iamdata 0.1.202504261__py3-none-any.whl → 0.1.202511181__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- iamdata/data/actions/access-analyzer.json +4 -1
- iamdata/data/actions/acm.json +23 -3
- iamdata/data/actions/action-recommendations.json +10 -0
- iamdata/data/actions/aiops.json +189 -1
- iamdata/data/actions/airflow-serverless.json +225 -0
- iamdata/data/actions/amplify.json +2 -12
- iamdata/data/actions/aoss.json +36 -4
- iamdata/data/actions/apigateway.json +104 -0
- iamdata/data/actions/app-integrations.json +108 -0
- iamdata/data/actions/application-signals.json +40 -0
- iamdata/data/actions/appstream.json +138 -103
- iamdata/data/actions/appsync.json +1 -1
- iamdata/data/actions/aps.json +309 -0
- iamdata/data/actions/arc-region-switch.json +334 -0
- iamdata/data/actions/arc-zonal-shift.json +53 -1
- iamdata/data/actions/artifact.json +0 -36
- iamdata/data/actions/athena.json +88 -1
- iamdata/data/actions/auditmanager.json +60 -7
- iamdata/data/actions/autoscaling.json +26 -3
- iamdata/data/actions/aws-marketplace.json +0 -32
- iamdata/data/actions/backup-search.json +1 -0
- iamdata/data/actions/backup.json +80 -0
- iamdata/data/actions/batch.json +183 -17
- iamdata/data/actions/bcm-dashboards.json +79 -0
- iamdata/data/actions/bcm-recommended-actions.json +10 -0
- iamdata/data/actions/bedrock-agentcore.json +1801 -0
- iamdata/data/actions/bedrock.json +814 -23
- iamdata/data/actions/billing.json +88 -5
- iamdata/data/actions/braket.json +2 -9
- iamdata/data/actions/budgets.json +6 -2
- iamdata/data/actions/cases.json +22 -2
- iamdata/data/actions/cassandra.json +67 -2
- iamdata/data/actions/ce.json +34 -0
- iamdata/data/actions/chatbot.json +87 -20
- iamdata/data/actions/cleanrooms-ml.json +11 -0
- iamdata/data/actions/cleanrooms.json +93 -0
- iamdata/data/actions/cloud9.json +4 -10
- iamdata/data/actions/cloudformation.json +22 -0
- iamdata/data/actions/cloudfront.json +457 -85
- iamdata/data/actions/cloudtrail.json +33 -0
- iamdata/data/actions/cloudwatch.json +8 -0
- iamdata/data/actions/codebuild.json +367 -12
- iamdata/data/actions/codepipeline.json +15 -0
- iamdata/data/actions/cognito-idp.json +83 -0
- iamdata/data/actions/connect-campaigns.json +16 -0
- iamdata/data/actions/connect.json +160 -2
- iamdata/data/actions/controlcatalog.json +8 -0
- iamdata/data/actions/cur.json +5 -1
- iamdata/data/actions/databrew.json +14 -7
- iamdata/data/actions/dataexchange.json +61 -9
- iamdata/data/actions/datazone.json +300 -6
- iamdata/data/actions/deadline.json +71 -16
- iamdata/data/actions/dms.json +40 -311
- iamdata/data/actions/ds.json +170 -0
- iamdata/data/actions/dsql.json +226 -22
- iamdata/data/actions/dynamodb.json +32 -0
- iamdata/data/actions/ec2.json +1466 -146
- iamdata/data/actions/ecs.json +59 -9
- iamdata/data/actions/eks-mcp.json +26 -0
- iamdata/data/actions/eks.json +100 -2
- iamdata/data/actions/elasticloadbalancing.json +9 -0
- iamdata/data/actions/elasticmapreduce.json +15 -0
- iamdata/data/actions/emr-containers.json +34 -1
- iamdata/data/actions/emr-serverless.json +16 -0
- iamdata/data/actions/entityresolution.json +16 -8
- iamdata/data/actions/es.json +60 -0
- iamdata/data/actions/events.json +40 -0
- iamdata/data/actions/evs.json +193 -0
- iamdata/data/actions/freetier.json +32 -0
- iamdata/data/actions/fsx.json +59 -6
- iamdata/data/actions/glacier.json +1 -4
- iamdata/data/actions/glue.json +228 -54
- iamdata/data/actions/groundstation.json +15 -0
- iamdata/data/actions/guardduty.json +199 -1
- iamdata/data/actions/healthlake.json +225 -0
- iamdata/data/actions/iam.json +13 -4
- iamdata/data/actions/identitystore.json +91 -19
- iamdata/data/actions/imagebuilder.json +198 -241
- iamdata/data/actions/inspector2.json +208 -12
- iamdata/data/actions/invoicing.json +28 -3
- iamdata/data/actions/iot.json +37 -5
- iamdata/data/actions/iotfleetwise.json +6 -63
- iamdata/data/actions/iotmanagedintegrations.json +507 -75
- iamdata/data/actions/iotsitewise.json +271 -0
- iamdata/data/actions/ivs.json +48 -0
- iamdata/data/actions/kafka.json +15 -0
- iamdata/data/actions/kinesis.json +163 -5
- iamdata/data/actions/kms.json +125 -2
- iamdata/data/actions/lambda.json +4 -2
- iamdata/data/actions/lex.json +42 -0
- iamdata/data/actions/license-manager.json +70 -8
- iamdata/data/actions/logs.json +8 -0
- iamdata/data/actions/mediaconnect.json +85 -26
