iam-floyd 0.807.0 → 0.810.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +2 -2
- package/lib/generated/aws-managed-policies/cdk-iam-floyd.d.ts +8 -0
- package/lib/generated/aws-managed-policies/cdk-iam-floyd.js +17 -1
- package/lib/generated/aws-managed-policies/iam-floyd.d.ts +8 -0
- package/lib/generated/aws-managed-policies/iam-floyd.js +9 -1
- package/lib/generated/policy-statements/billing.d.ts +26 -0
- package/lib/generated/policy-statements/billing.js +35 -1
- package/lib/generated/policy-statements/cloudwatchapplicationsignals.d.ts +83 -3
- package/lib/generated/policy-statements/cloudwatchapplicationsignals.js +116 -13
- package/lib/generated/policy-statements/cloudwatchlogs.d.ts +24 -0
- package/lib/generated/policy-statements/cloudwatchlogs.js +34 -1
- package/lib/generated/policy-statements/config.d.ts +77 -0
- package/lib/generated/policy-statements/config.js +95 -1
- package/lib/generated/policy-statements/guardduty.d.ts +24 -0
- package/lib/generated/policy-statements/guardduty.js +34 -1
- package/lib/generated/policy-statements/inspector2.d.ts +77 -0
- package/lib/generated/policy-statements/inspector2.js +98 -1
- package/lib/generated/policy-statements/lambda.d.ts +289 -3
- package/lib/generated/policy-statements/lambda.js +379 -5
- package/package.json +1 -1
package/README.md
CHANGED
|
@@ -20,6 +20,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
20
20
|
AdministratorAccessAWSElasticBeanstalk(): aws_iam.IManagedPolicy;
|
|
21
21
|
/** Provides permissions required by the AWS DevOps Agent to conduct investigations and perform analysis on customer AWS resources. */
|
|
22
22
|
AIDevOpsAgentAccessPolicy(): aws_iam.IManagedPolicy;
|
|
23
|
+
/** Provides elevated permissions required by the AWS DevOps Agent to perform operator-approved mutations or elevated actions on customer AWS resources during operational events. */
|
|
24
|
+
AIDevOpsAgentActionsPolicy(): aws_iam.IManagedPolicy;
|
|
23
25
|
/** Provides full access to Amazon DevOps Agent via the AWS Management Console */
|
|
24
26
|
AIDevOpsAgentFullAccess(): aws_iam.IManagedPolicy;
|
|
25
27
|
/** Provides read only access to Amazon DevOps Agent via the AWS Management Console */
|
|
@@ -430,6 +432,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
430
432
|
AmazonEMRServerlessServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
431
433
|
/** This policy is used for the Amazon EMR Service Role and should NOT be used for any other IAM users or roles in your account. The policy grants permissions to create and manage resources associated with EMR and related services necessary for the operation of your EMR cluster. */
|
|
432
434
|
AmazonEMRServicePolicyV2(): aws_iam.IManagedPolicy;
|
|
435
|
+
/** Provides permissions to provision and manage Network Load Balancers, VPC endpoint services, and security groups required for Amazon EMR Spark Connect interactive sessions on EMR on EC2 clusters. */
|
|
436
|
+
AmazonEMRServicePolicyForSessions(): aws_iam.IManagedPolicy;
|
|
433
437
|
/** Provides limited access to the Amazon Cognito configuration service. */
|
|
434
438
|
AmazonESCognitoAccess(): aws_iam.IManagedPolicy;
|
|
435
439
|
/** Provides full access to the Amazon ES configuration service. */
|
|
@@ -1464,6 +1468,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
1464
1468
|
AWSConfigRulesExecutionRole(): aws_iam.IManagedPolicy;
|
|
1465
1469
|
/** Allows Config to call AWS services and collect resource configurations on your behalf. */
|
|
1466
1470
|
AWSConfigServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
1471
|
+
/** Provides permissions for AWS Config to inventory and evaluate compliance of third-party cloud resources. */
|
|
1472
|
+
AWSConfigThirdPartyServiceRolePolicy(): aws_iam.IManagedPolicy;
|
|
1467
1473
|
/** Provides access to use AWS Config, including searching by tags on resources, and reading all tags. This does not provide permission to configure AWS Config, which requires administrative privileges. */
|
|
1468
1474
|
AWSConfigUserAccess(): aws_iam.IManagedPolicy;
|
|
1469
1475
|
/** Enables broad read/write access to ALL EC2 objects, read/write access to S3 buckets starting with 'import-to-ec2-', and the ability to list all S3 buckets, for the AWS Connector to import VMs on your behalf. */
|
|
@@ -1918,6 +1924,8 @@ export declare class AwsManagedPolicy extends AwsManagedPolicyStatic {
|
|
|
1918
1924
|
AWSLambdaManagedEC2ResourceOperator(): aws_iam.IManagedPolicy;
|
|
1919
1925
|
/** Provides permissions required to access MSK Cluster within a VPC, manage ENIs (create, describe, delete) in the VPC and write permissions to CloudWatch Logs. */
|
|
1920
1926
|
AWSLambdaMSKExecutionRole(): aws_iam.IManagedPolicy;
|
|
1927
|
+
/** This policy grants permissions to create and administer ENI resources managed by the Lambda Network Connector */
|
|
1928
|
+
AWSLambdaNetworkConnectorOperatorPolicy(): aws_iam.IManagedPolicy;
|
|
1921
1929
|
/** Grants Lambda Replicator necessary permissions to replicate functions across regions */
|
|
1922
1930
|
AWSLambdaReplicator(): aws_iam.IManagedPolicy;
|
|
1923
1931
|
/** Default policy for AWS Lambda service role. */
|