iamdata 0.1.202509301__py3-none-any.whl → 0.1.202511241__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of iamdata might be problematic. Click here for more details.
- iamdata/data/actions/action-recommendations.json +10 -0
- iamdata/data/actions/aiops.json +159 -0
- iamdata/data/actions/airflow-serverless.json +225 -0
- iamdata/data/actions/application-signals.json +8 -0
- iamdata/data/actions/appstream.json +120 -36
- iamdata/data/actions/aps.json +190 -0
- iamdata/data/actions/athena.json +88 -1
- iamdata/data/actions/autoscaling.json +41 -3
- iamdata/data/actions/backup.json +170 -2
- iamdata/data/actions/batch.json +28 -18
- iamdata/data/actions/bedrock-agentcore.json +325 -7
- iamdata/data/actions/bedrock.json +46 -2
- iamdata/data/actions/billing.json +22 -4
- iamdata/data/actions/braket.json +62 -0
- iamdata/data/actions/cloudformation.json +33 -0
- iamdata/data/actions/cloudfront.json +71 -88
- iamdata/data/actions/cloudtrail.json +35 -8
- iamdata/data/actions/cognito-idp.json +75 -0
- iamdata/data/actions/connect.json +77 -0
- iamdata/data/actions/cost-optimization-hub.json +8 -0
- iamdata/data/actions/datazone.json +224 -0
- iamdata/data/actions/dms.json +132 -0
- iamdata/data/actions/dsql.json +46 -8
- iamdata/data/actions/ec2.json +219 -33
- iamdata/data/actions/ecs.json +110 -2
- iamdata/data/actions/eks-mcp.json +26 -0
- iamdata/data/actions/eks.json +22 -2
- iamdata/data/actions/elasticloadbalancing.json +9 -0
- iamdata/data/actions/emr-containers.json +15 -0
- iamdata/data/actions/es.json +60 -0
- iamdata/data/actions/fsx.json +15 -6
- iamdata/data/actions/glue.json +92 -16
- iamdata/data/actions/groundstation.json +15 -0
- iamdata/data/actions/guardduty.json +47 -1
- iamdata/data/actions/healthlake.json +225 -0
- iamdata/data/actions/iam.json +158 -5
- iamdata/data/actions/identitystore.json +76 -27
- iamdata/data/actions/imagebuilder.json +50 -6
- iamdata/data/actions/invoicing.json +57 -2
- iamdata/data/actions/iotmanagedintegrations.json +15 -0
- iamdata/data/actions/kafka.json +71 -0
- iamdata/data/actions/kinesis.json +63 -0
- iamdata/data/actions/kinesisvideo.json +30 -0
- iamdata/data/actions/kms.json +4 -1
- iamdata/data/actions/lakeformation.json +16 -0
- iamdata/data/actions/lambda.json +4 -2
- iamdata/data/actions/license-manager.json +217 -3
- iamdata/data/actions/logs.json +98 -0
- iamdata/data/actions/mediaconnect.json +83 -10
- iamdata/data/actions/medialive.json +24 -0
- iamdata/data/actions/mgn.json +54 -1
- iamdata/data/actions/notifications-contacts.json +2 -1
- iamdata/data/actions/observabilityadmin.json +24 -3
- iamdata/data/actions/odb.json +37 -0
- iamdata/data/actions/organizations.json +117 -0
- iamdata/data/actions/partnercentral.json +307 -3
- iamdata/data/actions/pcs.json +26 -0
- iamdata/data/actions/pi.json +6 -0
- iamdata/data/actions/pricingplanmanager.json +66 -0
- iamdata/data/actions/profile.json +398 -0
- iamdata/data/actions/quicksight.json +466 -0
- iamdata/data/actions/rds.json +19 -8
- iamdata/data/actions/redshift-serverless.json +2 -2
- iamdata/data/actions/resource-explorer-2.json +82 -0
- iamdata/data/actions/rtbfabric.json +481 -0
- iamdata/data/actions/s3.json +65 -1
- iamdata/data/actions/s3tables.json +85 -2
- iamdata/data/actions/sagemaker-unified-studio-mcp.json +26 -0
- iamdata/data/actions/scn.json +17 -5
- iamdata/data/actions/secretsmanager.json +42 -20
- iamdata/data/actions/securityhub.json +30 -0
- iamdata/data/actions/servicequotas.json +32 -0
- iamdata/data/actions/signin.json +16 -0
- iamdata/data/actions/social-messaging.json +64 -8
- iamdata/data/actions/sts.json +34 -0
- iamdata/data/actions/support-console.json +18 -0