- iamdata/data/actions/mediaconvert.json +15 -0
- iamdata/data/actions/medialive.json +26 -2
- iamdata/data/actions/medical-imaging.json +105 -0
- iamdata/data/actions/memorydb.json +18 -0
- iamdata/data/actions/mgn.json +20 -2
- iamdata/data/actions/mpa.json +313 -0
- iamdata/data/actions/mq.json +16 -0
- iamdata/data/actions/neptune-graph.json +37 -0
- iamdata/data/actions/network-firewall.json +236 -3
- iamdata/data/actions/network-security-director.json +74 -0
- iamdata/data/actions/notifications.json +62 -2
- iamdata/data/actions/observabilityadmin.json +330 -0
- iamdata/data/actions/odb.json +811 -0
- iamdata/data/actions/one.json +8 -0
- iamdata/data/actions/opensearch.json +1 -1
- iamdata/data/actions/organizations.json +39 -8
- iamdata/data/actions/osis.json +111 -0
- iamdata/data/actions/outposts.json +41 -3
- iamdata/data/actions/partnercentral.json +96 -32
- iamdata/data/actions/payment-cryptography.json +154 -11
- iamdata/data/actions/pcs.json +27 -1
- iamdata/data/actions/pi.json +6 -0
- iamdata/data/actions/profile.json +670 -20
- iamdata/data/actions/q.json +37 -0
- iamdata/data/actions/qapps.json +0 -78
- iamdata/data/actions/qbusiness.json +177 -46
- iamdata/data/actions/quicksight.json +484 -7
- iamdata/data/actions/rds.json +102 -45
- iamdata/data/actions/redshift-serverless.json +2 -2
- iamdata/data/actions/redshift.json +0 -6
- iamdata/data/actions/rekognition.json +1 -8
- iamdata/data/actions/repostspace.json +90 -0
- iamdata/data/actions/resiliencehub.json +19 -5
- iamdata/data/actions/resource-explorer-2.json +84 -2
- iamdata/data/actions/route53resolver.json +14 -2
- iamdata/data/actions/rtbfabric.json +481 -0
- iamdata/data/actions/s3.json +340 -143
- iamdata/data/actions/s3express.json +110 -6
- iamdata/data/actions/s3tables.json +85 -2
- iamdata/data/actions/s3vectors.json +242 -0
- iamdata/data/actions/sagemaker-mlflow.json +135 -0
- iamdata/data/actions/sagemaker-unified-studio-mcp.json +26 -0
- iamdata/data/actions/sagemaker.json +312 -11
- iamdata/data/actions/scn.json +151 -4
- iamdata/data/actions/security-ir.json +23 -8
- iamdata/data/actions/securityhub.json +360 -4
- iamdata/data/actions/securitylake.json +1 -0
- iamdata/data/actions/servicediscovery.json +140 -14
- iamdata/data/actions/servicequotas.json +40 -0
- iamdata/data/actions/ses.json +286 -2
- iamdata/data/actions/shield.json +47 -0
- iamdata/data/actions/snow-device-management.json +1 -0
- iamdata/data/actions/social-messaging.json +120 -0
- iamdata/data/actions/ssm-guiconnect.json +24 -0
- iamdata/data/actions/ssm-sap.json +51 -3
- iamdata/data/actions/ssm.json +63 -2
- iamdata/data/actions/sso-directory.json +108 -36
- iamdata/data/actions/sso-oauth.json +40 -2
- iamdata/data/actions/sso.json +369 -157
- iamdata/data/actions/sts.json +40 -0
- iamdata/data/actions/support-console.json +119 -0
- iamdata/data/actions/support.json +58 -0
- iamdata/data/actions/synthetics.json +18 -0
- iamdata/data/actions/tax.json +48 -0
- iamdata/data/actions/thinclient.json +1 -0
- iamdata/data/actions/transcribe.json +12 -0
- iamdata/data/actions/transfer.json +30 -14
- iamdata/data/actions/transform.json +185 -0
- iamdata/data/actions/user-subscriptions.json +8 -0
- iamdata/data/actions/uxc.json +26 -0
- iamdata/data/actions/verifiedpermissions.json +58 -2
- iamdata/data/actions/vpc-lattice-svcs.json +2 -0
- iamdata/data/actions/vpc-lattice.json +90 -0
- iamdata/data/actions/wisdom.json +31 -214
- iamdata/data/actions/workspaces-instances.json +186 -0
- iamdata/data/actions/workspaces-web.json +136 -8
- iamdata/data/actions/workspaces.json +98 -0
- iamdata/data/actions/xray.json +15 -5
- iamdata/data/conditionKeys/acm.json +5 -0
- iamdata/data/conditionKeys/airflow-serverless.json +17 -0
- iamdata/data/conditionKeys/apigateway.json +30 -0
- iamdata/data/conditionKeys/arc-region-switch.json +17 -0
- iamdata/data/conditionKeys/autoscaling.json +5 -0
- iamdata/data/conditionKeys/backup.json +6 -1
- iamdata/data/conditionKeys/bcm-dashboards.json +12 -0
- iamdata/data/conditionKeys/bedrock-agentcore.json +72 -0
- iamdata/data/conditionKeys/bedrock.json +10 -0
- iamdata/data/conditionKeys/chatbot.json +17 -1
- iamdata/data/conditionKeys/cloudformation.json +5 -0
- iamdata/data/conditionKeys/codebuild.json +550 -0
- iamdata/data/conditionKeys/connect.json +15 -0
- iamdata/data/conditionKeys/deadline.json +5 -0
