Grants permission to list the session actions performed during a test grid session","accessLevel":"List","resourceTypes":[{"name":"testgrid-session","required":true}]},"ListTestGridSessionArtifacts":{"conditionKeys":[],"resources":[{"name":"testgrid-session"}],"description":"Grants permission to list the artifacts generated by a test grid session","accessLevel":"List","resourceTypes":[{"name":"testgrid-session","required":true}]},"ListTestGridSessions":{"conditionKeys":[],"resources":[{"name":"testgrid-project"}],"description":"Grants permission to list the sessions within a test grid project","accessLevel":"List","resourceTypes":[{"name":"testgrid-project","required":true}]},"ListTests":{"conditionKeys":[],"resources":[{"name":"suite"}],"description":"Grants permission to list the information of tests within a testing suite","accessLevel":"List","resourceTypes":[{"name":"suite","required":true}]},"ListUniqueProblems":{"conditionKeys":[],"resources":[{"name":"run"}],"description":"Grants permission to list the information of unique problems within a run","accessLevel":"List","resourceTypes":[{"name":"run","required":true}]},"ListUploads":{"conditionKeys":[],"resources":[{"name":"project"}],"description":"Grants permission to list the information of uploads within a project","accessLevel":"List","resourceTypes":[{"name":"project","required":true}]},"ListVPCEConfigurations":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the information of Amazon Virtual Private Cloud (VPC) endpoint configurations","accessLevel":"List","resourceTypes":[]},"PurchaseOffering":{"conditionKeys":[],"resources":[],"description":"Grants permission to purchase offerings for an AWS account","accessLevel":"Write","resourceTypes":[]},"RenewOffering":{"conditionKeys":[],"resources":[],"description":"Grants permission to set the quantity of devices to renew for an offering","accessLevel":"Write","resourceTypes":[]},"ScheduleRun":{"conditionKeys":[],"resources":[{"name":"devicepool"},{"name":"project"},{"name":"upload"}],"description":"Grants permission to schedule a run","accessLevel":"Write","resourceTypes":[{"name":"project","required":true},{"name":"devicepool","required":false},{"name":"upload","required":false}]},"StopJob":{"conditionKeys":[],"resources":[{"name":"job"}],"description":"Grants permission to terminate a running job","accessLevel":"Write","resourceTypes":[{"name":"job","required":true}]},"StopRemoteAccessSession":{"conditionKeys":[],"resources":[{"name":"session"}],"description":"Grants permission to terminate a running remote access session","accessLevel":"Write","resourceTypes":[{"name":"session","required":true}]},"StopRun":{"conditionKeys":[],"resources":[{"name":"run"}],"description":"Grants permission to terminate a running test run","accessLevel":"Write","resourceTypes":[{"name":"run","required":true}]},"TagResource":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"device"},{"name":"deviceinstance"},{"name":"devicepool"},{"name":"instanceprofile"},{"name":"networkprofile"},{"name":"project"},{"name":"run"},{"name":"session"},{"name":"testgrid-project"},{"name":"testgrid-session"},{"name":"vpceconfiguration"}],"description":"Grants permission to add tags to a resource","accessLevel":"Tagging","resourceTypes":[{"name":"device","required":false},{"name":"deviceinstance","required":false},{"name":"devicepool","required":false},{"name":"instanceprofile","required":false},{"name":"networkprofile","required":false},{"name":"project","required":false},{"name":"run","required":false},{"name":"session","required":false},{"name":"testgrid-project","required":false},{"name":"testgrid-session","required":false},{"name":"vpceconfiguration","required":false}]},"UntagResource":{"conditionKeys":["aws:TagKeys"],"resources":[{"name":"device"},{"name":"deviceinstance"},{"name":"devicepool"},{"name":"instanceprofile"},{"name":"networkprofile"},{"name":"project"},{"name":"run"},{"name":"session"},{"name":"testgrid-project"},{"name":"testgrid-session"},{"name":"vpceconfiguration"}],"description":"Grants permission to remove tags from a resource","accessLevel":"Tagging","resourceTypes":[{"name":"device","required":false},{"name":"deviceinstance","required":false},{"name":"devicepool","required":false},{"name":"instanceprofile","required":false},{"name":"networkprofile","required":false},{"name":"project","required":false},{"name":"run","required":false},{"name":"session","required":false},{"name":"testgrid-project","required":false},{"name":"testgrid-session","required":false},{"name":"vpceconfiguration","required":false}]},"UpdateDeviceInstance":{"conditionKeys":[],"resources":[{"name":"deviceinstance"},{"name":"instanceprofile"}],"description":"Grants permission to modify an existing device instance","accessLevel":"Write","resourceTypes":[{"name":"deviceinstance","required":true},{"name":"instanceprofile","required":false}]},"UpdateDevicePool":{"conditionKeys":[],"resources":[{"name":"devicepool"}],"description":"Grants permission to modify an existing device pool","accessLevel":"Write","resourceTypes":[{"name":"devicepool","required":true}]},"UpdateInstanceProfile":{"conditionKeys":[],"resources":[{"name":"instanceprofile"}],"description":"Grants permission to modify an existing instance profile","accessLevel":"Write","resourceTypes":[{"name":"instanceprofile","required":true}]},"UpdateNetworkProfile":{"conditionKeys":[],"resources":[{"name":"networkprofile"}],"description":"Grants permission to modify an existing network profile","accessLevel":"Write","resourceTypes":[{"name":"networkprofile","required":true}]},"UpdateProject":{"conditionKeys":[],"resources":[{"name":"project"}],"description":"Grants permission to modify an existing mobile testing project","accessLevel":"Write","resourceTypes":[{"name":"project","required":true}],"dependentActions":["ec2:CreateNetworkInterface","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcs","iam:CreateServiceLinkedRole"]},"UpdateTestGridProject":{"conditionKeys":[],"resources":[{"name":"testgrid-project"}],"description":"Grants permission to modify an existing desktop testing project","accessLevel":"Write","resourceTypes":[{"name":"testgrid-project","required":true}],"dependentActions":["ec2:CreateNetworkInterface","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcs","iam:CreateServiceLinkedRole"]},"UpdateUpload":{"conditionKeys":[],"resources":[{"name":"upload"}],"description":"Grants permission to modify an existing upload","accessLevel":"Write","resourceTypes":[{"name":"upload","required":true}]},"UpdateVPCEConfiguration":{"conditionKeys":[],"resources":[{"name":"vpceconfiguration"}],"description":"Grants permission to modify an existing Amazon Virtual Private Cloud (VPC) endpoint configuration","accessLevel":"Write","resourceTypes":[{"name":"vpceconfiguration","required":true}]}},"resources":[{"name":"artifact","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:artifact:${ResourceId}"],"conditionKeys":[]},{"name":"device","arnFormats":["arn:${Partition}:devicefarm:${Region}::device:${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"deviceinstance","arnFormats":["arn:${Partition}:devicefarm:${Region}::deviceinstance:${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"devicepool","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:devicepool:${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"instanceprofile","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:instanceprofile:${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"job","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:job:${ResourceId}"],"conditionKeys":[]},{"name":"networkprofile","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:networkprofile:${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"project","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:project:${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"run","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:run:${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"sample","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:sample:${ResourceId}"],"conditionKeys":[]},{"name":"session","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:session:${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"suite","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:suite:${ResourceId}"],"conditionKeys":[]},{"name":"test","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:test:${ResourceId}"],"conditionKeys":[]},{"name":"testgrid-project","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:testgrid-project:${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"testgrid-session","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:testgrid-session:${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"upload","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:upload:${ResourceId}"],"conditionKeys":[]},{"name":"vpceconfiguration","arnFormats":["arn:${Partition}:devicefarm:${Region}:${Account}:vpceconfiguration:${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]}],"conditionKeys":{"aws:RequestTag/${TagKey}":{"types":["String"],"description":"Filters actions based on the allowed set of values for each of the tags"},"aws:ResourceTag/${TagKey}":{"types":["String"],"description":"Filters actions based on tag-value assoicated with the resource"},"aws:TagKeys":{"types":["ArrayOfString"],"description":"Filters actions based on the presence of mandatory tags in the request"}}}

package/src/data/servicereference/services/devops-guru.json

@@ -0,0 +1 @@
+{"name":"devops-guru","actions":{"AddNotificationChannel":{"conditionKeys":[],"resources":[{"name":"topic"}],"description":"Grants permission to add a notification channel to DevOps Guru","accessLevel":"Write","resourceTypes":[{"name":"topic","required":true}],"dependentActions":["sns:GetTopicAttributes","sns:SetTopicAttributes"]},"DeleteInsight":{"conditionKeys":[],"resources":[],"description":"Grants permission to delete specified insight in your account","accessLevel":"Write","resourceTypes":[]},"DescribeAccountHealth":{"conditionKeys":[],"resources":[],"description":"Grants permission to view the health of operations in your AWS account","accessLevel":"Read","resourceTypes":[]},"DescribeAccountOverview":{"conditionKeys":[],"resources":[],"description":"Grants permission to view the health of operations within a time range in your AWS account","accessLevel":"Read","resourceTypes":[]},"DescribeAnomaly":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the details of a specified anomaly","accessLevel":"Read","resourceTypes":[]},"DescribeEventSourcesConfig":{"conditionKeys":[],"resources":[],"description":"Grants permission to retrieve details about event sources for DevOps Guru","accessLevel":"Read","resourceTypes":[]},"DescribeFeedback":{"conditionKeys":[],"resources":[],"description":"Grants permission to view the feedback details of a specified insight","accessLevel":"Read","resourceTypes":[]},"DescribeInsight":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the details of a specified insight","accessLevel":"Read","resourceTypes":[]},"DescribeOrganizationHealth":{"conditionKeys":[],"resources":[],"description":"Grants permission to view the health of operations in your organization","accessLevel":"Read","resourceTypes":[]},"DescribeOrganizationOverview":{"conditionKeys":[],"resources":[],"description":"Grants permission to view the health of operations within a time range in your organization","accessLevel":"Read","resourceTypes":[]},"DescribeOrganizationResourceCollectionHealth":{"conditionKeys":[],"resources":[],"description":"Grants permission to view the health of operations for each AWS CloudFormation stack or AWS Services or accounts specified in DevOps Guru in your organization","accessLevel":"Read","resourceTypes":[]},"DescribeResourceCollectionHealth":{"conditionKeys":[],"resources":[],"description":"Grants permission to view the health of operations for each AWS CloudFormation stack specified in DevOps Guru","accessLevel":"Read","resourceTypes":[]},"DescribeServiceIntegration":{"conditionKeys":[],"resources":[],"description":"Grants permission to view the integration status of services that can be integrated with DevOps Guru","accessLevel":"Read","resourceTypes":[]},"GetCostEstimation":{"conditionKeys":[],"resources":[],"description":"Grants permission to list service resource cost estimates","accessLevel":"Read","resourceTypes":[]},"GetResourceCollection":{"conditionKeys":[],"resources":[],"description":"Grants permission to list AWS CloudFormation stacks that DevOps Guru is configured to use","accessLevel":"Read","resourceTypes":[]},"ListAnomaliesForInsight":{"conditionKeys":["devops-guru:ServiceNames"],"resources":[],"description":"Grants permission to list anomalies of a given insight in your account","accessLevel":"List","resourceTypes":[]},"ListAnomalousLogGroups":{"conditionKeys":[],"resources":[],"description":"Grants permission to list log anomalies of a given insight in your account","accessLevel":"List","resourceTypes":[]},"ListEvents":{"conditionKeys":[],"resources":[],"description":"Grants permission to list resource events that are evaluated by DevOps Guru","accessLevel":"List","resourceTypes":[]},"ListInsights":{"conditionKeys":[],"resources":[],"description":"Grants permission to list insights in your account","accessLevel":"List","resourceTypes":[]},"ListMonitoredResources":{"conditionKeys":[],"resources":[],"description":"Grants permission to list resource monitored by DevOps Guru in your account","accessLevel":"List","resourceTypes":[]},"ListNotificationChannels":{"conditionKeys":[],"resources":[],"description":"Grants permission to list notification channels configured for DevOps Guru in your account","accessLevel":"List","resourceTypes":[]},"ListOrganizationInsights":{"conditionKeys":[],"resources":[],"description":"Grants permission to list insights in your organization","accessLevel":"List","resourceTypes":[]},"ListRecommendations":{"conditionKeys":[],"resources":[],"description":"Grants permission to list a specified insight's recommendations","accessLevel":"List","resourceTypes":[]},"PutFeedback":{"conditionKeys":[],"resources":[],"description":"Grants permission to submit a feedback to DevOps Guru","accessLevel":"Write","resourceTypes":[]},"RemoveNotificationChannel":{"conditionKeys":[],"resources":[{"name":"topic"}],"description":"Grants permission to remove a notification channel from DevOps Guru","accessLevel":"Write","resourceTypes":[{"name":"topic","required":true}],"dependentActions":["sns:GetTopicAttributes","sns:SetTopicAttributes"]},"SearchInsights":{"conditionKeys":["devops-guru:ServiceNames"],"resources":[],"description":"Grants permission to search insights in your account","accessLevel":"List","resourceTypes":[]},"SearchOrganizationInsights":{"conditionKeys":[],"resources":[],"description":"Grants permission to search insights in your organization","accessLevel":"List","resourceTypes":[]},"StartCostEstimation":{"conditionKeys":[],"resources":[],"description":"Grants permission to start the creation of an estimate of the monthly cost","accessLevel":"Read","resourceTypes":[]},"UpdateEventSourcesConfig":{"conditionKeys":[],"resources":[],"description":"Grants permission to update an event source for DevOps Guru","accessLevel":"Write","resourceTypes":[]},"UpdateResourceCollection":{"conditionKeys":[],"resources":[],"description":"Grants permission to update the list of AWS CloudFormation stacks that are used to specify which AWS resources in your account are analyzed by DevOps Guru","accessLevel":"Write","resourceTypes":[]},"UpdateServiceIntegration":{"conditionKeys":[],"resources":[],"description":"Grants permission to enable or disable a service that integrates with DevOps Guru","accessLevel":"Write","resourceTypes":[]}},"resources":[{"name":"topic","arnFormats":["arn:${Partition}:sns:${Region}:${Account}:${TopicName}"],"conditionKeys":[]}],"conditionKeys":{"devops-guru:ServiceNames":{"types":["ArrayOfString"],"description":"Filters access by API to restrict access to given AWS service names"}}}

