cdk-iam-floyd 0.707.0 → 0.709.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +2 -2
- package/lib/generated/aws-managed-policies/cdk-iam-floyd.d.ts +16 -6
- package/lib/generated/aws-managed-policies/cdk-iam-floyd.js +33 -13
- package/lib/generated/aws-managed-policies/iam-floyd.d.ts +16 -6
- package/lib/generated/aws-managed-policies/iam-floyd.js +17 -7
- package/lib/generated/index.d.ts +3 -3
- package/lib/generated/index.js +13 -13
- package/lib/generated/policy-statements/{iamidentitycentersuccessortoawssinglesign-on.d.ts → iamidentitycenter.d.ts} +2 -2
- package/lib/generated/policy-statements/iamidentitycenter.js +1730 -0
- package/lib/generated/policy-statements/{iamidentitycentersuccessortoawssinglesign-ondirectory.d.ts → iamidentitycenterdirectory.d.ts} +2 -2
- package/lib/generated/policy-statements/iamidentitycenterdirectory.js +654 -0
- package/lib/generated/policy-statements/transform.d.ts +84 -0
- package/lib/generated/policy-statements/transform.js +119 -0
- package/package.json +5 -5
- package/lib/generated/policy-statements/iamidentitycentersuccessortoawssinglesign-on.js +0 -1730
- package/lib/generated/policy-statements/iamidentitycentersuccessortoawssinglesign-ondirectory.js +0 -654
- package/lib/generated/policy-statements/sagemakergroundtruthsynthetic.d.ts +0 -89
- package/lib/generated/policy-statements/sagemakergroundtruthsynthetic.js +0 -137
package/README.md
CHANGED
|
@@ -230,6 +230,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
230
230
|
AmazonDRSVPCManagement(): aws_iam.IManagedPolicy;
|
|
231
231
|
/** Provides full access to Amazon DynamoDB via the AWS Management Console. */
|
|
232
232
|
AmazonDynamoDBFullAccess(): aws_iam.IManagedPolicy;
|
|
233
|
+
/** Provides full access to Amazon DynamoDB */
|
|
234
|
+
AmazonDynamoDBFullAccessV2(): aws_iam.IManagedPolicy;
|
|
233
235
|
/** This policy is on a deprecation path. See documentation for guidance: https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/DynamoDBPipeline.html. Provides full access to Amazon DynamoDB including Export/Import using AWS Data Pipeline via the AWS Management Console. */
|
|
234
236
|
AmazonDynamoDBFullAccesswithDataPipeline(): aws_iam.IManagedPolicy;
|
|
235
237
|
/** Provides read only access to Amazon DynamoDB via the AWS Management Console. */
|
|
@@ -408,6 +410,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
408
410
|
AmazonEventBridgeSchemasReadOnlyAccess(): aws_iam.IManagedPolicy;
|
|
409
411
|
/** Grants permissions to Managed Rules created by Amazon EventBridge schemas. */
|
|
410
412
|
AmazonEventBridgeSchemasServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
413
|
+
/** Grants permissions to EVS to manage resources on your behalf */
|
|
414
|
+
AmazonEVSServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
411
415
|
/** Policy to enable AWS FIS to manage monitoring and resource selection for experiments. */
|
|
412
416
|
AmazonFISServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
413
417
|
/** Gives access to all actions for Amazon Forecast */
|
|
@@ -442,6 +446,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
442
446
|
AmazonGrafanaServiceLinkedRolePolicy(): aws_iam.IManagedPolicy;
|
|
443
447
|
/** Provides full access to use Amazon GuardDuty. */
|
|
444
448
|
AmazonGuardDutyFullAccess(): aws_iam.IManagedPolicy;
|
|
449
|
+
/** Provides full access to use Amazon GuardDuty */
|
|
450
|
+
AmazonGuardDutyFullAccessV2(): aws_iam.IManagedPolicy;
|
|
445
451
|