- iamdata/data/conditionKeys/dsql.json +12 -2
- iamdata/data/conditionKeys/ebs.json +2 -2
- iamdata/data/conditionKeys/ec2.json +30 -15
- iamdata/data/conditionKeys/eks.json +5 -0
- iamdata/data/conditionKeys/events.json +1 -1
- iamdata/data/conditionKeys/evs.json +17 -0
- iamdata/data/conditionKeys/glacier.json +0 -10
- iamdata/data/conditionKeys/glue.json +10 -0
- iamdata/data/conditionKeys/iam.json +10 -0
- iamdata/data/conditionKeys/imagebuilder.json +2 -2
- iamdata/data/conditionKeys/iotmanagedintegrations.json +27 -1
- iamdata/data/conditionKeys/kinesis.json +15 -0
- iamdata/data/conditionKeys/kms.json +127 -7
- iamdata/data/conditionKeys/lambda.json +5 -0
- iamdata/data/conditionKeys/license-manager.json +5 -0
- iamdata/data/conditionKeys/mediaconnect.json +17 -1
- iamdata/data/conditionKeys/mpa.json +27 -0
- iamdata/data/conditionKeys/observabilityadmin.json +32 -1
- iamdata/data/conditionKeys/odb.json +17 -0
- iamdata/data/conditionKeys/quicksight.json +0 -5
- iamdata/data/conditionKeys/rds.json +5 -0
- iamdata/data/conditionKeys/route53.json +1 -1
- iamdata/data/conditionKeys/rtbfabric.json +47 -0
- iamdata/data/conditionKeys/s3.json +15 -0
- iamdata/data/conditionKeys/s3express.json +26 -1
- iamdata/data/conditionKeys/s3tables.json +20 -0
- iamdata/data/conditionKeys/s3vectors.json +12 -0
- iamdata/data/conditionKeys/sagemaker.json +25 -0
- iamdata/data/conditionKeys/savingsplans.json +1 -1
- iamdata/data/conditionKeys/secretsmanager.json +1 -1
- iamdata/data/conditionKeys/securityhub.json +5 -0
- iamdata/data/conditionKeys/servicediscovery.json +5 -0
- iamdata/data/conditionKeys/ses.json +5 -0
- iamdata/data/conditionKeys/ssm.json +15 -0
- iamdata/data/conditionKeys/sso.json +11 -1
- iamdata/data/conditionKeys/sts.json +10 -0
- iamdata/data/conditionKeys/transcribe.json +1 -1
- iamdata/data/conditionKeys/transfer.json +20 -0
- iamdata/data/conditionKeys/transform.json +12 -0
- iamdata/data/conditionKeys/uxc.json +1 -0
- iamdata/data/conditionKeys/verifiedpermissions.json +17 -1
- iamdata/data/conditionKeys/vpc-lattice-svcs.json +5 -0
- iamdata/data/conditionKeys/vpc-lattice.json +15 -0
- iamdata/data/conditionKeys/workspaces-instances.json +17 -0
- iamdata/data/conditionKeys/xray.json +15 -0
- iamdata/data/conditionPatterns.json +141 -0
- iamdata/data/metadata.json +2 -2
- iamdata/data/resourceTypes/action-recommendations.json +1 -0
- iamdata/data/resourceTypes/airflow-serverless.json +9 -0
- iamdata/data/resourceTypes/apigateway.json +12 -0
- iamdata/data/resourceTypes/aps.json +9 -0
- iamdata/data/resourceTypes/arc-region-switch.json +9 -0
- iamdata/data/resourceTypes/artifact.json +5 -5
- iamdata/data/resourceTypes/athena.json +7 -0
- iamdata/data/resourceTypes/auditmanager.json +8 -2
- iamdata/data/resourceTypes/backup-gateway.json +3 -3
- iamdata/data/resourceTypes/batch.json +14 -0
- iamdata/data/resourceTypes/bcm-dashboards.json +1 -0
- iamdata/data/resourceTypes/bcm-recommended-actions.json +1 -0
- iamdata/data/resourceTypes/bedrock-agentcore.json +87 -0
- iamdata/data/resourceTypes/bedrock.json +45 -3
- iamdata/data/resourceTypes/cassandra.json +7 -0
- iamdata/data/resourceTypes/chatbot.json +8 -2
- iamdata/data/resourceTypes/cloudformation.json +4 -0
- iamdata/data/resourceTypes/cloudfront.json +14 -0
- iamdata/data/resourceTypes/dataexchange.json +4 -1
- iamdata/data/resourceTypes/deadline.json +5 -1
- iamdata/data/resourceTypes/ec2.json +125 -6
- iamdata/data/resourceTypes/eks-mcp.json +1 -0
- iamdata/data/resourceTypes/eks.json +7 -0
- iamdata/data/resourceTypes/emr-containers.json +0 -4
- iamdata/data/resourceTypes/events.json +8 -0
- iamdata/data/resourceTypes/evs.json +9 -0
- iamdata/data/resourceTypes/guardduty.json +18 -1
- iamdata/data/resourceTypes/imagebuilder.json +12 -18
- iamdata/data/resourceTypes/inspector2.json +14 -0
- iamdata/data/resourceTypes/iotmanagedintegrations.json +31 -12
- iamdata/data/resourceTypes/iotsitewise.json +7 -0
- iamdata/data/resourceTypes/kinesis.json +4 -1
- iamdata/data/resourceTypes/license-manager.json +10 -2
- iamdata/data/resourceTypes/mediaconnect.json +16 -4
- iamdata/data/resourceTypes/mpa.json +23 -0
- iamdata/data/resourceTypes/network-firewall.json +7 -0
- iamdata/data/resourceTypes/network-security-director.json +1 -0
- iamdata/data/resourceTypes/observabilityadmin.json +23 -1
- iamdata/data/resourceTypes/odb.json +44 -0