package/src/data/servicereference/services/directconnect.json

@@ -0,0 +1 @@
+{"name":"directconnect","actions":{"AcceptDirectConnectGatewayAssociationProposal":{"conditionKeys":[],"resources":[{"name":"dx-gateway"}],"description":"Grants permission to accept a proposal request to attach a virtual private gateway to a Direct Connect gateway","accessLevel":"Write","resourceTypes":[{"name":"dx-gateway","required":true}]},"AllocateConnectionOnInterconnect":{"conditionKeys":[],"resources":[{"name":"dxcon"}],"description":"Grants permission to create a hosted connection on an interconnect","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":true}]},"AllocateHostedConnection":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to create a new hosted connection between a AWS Direct Connect partner's network and a specific AWS Direct Connect location","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"AllocatePrivateVirtualInterface":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to provision a private virtual interface to be owned by a different customer","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"AllocatePublicVirtualInterface":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to provision a public virtual interface to be owned by a different customer","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"AllocateTransitVirtualInterface":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to provision a transit virtual interface to be owned by a different customer","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"AssociateConnectionWithLag":{"conditionKeys":[],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to associate a connection with a LAG","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":true},{"name":"dxlag","required":true}]},"AssociateHostedConnection":{"conditionKeys":[],"resources":[{"name":"dxcon"},{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to associate a hosted connection and its virtual interfaces with a link aggregation group (LAG) or interconnect","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":true},{"name":"dxlag","required":false}]},"AssociateMacSecKey":{"conditionKeys":[],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to associate a MAC Security (MACsec) Connection Key Name (CKN)/ Connectivity Association Key (CAK) pair with an AWS Direct Connect dedicated connection","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"AssociateVirtualInterface":{"conditionKeys":[],"resources":[{"name":"dxcon"},{"name":"dxlag"},{"name":"dxvif"}],"description":"Grants permission to associate a virtual interface with a specified link aggregation group (LAG) or connection","accessLevel":"Write","resourceTypes":[{"name":"dxvif","required":true},{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"ConfirmConnection":{"conditionKeys":[],"resources":[{"name":"dxcon"}],"description":"Grants permission to confirm the creation of a hosted connection on an interconnect","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":true}]},"ConfirmCustomerAgreement":{"conditionKeys":[],"resources":[],"description":"Grants permission to confirm the the terms of agreement when creating the connection or link aggregation group (LAG)","accessLevel":"Write","resourceTypes":[]},"ConfirmPrivateVirtualInterface":{"conditionKeys":[],"resources":[{"name":"dxvif"}],"description":"Grants permission to accept ownership of a private virtual interface created by another customer","accessLevel":"Write","resourceTypes":[{"name":"dxvif","required":true}]},"ConfirmPublicVirtualInterface":{"conditionKeys":[],"resources":[{"name":"dxvif"}],"description":"Grants permission to accept ownership of a public virtual interface created by another customer","accessLevel":"Write","resourceTypes":[{"name":"dxvif","required":true}]},"ConfirmTransitVirtualInterface":{"conditionKeys":[],"resources":[{"name":"dxvif"}],"description":"Grants permission to accept ownership of a transit virtual interface created by another customer","accessLevel":"Write","resourceTypes":[{"name":"dxvif","required":true}]},"CreateBGPPeer":{"conditionKeys":[],"resources":[{"name":"dxvif"}],"description":"Grants permission to create a BGP peer on the specified virtual interface","accessLevel":"Write","resourceTypes":[{"name":"dxvif","required":true}]},"CreateConnection":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"dxlag"}],"description":"Grants permission to create a new connection between the customer network and a specific AWS Direct Connect location","accessLevel":"Write","resourceTypes":[{"name":"dxlag","required":false}]},"CreateDirectConnectGateway":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[],"description":"Grants permission to create a Direct Connect gateway, which is an intermediate object that enables you to connect a set of virtual interfaces and virtual private gateways","accessLevel":"Write","resourceTypes":[]},"CreateDirectConnectGatewayAssociation":{"conditionKeys":[],"resources":[{"name":"dx-gateway"}],"description":"Grants permission to create an association between a Direct Connect gateway and a virtual private gateway","accessLevel":"Write","resourceTypes":[{"name":"dx-gateway","required":true}]},"CreateDirectConnectGatewayAssociationProposal":{"conditionKeys":[],"resources":[{"name":"dx-gateway"}],"description":"Grants permission to create a proposal to associate the specified virtual private gateway with the specified Direct Connect gateway","accessLevel":"Write","resourceTypes":[{"name":"dx-gateway","required":true}]},"CreateInterconnect":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"dxlag"}],"description":"Grants permission to create a new interconnect between a AWS Direct Connect partner's network and a specific AWS Direct Connect location","accessLevel":"Write","resourceTypes":[{"name":"dxlag","required":false}]},"CreateLag":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"dxcon"}],"description":"Grants permission to create a link aggregation group (LAG) with the specified number of bundled physical connections between the customer network and a specific AWS Direct Connect location","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":false}]},"CreatePrivateVirtualInterface":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to create a new private virtual interface","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"CreatePublicVirtualInterface":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to create a new public virtual interface","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"CreateTransitVirtualInterface":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to create a new transit virtual interface","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"DeleteBGPPeer":{"conditionKeys":[],"resources":[{"name":"dxvif"}],"description":"Grants permission to delete the specified BGP peer on the specified virtual interface with the specified customer address and ASN","accessLevel":"Write","resourceTypes":[{"name":"dxvif","required":true}]},"DeleteConnection":{"conditionKeys":[],"resources":[{"name":"dxcon"}],"description":"Grants permission to delete the connection","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":true}]},"DeleteDirectConnectGateway":{"conditionKeys":[],"resources":[{"name":"dx-gateway"}],"description":"Grants permission to delete the specified Direct Connect gateway","accessLevel":"Write","resourceTypes":[{"name":"dx-gateway","required":true}]},"DeleteDirectConnectGatewayAssociation":{"conditionKeys":[],"resources":[{"name":"dx-gateway"}],"description":"Grants permission to delete the association between the specified Direct Connect gateway and virtual private gateway","accessLevel":"Write","resourceTypes":[{"name":"dx-gateway","required":true}]},"DeleteDirectConnectGatewayAssociationProposal":{"conditionKeys":[],"resources":[],"description":"Grants permission to delete the association proposal request between the specified Direct Connect gateway and virtual private gateway","accessLevel":"Write","resourceTypes":[]},"DeleteInterconnect":{"conditionKeys":[],"resources":[{"name":"dxcon"}],"description":"Grants permission to delete the specified interconnect","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":true}]},"DeleteLag":{"conditionKeys":[],"resources":[{"name":"dxlag"}],"description":"Grants permission to delete the specified link aggregation group (LAG)","accessLevel":"Write","resourceTypes":[{"name":"dxlag","required":true}]},"DeleteVirtualInterface":{"conditionKeys":[],"resources":[{"name":"dxvif"}],"description":"Grants permission to delete a virtual interface","accessLevel":"Write","resourceTypes":[{"name":"dxvif","required":true}]},"DescribeConnectionLoa":{"conditionKeys":[],"resources":[{"name":"dxcon"}],"description":"Grants permission to describe the LOA-CFA for a Connection","accessLevel":"Read","resourceTypes":[{"name":"dxcon","required":true}]},"DescribeConnections":{"conditionKeys":[],"resources":[{"name":"dxcon"}],"description":"Grants permission to describe all connections in this region","accessLevel":"Read","resourceTypes":[{"name":"dxcon","required":false}]},"DescribeConnectionsOnInterconnect":{"conditionKeys":[],"resources":[{"name":"dxcon"}],"description":"Grants permission to describe a list of connections that have been provisioned on the given interconnect","accessLevel":"Read","resourceTypes":[{"name":"dxcon","required":true}]},"DescribeCustomerMetadata":{"conditionKeys":[],"resources":[],"description":"Grants permission to view a list of customer agreements, along with their signed status and whether the customer is an NNIPartner, NNIPartnerV2, or a nonPartner","accessLevel":"Read","resourceTypes":[]},"DescribeDirectConnectGatewayAssociationProposals":{"conditionKeys":[],"resources":[{"name":"dx-gateway"}],"description":"Grants permission to describe one or more association proposals for connection between a virtual private gateway and a Direct Connect gateway","accessLevel":"Read","resourceTypes":[{"name":"dx-gateway","required":false}]},"DescribeDirectConnectGatewayAssociations":{"conditionKeys":[],"resources":[{"name":"dx-gateway"}],"description":"Grants permission to describe the associations between your Direct Connect gateways and virtual private gateways","accessLevel":"Read","resourceTypes":[{"name":"dx-gateway","required":false}]},"DescribeDirectConnectGatewayAttachments":{"conditionKeys":[],"resources":[{"name":"dx-gateway"}],"description":"Grants permission to describe the attachments between your Direct Connect gateways and virtual interfaces","accessLevel":"Read","resourceTypes":[{"name":"dx-gateway","required":false}]},"DescribeDirectConnectGateways":{"conditionKeys":[],"resources":[{"name":"dx-gateway"}],"description":"Grants permission to describe all your Direct Connect gateways or only the specified Direct Connect gateway","accessLevel":"Read","resourceTypes":[{"name":"dx-gateway","required":false}]},"DescribeHostedConnections":{"conditionKeys":[],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to describe the hosted connections that have been provisioned on the specified interconnect or link aggregation group (LAG)","accessLevel":"Read","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"DescribeInterconnectLoa":{"conditionKeys":[],"resources":[{"name":"dxcon"}],"description":"Grants permission to describe the LOA-CFA for an Interconnect","accessLevel":"Read","resourceTypes":[{"name":"dxcon","required":true}]},"DescribeInterconnects":{"conditionKeys":[],"resources":[{"name":"dxcon"}],"description":"Grants permission to describe a list of interconnects owned by the AWS account","accessLevel":"Read","resourceTypes":[{"name":"dxcon","required":false}]},"DescribeLags":{"conditionKeys":[],"resources":[{"name":"dxlag"}],"description":"Grants permission to describe all your link aggregation groups (LAG) or the specified LAG","accessLevel":"Read","resourceTypes":[{"name":"dxlag","required":false}]},"DescribeLoa":{"conditionKeys":[],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to describe the LOA-CFA for a connection, interconnect, or link aggregation group (LAG)","accessLevel":"Read","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"DescribeLocations":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe the list of AWS Direct Connect locations in the current AWS region","accessLevel":"Read","resourceTypes":[]},"DescribeRouterConfiguration":{"conditionKeys":[],"resources":[{"name":"dxvif"}],"description":"Grants permission to describe Details about the router for a virtual interface","accessLevel":"Read","resourceTypes":[{"name":"dxvif","required":true}]},"DescribeTags":{"conditionKeys":[],"resources":[{"name":"dx-gateway"},{"name":"dxcon"},{"name":"dxlag"},{"name":"dxvif"}],"description":"Grants permission to describe the tags associated with the specified AWS Direct Connect resources","accessLevel":"Read","resourceTypes":[{"name":"dx-gateway","required":false},{"name":"dxcon","required":false},{"name":"dxlag","required":false},{"name":"dxvif","required":false}]},"DescribeVirtualGateways":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe a list of virtual private gateways owned by the AWS account","accessLevel":"Read","resourceTypes":[]},"DescribeVirtualInterfaces":{"conditionKeys":[],"resources":[{"name":"dxcon"},{"name":"dxlag"},{"name":"dxvif"}],"description":"Grants permission to describe all virtual interfaces for an AWS account","accessLevel":"Read","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false},{"name":"dxvif","required":false}]},"DisassociateConnectionFromLag":{"conditionKeys":[],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to disassociate a connection from a link aggregation group (LAG)","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":true},{"name":"dxlag","required":true}]},"DisassociateMacSecKey":{"conditionKeys":[],"resources":[{"name":"dxcon"},{"name":"dxlag"}],"description":"Grants permission to remove the association between a MAC Security (MACsec) security key and an AWS Direct Connect dedicated connection","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":false},{"name":"dxlag","required":false}]},"ListVirtualInterfaceTestHistory":{"conditionKeys":[],"resources":[{"name":"dxvif"}],"description":"Grants permission to list the virtual interface failover test history","accessLevel":"List","resourceTypes":[{"name":"dxvif","required":true}]},"StartBgpFailoverTest":{"conditionKeys":[],"resources":[{"name":"dxvif"}],"description":"Grants permission to start the virtual interface failover test that verifies your configuration meets your resiliency requirements by placing the BGP peering session in the DOWN state. You can then send traffic to verify that there are no outages","accessLevel":"Write","resourceTypes":[{"name":"dxvif","required":true}]},"StopBgpFailoverTest":{"conditionKeys":[],"resources":[{"name":"dxvif"}],"description":"Grants permission to stop the virtual interface failover test","accessLevel":"Write","resourceTypes":[{"name":"dxvif","required":true}]},"TagResource":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"dx-gateway"},{"name":"dxcon"},{"name":"dxlag"},{"name":"dxvif"}],"description":"Grants permission to add the specified tags to the specified AWS Direct Connect resource. Each resource can have a maximum of 50 tags","accessLevel":"Tagging","resourceTypes":[{"name":"dx-gateway","required":false},{"name":"dxcon","required":false},{"name":"dxlag","required":false},{"name":"dxvif","required":false}]},"UntagResource":{"conditionKeys":["aws:TagKeys"],"resources":[{"name":"dx-gateway"},{"name":"dxcon"},{"name":"dxlag"},{"name":"dxvif"}],"description":"Grants permission to remove one or more tags from the specified AWS Direct Connect resource","accessLevel":"Tagging","resourceTypes":[{"name":"dx-gateway","required":false},{"name":"dxcon","required":false},{"name":"dxlag","required":false},{"name":"dxvif","required":false}]},"UpdateConnection":{"conditionKeys":[],"resources":[{"name":"dxcon"}],"description":"Grants permission to update the AWS Direct Connect dedicated connection configuration. You can update the following parameters for a connection: The connection name or The connection's MAC Security (MACsec) encryption mode","accessLevel":"Write","resourceTypes":[{"name":"dxcon","required":true}]},"UpdateDirectConnectGateway":{"conditionKeys":[],"resources":[{"name":"dx-gateway"}],"description":"Grants permission to update the name of a Direct Connect gateway","accessLevel":"Write","resourceTypes":[{"name":"dx-gateway","required":true}]},"UpdateDirectConnectGatewayAssociation":{"conditionKeys":[],"resources":[],"description":"Grants permission to update the specified attributes of the Direct Connect gateway association","accessLevel":"Write","resourceTypes":[]},"UpdateLag":{"conditionKeys":[],"resources":[{"name":"dxlag"}],"description":"Grants permission to update the attributes of the specified link aggregation group (LAG)","accessLevel":"Write","resourceTypes":[{"name":"dxlag","required":true}]},"UpdateVirtualInterfaceAttributes":{"conditionKeys":[],"resources":[{"name":"dxvif"}],"description":"Grants permission to update the specified attributes of the specified virtual private interface","accessLevel":"Write","resourceTypes":[{"name":"dxvif","required":true}]}},"resources":[{"name":"dx-gateway","arnFormats":["arn:${Partition}:directconnect::${Account}:dx-gateway/${DirectConnectGatewayId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"dxcon","arnFormats":["arn:${Partition}:directconnect:${Region}:${Account}:dxcon/${ConnectionId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"dxlag","arnFormats":["arn:${Partition}:directconnect:${Region}:${Account}:dxlag/${LagId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"dxvif","arnFormats":["arn:${Partition}:directconnect:${Region}:${Account}:dxvif/${VirtualInterfaceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]}],"conditionKeys":{"aws:RequestTag/${TagKey}":{"types":["String"],"description":"Filters access by actions based on the presence of tag key-value pairs in the request"},"aws:ResourceTag/${TagKey}":{"types":["String"],"description":"Filters access by actions based on tag key-value pairs attached to the resource"},"aws:TagKeys":{"types":["ArrayOfString"],"description":"Filters access by actions based on the presence of tag keys in the request"}}}