- iamdata/data/actions/support.json +35 -1
- iamdata/data/actions/tag.json +8 -0
- iamdata/data/actions/user-subscriptions.json +8 -0
- iamdata/data/actions/vpc-lattice-svcs.json +2 -0
- iamdata/data/actions/vpc-lattice.json +81 -0
- iamdata/data/actions/workspaces-web.json +25 -9
- iamdata/data/actions/xray.json +6 -2
- iamdata/data/conditionKeys/airflow-serverless.json +17 -0
- iamdata/data/conditionKeys/bedrock-agentcore.json +40 -0
- iamdata/data/conditionKeys/bedrock.json +5 -0
- iamdata/data/conditionKeys/dynamodb.json +21 -1
- iamdata/data/conditionKeys/ec2.json +15 -15
- iamdata/data/conditionKeys/eks.json +5 -0
- iamdata/data/conditionKeys/events.json +1 -1
- iamdata/data/conditionKeys/glue.json +5 -0
- iamdata/data/conditionKeys/iam.json +20 -0
- iamdata/data/conditionKeys/identitystore.json +26 -1
- iamdata/data/conditionKeys/kinesis.json +15 -0
- iamdata/data/conditionKeys/lambda.json +5 -0
- iamdata/data/conditionKeys/mediaconnect.json +17 -1
- iamdata/data/conditionKeys/organizations.json +10 -0
- iamdata/data/conditionKeys/partnercentral.json +7 -2
- iamdata/data/conditionKeys/pricingplanmanager.json +1 -0
- iamdata/data/conditionKeys/rtbfabric.json +47 -0
- iamdata/data/conditionKeys/s3.json +5 -0
- iamdata/data/conditionKeys/s3tables.json +20 -0
- iamdata/data/conditionKeys/sagemaker-unified-studio-mcp.json +1 -0
- iamdata/data/conditionKeys/secretsmanager.json +15 -0
- iamdata/data/conditionKeys/sso.json +10 -0
- iamdata/data/conditionKeys/sts.json +10 -0
- iamdata/data/conditionKeys/vpc-lattice-svcs.json +5 -0
- iamdata/data/conditionKeys/vpc-lattice.json +15 -0
- iamdata/data/conditionKeys/xray.json +5 -0
- iamdata/data/conditionPatterns.json +7 -0
- iamdata/data/metadata.json +2 -2
- iamdata/data/resourceTypes/action-recommendations.json +1 -0
- iamdata/data/resourceTypes/airflow-serverless.json +9 -0
- iamdata/data/resourceTypes/aps.json +9 -0
- iamdata/data/resourceTypes/athena.json +7 -0
- iamdata/data/resourceTypes/backup.json +7 -0
- iamdata/data/resourceTypes/bedrock-agentcore.json +28 -7
- iamdata/data/resourceTypes/bedrock.json +4 -0
- iamdata/data/resourceTypes/braket.json +7 -0
- iamdata/data/resourceTypes/cloudformation.json +4 -0
- iamdata/data/resourceTypes/ec2.json +19 -5
- iamdata/data/resourceTypes/eks-mcp.json +1 -0
- iamdata/data/resourceTypes/guardduty.json +4 -1
- iamdata/data/resourceTypes/iam.json +7 -0
- iamdata/data/resourceTypes/invoicing.json +7 -0
- iamdata/data/resourceTypes/license-manager.json +14 -0
- iamdata/data/resourceTypes/logs.json +7 -0
- iamdata/data/resourceTypes/mediaconnect.json +16 -4
- iamdata/data/resourceTypes/observabilityadmin.json +3 -3
- iamdata/data/resourceTypes/organizations.json +7 -0
- iamdata/data/resourceTypes/partnercentral.json +21 -0
- iamdata/data/resourceTypes/pi.json +4 -1
- iamdata/data/resourceTypes/pricingplanmanager.json +6 -0
- iamdata/data/resourceTypes/profile.json +14 -0
- iamdata/data/resourceTypes/quicksight.json +26 -1
- iamdata/data/resourceTypes/rtbfabric.json +46 -0
- iamdata/data/resourceTypes/s3.json +11 -2
- iamdata/data/resourceTypes/s3tables.json +7 -1
- iamdata/data/resourceTypes/sagemaker-unified-studio-mcp.json +1 -0
- iamdata/data/resourceTypes/scn.json +16 -4
- iamdata/data/resourceTypes/secretsmanager.json +2 -1
- iamdata/data/resourceTypes/vpc-lattice.json +12 -0
- iamdata/data/serviceNames.json +7 -2
- iamdata/data/services.json +6 -1
- iamdata/data/unassociatedConditions.json +3 -0
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202511241.dist-info}/METADATA +1 -1
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202511241.dist-info}/RECORD +151 -136