- iamdata/data/resourceTypes/osis.json +7 -0
- iamdata/data/resourceTypes/partnercentral.json +8 -2
- iamdata/data/resourceTypes/pi.json +4 -1
- iamdata/data/resourceTypes/profile.json +21 -0
- iamdata/data/resourceTypes/qbusiness.json +7 -4
- iamdata/data/resourceTypes/quicksight.json +26 -1
- iamdata/data/resourceTypes/rds.json +4 -1
- iamdata/data/resourceTypes/redshift.json +1 -4
- iamdata/data/resourceTypes/route53resolver.json +7 -0
- iamdata/data/resourceTypes/rtbfabric.json +46 -0
- iamdata/data/resourceTypes/s3.json +19 -1
- iamdata/data/resourceTypes/s3express.json +10 -2
- iamdata/data/resourceTypes/s3tables.json +7 -1
- iamdata/data/resourceTypes/s3vectors.json +10 -0
- iamdata/data/resourceTypes/sagemaker-unified-studio-mcp.json +1 -0
- iamdata/data/resourceTypes/sagemaker.json +18 -3
- iamdata/data/resourceTypes/scn.json +19 -3
- iamdata/data/resourceTypes/securityhub.json +36 -2
- iamdata/data/resourceTypes/ses.json +11 -0
- iamdata/data/resourceTypes/sts.json +8 -0
- iamdata/data/resourceTypes/support-console.json +1 -0
- iamdata/data/resourceTypes/transform.json +10 -0
- iamdata/data/resourceTypes/uxc.json +1 -0
- iamdata/data/resourceTypes/verifiedpermissions.json +4 -1
- iamdata/data/resourceTypes/vpc-lattice.json +12 -0
- iamdata/data/resourceTypes/workspaces-instances.json +16 -0
- iamdata/data/resourceTypes/workspaces-web.json +7 -0
- iamdata/data/resourceTypes/workspaces.json +4 -0
- iamdata/data/serviceNames.json +23 -8
- iamdata/data/services.json +18 -3
- iamdata/data/unassociatedConditions.json +23 -0
- {iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/METADATA +1 -1
- {iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/RECORD +312 -265
- iamdata/data/actions/application-cost-profiler.json +0 -50
- iamdata/data/actions/sagemaker-groundtruth-synthetic.json +0 -110
- iamdata/data/actions/supportrecommendations.json +0 -20
- /iamdata/data/conditionKeys/{application-cost-profiler.json → action-recommendations.json} +0 -0
- /iamdata/data/conditionKeys/{sagemaker-groundtruth-synthetic.json → bcm-recommended-actions.json} +0 -0
- /iamdata/data/conditionKeys/{supportrecommendations.json → eks-mcp.json} +0 -0
- /iamdata/data/{resourceTypes/application-cost-profiler.json → conditionKeys/network-security-director.json} +0 -0
- /iamdata/data/{resourceTypes/sagemaker-groundtruth-synthetic.json → conditionKeys/sagemaker-unified-studio-mcp.json} +0 -0
- /iamdata/data/{resourceTypes/supportrecommendations.json → conditionKeys/support-console.json} +0 -0
- {iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/WHEEL +0 -0
- {iamdata-0.1.202504261.dist-info → iamdata-0.1.202511181.dist-info}/licenses/LICENSE.txt +0 -0
|
@@ -1,4 +1,34 @@
|
|
|
1
1
|
{
|
|
2
|
+
"acceptnetworkfirewalltransitgatewayattachment": {
|
|
3
|
+
"name": "AcceptNetworkFirewallTransitGatewayAttachment",
|
|
4
|
+
"description": "Grants permission to accept pending Network Firewall attachments on a transit gateway",
|
|
5
|
+
"accessLevel": "Write",
|
|
6
|
+
"resourceTypes": [
|
|
7
|
+
{
|
|
8
|
+
"name": "Firewall",
|
|
9
|
+
"required": true,
|
|
10
|
+
"conditionKeys": [],
|
|
11
|
+
"dependentActions": []
|
|
12
|
+
}
|
|
13
|
+
],
|
|
14
|
+
"conditionKeys": [],
|
|
15
|
+
"dependentActions": []
|
|
16
|
+
},
|
|
17
|
+
"associateavailabilityzones": {
|
|
18
|
+
"name": "AssociateAvailabilityZones",
|
|
19
|
+
"description": "Grants permission to associate availability zones to a firewall",
|
|
20
|
+
"accessLevel": "Write",
|
|
21
|
+
"resourceTypes": [
|
|
22
|
+
{
|
|
23
|
+
"name": "Firewall",
|
|
24
|
+
"required": true,
|
|
25
|
+
"conditionKeys": [],
|
|
26
|
+
"dependentActions": []
|
|
27
|
+
}
|
|
28
|
+
],
|
|
29
|
+
"conditionKeys": [],
|
|
30
|
+
"dependentActions": []
|
|
31
|
+
},
|
|
2
32
|
"associatefirewallpolicy": {
|
|
3
33
|
"name": "AssociateFirewallPolicy",
|
|
4
34
|
"description": "Grants permission to create an association between a firewall policy and a firewall",
|
|
@@ -141,6 +171,32 @@
|
|
|
141
171
|
],
|
|
142
172
|
"dependentActions": []
|
|
143
173
|
},
|
|
174
|
+
"createvpcendpointassociation": {
|
|
175
|
+
"name": "CreateVpcEndpointAssociation",
|
|
176
|
+
"description": "Grants permission to create an AWS Network Firewall vpc endpoint association",
|
|
177
|
+
"accessLevel": "Write",
|
|
178
|
+
"resourceTypes": [
|
|
179
|
+
{
|
|
180
|
+
"name": "Firewall",
|
|
181
|
+