package/src/data/servicereference/services/discovery.json

@@ -0,0 +1 @@
+{"name":"discovery","actions":{"AssociateConfigurationItemsToApplication":{"conditionKeys":[],"resources":[],"description":"Grants permission to AssociateConfigurationItemsToApplication API. AssociateConfigurationItemsToApplication associates one or more configuration items with an application","accessLevel":"Write","resourceTypes":[]},"BatchDeleteAgents":{"conditionKeys":[],"resources":[],"description":"Grants permission to BatchDeleteAgents API. BatchDeleteAgents deletes one or more agents/data collectors associated with your account, each identified by its agent ID. Deleting a data collector does not delete the previous data collected","accessLevel":"Write","resourceTypes":[]},"BatchDeleteImportData":{"conditionKeys":[],"resources":[],"description":"Grants permission to BatchDeleteImportData API. BatchDeleteImportData deletes one or more Migration Hub import tasks, each identified by their import ID. Each import task has a number of records, which can identify servers or applications","accessLevel":"Write","resourceTypes":[]},"CreateApplication":{"conditionKeys":[],"resources":[],"description":"Grants permission to CreateApplication API. CreateApplication creates an application with the given name and description","accessLevel":"Write","resourceTypes":[]},"CreateTags":{"conditionKeys":[],"resources":[],"description":"Grants permission to CreateTags API. CreateTags creates one or more tags for configuration items. Tags are metadata that help you categorize IT assets. This API accepts a list of multiple configuration items","accessLevel":"Tagging","resourceTypes":[]},"DeleteApplications":{"conditionKeys":[],"resources":[],"description":"Grants permission to DeleteApplications API. DeleteApplications deletes a list of applications and their associations with configuration items","accessLevel":"Write","resourceTypes":[]},"DeleteTags":{"conditionKeys":["aws:TagKeys"],"resources":[],"description":"Grants permission to DeleteTags API. DeleteTags deletes the association between configuration items and one or more tags. This API accepts a list of multiple configuration items","accessLevel":"Tagging","resourceTypes":[]},"DescribeAgents":{"conditionKeys":[],"resources":[],"description":"Grants permission to DescribeAgents API. DescribeAgents lists agents or the Connector by ID or lists all agents/Connectors associated with your user if you did not specify an ID","accessLevel":"Read","resourceTypes":[]},"DescribeBatchDeleteConfigurationTask":{"conditionKeys":[],"resources":[],"description":"Grants permission to DescribeBatchDeleteConfigurationTask API. DescribeBatchDeleteConfigurationTask returns attributes about a batched deletion task to delete a set of configuration items. The supplied task ID should be the task ID receieved from the output of StartBatchDeleteConfigurationTask","accessLevel":"Read","resourceTypes":[]},"DescribeConfigurations":{"conditionKeys":[],"resources":[],"description":"Grants permission to DescribeConfigurations API. DescribeConfigurations retrieves attributes for a list of configuration item IDs. All of the supplied IDs must be for the same asset type (server, application, process, or connection). Output fields are specific to the asset type selected. For example, the output for a server configuration item includes a list of attributes about the server, such as host name, operating system, and number of network cards","accessLevel":"Read","resourceTypes":[]},"DescribeContinuousExports":{"conditionKeys":[],"resources":[],"description":"Grants permission to DescribeContinuousExports API. DescribeContinuousExports lists exports as specified by ID. All continuous exports associated with your user can be listed if you call DescribeContinuousExports as is without passing any parameters","accessLevel":"Read","resourceTypes":[]},"DescribeExportConfigurations":{"conditionKeys":[],"resources":[],"description":"Grants permission to DescribeExportConfigurations API. DescribeExportConfigurations retrieves the status of a given export process. You can retrieve status from a maximum of 100 processes","accessLevel":"Read","resourceTypes":[]},"DescribeExportTasks":{"conditionKeys":[],"resources":[],"description":"Grants permission to DescribeExportTasks API. DescribeExportTasks retrieve status of one or more export tasks. You can retrieve the status of up to 100 export tasks","accessLevel":"Read","resourceTypes":[]},"DescribeImportTasks":{"conditionKeys":[],"resources":[],"description":"Grants permission to DescribeImportTasks API. DescribeImportTasks returns an array of import tasks for your user, including status information, times, IDs, the Amazon S3 Object URL for the import file, and more","accessLevel":"List","resourceTypes":[]},"DescribeTags":{"conditionKeys":[],"resources":[],"description":"Grants permission to DescribeTags API. DescribeTags retrieves a list of configuration items that are tagged with a specific tag. Or retrieves a list of all tags assigned to a specific configuration item","accessLevel":"Read","resourceTypes":[]},"DisassociateConfigurationItemsFromApplication":{"conditionKeys":[],"resources":[],"description":"Grants permission to DisassociateConfigurationItemsFromApplication API. DisassociateConfigurationItemsFromApplication disassociates one or more configuration items from an application","accessLevel":"Write","resourceTypes":[]},"ExportConfigurations":{"conditionKeys":[],"resources":[],"description":"Grants permission to ExportConfigurations API. ExportConfigurations exports all discovered configuration data to an Amazon S3 bucket or an application that enables you to view and evaluate the data. Data includes tags and tag associations, processes, connections, servers, and system performance","accessLevel":"Write","resourceTypes":[]},"GetDiscoverySummary":{"conditionKeys":[],"resources":[],"description":"Grants permission to GetDiscoverySummary API. GetDiscoverySummary retrieves a short summary of discovered assets","accessLevel":"Read","resourceTypes":[]},"GetNetworkConnectionGraph":{"conditionKeys":[],"resources":[],"description":"Grants permission to GetNetworkConnectionGraph API. GetNetworkConnectionGraph accepts input list of one of - Ip Addresses, server ids or node ids. Returns a list of nodes and edges which help customer visualize network connection graph. This API is used for visualize network graph functionality in MigrationHub console","accessLevel":"Read","resourceTypes":[]},"ListConfigurations":{"conditionKeys":[],"resources":[],"description":"Grants permission to ListConfigurations API. ListConfigurations retrieves a list of configuration items according to criteria you specify in a filter. The filter criteria identify relationship requirements","accessLevel":"List","resourceTypes":[]},"ListServerNeighbors":{"conditionKeys":[],"resources":[],"description":"Grants permission to ListServerNeighbors API. ListServerNeighbors retrieves a list of servers which are one network hop away from a specified server","accessLevel":"List","resourceTypes":[]},"StartBatchDeleteConfigurationTask":{"conditionKeys":[],"resources":[],"description":"Grants permission to StartBatchDeleteConfigurationTask API. StartBatchDeleteConfigurationTask starts an asynchronous batch deletion of your configuration items. All of the supplied IDs must be for the same asset type (server, application, process, or connection). Output is a unique task ID you can use to check back on the deletions progress","accessLevel":"Write","resourceTypes":[]},"StartContinuousExport":{"conditionKeys":[],"resources":[],"description":"Grants permission to StartContinuousExport API. StartContinuousExport start the continuous flow of agent's discovered data into Amazon Athena","accessLevel":"Write","resourceTypes":[],"dependentActions":["iam:AttachRolePolicy","iam:CreatePolicy","iam:CreateRole","iam:CreateServiceLinkedRole"]},"StartDataCollectionByAgentIds":{"conditionKeys":[],"resources":[],"description":"Grants permission to StartDataCollectionByAgentIds API. StartDataCollectionByAgentIds instructs the specified agents or Connectors to start collecting data","accessLevel":"Write","resourceTypes":[]},"StartExportTask":{"conditionKeys":[],"resources":[],"description":"Grants permission to StartExportTask API. StartExportTask export the configuration data about discovered configuration items and relationships to an S3 bucket in a specified format","accessLevel":"Write","resourceTypes":[]},"StartImportTask":{"conditionKeys":[],"resources":[],"description":"Grants permission to StartImportTask API. StartImportTask starts an import task. The Migration Hub import feature allows you to import details of your on-premises environment directly into AWS without having to use the Application Discovery Service (ADS) tools such as the Discovery Connector or Discovery Agent. This gives you the option to perform migration assessment and planning directly from your imported data including the ability to group your devices as applications and track their migration status","accessLevel":"Write","resourceTypes":[],"dependentActions":["discovery:AssociateConfigurationItemsToApplication","discovery:CreateApplication","discovery:CreateTags","discovery:GetDiscoverySummary","discovery:ListConfigurations","s3:GetObject"]},"StopContinuousExport":{"conditionKeys":[],"resources":[],"description":"Grants permission to StopContinuousExport API. StopContinuousExport stops the continuous flow of agent's discovered data into Amazon Athena","accessLevel":"Write","resourceTypes":[]},"StopDataCollectionByAgentIds":{"conditionKeys":[],"resources":[],"description":"Grants permission to StopDataCollectionByAgentIds API. StopDataCollectionByAgentIds instructs the specified agents or Connectors to stop collecting data","accessLevel":"Write","resourceTypes":[]},"UpdateApplication":{"conditionKeys":[],"resources":[],"description":"Grants permission to UpdateApplication API. UpdateApplication updates metadata about an application","accessLevel":"Write","resourceTypes":[]}},"resources":[],"conditionKeys":{"aws:TagKeys":{"types":["ArrayOfString"],"description":"Filters access by the tag keys that are passed in the request"}}}