/** GuardDuty malware protection uses the service-linked role (SLR) named AWSServiceRoleForAmazonGuardDutyMalwareProtection. This service-linked role allows GuardDuty malware protection to perform agent-less scans to detect malware. It allows GuardDuty to create snapshots in your account, and share the snapshots with the GuardDuty service account to scan for malware. It evaluates these shared snapshots and includes the retrieved EC2 instance metadata in the GuardDuty Malware Protection findings. The AWSServiceRoleForAmazonGuardDutyMalwareProtection service-linked role trusts the malware-protection.guardduty.amazonaws.com service to assume the role. */
|
|
446
452
|
AmazonGuardDutyMalwareProtectionServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
447
453
|
/** Provides read only access to Amazon GuardDuty resources */
|
|
@@ -830,6 +836,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
830
836
|
AmazonSageMakerPartnerServiceCatalogProductsLambdaServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
831
837
|
/** This Amazon Managed Policy grants permissions commonly needed for use with Callback steps and Lambda steps in SageMaker Model Building Pipelines. It is added to the AmazonSageMaker-ExecutionRole that can be created when setting up SageMaker Studio. It can also be attached to any other role that will be used for authoring or executing pipelines. */
|
|
832
838
|
AmazonSageMakerPipelinesIntegrations(): aws_iam.IManagedPolicy;
|
|
839
|
+
/** This policy will be used By SageMaker Unified Studios to create VPC related resources for QuickSight */
|
|
840
|
+
AmazonSageMakerQuickSightVPCPolicy(): aws_iam.IManagedPolicy;
|
|
833
841
|
/** Provides read only access to Amazon SageMaker via the AWS Management Console and SDK. */
|
|
834
842
|
AmazonSageMakerReadOnly(): aws_iam.IManagedPolicy;
|
|
835
843
|
/** Service role policy used by the AWS APIGateway within the AWS ServiceCatalog provisioned products from Amazon SageMaker portfolio of products. Grants permissions to a set of related services including CloudWatch Logs and others. */
|
|
@@ -1790,8 +1798,6 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
1790
1798
|
AWSMarketplaceFullAccess(): aws_iam.IManagedPolicy;
|
|
1791
1799
|
/** Provides read access to AWS Marketplace Entitlements */
|
|
1792
1800
|
AWSMarketplaceGetEntitlements(): aws_iam.IManagedPolicy;
|
|
1793
|
-
/** Provides full access to AWS Marketplace Private Image Build Feature. In addition to create private images, it also provides permissions to add tags to images, launch and terminate ec2 instances. */
|
|
1794
|
-
AWSMarketplaceImageBuildFullAccess(): aws_iam.IManagedPolicy;
|
|
1795
1801
|
/** Enables access to AWS Services and Resources used or managed by AWS Marketplace for license management. */
|
|
1796
1802
|
AWSMarketplaceLicenseManagementServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
1797
1803
|
/** Provides the ability to subscribe and unsubscribe to AWS Marketplace software */
|
|
@@ -1920,6 +1926,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
1920
1926
|
AWSPriceListServiceFullAccess(): aws_iam.IManagedPolicy;
|
|
1921
1927
|
/** Provides auditor access to AWS Private Certificate Authority */
|
|
1922
1928
|
AWSPrivateCAAuditor(): aws_iam.IManagedPolicy;
|
|
1929
|
+
/** Grants essential permissions for the AWS Private CA Connector for Kubernetes. */
|
|
1930
|
+
AWSPrivateCAConnectorForKubernetesPolicy(): aws_iam.IManagedPolicy;
|
|
1923
1931
|
/** Provides full access to AWS Private Certificate Authority */
|
|
1924
1932
|
AWSPrivateCAFullAccess(): aws_iam.IManagedPolicy;
|
|
1925
1933
|
/** Provides privileged certificate user access to AWS Private Certificate Authority */
|
|
@@ -2007,6 +2015,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