"required": true,
|
|
182
|
+
"conditionKeys": [],
|
|
183
|
+
"dependentActions": [
|
|
184
|
+
"iam:CreateServiceLinkedRole"
|
|
185
|
+
]
|
|
186
|
+
},
|
|
187
|
+
{
|
|
188
|
+
"name": "VpcEndpointAssociation",
|
|
189
|
+
"required": true,
|
|
190
|
+
"conditionKeys": [],
|
|
191
|
+
"dependentActions": []
|
|
192
|
+
}
|
|
193
|
+
],
|
|
194
|
+
"conditionKeys": [
|
|
195
|
+
"aws:RequestTag/${TagKey}",
|
|
196
|
+
"aws:TagKeys"
|
|
197
|
+
],
|
|
198
|
+
"dependentActions": []
|
|
199
|
+
},
|
|
144
200
|
"deletefirewall": {
|
|
145
201
|
"name": "DeleteFirewall",
|
|
146
202
|
"description": "Grants permission to delete a firewall",
|
|
@@ -171,11 +227,32 @@
|
|
|
171
227
|
"conditionKeys": [],
|
|
172
228
|
"dependentActions": []
|
|
173
229
|
},
|
|
230
|
+
"deletenetworkfirewalltransitgatewayattachment": {
|
|
231
|
+
"name": "DeleteNetworkFirewallTransitGatewayAttachment",
|
|
232
|
+
"description": "Grants permission to delete Network Firewall attachments on a transit gateway",
|
|
233
|
+
"accessLevel": "Write",
|
|
234
|
+
"resourceTypes": [
|
|
235
|
+
{
|
|
236
|
+
"name": "Firewall",
|
|
237
|
+
"required": true,
|
|
238
|
+
"conditionKeys": [],
|
|
239
|
+
"dependentActions": []
|
|
240
|
+
}
|
|
241
|
+
],
|
|
242
|
+
"conditionKeys": [],
|
|
243
|
+
"dependentActions": []
|
|
244
|
+
},
|
|
174
245
|
"deleteresourcepolicy": {
|
|
175
246
|
"name": "DeleteResourcePolicy",
|
|
176
|
-
"description": "Grants permission to delete a resource policy for a firewall policy or rule group",
|
|
247
|
+
"description": "Grants permission to delete a resource policy for a firewall policy or rule group or firewall",
|
|
177
248
|
"accessLevel": "Write",
|
|
178
249
|
"resourceTypes": [
|
|
250
|
+
{
|
|
251
|
+
"name": "Firewall",
|
|
252
|
+
"required": false,
|
|
253
|
+
"conditionKeys": [],
|
|
254
|
+
"dependentActions": []
|
|
255
|
+
},
|
|
179
256
|
{
|
|
180
257
|
"name": "FirewallPolicy",
|
|
181
258
|
"required": false,
|
|
@@ -234,6 +311,21 @@
|
|
|
234
311
|
"conditionKeys": [],
|
|
235
312
|
"dependentActions": []
|
|
236
313
|
},
|
|
314
|
+
"deletevpcendpointassociation": {
|
|
315
|
+
"name": "DeleteVpcEndpointAssociation",
|
|
316
|
+
"description": "Grants permission to delete a vpc endpoint association",
|
|
317
|
+
"accessLevel": "Write",
|
|
318
|
+
"resourceTypes": [
|
|
319
|
+
{
|
|
320
|
+
"name": "VpcEndpointAssociation",
|
|
321
|
+
"required": true,
|
|
322
|
+
"conditionKeys": [],
|
|
323
|
+
"dependentActions": []
|
|
324
|
+
}
|
|
325
|
+
],
|
|
326
|
+
"conditionKeys": [],
|
|
327
|
+
"dependentActions": []
|
|
328
|
+
},
|
|
237
329
|
"describefirewall": {
|
|
238
330
|
"name": "DescribeFirewall",
|
|
239
331
|
"description": "Grants permission to retrieve the data objects that define a firewall",
|
|
@@ -249,6 +341,21 @@
|
|
|
249
341
|
"conditionKeys": [],
|
|
250
342
|
"dependentActions": []
|
|
251
343
|
},
|
|
344
|
+
"describefirewallmetadata": {
|
|
345
|
+
"name": "DescribeFirewallMetadata",
|
|
346
|
+
"description": "Grants permission to retrieve the high-level information about a firewall",
|
|
347
|
+
"accessLevel": "Read",
|
|
348
|
+
"resourceTypes": [
|
|
349
|
+
{
|
|
350
|
+
"name": "Firewall",
|
|
351
|
+
"required": true,
|
|
352
|
+
"conditionKeys": [],
|
|
353
|
+
"dependentActions": []
|
|
354
|
+
}
|
|
355
|
+
],
|
|
356
|
+
"conditionKeys": [],
|
|
357
|
+
"dependentActions": []
|
|
358
|
+
},
|
|
252
359
|
"describefirewallpolicy": {
|
|
253
360
|
"name": "DescribeFirewallPolicy",
|
|
254
361
|
"description": "Grants permission to retrieve the data objects that define a firewall policy",
|
|
@@ -317,9 +424,15 @@
|
|
|
317
424
|
},
|
|
318
425
|
"describeresourcepolicy": {
|
|
319
426
|
"name": "DescribeResourcePolicy",
|
|
320
|
-
"description": "Grants permission to describe a resource policy for a firewall policy or rule group",
|
|
427
|
+
"description": "Grants permission to describe a resource policy for a firewall policy or rule group or firewall",
|
|
321
428
|
"accessLevel": "Read",
|
|
322
429
|
"resourceTypes": [
|
|
430
|
+
{
|
|
431
|
+
"name": "Firewall",
|
|
432
|
+
"required": false,
|
|
433
|
+
"conditionKeys": [],
|
|
434
|
+
"dependentActions": []
|
|
435
|
+
},
|
|
323
436
|
{
|
|
324
437
|
"name": "FirewallPolicy",
|
|
325
438
|
"required": false,
|
|
@@ -384,6 +497,27 @@
|
|
|
384
497
|
"conditionKeys": [],
|