package/src/data/servicereference/services/dlm.json

@@ -0,0 +1 @@
+{"name":"dlm","actions":{"CreateLifecyclePolicy":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[],"description":"Grants permission to create a data lifecycle policy to manage the scheduled creation and retention of Amazon EBS snapshots. You may have up to 100 policies","accessLevel":"Write","resourceTypes":[]},"DeleteLifecyclePolicy":{"conditionKeys":[],"resources":[{"name":"policy"}],"description":"Grants permission to delete an existing data lifecycle policy. In addition, this action halts the creation and deletion of snapshots that the policy specified. Existing snapshots are not affected","accessLevel":"Write","resourceTypes":[{"name":"policy","required":true}]},"GetLifecyclePolicies":{"conditionKeys":[],"resources":[],"description":"Grants permission to returns a list of summary descriptions of data lifecycle policies","accessLevel":"List","resourceTypes":[]},"GetLifecyclePolicy":{"conditionKeys":[],"resources":[{"name":"policy"}],"description":"Grants permission to return a complete description of a single data lifecycle policy","accessLevel":"Read","resourceTypes":[{"name":"policy","required":true}]},"ListTagsForResource":{"conditionKeys":[],"resources":[{"name":"policy"}],"description":"Grants permission to list the tags associated with a resource","accessLevel":"Read","resourceTypes":[{"name":"policy","required":true}]},"TagResource":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"policy"}],"description":"Grants permission to add or update tags of a resource","accessLevel":"Tagging","resourceTypes":[{"name":"policy","required":true}]},"UntagResource":{"conditionKeys":["aws:TagKeys"],"resources":[{"name":"policy"}],"description":"Grants permission to remove tags associated with a resource","accessLevel":"Tagging","resourceTypes":[{"name":"policy","required":true}]},"UpdateLifecyclePolicy":{"conditionKeys":[],"resources":[{"name":"policy"}],"description":"Grants permission to update an existing data lifecycle policy","accessLevel":"Write","resourceTypes":[{"name":"policy","required":true}]}},"resources":[{"name":"policy","arnFormats":["arn:${Partition}:dlm:${Region}:${Account}:policy/${ResourceName}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]}],"conditionKeys":{"aws:RequestTag/${TagKey}":{"types":["String"],"description":"Filters access by the tags that are passed in the request"},"aws:ResourceTag/${TagKey}":{"types":["String"],"description":"Filters access by the tag key-value pairs attached to the resource"},"aws:TagKeys":{"types":["ArrayOfString"],"description":"Filters access by the tag keys that are passed in the request"}}}