- iamdata/data/actions/application-cost-profiler.json +0 -50
- /iamdata/data/conditionKeys/{application-cost-profiler.json → action-recommendations.json} +0 -0
- /iamdata/data/{resourceTypes/application-cost-profiler.json → conditionKeys/eks-mcp.json} +0 -0
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202511241.dist-info}/WHEEL +0 -0
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202511241.dist-info}/licenses/LICENSE.txt +0 -0
|
@@ -0,0 +1,47 @@
|
|
|
1
|
+
{
|
|
2
|
+
"aws:requesttag/${tagkey}": {
|
|
3
|
+
"key": "aws:RequestTag/${TagKey}",
|
|
4
|
+
"description": "Filters access by a tag key and value pair that is allowed in the request",
|
|
5
|
+
"type": "String"
|
|
6
|
+
},
|
|
7
|
+
"aws:resourcetag/${tagkey}": {
|
|
8
|
+
"key": "aws:ResourceTag/${TagKey}",
|
|
9
|
+
"description": "Filters access by a tag key and value pair of a resource",
|
|
10
|
+
"type": "String"
|
|
11
|
+
},
|
|
12
|
+
"aws:tagkeys": {
|
|
13
|
+
"key": "aws:TagKeys",
|
|
14
|
+
"description": "Filters access by a list of tag keys that are allowed in the request",
|
|
15
|
+
"type": "ArrayOfString"
|
|
16
|
+
},
|
|
17
|
+
"rtbfabric:inboundexternallinkgatewayid": {
|
|
18
|
+
"key": "rtbfabric:InboundExternalLinkGatewayId",
|
|
19
|
+
"description": "Filters access by gateway identifier supporting rtb-gw-* formats",
|
|
20
|
+
"type": "String"
|
|
21
|
+
},
|
|
22
|
+
"rtbfabric:inboundexternallinklinkid": {
|
|
23
|
+
"key": "rtbfabric:InboundExternalLinkLinkId",
|
|
24
|
+
"description": "Filters access by InboundExternalLink resource linkId identifier",
|
|
25
|
+
"type": "String"
|
|
26
|
+
},
|
|
27
|
+
"rtbfabric:linklinkid": {
|
|
28
|
+
"key": "rtbfabric:LinkLinkId",
|
|
29
|
+
"description": "Filters access by Link resource linkId identifier",
|
|
30
|
+
"type": "String"
|
|
31
|
+
},
|
|
32
|
+
"rtbfabric:outboundexternallinklinkid": {
|
|
33
|
+
"key": "rtbfabric:OutboundExternalLinkLinkId",
|
|
34
|
+
"description": "Filters access by OutboundExternalLink resource linkId identifier",
|
|
35
|
+
"type": "String"
|
|
36
|
+
},
|
|
37
|
+
"rtbfabric:requestergatewaygatewayid": {
|
|
38
|
+
"key": "rtbfabric:RequesterGatewayGatewayId",
|
|
39
|
+
"description": "Filters access by gateway identifier supporting rtb-gw-* formats",
|
|
40
|
+
"type": "String"
|
|
41
|
+
},
|
|
42
|
+
"rtbfabric:respondergatewaygatewayid": {
|
|
43
|
+
"key": "rtbfabric:ResponderGatewayGatewayId",
|
|
44
|
+
"description": "Filters access by gateway identifier supporting rtb-gw-* formats",
|
|
45
|
+
"type": "String"
|
|
46
|
+
}
|
|
47
|
+
}
|
|
@@ -39,6 +39,11 @@
|
|
|
39
39
|
"description": "Filters access by existing access point tag key and value",
|
|
40
40
|
"type": "String"
|
|
41
41
|
},
|
|
42
|
+
"s3:buckettag/${tagkey}": {
|
|
43
|
+
"key": "s3:BucketTag/${TagKey}",
|
|
44
|
+
"description": "Filters access by the tags associated with the bucket",
|
|
45
|
+
"type": "String"
|
|
46
|
+
},
|
|
42
47
|
"s3:dataaccesspointaccount": {
|
|
43
48
|
"key": "s3:DataAccessPointAccount",
|
|
44
49
|
"description": "Filters access by the AWS Account ID that owns the access point",
|
|
@@ -1,4 +1,19 @@
|
|
|
1
1
|
{
|
|
2
|
+
"aws:requesttag/${tagkey}": {
|
|
3
|
+
"key": "aws:RequestTag/${TagKey}",
|
|
4
|
+
"description": "Filters access by the tags that are passed in the request",
|
|
5
|
+
"type": "String"
|
|
6
|
+
},
|
|
7
|
+
"aws:resourcetag/${tagkey}": {
|
|
8
|
+
"key": "aws:ResourceTag/${TagKey}",
|
|
9
|
+
"description": "Filters access by the tags associated with the resource",
|
|
10
|
+
"type": "String"
|
|
11
|
+
},
|
|
12
|
+
"aws:tagkeys": {
|
|
13
|
+
"key": "aws:TagKeys",
|
|
14
|
+