|
385
498
|
"dependentActions": []
|
|
386
499
|
},
|
|
500
|
+
"describerulegroupsummary": {
|
|
501
|
+
"name": "DescribeRuleGroupSummary",
|
|
502
|
+
"description": "Grants permission to retrieve the summary information about a rule group",
|
|
503
|
+
"accessLevel": "Read",
|
|
504
|
+
"resourceTypes": [
|
|
505
|
+
{
|
|
506
|
+
"name": "StatefulRuleGroup",
|
|
507
|
+
"required": false,
|
|
508
|
+
"conditionKeys": [],
|
|
509
|
+
"dependentActions": []
|
|
510
|
+
},
|
|
511
|
+
{
|
|
512
|
+
"name": "StatelessRuleGroup",
|
|
513
|
+
"required": false,
|
|
514
|
+
"conditionKeys": [],
|
|
515
|
+
"dependentActions": []
|
|
516
|
+
}
|
|
517
|
+
],
|
|
518
|
+
"conditionKeys": [],
|
|
519
|
+
"dependentActions": []
|
|
520
|
+
},
|
|
387
521
|
"describetlsinspectionconfiguration": {
|
|
388
522
|
"name": "DescribeTLSInspectionConfiguration",
|
|
389
523
|
"description": "Grants permission to retrieve the data objects that define a tls inspection configuration",
|
|
@@ -399,6 +533,36 @@
|
|
|
399
533
|
"conditionKeys": [],
|
|
400
534
|
"dependentActions": []
|
|
401
535
|
},
|
|
536
|
+
"describevpcendpointassociation": {
|
|
537
|
+
"name": "DescribeVpcEndpointAssociation",
|
|
538
|
+
"description": "Grants permission to retrieve the data objects that define a vpc endpoint association",
|
|
539
|
+
"accessLevel": "Read",
|
|
540
|
+
"resourceTypes": [
|
|
541
|
+
{
|
|
542
|
+
"name": "VpcEndpointAssociation",
|
|
543
|
+
"required": true,
|
|
544
|
+
"conditionKeys": [],
|
|
545
|
+
"dependentActions": []
|
|
546
|
+
}
|
|
547
|
+
],
|
|
548
|
+
"conditionKeys": [],
|
|
549
|
+
"dependentActions": []
|
|
550
|
+
},
|
|
551
|
+
"disassociateavailabilityzones": {
|
|
552
|
+
"name": "DisassociateAvailabilityZones",
|
|
553
|
+
"description": "Grants permission to disassociate availability zones to a firewall",
|
|
554
|
+
"accessLevel": "Write",
|
|
555
|
+
"resourceTypes": [
|
|
556
|
+
{
|
|
557
|
+
"name": "Firewall",
|
|
558
|
+
"required": true,
|
|
559
|
+
"conditionKeys": [],
|
|
560
|
+
"dependentActions": []
|
|
561
|
+
}
|
|
562
|
+
],
|
|
563
|
+
"conditionKeys": [],
|
|
564
|
+
"dependentActions": []
|
|
565
|
+
},
|
|
402
566
|
"disassociatesubnets": {
|
|
403
567
|
"name": "DisassociateSubnets",
|
|
404
568
|
"description": "Grants permission to disassociate VPC subnets from a firewall",
|
|
@@ -561,6 +725,27 @@
|
|
|
561
725
|
"required": false,
|
|
562
726
|
"conditionKeys": [],
|
|
563
727
|
"dependentActions": []
|
|
728
|
+
},
|
|
729
|
+
{
|
|
730
|
+
"name": "VpcEndpointAssociation",
|
|
731
|
+
"required": false,
|
|
732
|
+
"conditionKeys": [],
|
|
733
|
+
"dependentActions": []
|
|
734
|
+
}
|
|
735
|
+
],
|
|
736
|
+
"conditionKeys": [],
|
|
737
|
+
"dependentActions": []
|
|
738
|
+
},
|
|
739
|
+
"listvpcendpointassociations": {
|
|
740
|
+
"name": "ListVpcEndpointAssociations",
|
|
741
|
+
"description": "Grants permission to retrieve the metadata for vpc endpoint associations",
|
|
742
|
+
"accessLevel": "List",
|
|
743
|
+
"resourceTypes": [
|
|
744
|
+
{
|
|
745
|
+
"name": "VpcEndpointAssociation",
|
|
746
|
+
"required": true,
|
|
747
|
+
"conditionKeys": [],
|
|
748
|
+
"dependentActions": []
|
|
564
749
|
}
|
|
565
750
|
],
|
|
566
751
|
"conditionKeys": [],
|
|
@@ -568,9 +753,15 @@
|
|
|
568
753
|
},
|
|
569
754
|
"putresourcepolicy": {
|
|
570
755
|
"name": "PutResourcePolicy",
|
|
571
|
-
"description": "Grants permission to put a resource policy for a firewall policy or rule group",
|
|
756
|
+
"description": "Grants permission to put a resource policy for a firewall policy or rule group or firewall",
|
|
572
757
|
"accessLevel": "Write",
|
|
573
758
|
"resourceTypes": [
|
|
759
|
+
{
|
|
760
|
+
"name": "Firewall",
|
|
761
|
+
"required": false,
|
|
762
|
+
"conditionKeys": [],
|
|
763
|
+
"dependentActions": []
|
|
764
|
+
},
|
|
574
765
|
{
|
|
575
766
|
"name": "FirewallPolicy",
|
|
576
767
|
"required": false,
|
|
@@ -593,6 +784,21 @@
|
|
|
593
784
|
"conditionKeys": [],
|
|
594
785
|
"dependentActions": []
|
|
595
786
|
},
|
|
787
|
+
"rejectnetworkfirewalltransitgatewayattachment": {
|
|
788
|
+
"name": "RejectNetworkFirewallTransitGatewayAttachment",
|
|
789
|
+
"description": "Grants permission to reject pending Network Firewall attachments on a transit gateway",
|
|
790
|
+
"accessLevel": "Write",
|
|
791
|
+
"resourceTypes": [
|
|
792
