iam-floyd 0.781.0 → 0.783.0

package/lib/generated/policy-statements/q.d.ts

@@ -21,6 +21,54 @@ export declare class Q extends PolicyStatement {
      * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
      */
     toAssociateConnectorResource(): this;
+    /**
+     * Grants permission to associate a login domain with an Amazon Q Developer Profile
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toAssociateLoginDomain(): this;
+    /**
+     * Grants permission to describe multiple groups for an Amazon Q Developer Profile
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toBatchDescribeGroups(): this;
+    /**
+     * Grants permission to describe multiple users for an Amazon Q Developer Profile
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toBatchDescribeUsers(): this;
+    /**
+     * Grants permission to get multiple groups for an Amazon Q Developer Profile
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toBatchGetGroups(): this;
+    /**
+     * Grants permission to get multiple users for an Amazon Q Developer Profile
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toBatchGetUsers(): this;
+    /**
+     * Grants permission to create an artifact with Amazon Q
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toCreateArtifact(): this;
     /**
      * Grants permission to create a user or group assignment for an Amazon Q Developer Profile
      *
@@ -73,6 +121,14 @@ export declare class Q extends PolicyStatement {
      * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
      */
     toCreatePlugin(): this;
+    /**
+     * Grants permission to create a SCIM access token for an Amazon Q Developer Profile
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toCreateScimAccessToken(): this;
     /**
      * Grants permission to delete a user or group assignment for an Amazon Q Developer Profile
      *
@@ -118,6 +174,22 @@ export declare class Q extends PolicyStatement {
      * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
      */
     toDeletePlugin(): this;
+    /**
+     * Grants permission to delete a SCIM access token for an Amazon Q Developer Profile
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toDeleteScimAccessToken(): this;
+    /**
+     * Grants permission to disassociate a login domain from an Amazon Q Developer Profile
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toDisassociateLoginDomain(): this;
     /**
      * Grants permission to generate code from CLI commands in Amazon Q
      *
@@ -134,6 +206,27 @@ export declare class Q extends PolicyStatement {
      * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
      */
     toGenerateCodeRecommendations(): this;
+    /**
+     * Grants permission to view an Amazon Q artifact
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toGetArtifact(): this;
+    /**
+     * Grants permission to view results of an action in an Amazon Q artifact
+     *
+     * Access Level: Read
+     *
+     * Dependent actions:
+     * - cloudformation:GetResource
+     * - cloudformation:GetResourceRequestStatus
+     * - cloudformation:ListResourceRequests
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toGetArtifactActionResult(): this;
     /**
      * Grants permission to view information about a specific Amazon Q connector
      *
@@ -193,6 +286,22 @@ export declare class Q extends PolicyStatement {
      * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
      */
     toListDashboardMetrics(): this;
+    /**
+     * Grants permission to list groups for an Amazon Q Developer Profile
+     *
+     * Access Level: List
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toListGroups(): this;
+    /**
+     * Grants permission to list login domains for an Amazon Q Developer Profile
+     *
+     * Access Level: List
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toListLoginDomains(): this;
     /**
      * Grants permission to list available plugins in Amazon Q
      *
@@ -209,6 +318,14 @@ export declare class Q extends PolicyStatement {
      * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
      */
     toListPlugins(): this;
+    /**
+     * Grants permission to list SCIM access tokens for an Amazon Q Developer Profile
+     *
+     * Access Level: List
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toListScimAccessTokens(): this;
     /**
      * Grants permission to list all tags associated with an Amazon Q resource
      *
@@ -220,6 +337,14 @@ export declare class Q extends PolicyStatement {
      * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
      */
     toListTagsForResource(): this;
+    /**
+     * Grants permission to list users for an Amazon Q Developer Profile
+     *
+     * Access Level: List
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toListUsers(): this;
     /**
      * Grants permission to allow Amazon Q to perform actions on your behalf
      *
@@ -228,6 +353,26 @@ export declare class Q extends PolicyStatement {
      * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
      */
     toPassRequest(): this;
+    /**
+     * Grants permission to perform an action in an Amazon Q artifact
+     *
+     * Access Level: Write
+     *
+     * Dependent actions:
+     * - cloudformation:CancelResourceRequest
+     * - cloudformation:CreateResource
+     * - cloudformation:GetResource
+     * - cloudformation:GetResourceRequestStatus
+     * - cloudformation:ListResourceRequests
+     * - cloudformation:UpdateResource
+     * - iam:AttachRolePolicy
+     * - iam:CreatePolicy
+     * - iam:CreateRole
+     * - iam:PutRolePolicy
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toPerformArtifactAction(): this;
     /**
      * Grants permission to reject a connection request for an Amazon Q connector
      *
@@ -307,6 +452,18 @@ export declare class Q extends PolicyStatement {
      * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
      */
     toUntagResource(): this;
+    /**
+     * Grants permission to update a user or group assignment for an Amazon Q Developer Profile
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifIdentitystoreUserId()
+     * - .ifIdentitystoreGroupId()
+     *
+     * https://docs.aws.amazon.com/amazonq/latest/qdeveloper-ug/security_iam_manage-access-with-policies.html
+     */
+    toUpdateAssignment(): this;
     /**
      * Grants permission to update OAuth user in Amazon Q
      *
@@ -395,6 +552,9 @@ export declare class Q extends PolicyStatement {
      * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account.
      * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region.
      * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition.
+     *
+     * Possible conditions:
+     * - .ifAwsResourceTag()
      */
     onProfile(identifier: string, account?: string, region?: string, partition?: string): this;
     /**
@@ -439,6 +599,7 @@ export declare class Q extends PolicyStatement {
      * - .toUntagResource()
      *
      * Applies to resource types:
+     * - profile
      * - plugin
      *
      * @param tagKey The tag key to check
@@ -469,6 +630,7 @@ export declare class Q extends PolicyStatement {
      * Applies to actions:
      * - .toCreateAssignment()
      * - .toDeleteAssignment()
+     * - .toUpdateAssignment()
      *
      * @param value The value(s) to check
      * @param operator Works with [string operators](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition_operators.html#Conditions_String). **Default:** `StringLike`
@@ -482,6 +644,7 @@ export declare class Q extends PolicyStatement {
      * Applies to actions:
      * - .toCreateAssignment()
      * - .toDeleteAssignment()
+     * - .toUpdateAssignment()
      *
      * @param value The value(s) to check
      * @param operator Works with [string operators](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition_operators.html#Conditions_String). **Default:** `StringLike`