"description": "Filters access by the tag keys that are passed in the request",
|
|
15
|
+
"type": "ArrayOfString"
|
|
16
|
+
},
|
|
2
17
|
"s3tables:kmskeyarn": {
|
|
3
18
|
"key": "s3tables:KMSKeyArn",
|
|
4
19
|
"description": "Filters access by the AWS KMS key ARN for the key used to encrypt a table",
|
|
@@ -9,6 +24,11 @@
|
|
|
9
24
|
"description": "Filters access by the server-side encryption algorithm used to encrypt a table",
|
|
10
25
|
"type": "String"
|
|
11
26
|
},
|
|
27
|
+
"s3tables:tablebuckettag/${tagkey}": {
|
|
28
|
+
"key": "s3tables:TableBucketTag/${TagKey}",
|
|
29
|
+
"description": "Filters access by the tags associated with the table bucket",
|
|
30
|
+
"type": "String"
|
|
31
|
+
},
|
|
12
32
|
"s3tables:namespace": {
|
|
13
33
|
"key": "s3tables:namespace",
|
|
14
34
|
"description": "Filters access by the namespaces created in the table bucket",
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{}
|
|
@@ -29,6 +29,11 @@
|
|
|
29
29
|
"description": "Filters access by the description text in the request",
|
|
30
30
|
"type": "String"
|
|
31
31
|
},
|
|
32
|
+
"secretsmanager:externalsecretrotationrolearn": {
|
|
33
|
+
"key": "secretsmanager:ExternalSecretRotationRoleArn",
|
|
34
|
+
"description": "Filters access by the managed external secret rotation role ARN in the request",
|
|
35
|
+
"type": "ARN"
|
|
36
|
+
},
|
|
32
37
|
"secretsmanager:forcedeletewithoutrecovery": {
|
|
33
38
|
"key": "secretsmanager:ForceDeleteWithoutRecovery",
|
|
34
39
|
"description": "Filters access by whether the secret is to be deleted immediately without any recovery window",
|
|
@@ -89,6 +94,11 @@
|
|
|
89
94
|
"description": "Filters access by primary region in which the secret is created if the secret is a multi-Region secret",
|
|
90
95
|
"type": "String"
|
|
91
96
|
},
|
|
97
|
+
"secretsmanager:type": {
|
|
98
|
+
"key": "secretsmanager:Type",
|
|
99
|
+
"description": "Filters access by the managed external secret type in the request",
|
|
100
|
+
"type": "String"
|
|
101
|
+
},
|
|
92
102
|
"secretsmanager:versionid": {
|
|
93
103
|
"key": "secretsmanager:VersionId",
|
|
94
104
|
"description": "Filters access by the unique identifier of the version of the secret in the request",
|
|
@@ -103,5 +113,10 @@
|
|
|
103
113
|
"key": "secretsmanager:resource/AllowRotationLambdaArn",
|
|
104
114
|
"description": "Filters access by the ARN of the rotation Lambda function associated with the secret",
|
|
105
115
|
"type": "ARN"
|
|
116
|
+
},
|
|
117
|
+
"secretsmanager:resource/type": {
|
|
118
|
+
"key": "secretsmanager:resource/Type",
|
|
119
|
+
"description": "Filters access by the managed external secret type associated with the secret",
|
|
120
|
+
"type": "String"
|
|
106
121
|
}
|
|
107
122
|
}
|
|
@@ -14,6 +14,16 @@
|
|
|
14
14
|
"description": "Filters access by the tag keys that are passed in the request",
|
|
15
15
|
"type": "ArrayOfString"
|
|
16
16
|
},
|
|
17
|
+
"identitycenter:applicationarn": {
|
|
18
|
+
"key": "identitycenter:ApplicationArn",
|
|
19
|
+
"description": "Filters access by the ARN of the IAM Identity Center application",
|
|
20
|
+
"type": "ARN"
|
|
21
|
+
},
|
|
22
|
+
"identitycenter:instancearn": {
|
|
23
|
+
"key": "identitycenter:InstanceArn",
|
|
24
|
+
"description": "Filters access by the ARN of the IAM Identity Center instance",
|
|
25
|
+
"type": "ARN"
|
|
26
|
+
},
|
|
17
27
|
"sso:applicationaccount": {
|
|
18
28
|
"key": "sso:ApplicationAccount",
|
|
19
29
|
"description": "Filters access by the account which creates the application. This condition key is not supported for customer managed SAML applications",
|
|
@@ -234,6 +234,11 @@