package/src/data/servicereference/services/dms.json

@@ -0,0 +1 @@
+{"name":"dms","actions":{"AddTagsToResource":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[{"name":"Certificate"},{"name":"DataMigration"},{"name":"DataProvider"},{"name":"Endpoint"},{"name":"EventSubscription"},{"name":"InstanceProfile"},{"name":"MigrationProject"},{"name":"ReplicationConfig"},{"name":"ReplicationInstance"},{"name":"ReplicationSubnetGroup"},{"name":"ReplicationTask"},{"name":"ReplicationTaskAssessmentRun"},{"name":"ReplicationTaskIndividualAssessment"}],"description":"Grants permission to add metadata tags to DMS resources, including replication instances, endpoints, security groups, and migration tasks","accessLevel":"Tagging","resourceTypes":[{"name":"Certificate","required":false},{"name":"DataMigration","required":false},{"name":"DataProvider","required":false},{"name":"Endpoint","required":false},{"name":"EventSubscription","required":false},{"name":"InstanceProfile","required":false},{"name":"MigrationProject","required":false},{"name":"ReplicationConfig","required":false},{"name":"ReplicationInstance","required":false},{"name":"ReplicationSubnetGroup","required":false},{"name":"ReplicationTask","required":false},{"name":"ReplicationTaskAssessmentRun","required":false},{"name":"ReplicationTaskIndividualAssessment","required":false}]},"ApplyPendingMaintenanceAction":{"conditionKeys":[],"resources":[{"name":"ReplicationInstance"}],"description":"Grants permission to apply a pending maintenance action to a resource (for example, to a replication instance)","accessLevel":"Write","resourceTypes":[{"name":"ReplicationInstance","required":true}]},"AssociateExtensionPack":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to associate a extension pack","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"BatchStartRecommendations":{"conditionKeys":[],"resources":[],"description":"Grants permission to start the analysis of up to 20 source databases to recommend target engines for each source database","accessLevel":"Write","resourceTypes":[]},"CancelMetadataModelConversion":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to cancel a single metadata model conversion operation that was started with StartMetadataModelConversion","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"CancelMetadataModelCreation":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to cancel a single metadata model creation operation that was started with StartMetadataModelCreation","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"CancelReplicationTaskAssessmentRun":{"conditionKeys":[],"resources":[{"name":"ReplicationTaskAssessmentRun"}],"description":"Grants permission to cancel a single premigration assessment run","accessLevel":"Write","resourceTypes":[{"name":"ReplicationTaskAssessmentRun","required":true}]},"CreateDataMigration":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to create a database migration using the provided settings","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}],"dependentActions":["iam:PassRole"]},"CreateDataProvider":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[],"description":"Grants permission to create an data provider using the provided settings","accessLevel":"Write","resourceTypes":[],"dependentActions":["iam:PassRole"]},"CreateEndpoint":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[],"description":"Grants permission to create an endpoint using the provided settings","accessLevel":"Write","resourceTypes":[],"dependentActions":["iam:PassRole"]},"CreateEventSubscription":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[],"description":"Grants permission to create an AWS DMS event notification subscription","accessLevel":"Write","resourceTypes":[]},"CreateFleetAdvisorCollector":{"conditionKeys":[],"resources":[],"description":"Grants permission to create a Fleet Advisor collector using the specified parameters","accessLevel":"Write","resourceTypes":[],"dependentActions":["iam:PassRole"]},"CreateInstanceProfile":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[],"description":"Grants permission to create an instance profile using the provided settings","accessLevel":"Write","resourceTypes":[],"dependentActions":["iam:PassRole"]},"CreateMigrationProject":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[{"name":"DataProvider"},{"name":"InstanceProfile"}],"description":"Grants permission to create an migration project using the provided settings","accessLevel":"Write","resourceTypes":[{"name":"DataProvider","required":true},{"name":"InstanceProfile","required":true}],"dependentActions":["iam:PassRole"]},"CreateOutboundIntegration":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[],"description":"Grants permission to DMS to create resources for zero-ETL integrations with self managed databases","accessLevel":"Write","resourceTypes":[],"dependentActions":["iam:PassRole"],"permissionOnly":true},"CreateReplicationConfig":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[{"name":"Endpoint"}],"description":"Grants permission to create a replication config using the provided settings","accessLevel":"Write","resourceTypes":[{"name":"Endpoint","required":true}]},"CreateReplicationInstance":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[],"description":"Grants permission to create a replication instance using the specified parameters","accessLevel":"Write","resourceTypes":[],"dependentActions":["iam:PassRole"]},"CreateReplicationSubnetGroup":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[],"description":"Grants permission to create a replication subnet group given a list of the subnet IDs in a VPC","accessLevel":"Write","resourceTypes":[]},"CreateReplicationTask":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys","dms:req-tag/${TagKey}"],"resources":[{"name":"Endpoint"},{"name":"ReplicationInstance"}],"description":"Grants permission to create a replication task using the specified parameters","accessLevel":"Write","resourceTypes":[{"name":"Endpoint","required":true},{"name":"ReplicationInstance","required":true}]},"DeleteCertificate":{"conditionKeys":[],"resources":[{"name":"Certificate"}],"description":"Grants permission to delete the specified certificate","accessLevel":"Write","resourceTypes":[{"name":"Certificate","required":true}]},"DeleteConnection":{"conditionKeys":[],"resources":[{"name":"Endpoint"},{"name":"ReplicationInstance"}],"description":"Grants permission to delete the specified connection between a replication instance and an endpoint","accessLevel":"Write","resourceTypes":[{"name":"Endpoint","required":true},{"name":"ReplicationInstance","required":true}]},"DeleteDataMigration":{"conditionKeys":[],"resources":[{"name":"DataMigration"}],"description":"Grants permission to delete the specified database migration","accessLevel":"Write","resourceTypes":[{"name":"DataMigration","required":true}]},"DeleteDataProvider":{"conditionKeys":[],"resources":[{"name":"DataProvider"}],"description":"Grants permission to delete the specified data provider","accessLevel":"Write","resourceTypes":[{"name":"DataProvider","required":true}]},"DeleteEndpoint":{"conditionKeys":[],"resources":[{"name":"Endpoint"}],"description":"Grants permission to delete the specified endpoint","accessLevel":"Write","resourceTypes":[{"name":"Endpoint","required":true}]},"DeleteEventSubscription":{"conditionKeys":[],"resources":[{"name":"EventSubscription"}],"description":"Grants permission to delete an AWS DMS event subscription","accessLevel":"Write","resourceTypes":[{"name":"EventSubscription","required":true}]},"DeleteFleetAdvisorCollector":{"conditionKeys":[],"resources":[],"description":"Grants permission to delete the specified Fleet Advisor collector","accessLevel":"Write","resourceTypes":[]},"DeleteFleetAdvisorDatabases":{"conditionKeys":[],"resources":[],"description":"Grants permission to delete the specified Fleet Advisor databases","accessLevel":"Write","resourceTypes":[]},"DeleteInstanceProfile":{"conditionKeys":[],"resources":[{"name":"InstanceProfile"}],"description":"Grants permission to delete the specified instance profile","accessLevel":"Write","resourceTypes":[{"name":"InstanceProfile","required":true}]},"DeleteMigrationProject":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to delete the specified migration project","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"DeleteReplicationConfig":{"conditionKeys":[],"resources":[{"name":"ReplicationConfig"}],"description":"Grants permission to delete the specified replication config","accessLevel":"Write","resourceTypes":[{"name":"ReplicationConfig","required":true}]},"DeleteReplicationInstance":{"conditionKeys":[],"resources":[{"name":"ReplicationInstance"}],"description":"Grants permission to delete the specified replication instance","accessLevel":"Write","resourceTypes":[{"name":"ReplicationInstance","required":true}]},"DeleteReplicationSubnetGroup":{"conditionKeys":[],"resources":[{"name":"ReplicationSubnetGroup"}],"description":"Grants permission to deletes a subnet group","accessLevel":"Write","resourceTypes":[{"name":"ReplicationSubnetGroup","required":true}]},"DeleteReplicationTask":{"conditionKeys":[],"resources":[{"name":"ReplicationTask"}],"description":"Grants permission to delete the specified replication task","accessLevel":"Write","resourceTypes":[{"name":"ReplicationTask","required":true}]},"DeleteReplicationTaskAssessmentRun":{"conditionKeys":[],"resources":[{"name":"ReplicationTaskAssessmentRun"}],"description":"Grants permission to delete the record of a single premigration assessment run","accessLevel":"Write","resourceTypes":[{"name":"ReplicationTaskAssessmentRun","required":true}]},"DescribeAccountAttributes":{"conditionKeys":[],"resources":[],"description":"Grants permission to list all of the AWS DMS attributes for a customer account","accessLevel":"Read","resourceTypes":[]},"DescribeApplicableIndividualAssessments":{"conditionKeys":[],"resources":[{"name":"ReplicationInstance"},{"name":"ReplicationTask"}],"description":"Grants permission to list individual assessments that you can specify for a new premigration assessment run","accessLevel":"Read","resourceTypes":[{"name":"ReplicationInstance","required":false},{"name":"ReplicationTask","required":false}]},"DescribeCertificates":{"conditionKeys":[],"resources":[],"description":"Grants permission to provide a description of the certificate","accessLevel":"Read","resourceTypes":[]},"DescribeConnections":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe the status of the connections that have been made between the replication instance and an endpoint","accessLevel":"Read","resourceTypes":[]},"DescribeConversionConfiguration":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to return information about DMS Schema Conversion project configuration","accessLevel":"Read","resourceTypes":[{"name":"MigrationProject","required":true}]},"DescribeDataMigrations":{"conditionKeys":[],"resources":[],"description":"Grants permission to return information about database migrations for your account in the specified region","accessLevel":"Read","resourceTypes":[]},"DescribeEndpointSettings":{"conditionKeys":[],"resources":[],"description":"Grants permission to return the possible endpoint settings available when you create an endpoint for a specific database engine","accessLevel":"Read","resourceTypes":[]},"DescribeEndpointTypes":{"conditionKeys":[],"resources":[],"description":"Grants permission to return information about the type of endpoints available","accessLevel":"Read","resourceTypes":[]},"DescribeEndpoints":{"conditionKeys":[],"resources":[],"description":"Grants permission to return information about the endpoints for your account in the current region","accessLevel":"Read","resourceTypes":[]},"DescribeEngineVersions":{"conditionKeys":[],"resources":[],"description":"Grants permission to return information about the available versions for DMS replication instances","accessLevel":"Read","resourceTypes":[]},"DescribeEventCategories":{"conditionKeys":[],"resources":[],"description":"Grants permission to list categories for all event source types, or, if specified, for a specified source type","accessLevel":"Read","resourceTypes":[]},"DescribeEventSubscriptions":{"conditionKeys":[],"resources":[],"description":"Grants permission to list all the event subscriptions for a customer account","accessLevel":"Read","resourceTypes":[]},"DescribeEvents":{"conditionKeys":[],"resources":[],"description":"Grants permission to list events for a given source identifier and source type","accessLevel":"Read","resourceTypes":[]},"DescribeFleetAdvisorCollectors":{"conditionKeys":[],"resources":[],"description":"Grants permission to return a paginated list of Fleet Advisor collectors in your account based on filter settings","accessLevel":"Read","resourceTypes":[]},"DescribeFleetAdvisorDatabases":{"conditionKeys":[],"resources":[],"description":"Grants permission to return a paginated list of Fleet Advisor databases in your account based on filter settings","accessLevel":"Read","resourceTypes":[]},"DescribeFleetAdvisorLsaAnalysis":{"conditionKeys":[],"resources":[],"description":"Grants permission to return a paginated list of descriptions of large-scale assessment (LSA) analyses produced by your Fleet Advisor collectors","accessLevel":"Read","resourceTypes":[]},"DescribeFleetAdvisorSchemaObjectSummary":{"conditionKeys":[],"resources":[],"description":"Grants permission to return a paginated list of descriptions of schemas discovered by your Fleet Advisor collectors based on filter settings","accessLevel":"Read","resourceTypes":[]},"DescribeFleetAdvisorSchemas":{"conditionKeys":[],"resources":[],"description":"Grants permission to return a paginated list of schemas discovered by your Fleet Advisor collectors based on filter settings","accessLevel":"Read","resourceTypes":[]},"DescribeMetadataModel":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to get detailed information about the specified metadata model, including its definition and corresponding converted objects in the target database if applicable","accessLevel":"Read","resourceTypes":[{"name":"MigrationProject","required":true}]},"DescribeMetadataModelChildren":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to get a list of child metadata models for the specified metadata model in the database hierarchy","accessLevel":"Read","resourceTypes":[{"name":"MigrationProject","required":true}]},"DescribeMetadataModelCreations":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to return a paginated list of metadata model creation requests for a migration project","accessLevel":"Read","resourceTypes":[{"name":"MigrationProject","required":true}]},"DescribeMetadataModelImports":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to return information about start metadata model import operations for a migration project","accessLevel":"Read","resourceTypes":[{"name":"MigrationProject","required":true}]},"DescribeOrderableReplicationInstances":{"conditionKeys":[],"resources":[],"description":"Grants permission to return information about the replication instance types that can be created in the specified region","accessLevel":"Read","resourceTypes":[]},"DescribePendingMaintenanceActions":{"conditionKeys":[],"resources":[],"description":"Grants permission to return information about pending maintenance actions","accessLevel":"Read","resourceTypes":[]},"DescribeRecommendationLimitations":{"conditionKeys":[],"resources":[],"description":"Grants permission to return a paginated list of descriptions of limitations for recommendations of target AWS engines","accessLevel":"Read","resourceTypes":[]},"DescribeRecommendations":{"conditionKeys":[],"resources":[],"description":"Grants permission to return a paginated list of descriptions of target engine recommendations for your source databases","accessLevel":"Read","resourceTypes":[]},"DescribeRefreshSchemasStatus":{"conditionKeys":[],"resources":[{"name":"Endpoint"}],"description":"Grants permission to returns the status of the RefreshSchemas operation","accessLevel":"Read","resourceTypes":[{"name":"Endpoint","required":true}]},"DescribeReplicationConfigs":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe replication configs","accessLevel":"Read","resourceTypes":[]},"DescribeReplicationInstanceTaskLogs":{"conditionKeys":["aws:ResourceTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"ReplicationInstance"}],"description":"Grants permission to return information about the task logs for the specified task","accessLevel":"Read","resourceTypes":[{"name":"ReplicationInstance","required":true}]},"DescribeReplicationInstances":{"conditionKeys":[],"resources":[],"description":"Grants permission to return information about replication instances for your account in the current region","accessLevel":"Read","resourceTypes":[]},"DescribeReplicationSubnetGroups":{"conditionKeys":[],"resources":[],"description":"Grants permission to return information about the replication subnet groups","accessLevel":"Read","resourceTypes":[]},"DescribeReplicationTableStatistics":{"conditionKeys":[],"resources":[{"name":"ReplicationConfig"}],"description":"Grants permission to describe replication table statistics","accessLevel":"Read","resourceTypes":[{"name":"ReplicationConfig","required":true}]},"DescribeReplicationTaskAssessmentResults":{"conditionKeys":[],"resources":[{"name":"ReplicationTask"}],"description":"Grants permission to return the latest task assessment results from Amazon S3","accessLevel":"Read","resourceTypes":[{"name":"ReplicationTask","required":false}]},"DescribeReplicationTaskAssessmentRuns":{"conditionKeys":[],"resources":[{"name":"ReplicationInstance"},{"name":"ReplicationTask"},{"name":"ReplicationTaskAssessmentRun"}],"description":"Grants permission to return a paginated list of premigration assessment runs based on filter settings","accessLevel":"Read","resourceTypes":[{"name":"ReplicationInstance","required":false},{"name":"ReplicationTask","required":false},{"name":"ReplicationTaskAssessmentRun","required":false}]},"DescribeReplicationTaskIndividualAssessments":{"conditionKeys":[],"resources":[{"name":"ReplicationTask"},{"name":"ReplicationTaskAssessmentRun"}],"description":"Grants permission to return a paginated list of individual assessments based on filter settings","accessLevel":"Read","resourceTypes":[{"name":"ReplicationTask","required":false},{"name":"ReplicationTaskAssessmentRun","required":false}]},"DescribeReplicationTasks":{"conditionKeys":[],"resources":[],"description":"Grants permission to return information about replication tasks for your account in the current region","accessLevel":"Read","resourceTypes":[]},"DescribeReplications":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe replications","accessLevel":"Read","resourceTypes":[]},"DescribeSchemas":{"conditionKeys":[],"resources":[{"name":"Endpoint"}],"description":"Grants permission to return information about the schema for the specified endpoint","accessLevel":"Read","resourceTypes":[{"name":"Endpoint","required":true}]},"DescribeTableStatistics":{"conditionKeys":[],"resources":[{"name":"ReplicationTask"}],"description":"Grants permission to return table statistics on the database migration task, including table name, rows inserted, rows updated, and rows deleted","accessLevel":"Read","resourceTypes":[{"name":"ReplicationTask","required":true}]},"ExportMetadataModelAssessment":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to export the specified metadata model assessment","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":false}]},"GetTargetSelectionRules":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to convert source selection rules into their target counterparts for schema conversion operations","accessLevel":"Read","resourceTypes":[{"name":"MigrationProject","required":true}]},"ImportCertificate":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys"],"resources":[],"description":"Grants permission to upload the specified certificate","accessLevel":"Write","resourceTypes":[]},"ListDataProviders":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the AWS DMS attributes for a data providers","accessLevel":"Read","resourceTypes":[]},"ListExtensionPacks":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to list the AWS DMS attributes for a extension packs","accessLevel":"Read","resourceTypes":[{"name":"MigrationProject","required":false}]},"ListInstanceProfiles":{"conditionKeys":[],"resources":[{"name":"InstanceProfile"}],"description":"Grants permission to list the AWS DMS attributes for a instance profiles","accessLevel":"Read","resourceTypes":[{"name":"InstanceProfile","required":false}]},"ListMetadataModelAssessmentActionItems":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to list the AWS DMS attributes for a metadata model assessment action items. Note. Despite this action requires StartMetadataModelImport, the latter does not currently authorize the described Schema Conversion operation","accessLevel":"Read","resourceTypes":[{"name":"MigrationProject","required":false}],"dependentActions":["dms:StartMetadataModelImport"],"permissionOnly":true},"ListMetadataModelAssessments":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to list the AWS DMS attributes for a metadata model assessments","accessLevel":"Read","resourceTypes":[{"name":"MigrationProject","required":false}]},"ListMetadataModelConversions":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to list the AWS DMS attributes for a metadata model conversions","accessLevel":"Read","resourceTypes":[{"name":"MigrationProject","required":false}]},"ListMetadataModelExports":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to list the AWS DMS attributes for a metadata model exports","accessLevel":"Read","resourceTypes":[{"name":"MigrationProject","required":false}]},"ListMigrationProjects":{"conditionKeys":[],"resources":[{"name":"DataProvider"},{"name":"InstanceProfile"},{"name":"MigrationProject"}],"description":"Grants permission to list the AWS DMS attributes for a migration projects. Note. Despite this action requires DescribeMigrationProjects and DescribeConversionConfiguration, both required actions do not currently authorize the described Schema Conversion operation","accessLevel":"Read","resourceTypes":[{"name":"DataProvider","required":false},{"name":"InstanceProfile","required":false},{"name":"MigrationProject","required":false}],"dependentActions":["dms:DescribeConversionConfiguration"]},"ListTagsForResource":{"conditionKeys":[],"resources":[{"name":"Certificate"},{"name":"DataMigration"},{"name":"DataProvider"},{"name":"Endpoint"},{"name":"EventSubscription"},{"name":"InstanceProfile"},{"name":"MigrationProject"},{"name":"ReplicationConfig"},{"name":"ReplicationInstance"},{"name":"ReplicationSubnetGroup"},{"name":"ReplicationTask"},{"name":"ReplicationTaskAssessmentRun"},{"name":"ReplicationTaskIndividualAssessment"}],"description":"Grants permission to list all tags for an AWS DMS resource","accessLevel":"Read","resourceTypes":[{"name":"Certificate","required":false},{"name":"DataMigration","required":false},{"name":"DataProvider","required":false},{"name":"Endpoint","required":false},{"name":"EventSubscription","required":false},{"name":"InstanceProfile","required":false},{"name":"MigrationProject","required":false},{"name":"ReplicationConfig","required":false},{"name":"ReplicationInstance","required":false},{"name":"ReplicationSubnetGroup","required":false},{"name":"ReplicationTask","required":false},{"name":"ReplicationTaskAssessmentRun","required":false},{"name":"ReplicationTaskIndividualAssessment","required":false}]},"ModifyDataMigration":{"conditionKeys":[],"resources":[{"name":"DataMigration"}],"description":"Grants permission to modify the specified database migration","accessLevel":"Write","resourceTypes":[{"name":"DataMigration","required":true}],"dependentActions":["iam:PassRole"]},"ModifyEndpoint":{"conditionKeys":[],"resources":[{"name":"Certificate"},{"name":"Endpoint"}],"description":"Grants permission to modify the specified endpoint","accessLevel":"Write","resourceTypes":[{"name":"Endpoint","required":true},{"name":"Certificate","required":false}],"dependentActions":["iam:PassRole"]},"ModifyEventSubscription":{"conditionKeys":[],"resources":[],"description":"Grants permission to modify an existing AWS DMS event notification subscription","accessLevel":"Write","resourceTypes":[]},"ModifyFleetAdvisorCollector":{"conditionKeys":[],"resources":[],"description":"Grants permission to modify the name and description of the specified Fleet Advisor collector","accessLevel":"Write","resourceTypes":[],"permissionOnly":true},"ModifyFleetAdvisorCollectorStatuses":{"conditionKeys":[],"resources":[],"description":"Grants permission to modify the status of the specified Fleet Advisor collector","accessLevel":"Write","resourceTypes":[],"permissionOnly":true},"ModifyOutboundIntegration":{"conditionKeys":[],"resources":[],"description":"Grants permission to DMS to modify resources for zero-ETL integrations with self managed databases","accessLevel":"Write","resourceTypes":[],"dependentActions":["iam:PassRole"],"permissionOnly":true},"ModifyReplicationConfig":{"conditionKeys":[],"resources":[{"name":"ReplicationConfig"}],"description":"Grants permission to modify the specified replication config","accessLevel":"Write","resourceTypes":[{"name":"ReplicationConfig","required":true}]},"ModifyReplicationInstance":{"conditionKeys":[],"resources":[{"name":"ReplicationInstance"}],"description":"Grants permission to modify the replication instance to apply new settings","accessLevel":"Write","resourceTypes":[{"name":"ReplicationInstance","required":true}]},"ModifyReplicationSubnetGroup":{"conditionKeys":[],"resources":[],"description":"Grants permission to modify the settings for the specified replication subnet group","accessLevel":"Write","resourceTypes":[]},"ModifyReplicationTask":{"conditionKeys":[],"resources":[{"name":"ReplicationTask"}],"description":"Grants permission to modify the specified replication task","accessLevel":"Write","resourceTypes":[{"name":"ReplicationTask","required":true}]},"MoveReplicationTask":{"conditionKeys":[],"resources":[{"name":"ReplicationInstance"},{"name":"ReplicationTask"}],"description":"Grants permission to move the specified replication task to a different replication instance","accessLevel":"Write","resourceTypes":[{"name":"ReplicationInstance","required":true},{"name":"ReplicationTask","required":true}]},"RebootReplicationInstance":{"conditionKeys":[],"resources":[{"name":"ReplicationInstance"}],"description":"Grants permission to reboot a replication instance. Rebooting results in a momentary outage, until the replication instance becomes available again","accessLevel":"Write","resourceTypes":[{"name":"ReplicationInstance","required":true}]},"RefreshSchemas":{"conditionKeys":[],"resources":[{"name":"Endpoint"},{"name":"ReplicationInstance"}],"description":"Grants permission to populate the schema for the specified endpoint","accessLevel":"Write","resourceTypes":[{"name":"Endpoint","required":true},{"name":"ReplicationInstance","required":true}]},"ReloadReplicationTables":{"conditionKeys":[],"resources":[{"name":"ReplicationConfig"}],"description":"Grants permission to reload the target database table with the source for a replication","accessLevel":"Write","resourceTypes":[{"name":"ReplicationConfig","required":true}]},"ReloadTables":{"conditionKeys":[],"resources":[{"name":"ReplicationTask"}],"description":"Grants permission to reload the target database table with the source data","accessLevel":"Write","resourceTypes":[{"name":"ReplicationTask","required":true}]},"RemoveTagsFromResource":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"Certificate"},{"name":"DataMigration"},{"name":"DataProvider"},{"name":"Endpoint"},{"name":"EventSubscription"},{"name":"InstanceProfile"},{"name":"MigrationProject"},{"name":"ReplicationConfig"},{"name":"ReplicationInstance"},{"name":"ReplicationSubnetGroup"},{"name":"ReplicationTask"},{"name":"ReplicationTaskAssessmentRun"},{"name":"ReplicationTaskIndividualAssessment"}],"description":"Grants permission to remove metadata tags from a DMS resource","accessLevel":"Tagging","resourceTypes":[{"name":"Certificate","required":false},{"name":"DataMigration","required":false},{"name":"DataProvider","required":false},{"name":"Endpoint","required":false},{"name":"EventSubscription","required":false},{"name":"InstanceProfile","required":false},{"name":"MigrationProject","required":false},{"name":"ReplicationConfig","required":false},{"name":"ReplicationInstance","required":false},{"name":"ReplicationSubnetGroup","required":false},{"name":"ReplicationTask","required":false},{"name":"ReplicationTaskAssessmentRun","required":false},{"name":"ReplicationTaskIndividualAssessment","required":false}]},"RunFleetAdvisorLsaAnalysis":{"conditionKeys":[],"resources":[],"description":"Grants permission to run a large-scale assessment (LSA) analysis on every Fleet Advisor collector in your account","accessLevel":"Write","resourceTypes":[]},"StartDataMigration":{"conditionKeys":[],"resources":[{"name":"DataMigration"}],"description":"Grants permission to start the database migration","accessLevel":"Write","resourceTypes":[{"name":"DataMigration","required":true}]},"StartMetadataModelAssessment":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to start a new assessment of metadata model","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"StartMetadataModelConversion":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to start a new conversion of metadata model","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"StartMetadataModelCreation":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to create source metadata model of the given type with the specified properties for schema conversion operations","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"StartMetadataModelExportAsScripts":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to start a new export of metadata model as script","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"StartMetadataModelExportToTarget":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to start a new export of metadata model to target","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"StartMetadataModelImport":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to start a new import of metadata model","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"StartRecommendations":{"conditionKeys":[],"resources":[],"description":"Grants permission to start the analysis of your source database to provide recommendations of target engines","accessLevel":"Write","resourceTypes":[]},"StartReplication":{"conditionKeys":[],"resources":[{"name":"ReplicationConfig"}],"description":"Grants permission to start a replication","accessLevel":"Write","resourceTypes":[{"name":"ReplicationConfig","required":true}]},"StartReplicationTask":{"conditionKeys":[],"resources":[{"name":"ReplicationTask"}],"description":"Grants permission to start the replication task","accessLevel":"Write","resourceTypes":[{"name":"ReplicationTask","required":true}]},"StartReplicationTaskAssessment":{"conditionKeys":[],"resources":[{"name":"ReplicationTask"}],"description":"Grants permission to start the replication task assessment for unsupported data types in the source database","accessLevel":"Write","resourceTypes":[{"name":"ReplicationTask","required":true}]},"StartReplicationTaskAssessmentRun":{"conditionKeys":[],"resources":[{"name":"ReplicationTask"}],"description":"Grants permission to start a new premigration assessment run for one or more individual assessments of a migration task","accessLevel":"Write","resourceTypes":[{"name":"ReplicationTask","required":true}],"dependentActions":["iam:PassRole"]},"StopDataMigration":{"conditionKeys":[],"resources":[{"name":"DataMigration"}],"description":"Grants permission to stop the database migration","accessLevel":"Write","resourceTypes":[{"name":"DataMigration","required":true}]},"StopReplication":{"conditionKeys":[],"resources":[{"name":"ReplicationConfig"}],"description":"Grants permission to stop a replication","accessLevel":"Write","resourceTypes":[{"name":"ReplicationConfig","required":true}]},"StopReplicationTask":{"conditionKeys":[],"resources":[{"name":"ReplicationTask"}],"description":"Grants permission to stop the replication task","accessLevel":"Write","resourceTypes":[{"name":"ReplicationTask","required":true}]},"TestConnection":{"conditionKeys":[],"resources":[{"name":"Endpoint"},{"name":"ReplicationInstance"}],"description":"Grants permission to test the connection between the replication instance and the endpoint","accessLevel":"Read","resourceTypes":[{"name":"Endpoint","required":true},{"name":"ReplicationInstance","required":true}]},"UpdateConversionConfiguration":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to update a conversion configuration","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"UpdateDataProvider":{"conditionKeys":[],"resources":[{"name":"DataProvider"}],"description":"Grants permission to update the specified data provider","accessLevel":"Write","resourceTypes":[{"name":"DataProvider","required":true}]},"UpdateInstanceProfile":{"conditionKeys":[],"resources":[{"name":"InstanceProfile"}],"description":"Grants permission to update the specified instance profile","accessLevel":"Write","resourceTypes":[{"name":"InstanceProfile","required":true}]},"UpdateMigrationProject":{"conditionKeys":[],"resources":[{"name":"MigrationProject"}],"description":"Grants permission to update the specified migration project","accessLevel":"Write","resourceTypes":[{"name":"MigrationProject","required":true}]},"UpdateSubscriptionsToEventBridge":{"conditionKeys":[],"resources":[],"description":"Grants permission to migrate DMS subcriptions to Eventbridge","accessLevel":"Write","resourceTypes":[]},"UploadFileMetadataList":{"conditionKeys":[],"resources":[],"description":"Grants permission to upload files to your Amazon S3 bucket","accessLevel":"Write","resourceTypes":[],"permissionOnly":true}},"resources":[{"name":"Certificate","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:cert:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:cert-tag/${TagKey}"]},{"name":"DataMigration","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:data-migration:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:data-migration-tag/${TagKey}"]},{"name":"DataProvider","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:data-provider:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:data-provider-tag/${TagKey}"]},{"name":"Endpoint","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:endpoint:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:endpoint-tag/${TagKey}"]},{"name":"EventSubscription","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:es:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:es-tag/${TagKey}"]},{"name":"InstanceProfile","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:instance-profile:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:instance-profile-tag/${TagKey}"]},{"name":"MigrationProject","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:migration-project:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:migration-project-tag/${TagKey}"]},{"name":"ReplicationConfig","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:replication-config:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:replication-config-tag/${TagKey}"]},{"name":"ReplicationInstance","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:rep:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:rep-tag/${TagKey}"]},{"name":"ReplicationSubnetGroup","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:subgrp:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:subgrp-tag/${TagKey}"]},{"name":"ReplicationTask","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:task:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:task-tag/${TagKey}"]},{"name":"ReplicationTaskAssessmentRun","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:assessment-run:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:assessment-run-tag/${TagKey}"]},{"name":"ReplicationTaskIndividualAssessment","arnFormats":["arn:${Partition}:dms:${Region}:${Account}:individual-assessment:*"],"conditionKeys":["aws:ResourceTag/${TagKey}","dms:individual-assessment-tag/${TagKey}"]}],"conditionKeys":{"aws:RequestTag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request"},"aws:ResourceTag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs attached to the resource"},"aws:TagKeys":{"types":["ArrayOfString"],"description":"Filters access by the presence of tag keys in the request"},"dms:assessment-run-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for AssessmentRun"},"dms:cert-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for Certificate"},"dms:data-migration-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for DataMigration"},"dms:data-provider-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for DataProvider"},"dms:endpoint-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for Endpoint"},"dms:es-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for EventSubscription"},"dms:individual-assessment-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for IndividualAssessment"},"dms:instance-profile-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for InstanceProfile"},"dms:migration-project-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for MigrationProject"},"dms:rep-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for ReplicationInstance"},"dms:replication-config-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for ReplicationConfig"},"dms:req-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the given request"},"dms:subgrp-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for ReplicationSubnetGroup"},"dms:task-tag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request for ReplicationTask"}}}