2007
2015
|
/** Provides access to Amazon SageMaker resources from Amazon QuickSight */
|
|
2008
2016
|
AWSQuickSightSageMakerPolicy(): aws_iam.IManagedPolicy;
|
|
2009
2017
|
/** Policy used by QuickSight to create secrets in AWS Secrets Manager and to attach resource policies on existing QuickSight secrets. */
|
|
2018
|
+
AWSQuickSightSecretsManagerWriteAccess(): aws_iam.IManagedPolicy;
|
|
2019
|
+
/** Policy used by QuickSight to create secrets in AWS Secrets Manager and to attach resource policies on existing QuickSight secrets. */
|
|
2010
2020
|
AWSQuickSightSecretsManagerWritePolicy(): aws_iam.IManagedPolicy;
|
|
2011
2021
|
/** AWS QuickSight access to AWS Timestream APIs. Customers can attach this policy to AWS QuickSight role to allow retrieval of data and metadata. */
|
|
2012
2022
|
AWSQuickSightTimestreamPolicy(): aws_iam.IManagedPolicy;
|
|
@@ -2096,6 +2106,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
2096
2106
|
AWSServiceRoleForAmazonEKSNodegroup(): aws_iam.IManagedPolicy;
|
|
2097
2107
|
/** This Service Linked Role provides Amazon Q Developer ability to provide usage information. */
|
|
2098
2108
|
AWSServiceRoleForAmazonQDeveloper(): aws_iam.IManagedPolicy;
|
|
2109
|
+
/** This Service-Linked Role provides AWS Transform with the ability to provide usage information. */
|
|
2110
|
+
AWSServiceRoleForAWSTransform(): aws_iam.IManagedPolicy;
|
|
2099
2111
|
/** Provides access to Systems Manager resources used by CloudWatch Alarms */
|
|
2100
2112
|
AWSServiceRoleForCloudWatchAlarmsActionSSMServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
2101
2113
|
/** Allows CloudWatch to access RDS Performance Insights metrics on your behalf */
|
|
@@ -2302,6 +2314,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
2302
2314
|
CloudSearchFullAccess(): aws_iam.IManagedPolicy;
|
|
2303
2315
|
/** Provides read only access to the Amazon CloudSearch configuration service. */
|
|
2304
2316
|
CloudSearchReadOnlyAccess(): aws_iam.IManagedPolicy;
|
|
2317
|
+
/** This service linked role allows CloudTrail to get and add resource tags to the resource owner's CloudTrail events. */
|
|
2318
|
+
CloudTrailEventContext(): aws_iam.IManagedPolicy;
|
|
2305
2319
|
/** Permission policy for CloudTrail ServiceLinkedRole */
|
|
2306
2320
|
CloudTrailServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
2307
2321
|
/** Allows CloudWatch to assume CloudWatch-CrossAccountSharing roles in remote accounts on behalf of the current account in order to display data cross-account, cross-region */
|
|
@@ -2472,10 +2486,6 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
2472
2486
|
GlobalAcceleratorReadOnlyAccess(): aws_iam.IManagedPolicy;
|
|
2473
2487
|
/** Provides read access to the Greengrass OTA Update artifacts in all Greengrass regions */
|
|
2474
2488
|
GreengrassOTAUpdateArtifactAccess(): aws_iam.IManagedPolicy;
|
|
2475
|
-
/** This policy grants permissions needed to use all features of the SageMaker Ground Truth Synthetic Console. */
|
|
2476
|
-
GroundTruthSyntheticConsoleFullAccess(): aws_iam.IManagedPolicy;
|
|
2477
|
-
/** This policy grants read-only access to SageMaker Ground Truth Synthetic via the AWS Management Console. */
|
|
2478
|
-
GroundTruthSyntheticConsoleReadOnlyAccess(): aws_iam.IManagedPolicy;
|
|
2479
2489
|
/** AWS Health policy to enable Organizational View feature */
|
|
2480
2490
|
HealthOrganizationsServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
2481
2491
|
/** This policy grants access to read all access information provided by IAM access advisor such as service last accessed information. */
|