|
|
|
234
234
|
"description": "Filters access by the unique identifier required when you assume a role in another account",
|
|
235
235
|
"type": "String"
|
|
236
236
|
},
|
|
237
|
+
"sts:identitytokenaudience": {
|
|
238
|
+
"key": "sts:IdentityTokenAudience",
|
|
239
|
+
"description": "Filters access by the audience that is passed in the request",
|
|
240
|
+
"type": "String"
|
|
241
|
+
},
|
|
237
242
|
"sts:requestcontext/${contextkey}": {
|
|
238
243
|
"key": "sts:RequestContext/${ContextKey}",
|
|
239
244
|
"description": "Filters access by the session context key-value pairs embedded in the signed context assertion retrieved from a trusted context provider",
|
|
@@ -249,6 +254,11 @@
|
|
|
249
254
|
"description": "Filters access by the role session name required when you assume a role",
|
|
250
255
|
"type": "String"
|
|
251
256
|
},
|
|
257
|
+
"sts:signingalgorithm": {
|
|
258
|
+
"key": "sts:SigningAlgorithm",
|
|
259
|
+
"description": "Filters access by the signing algorithm that is passed in the request",
|
|
260
|
+
"type": "String"
|
|
261
|
+
},
|
|
252
262
|
"sts:sourceidentity": {
|
|
253
263
|
"key": "sts:SourceIdentity",
|
|
254
264
|
"description": "Filters access by the source identity that is passed in the request",
|
|
@@ -14,6 +14,11 @@
|
|
|
14
14
|
"description": "Filters access by the method of the request",
|
|
15
15
|
"type": "String"
|
|
16
16
|
},
|
|
17
|
+
"vpc-lattice-svcs:requestpath": {
|
|
18
|
+
"key": "vpc-lattice-svcs:RequestPath",
|
|
19
|
+
"description": "Filters access by the path portion of the request URL",
|
|
20
|
+
"type": "String"
|
|
21
|
+
},
|
|
17
22
|
"vpc-lattice-svcs:requestquerystring/${querystringkey}": {
|
|
18
23
|
"key": "vpc-lattice-svcs:RequestQueryString/${QueryStringKey}",
|
|
19
24
|
"description": "Filters access by the query string key-value pairs in the request URL",
|
|
@@ -19,6 +19,21 @@
|
|
|
19
19
|
"description": "Filters access by the auth type specified in the request",
|
|
20
20
|
"type": "String"
|
|
21
21
|
},
|
|
22
|
+
"vpc-lattice:domainname": {
|
|
23
|
+
"key": "vpc-lattice:DomainName",
|
|
24
|
+
"description": "Filters access by the domain name",
|
|
25
|
+
"type": "String"
|
|
26
|
+
},
|
|
27
|
+
"vpc-lattice:privatednspreference": {
|
|
28
|
+
"key": "vpc-lattice:PrivateDnsPreference",
|
|
29
|
+
"description": "Filters access by the private dns preference",
|
|
30
|
+
"type": "String"
|
|
31
|
+
},
|
|
32
|
+
"vpc-lattice:privatednsspecifieddomains": {
|
|
33
|
+
"key": "vpc-lattice:PrivateDnsSpecifiedDomains",
|
|
34
|
+
"description": "Filters access by the private dns domains",
|
|
35
|
+
"type": "ArrayOfString"
|
|
36
|
+
},
|
|
22
37
|
"vpc-lattice:protocol": {
|
|
23
38
|
"key": "vpc-lattice:Protocol",
|
|
24
39
|
"description": "Filters access by the protocol specified in the request",
|
|
@@ -14,6 +14,11 @@
|
|
|
14
14
|
"description": "Filters access by the tag keys that are passed in the request",
|
|
15
15
|
"type": "ArrayOfString"
|
|
16
16
|
},
|
|
17
|
+
"logs:loggeneratingresourcearns": {
|
|
18
|
+
"key": "logs:LogGeneratingResourceArns",
|
|
19
|
+
"description": "Filters access by LogGeneratingResourceArn in the request",
|
|
20
|
+
"type": "ArrayOfARN"
|
|
21
|
+
},
|
|
17
22
|
"xray:resourcepolicyname": {
|
|
18
23
|
"key": "xray:ResourcePolicyName",
|
|
19
24
|
"description": "Filters access by PolicyName in the request",
|
|
@@ -91,6 +91,9 @@
|
|
|
91
91
|
"ecs": {
|
|
92
92
|
"ecs:ResourceTag/.+?": "ecs:ResourceTag/${TagKey}"
|
|
93
93
|
},
|
|
94
|
+
"eks": {
|
|
95
|
+
"eks:loggingType/.+?": "eks:loggingType/${type}"
|
|
96
|
+
},
|
|
94
97
|
"elasticmapreduce": {
|
|