package/src/data/servicereference/services/docdb-elastic.json

@@ -0,0 +1 @@
+{"name":"docdb-elastic","actions":{"ApplyPendingMaintenanceAction":{"conditionKeys":["aws:ResourceTag/${TagKey}"],"resources":[{"name":"cluster"}],"description":"Grants permission to apply pending maintenance actions on Amazon DocDB-Elastic cluster","accessLevel":"Write","resourceTypes":[{"name":"cluster","required":true}]},"CopyClusterSnapshot":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"cluster-snapshot"}],"description":"Grants permission to copy a new Amazon DocDB-Elastic cluster snapshot","accessLevel":"Write","resourceTypes":[{"name":"cluster-snapshot","required":true}],"dependentActions":["docdb-elastic:CreateClusterSnapshot","kms:CreateGrant","kms:Decrypt","kms:DescribeKey","kms:GenerateDataKey"]},"CreateCluster":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[],"description":"Grants permission to create a new Amazon DocDB-Elastic cluster","accessLevel":"Write","resourceTypes":[],"dependentActions":["ec2:CreateVpcEndpoint","ec2:DeleteVpcEndpoints","ec2:DescribeAvailabilityZones","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcAttribute","ec2:DescribeVpcEndpoints","ec2:DescribeVpcs","ec2:ModifyVpcEndpoint","iam:CreateServiceLinkedRole","kms:CreateGrant","kms:Decrypt","kms:DescribeKey","kms:GenerateDataKey","secretsmanager:DescribeSecret","secretsmanager:GetResourcePolicy","secretsmanager:GetSecretValue","secretsmanager:ListSecretVersionIds","secretsmanager:ListSecrets"]},"CreateClusterSnapshot":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"cluster"},{"name":"cluster-snapshot"}],"description":"Grants permission to create a new Amazon DocDB-Elastic cluster snapshot","accessLevel":"Write","resourceTypes":[{"name":"cluster","required":true},{"name":"cluster-snapshot","required":true}],"dependentActions":["ec2:CreateVpcEndpoint","ec2:DeleteVpcEndpoints","ec2:DescribeAvailabilityZones","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcAttribute","ec2:DescribeVpcEndpoints","ec2:DescribeVpcs","ec2:ModifyVpcEndpoint","iam:CreateServiceLinkedRole","kms:CreateGrant","kms:Decrypt","kms:DescribeKey","kms:GenerateDataKey","secretsmanager:DescribeSecret","secretsmanager:GetResourcePolicy","secretsmanager:GetSecretValue","secretsmanager:ListSecretVersionIds","secretsmanager:ListSecrets"]},"DeleteCluster":{"conditionKeys":["aws:ResourceTag/${TagKey}"],"resources":[{"name":"cluster"}],"description":"Grants permission to delete a cluster","accessLevel":"Write","resourceTypes":[{"name":"cluster","required":true}],"dependentActions":["ec2:DeleteVpcEndpoints","ec2:DescribeAvailabilityZones","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcAttribute","ec2:DescribeVpcEndpoints","ec2:DescribeVpcs","ec2:ModifyVpcEndpoint"]},"DeleteClusterSnapshot":{"conditionKeys":["aws:ResourceTag/${TagKey}"],"resources":[{"name":"cluster-snapshot"}],"description":"Grants permission to delete a cluster snapshot","accessLevel":"Write","resourceTypes":[{"name":"cluster-snapshot","required":true}],"dependentActions":["ec2:DeleteVpcEndpoints","ec2:DescribeAvailabilityZones","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcAttribute","ec2:DescribeVpcEndpoints","ec2:DescribeVpcs","ec2:ModifyVpcEndpoint"]},"GetCluster":{"conditionKeys":["aws:ResourceTag/${TagKey}"],"resources":[{"name":"cluster"}],"description":"Grants permission to view details about a cluster","accessLevel":"Read","resourceTypes":[{"name":"cluster","required":true}]},"GetClusterSnapshot":{"conditionKeys":["aws:ResourceTag/${TagKey}"],"resources":[{"name":"cluster-snapshot"}],"description":"Grants permission to view details about a cluster snapshot","accessLevel":"Read","resourceTypes":[{"name":"cluster-snapshot","required":true}]},"GetPendingMaintenanceAction":{"conditionKeys":["aws:ResourceTag/${TagKey}"],"resources":[{"name":"cluster"}],"description":"Grants permission to view details about pending maintenance actions on Amazon DocDB-Elastic cluster","accessLevel":"Read","resourceTypes":[{"name":"cluster","required":true}]},"ListClusterSnapshots":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the cluster snapshots in your account","accessLevel":"List","resourceTypes":[]},"ListClusters":{"conditionKeys":[],"resources":[],"description":"Grants permission to list the clusters in your account","accessLevel":"List","resourceTypes":[]},"ListPendingMaintenanceActions":{"conditionKeys":["aws:ResourceTag/${TagKey}"],"resources":[],"description":"Grants permission to list details about pending maintenance actions on any Amazon DocDB-Elastic cluster","accessLevel":"List","resourceTypes":[]},"ListTagsForResource":{"conditionKeys":["aws:ResourceTag/${TagKey}"],"resources":[{"name":"cluster"},{"name":"cluster-snapshot"}],"description":"Grants permission to lists tag for an DocumentDB Elastic resource","accessLevel":"List","resourceTypes":[{"name":"cluster","required":false},{"name":"cluster-snapshot","required":false}]},"RestoreClusterFromSnapshot":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"cluster"},{"name":"cluster-snapshot"}],"description":"Grants permission to restore cluster from a Amazon DocDB-Elastic cluster snapshot","accessLevel":"Write","resourceTypes":[{"name":"cluster","required":true},{"name":"cluster-snapshot","required":true}],"dependentActions":["docdb-elastic:CreateCluster","ec2:CreateVpcEndpoint","ec2:DeleteVpcEndpoints","ec2:DescribeAvailabilityZones","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcAttribute","ec2:DescribeVpcEndpoints","ec2:DescribeVpcs","ec2:ModifyVpcEndpoint","iam:CreateServiceLinkedRole","kms:CreateGrant","kms:Decrypt","kms:DescribeKey","kms:GenerateDataKey","secretsmanager:DescribeSecret","secretsmanager:GetResourcePolicy","secretsmanager:GetSecretValue","secretsmanager:ListSecretVersionIds","secretsmanager:ListSecrets"]},"StartCluster":{"conditionKeys":["aws:ResourceTag/${TagKey}"],"resources":[{"name":"cluster"}],"description":"Grants permission to start a stopped Amazon DocDB-Elastic cluster","accessLevel":"Write","resourceTypes":[{"name":"cluster","required":true}]},"StopCluster":{"conditionKeys":["aws:ResourceTag/${TagKey}"],"resources":[{"name":"cluster"}],"description":"Grants permission to stop an existing Amazon DocDB-Elastic cluster","accessLevel":"Write","resourceTypes":[{"name":"cluster","required":true}]},"TagResource":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:ResourceTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"cluster"},{"name":"cluster-snapshot"}],"description":"Grants permission to tag an DocumentDB Elastic resource","accessLevel":"Tagging","resourceTypes":[{"name":"cluster","required":false},{"name":"cluster-snapshot","required":false}]},"UntagResource":{"conditionKeys":["aws:TagKeys"],"resources":[{"name":"cluster"},{"name":"cluster-snapshot"}],"description":"Grants permission to untag a DocumentDB Elastic resource","accessLevel":"Tagging","resourceTypes":[{"name":"cluster","required":false},{"name":"cluster-snapshot","required":false}]},"UpdateCluster":{"conditionKeys":["aws:ResourceTag/${TagKey}"],"resources":[{"name":"cluster"}],"description":"Grants permission to modify a cluster","accessLevel":"Write","resourceTypes":[{"name":"cluster","required":true}],"dependentActions":["ec2:CreateVpcEndpoint","ec2:DeleteVpcEndpoints","ec2:DescribeAvailabilityZones","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcAttribute","ec2:DescribeVpcEndpoints","ec2:DescribeVpcs","ec2:ModifyVpcEndpoint","kms:CreateGrant","kms:Decrypt","kms:DescribeKey","kms:GenerateDataKey","secretsmanager:DescribeSecret","secretsmanager:GetResourcePolicy","secretsmanager:GetSecretValue","secretsmanager:ListSecretVersionIds","secretsmanager:ListSecrets"]}},"resources":[{"name":"cluster","arnFormats":["arn:${Partition}:docdb-elastic:${Region}:${Account}:cluster/${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"cluster-snapshot","arnFormats":["arn:${Partition}:docdb-elastic:${Region}:${Account}:cluster-snapshot/${ResourceId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]}],"conditionKeys":{"aws:RequestTag/${TagKey}":{"types":["String"],"description":"Filters access by the set of tag key-value pairs in the request"},"aws:ResourceTag/${TagKey}":{"types":["String"],"description":"Filters access by the set of tag key-value pairs attached to the resource"},"aws:TagKeys":{"types":["ArrayOfString"],"description":"Filters access by the set of tag keys in the request"}}}