|
+
{
|
|
793
|
+
"name": "Firewall",
|
|
794
|
+
"required": true,
|
|
795
|
+
"conditionKeys": [],
|
|
796
|
+
"dependentActions": []
|
|
797
|
+
}
|
|
798
|
+
],
|
|
799
|
+
"conditionKeys": [],
|
|
800
|
+
"dependentActions": []
|
|
801
|
+
},
|
|
596
802
|
"startanalysisreport": {
|
|
597
803
|
"name": "StartAnalysisReport",
|
|
598
804
|
"description": "Grants permission to start an analysis report on a firewall",
|
|
@@ -672,6 +878,12 @@
|
|
|
672
878
|
"required": false,
|
|
673
879
|
"conditionKeys": [],
|
|
674
880
|
"dependentActions": []
|
|
881
|
+
},
|
|
882
|
+
{
|
|
883
|
+
"name": "VpcEndpointAssociation",
|
|
884
|
+
"required": false,
|
|
885
|
+
"conditionKeys": [],
|
|
886
|
+
"dependentActions": []
|
|
675
887
|
}
|
|
676
888
|
],
|
|
677
889
|
"conditionKeys": [
|
|
@@ -714,6 +926,12 @@
|
|
|
714
926
|
"required": false,
|
|
715
927
|
"conditionKeys": [],
|
|
716
928
|
"dependentActions": []
|
|
929
|
+
},
|
|
930
|
+
{
|
|
931
|
+
"name": "VpcEndpointAssociation",
|
|
932
|
+
"required": false,
|
|
933
|
+
"conditionKeys": [],
|
|
934
|
+
"dependentActions": []
|
|
717
935
|
}
|
|
718
936
|
],
|
|
719
937
|
"conditionKeys": [
|
|
@@ -721,6 +939,21 @@
|
|
|
721
939
|
],
|
|
722
940
|
"dependentActions": []
|
|
723
941
|
},
|
|
942
|
+
"updateavailabilityzonechangeprotection": {
|
|
943
|
+
"name": "UpdateAvailabilityZoneChangeProtection",
|
|
944
|
+
"description": "Grants permission to add or remove availability zone change protection for a firewall",
|
|
945
|
+
"accessLevel": "Write",
|
|
946
|
+
"resourceTypes": [
|
|
947
|
+
{
|
|
948
|
+
"name": "Firewall",
|
|
949
|
+
"required": true,
|
|
950
|
+
"conditionKeys": [],
|
|
951
|
+
"dependentActions": []
|
|
952
|
+
}
|
|
953
|
+
],
|
|
954
|
+
"conditionKeys": [],
|
|
955
|
+
"dependentActions": []
|
|
956
|
+
},
|
|
724
957
|
"updatefirewallanalysissettings": {
|
|
725
958
|
"name": "UpdateFirewallAnalysisSettings",
|
|
726
959
|
"description": "Grants permission to modify firewall analysis settings of a firewall",
|
|
@@ -0,0 +1,74 @@
|
|
|
1
|
+
{
|
|
2
|
+
"getfinding": {
|
|
3
|
+
"name": "GetFinding",
|
|
4
|
+
"description": "Grants permission to get a finding",
|
|
5
|
+
"accessLevel": "Read",
|
|
6
|
+
"resourceTypes": [],
|
|
7
|
+
"conditionKeys": [],
|
|
8
|
+
"dependentActions": []
|
|
9
|
+
},
|
|
10
|
+
"getnetworksecurityscan": {
|
|
11
|
+
"name": "GetNetworkSecurityScan",
|
|
12
|
+
"description": "Grants permission to get the status of network security scan",
|
|
13
|
+
"accessLevel": "Read",
|
|
14
|
+
"resourceTypes": [],
|
|
15
|
+
"conditionKeys": [],
|
|
16
|
+
"dependentActions": []
|
|
17
|
+
},
|
|
18
|
+
"getresource": {
|
|
19
|
+
"name": "GetResource",
|
|
20
|
+
"description": "Grants permission to get a resource",
|
|
21
|
+
"accessLevel": "Read",
|
|
22
|
+
"resourceTypes": [],
|
|
23
|
+
"conditionKeys": [],
|
|
24
|
+
"dependentActions": []
|
|
25
|
+
},
|
|
26
|
+
"listfindings": {
|
|
27
|
+
"name": "ListFindings",
|
|
28
|
+
"description": "Grants permission to list findings",
|
|
29
|
+
"accessLevel": "List",
|
|
30
|
+
"resourceTypes": [],
|
|
31
|
+
"conditionKeys": [],
|
|
32
|
+
"dependentActions": []
|
|
33
|
+
},
|
|
34
|
+
"listinsights": {
|
|
35
|
+
"name": "ListInsights",
|
|
36
|
+
"description": "Grants permission to list insights about the latest network security scan",
|
|
37
|
+
"accessLevel": "List",
|
|
38
|
+
"resourceTypes": [],
|
|
39
|
+
"conditionKeys": [],
|
|
40
|
+
"dependentActions": []
|
|
41
|
+
},
|
|
42
|
+
"listremediations": {
|
|
43
|
+
"name": "ListRemediations",
|
|
44
|
+
"description": "Grants permission to list remediations for a finding",
|
|
45
|
+
"accessLevel": "List",
|
|
46
|
+
"resourceTypes": [],
|
|
47
|
+
"conditionKeys": [],
|
|
48
|
+
"dependentActions": []
|
|
49
|
+
},
|
|
50
|
+
"listresources": {
|
|
51
|
+
"name": "ListResources",
|
|
52
|
+
"description": "Grants permission to list resources",
|
|
53
|
+
"accessLevel": "List",
|
|
54
|
+
"resourceTypes": [],
|
|
55
|
+
"conditionKeys": [],
|
|
56
|
+
"dependentActions": []
|
|
57
|
+
},
|
|
58
|
+
"startnetworksecurityscan": {
|
|
59
|
+
"name": "StartNetworkSecurityScan",
|
|
60
|
+
"description": "Grants permission to start a network security scan",
|
|
61
|
+
"accessLevel": "Write",
|
|
62
|
+
"resourceTypes": [],
|
|
63
|
+
"conditionKeys": [],
|
|
64
|
+
"dependentActions": []