95
98
|
"elasticmapreduce:RequestTag/.+?": "elasticmapreduce:RequestTag/${TagKey}",
|
|
96
99
|
"elasticmapreduce:ResourceTag/.+?": "elasticmapreduce:ResourceTag/${TagKey}"
|
|
@@ -113,12 +116,16 @@
|
|
|
113
116
|
"s3express:AccessPointTag/.+?": "s3express:AccessPointTag/${TagKey}",
|
|
114
117
|
"s3express:BucketTag/.+?": "s3express:BucketTag/${TagKey}"
|
|
115
118
|
},
|
|
119
|
+
"s3tables": {
|
|
120
|
+
"s3tables:TableBucketTag/.+?": "s3tables:TableBucketTag/${TagKey}"
|
|
121
|
+
},
|
|
116
122
|
"s3-outposts": {
|
|
117
123
|
"s3-outposts:ExistingObjectTag/.+?": "s3-outposts:ExistingObjectTag/<key>",
|
|
118
124
|
"s3-outposts:RequestObjectTag/.+?": "s3-outposts:RequestObjectTag/<key>"
|
|
119
125
|
},
|
|
120
126
|
"s3": {
|
|
121
127
|
"s3:AccessPointTag/.+?": "s3:AccessPointTag/${TagKey}",
|
|
128
|
+
"s3:BucketTag/.+?": "s3:BucketTag/${TagKey}",
|
|
122
129
|
"s3:ExistingObjectTag/.+?": "s3:ExistingObjectTag/<key>",
|
|
123
130
|
"s3:RequestObjectTag/.+?": "s3:RequestObjectTag/<key>"
|
|
124
131
|
},
|
iamdata/data/metadata.json
CHANGED
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{}
|
|
@@ -17,6 +17,15 @@
|
|
|
17
17
|
"aws:TagKeys"
|
|
18
18
|
]
|
|
19
19
|
},
|
|
20
|
+
"anomalydetector": {
|
|
21
|
+
"key": "anomalydetector",
|
|
22
|
+
"arn": "arn:${Partition}:aps:${Region}:${Account}:anomalydetector/${WorkspaceId}/${AnomalyDetectorId}",
|
|
23
|
+
"conditionKeys": [
|
|
24
|
+
"aws:RequestTag/${TagKey}",
|
|
25
|
+
"aws:ResourceTag/${TagKey}",
|
|
26
|
+
"aws:TagKeys"
|
|
27
|
+
]
|
|
28
|
+
},
|
|
20
29
|
"scraper": {
|
|
21
30
|
"key": "scraper",
|
|
22
31
|
"arn": "arn:${Partition}:aps:${Region}:${Account}:scraper/${ScraperId}",
|
|
@@ -19,5 +19,12 @@
|
|
|
19
19
|
"conditionKeys": [
|
|
20
20
|
"aws:ResourceTag/${TagKey}"
|
|
21
21
|
]
|
|
22
|
+
},
|
|
23
|
+
"session": {
|
|
24
|
+
"key": "session",
|
|
25
|
+
"arn": "arn:${Partition}:athena:${Region}:${Account}:workgroup/${WorkGroupName}/session/${SessionId}",
|
|
26
|
+
"conditionKeys": [
|
|
27
|
+
"aws:ResourceTag/${TagKey}"
|
|
28
|
+
]
|
|
22
29
|
}
|
|
23
30
|
}
|
|
@@ -47,5 +47,12 @@
|
|
|
47
47
|
"conditionKeys": [
|
|
48
48
|
"aws:ResourceTag/${TagKey}"
|
|
49
49
|
]
|
|
50
|
+
},
|
|
51
|
+
"tieringconfiguration": {
|
|
52
|
+
"key": "tieringConfiguration",
|
|
53
|
+
"arn": "arn:${Partition}:backup:${Region}:${Account}:tiering-configuration:${TieringConfigurationName}-${TieringConfigurationId}",
|
|
54
|
+
"conditionKeys": [
|
|
55
|
+
"aws:ResourceTag/${TagKey}"
|
|
56
|
+
]
|
|
50
57
|
}
|
|
51
58
|
}
|
|
@@ -1,23 +1,38 @@
|
|
|
1
1
|
{
|
|
2
2
|
"memory": {
|
|
3
3
|
"key": "memory",
|
|
4
|
-
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:memory/${MemoryId}"
|
|
4
|
+
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:memory/${MemoryId}",
|
|
5
|
+
"conditionKeys": [
|
|
6
|
+
"aws:ResourceTag/${TagKey}"
|
|
7
|
+
]
|
|
5
8
|
},
|
|
6
9
|
"gateway": {
|
|
7
10
|
"key": "gateway",
|
|
8
|
-
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:gateway/${GatewayId}"
|
|
11
|
+
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:gateway/${GatewayId}",
|
|
12
|
+
"conditionKeys": [
|
|
13
|
+
"aws:ResourceTag/${TagKey}"
|
|
14
|
+
]
|
|
9
15
|
},
|
|
10
16
|
"workload-identity": {
|
|
11
17
|
"key": "workload-identity",
|
|
12
|
-
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:workload-identity-directory/${DirectoryId}/workload-identity/${WorkloadIdentityName}"
|
|
18
|
+
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:workload-identity-directory/${DirectoryId}/workload-identity/${WorkloadIdentityName}",
|
|
19
|
+
"conditionKeys": [
|
|
20
|
+
"aws:ResourceTag/${TagKey}"