package/src/data/servicereference/services/drs.json

@@ -0,0 +1 @@
+{"name":"drs","actions":{"AssociateFailbackClientToRecoveryInstanceForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to get associate failback client to recovery instance","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}],"permissionOnly":true},"AssociateSourceNetworkStack":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"SourceNetworkResource"}],"description":"Grants permission to associate CloudFormation stack with source network","accessLevel":"Write","resourceTypes":[{"name":"SourceNetworkResource","required":true}],"dependentActions":["cloudformation:DescribeStackResource","cloudformation:DescribeStacks","drs:GetLaunchConfiguration","ec2:CreateLaunchTemplateVersion","ec2:DescribeLaunchTemplateVersions","ec2:DescribeLaunchTemplates","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcs","ec2:ModifyLaunchTemplate"]},"BatchCreateVolumeSnapshotGroupForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to batch create volume snapshot group","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"BatchDeleteSnapshotRequestForDrs":{"conditionKeys":[],"resources":[],"description":"Grants permission to batch delete snapshot request","accessLevel":"Write","resourceTypes":[],"permissionOnly":true},"CreateConvertedSnapshotForDrs":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to create converted snapshot","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}],"permissionOnly":true},"CreateExtendedSourceServer":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[],"description":"Grants permission to extend a source server","accessLevel":"Write","resourceTypes":[],"dependentActions":["drs:DescribeSourceServers","drs:GetReplicationConfiguration"]},"CreateLaunchConfigurationTemplate":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[],"description":"Grants permission to create launch configuration template","accessLevel":"Write","resourceTypes":[]},"CreateRecoveryInstanceForDrs":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to create recovery instance","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}],"permissionOnly":true},"CreateReplicationConfigurationTemplate":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[],"description":"Grants permission to create replication configuration template","accessLevel":"Write","resourceTypes":[],"dependentActions":["ec2:CreateSecurityGroup","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:GetEbsDefaultKmsKeyId","ec2:GetEbsEncryptionByDefault","kms:CreateGrant","kms:DescribeKey"]},"CreateSourceNetwork":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[],"description":"Grants permission to create a source network","accessLevel":"Write","resourceTypes":[],"dependentActions":["ec2:DescribeInstances","ec2:DescribeVpcs"]},"CreateSourceServerForDrs":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[],"description":"Grants permission to create a source server","accessLevel":"Write","resourceTypes":[],"permissionOnly":true},"DeleteJob":{"conditionKeys":[],"resources":[{"name":"JobResource"}],"description":"Grants permission to delete a job","accessLevel":"Write","resourceTypes":[{"name":"JobResource","required":true}]},"DeleteLaunchAction":{"conditionKeys":[],"resources":[{"name":"LaunchConfigurationTemplateResource"},{"name":"SourceServerResource"}],"description":"Grants permission to delete a launch action","accessLevel":"Write","resourceTypes":[{"name":"LaunchConfigurationTemplateResource","required":false},{"name":"SourceServerResource","required":false}]},"DeleteLaunchConfigurationTemplate":{"conditionKeys":[],"resources":[{"name":"LaunchConfigurationTemplateResource"}],"description":"Grants permission to delete launch configuration template","accessLevel":"Write","resourceTypes":[{"name":"LaunchConfigurationTemplateResource","required":true}]},"DeleteRecoveryInstance":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to delete recovery instance","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}]},"DeleteReplicationConfigurationTemplate":{"conditionKeys":[],"resources":[{"name":"ReplicationConfigurationTemplateResource"}],"description":"Grants permission to delete replication configuration template","accessLevel":"Write","resourceTypes":[{"name":"ReplicationConfigurationTemplateResource","required":true}]},"DeleteSourceNetwork":{"conditionKeys":[],"resources":[{"name":"SourceNetworkResource"}],"description":"Grants permission to delete source network","accessLevel":"Write","resourceTypes":[{"name":"SourceNetworkResource","required":true}]},"DeleteSourceServer":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to delete source server","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}]},"DescribeJobLogItems":{"conditionKeys":[],"resources":[{"name":"JobResource"}],"description":"Grants permission to describe job log items","accessLevel":"Read","resourceTypes":[{"name":"JobResource","required":true}]},"DescribeJobs":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe jobs","accessLevel":"Read","resourceTypes":[]},"DescribeLaunchConfigurationTemplates":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe launch configuration template","accessLevel":"Read","resourceTypes":[]},"DescribeRecoveryInstances":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe recovery instances","accessLevel":"Read","resourceTypes":[],"dependentActions":["drs:DescribeSourceServers","ec2:DescribeInstances"]},"DescribeRecoverySnapshots":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to describe recovery snapshots","accessLevel":"Read","resourceTypes":[{"name":"SourceServerResource","required":true}]},"DescribeReplicationConfigurationTemplates":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe replication configuration template","accessLevel":"Read","resourceTypes":[]},"DescribeReplicationServerAssociationsForDrs":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe replication server associations","accessLevel":"Read","resourceTypes":[],"permissionOnly":true},"DescribeSnapshotRequestsForDrs":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe snapshot requests","accessLevel":"Read","resourceTypes":[],"permissionOnly":true},"DescribeSourceNetworks":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe source networks","accessLevel":"Read","resourceTypes":[]},"DescribeSourceServers":{"conditionKeys":[],"resources":[],"description":"Grants permission to describe source servers","accessLevel":"Read","resourceTypes":[]},"DisconnectRecoveryInstance":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to disconnect recovery instance","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}]},"DisconnectSourceServer":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to disconnect source server","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}]},"ExportSourceNetworkCfnTemplate":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"SourceNetworkResource"}],"description":"Grants permission to export CloudFormation template which contains source network resources","accessLevel":"Write","resourceTypes":[{"name":"SourceNetworkResource","required":true}],"dependentActions":["s3:GetBucketLocation","s3:GetObject","s3:PutObject"]},"GetAgentCommandForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to get agent command","accessLevel":"Read","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"GetAgentConfirmedResumeInfoForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to get agent confirmed resume info","accessLevel":"Read","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"GetAgentInstallationAssetsForDrs":{"conditionKeys":[],"resources":[],"description":"Grants permission to get agent installation assets","accessLevel":"Read","resourceTypes":[],"permissionOnly":true},"GetAgentReplicationInfoForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to get agent replication info","accessLevel":"Read","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"GetAgentRuntimeConfigurationForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to get agent runtime configuration","accessLevel":"Read","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"GetAgentSnapshotCreditsForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to get agent snapshot credits","accessLevel":"Read","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"GetChannelCommandsForDrs":{"conditionKeys":[],"resources":[],"description":"Grants permission to get channel commands","accessLevel":"Read","resourceTypes":[],"permissionOnly":true},"GetFailbackCommandForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to get failback command","accessLevel":"Read","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}],"permissionOnly":true},"GetFailbackLaunchRequestedForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to get failback launch requested","accessLevel":"Read","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}],"permissionOnly":true},"GetFailbackReplicationConfiguration":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to get failback replication configuration","accessLevel":"Read","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}]},"GetLaunchConfiguration":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to get launch configuration","accessLevel":"Read","resourceTypes":[{"name":"SourceServerResource","required":true}]},"GetReplicationConfiguration":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to get replication configuration","accessLevel":"Read","resourceTypes":[{"name":"SourceServerResource","required":true}]},"GetSuggestedFailbackClientDeviceMappingForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to get suggested failback client device mapping","accessLevel":"Read","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}],"permissionOnly":true},"InitializeService":{"conditionKeys":[],"resources":[],"description":"Grants permission to initialize service","accessLevel":"Write","resourceTypes":[],"dependentActions":["iam:AddRoleToInstanceProfile","iam:CreateInstanceProfile","iam:CreateServiceLinkedRole","iam:GetInstanceProfile"]},"IssueAgentCertificateForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to issue an agent certificate","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"ListExtensibleSourceServers":{"conditionKeys":[],"resources":[],"description":"Grants permission to list extensible source servers","accessLevel":"Read","resourceTypes":[],"dependentActions":["drs:DescribeSourceServers"]},"ListLaunchActions":{"conditionKeys":[],"resources":[{"name":"LaunchConfigurationTemplateResource"},{"name":"SourceServerResource"}],"description":"Grants permission to list launch actions","accessLevel":"Read","resourceTypes":[{"name":"LaunchConfigurationTemplateResource","required":false},{"name":"SourceServerResource","required":false}]},"ListStagingAccounts":{"conditionKeys":[],"resources":[],"description":"Grants permission to list staging accounts","accessLevel":"Read","resourceTypes":[]},"ListTagsForResource":{"conditionKeys":[],"resources":[],"description":"Grants permission to list tags for a resource","accessLevel":"Read","resourceTypes":[]},"NotifyAgentAuthenticationForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to notify agent authentication","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"NotifyAgentConnectedForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to notify agent is connected","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"NotifyAgentDisconnectedForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to notify agent is disconnected","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"NotifyAgentReplicationProgressForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to notify agent replication progress","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"NotifyConsistencyAttainedForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to notify consistency attained","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}],"permissionOnly":true},"NotifyReplicationServerAuthenticationForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to notify replication server authentication","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}],"permissionOnly":true},"NotifyVolumeEventForDrs":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to notify replicator volume events","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}],"permissionOnly":true},"PutLaunchAction":{"conditionKeys":[],"resources":[{"name":"LaunchConfigurationTemplateResource"},{"name":"SourceServerResource"}],"description":"Grants permission to put a launch action","accessLevel":"Write","resourceTypes":[{"name":"LaunchConfigurationTemplateResource","required":false},{"name":"SourceServerResource","required":false}],"dependentActions":["ssm:DescribeDocument"]},"RetryDataReplication":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to retry data replication","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}]},"ReverseReplication":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to reverse replication","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}],"dependentActions":["drs:DescribeReplicationConfigurationTemplates","drs:DescribeSourceServers","ec2:DescribeInstances"]},"SendAgentLogsForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to send agent logs","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"SendAgentMetricsForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to send agent metrics","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"SendChannelCommandResultForDrs":{"conditionKeys":[],"resources":[],"description":"Grants permission to send channel command result","accessLevel":"Write","resourceTypes":[],"permissionOnly":true},"SendClientLogsForDrs":{"conditionKeys":[],"resources":[],"description":"Grants permission to send client logs","accessLevel":"Write","resourceTypes":[],"permissionOnly":true},"SendClientMetricsForDrs":{"conditionKeys":[],"resources":[],"description":"Grants permission to send client metrics","accessLevel":"Write","resourceTypes":[],"permissionOnly":true},"SendVolumeStatsForDrs":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to send volume throughput statistics","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}],"permissionOnly":true},"StartFailbackLaunch":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to start failback launch","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}]},"StartRecovery":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to start recovery","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}],"dependentActions":["drs:CreateRecoveryInstanceForDrs","drs:ListTagsForResource","ec2:AttachVolume","ec2:AuthorizeSecurityGroupEgress","ec2:AuthorizeSecurityGroupIngress","ec2:CreateLaunchTemplate","ec2:CreateLaunchTemplateVersion","ec2:CreateSnapshot","ec2:CreateTags","ec2:CreateVolume","ec2:DeleteLaunchTemplateVersions","ec2:DeleteSnapshot","ec2:DeleteVolume","ec2:DescribeAccountAttributes","ec2:DescribeAvailabilityZones","ec2:DescribeImages","ec2:DescribeInstanceAttribute","ec2:DescribeInstanceStatus","ec2:DescribeInstanceTypes","ec2:DescribeInstances","ec2:DescribeLaunchTemplateVersions","ec2:DescribeLaunchTemplates","ec2:DescribeSecurityGroups","ec2:DescribeSnapshots","ec2:DescribeSubnets","ec2:DescribeVolumes","ec2:DetachVolume","ec2:ModifyInstanceAttribute","ec2:ModifyLaunchTemplate","ec2:RevokeSecurityGroupEgress","ec2:RunInstances","ec2:StartInstances","ec2:StopInstances","ec2:TerminateInstances","iam:PassRole"]},"StartReplication":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to start replication","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}]},"StartSourceNetworkRecovery":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"SourceNetworkResource"}],"description":"Grants permission to start network recovery","accessLevel":"Write","resourceTypes":[{"name":"SourceNetworkResource","required":true}],"dependentActions":["cloudformation:CreateStack","cloudformation:DescribeStackResource","cloudformation:DescribeStacks","cloudformation:UpdateStack","drs:GetLaunchConfiguration","ec2:CreateLaunchTemplateVersion","ec2:DescribeLaunchTemplateVersions","ec2:DescribeLaunchTemplates","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:DescribeVpcs","ec2:ModifyLaunchTemplate","s3:GetObject","s3:PutObject"]},"StartSourceNetworkReplication":{"conditionKeys":[],"resources":[{"name":"SourceNetworkResource"}],"description":"Grants permission to start network replication","accessLevel":"Write","resourceTypes":[{"name":"SourceNetworkResource","required":true}]},"StopFailback":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to stop failback","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}]},"StopReplication":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to stop replication","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}]},"StopSourceNetworkReplication":{"conditionKeys":[],"resources":[{"name":"SourceNetworkResource"}],"description":"Grants permission to stop network replication","accessLevel":"Write","resourceTypes":[{"name":"SourceNetworkResource","required":true}]},"TagResource":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys","drs:CreateAction"],"resources":[{"name":"JobResource"},{"name":"LaunchConfigurationTemplateResource"},{"name":"RecoveryInstanceResource"},{"name":"ReplicationConfigurationTemplateResource"},{"name":"SourceNetworkResource"},{"name":"SourceServerResource"}],"description":"Grants permission to assign a resource tag","accessLevel":"Tagging","resourceTypes":[{"name":"JobResource","required":false},{"name":"LaunchConfigurationTemplateResource","required":false},{"name":"RecoveryInstanceResource","required":false},{"name":"ReplicationConfigurationTemplateResource","required":false},{"name":"SourceNetworkResource","required":false},{"name":"SourceServerResource","required":false}]},"TerminateRecoveryInstances":{"conditionKeys":["aws:RequestTag/${TagKey}","aws:TagKeys"],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to terminate recovery instances","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}],"dependentActions":["drs:DescribeSourceServers","ec2:DeleteVolume","ec2:DescribeInstances","ec2:DescribeVolumes","ec2:TerminateInstances"]},"UntagResource":{"conditionKeys":["aws:TagKeys"],"resources":[{"name":"JobResource"},{"name":"LaunchConfigurationTemplateResource"},{"name":"RecoveryInstanceResource"},{"name":"ReplicationConfigurationTemplateResource"},{"name":"SourceNetworkResource"},{"name":"SourceServerResource"}],"description":"Grants permission to untag a resource","accessLevel":"Tagging","resourceTypes":[{"name":"JobResource","required":false},{"name":"LaunchConfigurationTemplateResource","required":false},{"name":"RecoveryInstanceResource","required":false},{"name":"ReplicationConfigurationTemplateResource","required":false},{"name":"SourceNetworkResource","required":false},{"name":"SourceServerResource","required":false}]},"UpdateAgentBacklogForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to update agent backlog","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"UpdateAgentConversionInfoForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to update agent conversion info","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"UpdateAgentReplicationInfoForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to update agent replication info","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"UpdateAgentReplicationProcessStateForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to update agent replication process state","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"UpdateAgentSourcePropertiesForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"},{"name":"SourceServerResource"}],"description":"Grants permission to update agent source properties","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true},{"name":"SourceServerResource","required":true}],"permissionOnly":true},"UpdateFailbackClientDeviceMappingForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to update failback client device mapping","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}],"permissionOnly":true},"UpdateFailbackClientLastSeenForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to update failback client last seen","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}],"permissionOnly":true},"UpdateFailbackReplicationConfiguration":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to update failback replication configuration","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}]},"UpdateLaunchConfiguration":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to update launch configuration","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}],"dependentActions":["ec2:DescribeInstances"]},"UpdateLaunchConfigurationTemplate":{"conditionKeys":[],"resources":[{"name":"LaunchConfigurationTemplateResource"}],"description":"Grants permission to update launch configuration","accessLevel":"Write","resourceTypes":[{"name":"LaunchConfigurationTemplateResource","required":true}]},"UpdateReplicationCertificateForDrs":{"conditionKeys":[],"resources":[{"name":"RecoveryInstanceResource"}],"description":"Grants permission to update a replication certificate","accessLevel":"Write","resourceTypes":[{"name":"RecoveryInstanceResource","required":true}],"permissionOnly":true},"UpdateReplicationConfiguration":{"conditionKeys":[],"resources":[{"name":"SourceServerResource"}],"description":"Grants permission to update replication configuration","accessLevel":"Write","resourceTypes":[{"name":"SourceServerResource","required":true}],"dependentActions":["ec2:CreateSecurityGroup","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:GetEbsDefaultKmsKeyId","ec2:GetEbsEncryptionByDefault","kms:CreateGrant","kms:DescribeKey"]},"UpdateReplicationConfigurationTemplate":{"conditionKeys":[],"resources":[{"name":"ReplicationConfigurationTemplateResource"}],"description":"Grants permission to update replication configuration template","accessLevel":"Write","resourceTypes":[{"name":"ReplicationConfigurationTemplateResource","required":true}],"dependentActions":["ec2:CreateSecurityGroup","ec2:DescribeSecurityGroups","ec2:DescribeSubnets","ec2:GetEbsDefaultKmsKeyId","ec2:GetEbsEncryptionByDefault","kms:CreateGrant","kms:DescribeKey"]}},"resources":[{"name":"JobResource","arnFormats":["arn:${Partition}:drs:${Region}:${Account}:job/${JobID}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"LaunchConfigurationTemplateResource","arnFormats":["arn:${Partition}:drs:${Region}:${Account}:launch-configuration-template/${LaunchConfigurationTemplateID}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"RecoveryInstanceResource","arnFormats":["arn:${Partition}:drs:${Region}:${Account}:recovery-instance/${RecoveryInstanceID}"],"conditionKeys":["aws:ResourceTag/${TagKey}","drs:EC2InstanceARN"]},{"name":"ReplicationConfigurationTemplateResource","arnFormats":["arn:${Partition}:drs:${Region}:${Account}:replication-configuration-template/${ReplicationConfigurationTemplateID}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"SourceNetworkResource","arnFormats":["arn:${Partition}:drs:${Region}:${Account}:source-network/${SourceNetworkID}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]},{"name":"SourceServerResource","arnFormats":["arn:${Partition}:drs:${Region}:${Account}:source-server/${SourceServerID}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]}],"conditionKeys":{"aws:RequestTag/${TagKey}":{"types":["String"],"description":"Filters access by the presence of tag key-value pairs in the request"},"aws:ResourceTag/${TagKey}":{"types":["String"],"description":"Filters access by tag key-value pairs attached to the resource"},"aws:TagKeys":{"types":["ArrayOfString"],"description":"Filters access by the presence of tag keys in the request"},"drs:CreateAction":{"types":["String"],"description":"Filters access by the name of a resource-creating API action"},"drs:EC2InstanceARN":{"types":["ARN"],"description":"Filters access by the EC2 instance the request originated from"}}}