|
|
65
|
+
},
|
|
66
|
+
"updatefinding": {
|
|
67
|
+
"name": "UpdateFinding",
|
|
68
|
+
"description": "Grants permission to update the status of a finding",
|
|
69
|
+
"accessLevel": "Write",
|
|
70
|
+
"resourceTypes": [],
|
|
71
|
+
"conditionKeys": [],
|
|
72
|
+
"dependentActions": []
|
|
73
|
+
}
|
|
74
|
+
}
|
|
@@ -44,6 +44,21 @@
|
|
|
44
44
|
"conditionKeys": [],
|
|
45
45
|
"dependentActions": []
|
|
46
46
|
},
|
|
47
|
+
"associateorganizationalunit": {
|
|
48
|
+
"name": "AssociateOrganizationalUnit",
|
|
49
|
+
"description": "Grants permission to associate an Organizational Unit to a particular Notification Configuration",
|
|
50
|
+
"accessLevel": "Write",
|
|
51
|
+
"resourceTypes": [
|
|
52
|
+
{
|
|
53
|
+
"name": "NotificationConfiguration",
|
|
54
|
+
"required": true,
|
|
55
|
+
"conditionKeys": [],
|
|
56
|
+
"dependentActions": []
|
|
57
|
+
}
|
|
58
|
+
],
|
|
59
|
+
"conditionKeys": [],
|
|
60
|
+
"dependentActions": []
|
|
61
|
+
},
|
|
47
62
|
"createeventrule": {
|
|
48
63
|
"name": "CreateEventRule",
|
|
49
64
|
"description": "Grants permission to create a new EventRule, associating it with a NotificationConfiguration",
|
|
@@ -104,7 +119,7 @@
|
|
|
104
119
|
"disablenotificationsaccessfororganization": {
|
|
105
120
|
"name": "DisableNotificationsAccessForOrganization",
|
|
106
121
|
"description": "Grants permission to disable Service Trust for AWS User Notifications",
|
|
107
|
-
"accessLevel": "
|
|
122
|
+
"accessLevel": "Permissions management",
|
|
108
123
|
"resourceTypes": [],
|
|
109
124
|
"conditionKeys": [],
|
|
110
125
|
"dependentActions": [
|
|
@@ -156,10 +171,25 @@
|
|
|
156
171
|
"conditionKeys": [],
|
|
157
172
|
"dependentActions": []
|
|
158
173
|
},
|
|
174
|
+
"disassociateorganizationalunit": {
|
|
175
|
+
"name": "DisassociateOrganizationalUnit",
|
|
176
|
+
"description": "Grants permission to disassociate an Organizational Unit to a particular Notification Configuration",
|
|
177
|
+
"accessLevel": "Write",
|
|
178
|
+
"resourceTypes": [
|
|
179
|
+
{
|
|
180
|
+
"name": "NotificationConfiguration",
|
|
181
|
+
"required": true,
|
|
182
|
+
"conditionKeys": [],
|
|
183
|
+
"dependentActions": []
|
|
184
|
+
}
|
|
185
|
+
],
|
|
186
|
+
"conditionKeys": [],
|
|
187
|
+
"dependentActions": []
|
|
188
|
+
},
|
|
159
189
|
"enablenotificationsaccessfororganization": {
|
|
160
190
|
"name": "EnableNotificationsAccessForOrganization",
|
|
161
191
|
"description": "Grants permission to enable Service Trust for AWS User Notifications",
|
|
162
|
-
"accessLevel": "
|
|
192
|
+
"accessLevel": "Permissions management",
|
|
163
193
|
"resourceTypes": [],
|
|
164
194
|
"conditionKeys": [],
|
|
165
195
|
"dependentActions": [
|
|
@@ -336,6 +366,21 @@
|
|
|
336
366
|
"conditionKeys": [],
|
|
337
367
|
"dependentActions": []
|
|
338
368
|
},
|
|
369
|
+
"listmemberaccounts": {
|
|
370
|
+
"name": "ListMemberAccounts",
|
|
371
|
+
"description": "Grants permission to list Member Accounts for a Notification Configuration",
|
|
372
|
+
"accessLevel": "List",
|
|
373
|
+
"resourceTypes": [
|
|
374
|
+
{
|
|
375
|
+
"name": "NotificationConfiguration",
|
|
376
|
+
"required": true,
|
|
377
|
+
"conditionKeys": [],
|
|
378
|
+
"dependentActions": []
|
|
379
|
+
}
|
|
380
|
+
],
|
|
381
|
+
"conditionKeys": [],
|
|
382
|
+
"dependentActions": []
|
|
383
|
+
},
|
|
339
384
|
"listnotificationconfigurations": {
|
|
340
385
|
"name": "ListNotificationConfigurations",
|
|
341
386
|
"description": "Grants permission to list NotificationConfigurations",
|
|
@@ -360,6 +405,21 @@
|
|
|
360
405
|
"conditionKeys": [],
|
|
361
406
|
"dependentActions": []
|
|
362
407
|
},
|
|
408
|
+
"listorganizationalunits": {
|
|
409
|
+
"name": "ListOrganizationalUnits",
|
|
410
|
+
"description": "Grants permission to list Organizational Units for a Notification Configuration",
|
|
411
|
+
"accessLevel": "List",
|
|
412
|
+
"resourceTypes": [
|
|
413
|
+
{
|
|
414
|
+
"name": "NotificationConfiguration",
|
|
415
|
+
"required": true,
|
|
416
|
+
"conditionKeys": [],
|
|
417
|
+
"dependentActions": []
|
|
418
|
+
}
|
|
419
|
+
],
|
|
420
|
+
"conditionKeys": [],
|
|
421
|
+
"dependentActions": []
|
|
422
|
+
},
|
|
363
423
|
"listtagsforresource": {
|
|
364
424
|
"name": "ListTagsForResource",
|
|
365
425
|
"description": "Grants permission to get tags for a resource",
|