|
|
21
|
+
]
|
|
13
22
|
},
|
|
14
23
|
"oauth2credentialprovider": {
|
|
15
24
|
"key": "oauth2credentialprovider",
|
|
16
|
-
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:token-vault/${TokenVaultId}/oauth2credentialprovider/${Name}"
|
|
25
|
+
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:token-vault/${TokenVaultId}/oauth2credentialprovider/${Name}",
|
|
26
|
+
"conditionKeys": [
|
|
27
|
+
"aws:ResourceTag/${TagKey}"
|
|
28
|
+
]
|
|
17
29
|
},
|
|
18
30
|
"apikeycredentialprovider": {
|
|
19
31
|
"key": "apikeycredentialprovider",
|
|
20
|
-
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:token-vault/${TokenVaultId}/apikeycredentialprovider/${Name}"
|
|
32
|
+
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:token-vault/${TokenVaultId}/apikeycredentialprovider/${Name}",
|
|
33
|
+
"conditionKeys": [
|
|
34
|
+
"aws:ResourceTag/${TagKey}"
|
|
35
|
+
]
|
|
21
36
|
},
|
|
22
37
|
"runtime": {
|
|
23
38
|
"key": "runtime",
|
|
@@ -57,10 +72,16 @@
|
|
|
57
72
|
},
|
|
58
73
|
"workload-identity-directory": {
|
|
59
74
|
"key": "workload-identity-directory",
|
|
60
|
-
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:workload-identity-directory/${DirectoryId}"
|
|
75
|
+
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:workload-identity-directory/${DirectoryId}",
|
|
76
|
+
"conditionKeys": [
|
|
77
|
+
"aws:ResourceTag/${TagKey}"
|
|
78
|
+
]
|
|
61
79
|
},
|
|
62
80
|
"token-vault": {
|
|
63
81
|
"key": "token-vault",
|
|
64
|
-
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:token-vault/${TokenVaultId}"
|
|
82
|
+
"arn": "arn:${Partition}:bedrock-agentcore:${Region}:${Account}:token-vault/${TokenVaultId}",
|
|
83
|
+
"conditionKeys": [
|
|
84
|
+
"aws:ResourceTag/${TagKey}"
|
|
85
|
+
]
|
|
65
86
|
}
|
|
66
87
|
}
|
|
@@ -3,6 +3,10 @@
|
|
|
3
3
|
"key": "foundation-model",
|
|
4
4
|
"arn": "arn:${Partition}:bedrock:${Region}::foundation-model/${ResourceId}"
|
|
5
5
|
},
|
|
6
|
+
"system-tool": {
|
|
7
|
+
"key": "system-tool",
|
|
8
|
+
"arn": "arn:${Partition}:bedrock::${Account}:system-tool/${ResourceId}"
|
|
9
|
+
},
|
|
6
10
|
"async-invoke": {
|
|
7
11
|
"key": "async-invoke",
|
|
8
12
|
"arn": "arn:${Partition}:bedrock:${Region}:${Account}:async-invoke/${ResourceId}",
|
|
@@ -12,5 +12,12 @@
|
|
|
12
12
|
"conditionKeys": [
|
|
13
13
|
"aws:ResourceTag/${TagKey}"
|
|
14
14
|
]
|
|
15
|
+
},
|
|
16
|
+
"spending-limit": {
|
|
17
|
+
"key": "spending-limit",
|
|
18
|
+
"arn": "arn:${Partition}:braket:${Region}:${Account}:spending-limit/${RandomId}",
|
|
19
|
+
"conditionKeys": [
|
|
20
|
+
"aws:ResourceTag/${TagKey}"
|
|
21
|
+
]
|
|
15
22
|
}
|
|
16
23
|
}
|
|
@@ -28,6 +28,10 @@
|
|
|
28
28
|
"key": "type",
|
|
29
29
|
"arn": "arn:${Partition}:cloudformation:${Region}:${Account}:type/resource/${Type}"
|
|
30
30
|
},
|
|
31
|
+
"typehook": {
|
|
32
|
+
"key": "typeHook",
|
|
33
|
+
"arn": "arn:${Partition}:cloudformation:${Region}:${Account}:type/hook/${Type}"
|
|
34
|
+
},
|
|
31
35
|
"generatedtemplate": {
|
|
32
36
|
"key": "generatedtemplate",
|
|
33
37
|
"arn": "arn:${Partition}:cloudformation:${Region}:${Account}:generatedTemplate/${Id}"
|
|
@@ -28,6 +28,19 @@
|
|
|
28
28
|
"ec2:ResourceTag/${TagKey}"
|
|
29
29
|
]
|
|
30
30
|
},
|
|
31
|
+
"capacity-manager-data-export": {
|
|
32
|
+
"key": "capacity-manager-data-export",
|
|
33
|
+
"arn": "arn:${Partition}:ec2:${Region}:${Account}:capacity-manager-data-export/${CapacityManagerDataExportId}",
|
|
34
|
+
"conditionKeys": [
|
|
35
|
+
"aws:RequestTag/${TagKey}",
|
|
36
|
+
"aws:ResourceTag/${TagKey}",
|
|
37
|
+
"aws:TagKeys",
|
|
38
|
+
"ec2:Attribute",
|
|
39
|
+
"ec2:Attribute/${AttributeName}",