package/src/data/servicereference/services/ds-data.json

@@ -0,0 +1 @@
+{"name":"ds-data","actions":{"AddGroupMember":{"conditionKeys":["ds-data:Identifier","ds-data:MemberName","ds-data:MemberRealm","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to add a member to a group on a directory","accessLevel":"Write","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"CreateGroup":{"conditionKeys":["ds-data:Identifier","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to create a group on a directory","accessLevel":"Write","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"CreateUser":{"conditionKeys":["ds-data:Identifier","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to create a user on a directory","accessLevel":"Write","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"DeleteGroup":{"conditionKeys":["ds-data:Identifier","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to delete a group on a directory","accessLevel":"Write","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"DeleteUser":{"conditionKeys":["ds-data:Identifier","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to delete a user on a directory","accessLevel":"Write","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"DescribeGroup":{"conditionKeys":["ds-data:Identifier","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to describe a group on a directory","accessLevel":"Read","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"DescribeUser":{"conditionKeys":["ds-data:Identifier","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to describe a user on a directory","accessLevel":"Read","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"DisableUser":{"conditionKeys":["ds-data:Identifier","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to disable a user on a directory","accessLevel":"Write","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"ListGroupMembers":{"conditionKeys":["ds-data:Identifier","ds-data:MemberRealm","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to list members in a group on a directory","accessLevel":"List","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"ListGroups":{"conditionKeys":["ds-data:Realm"],"resources":[{"name":"directory"}],"description":"Grants permission to list groups on a directory","accessLevel":"List","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"ListGroupsForMember":{"conditionKeys":["ds-data:Identifier","ds-data:MemberRealm","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to list the groups that a member is in on a directory","accessLevel":"List","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"ListUsers":{"conditionKeys":["ds-data:Realm"],"resources":[{"name":"directory"}],"description":"Grants permission to list users on a directory","accessLevel":"List","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"RemoveGroupMember":{"conditionKeys":["ds-data:Identifier","ds-data:MemberName","ds-data:MemberRealm","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to remove a member from a group on a directory","accessLevel":"Write","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"SearchGroups":{"conditionKeys":["ds-data:Realm"],"resources":[{"name":"directory"}],"description":"Grants permission to search for groups on a directory","accessLevel":"Read","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds-data:DescribeGroup","ds:AccessDSData"]},"SearchUsers":{"conditionKeys":["ds-data:Realm"],"resources":[{"name":"directory"}],"description":"Grants permission to search for users on a directory","accessLevel":"Read","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds-data:DescribeUser","ds:AccessDSData"]},"UpdateGroup":{"conditionKeys":["ds-data:Identifier","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to update a group on a directory","accessLevel":"Write","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]},"UpdateUser":{"conditionKeys":["ds-data:Identifier","ds-data:Realm","ds-data:SAMAccountName"],"resources":[{"name":"directory"}],"description":"Grants permission to update a user on a directory","accessLevel":"Write","resourceTypes":[{"name":"directory","required":true}],"dependentActions":["ds:AccessDSData"]}},"resources":[{"name":"directory","arnFormats":["arn:${Partition}:ds:${Region}:${Account}:directory/${DirectoryId}"],"conditionKeys":["aws:ResourceTag/${TagKey}"]}],"conditionKeys":{"aws:ResourceTag/${TagKey}":{"types":["String"],"description":"Filters access by the AWS DS Resource being acted upon"},"ds-data:Identifier":{"types":["String"],"description":"Filters access by the type of identifier provided in the request (i.e. SAM Account Name)"},"ds-data:MemberName":{"types":["String"],"description":"Filters access by the directory SAM Account Name included in the MemberName input of the request"},"ds-data:MemberRealm":{"types":["String"],"description":"Filters access by the directory realm name included in the MemberRealm input of the request"},"ds-data:Realm":{"types":["String"],"description":"Filters access by the directory realm name for the request"},"ds-data:SAMAccountName":{"types":["String"],"description":"Filters access by the directory SAM Account Name included in the SAMAccountName input of the request"}}}