|
|
40
|
+
"ec2:Region",
|
|
41
|
+
"ec2:ResourceTag/${TagKey}"
|
|
42
|
+
]
|
|
43
|
+
},
|
|
31
44
|
"capacity-reservation-fleet": {
|
|
32
45
|
"key": "capacity-reservation-fleet",
|
|
33
46
|
"arn": "arn:${Partition}:ec2:${Region}:${Account}:capacity-reservation-fleet/${CapacityReservationFleetId}",
|
|
@@ -1163,6 +1176,7 @@
|
|
|
1163
1176
|
"ec2:LaunchTemplate",
|
|
1164
1177
|
"ec2:ManagedResourceOperator",
|
|
1165
1178
|
"ec2:ParentSnapshot",
|
|
1179
|
+
"ec2:ParentVolume",
|
|
1166
1180
|
"ec2:Region",
|
|
1167
1181
|
"ec2:ResourceTag/${TagKey}",
|
|
1168
1182
|
"ec2:VolumeID",
|
|
@@ -1208,10 +1222,10 @@
|
|
|
1208
1222
|
"ec2:Attribute/${AttributeName}",
|
|
1209
1223
|
"ec2:Region",
|
|
1210
1224
|
"ec2:ResourceTag/${TagKey}",
|
|
1225
|
+
"ec2:VpceMultiRegion",
|
|
1211
1226
|
"ec2:VpceServiceName",
|
|
1212
1227
|
"ec2:VpceServiceOwner",
|
|
1213
|
-
"ec2:
|
|
1214
|
-
"ec2:vpceServiceRegion"
|
|
1228
|
+
"ec2:VpceServiceRegion"
|
|
1215
1229
|
]
|
|
1216
1230
|
},
|
|
1217
1231
|
"vpc-endpoint-service": {
|
|
@@ -1225,10 +1239,10 @@
|
|
|
1225
1239
|
"ec2:Attribute/${AttributeName}",
|
|
1226
1240
|
"ec2:Region",
|
|
1227
1241
|
"ec2:ResourceTag/${TagKey}",
|
|
1242
|
+
"ec2:VpceMultiRegion",
|
|
1228
1243
|
"ec2:VpceServicePrivateDnsName",
|
|
1229
|
-
"ec2:
|
|
1230
|
-
"ec2:
|
|
1231
|
-
"ec2:vpceSupportedRegion"
|
|
1244
|
+
"ec2:VpceServiceRegion",
|
|
1245
|
+
"ec2:VpceSupportedRegion"
|
|
1232
1246
|
]
|
|
1233
1247
|
},
|
|
1234
1248
|
"vpc-endpoint-service-permission": {
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{}
|
|
@@ -43,7 +43,10 @@
|
|
|
43
43
|
},
|
|
44
44
|
"publishingdestination": {
|
|
45
45
|
"key": "publishingDestination",
|
|
46
|
-
"arn": "arn:${Partition}:guardduty:${Region}:${Account}:detector/${DetectorId}/
|
|
46
|
+
"arn": "arn:${Partition}:guardduty:${Region}:${Account}:detector/${DetectorId}/publishingdestination/${PublishingDestinationId}",
|
|
47
|
+
"conditionKeys": [
|
|
48
|
+
"aws:ResourceTag/${TagKey}"
|
|
49
|
+
]
|
|
47
50
|
},
|
|
48
51
|
"malwareprotectionplan": {
|
|
49
52
|
"key": "malwareprotectionplan",
|
|
@@ -76,5 +76,12 @@
|
|
|
76
76
|
"aws:ResourceTag/${TagKey}",
|
|
77
77
|
"iam:ResourceTag/${TagKey}"
|
|
78
78
|
]
|
|
79
|
+
},
|
|
80
|
+
"delegation-request": {
|
|
81
|
+
"key": "delegation-request",
|
|
82
|
+
"arn": "arn:${Partition}:iam::${Account}:delegation-request/${DelegationRequestId}",
|
|
83
|
+
"conditionKeys": [
|
|
84
|
+
"iam:DelegationRequestOwner"
|
|
85
|
+
]
|
|
79
86
|
}
|
|
80
87
|
}
|
|
@@ -5,5 +5,12 @@
|
|
|
5
5
|
"conditionKeys": [
|
|
6
6
|
"aws:ResourceTag/${TagKey}"
|
|
7
7
|
]
|
|
8
|
+
},
|
|
9
|
+
"procurement-portal-preference": {
|
|
10
|
+
"key": "procurement-portal-preference",
|
|
11
|
+
"arn": "arn:${Partition}:invoicing::${Account}:procurement-portal-preference/${Identifier}",
|
|
12
|
+
"conditionKeys": [
|
|
13
|
+
"aws:ResourceTag/${TagKey}"
|
|
14
|
+
]
|
|
8
15
|
}
|
|
9
16
|
}
|
|
@@ -28,5 +28,19 @@
|
|
|
28
28
|
"aws:ResourceTag/${TagKey}",
|
|
29
29
|
"license-manager:ResourceTag/${TagKey}"
|
|
30
30
|
]
|
|
31
|
+
},
|
|
32
|
+
"license-asset-ruleset": {
|
|
33
|
+
"key": "license-asset-ruleset",
|
|
34
|
+
"arn": "arn:${Partition}:license-manager:${Region}:${Account}:license-asset-ruleset:${LicenseAssetRulesetId}",
|
|
35
|
+
"conditionKeys": [
|
|
36
|
+
"aws:ResourceTag/${TagKey}"
|
|
37
|
+
]
|
|
38
|
+
},
|
|
39
|
+
"license-asset-group": {
|
|
40
|
+
"key": "license-asset-group",
|
|
41
|
+
"arn": "arn:${Partition}:license-manager:${Region}:${Account}:license-asset-group:${LicenseAssetGroupId}",
|
|
42
|
+
"conditionKeys": [
|
|
43
|
+
"aws:ResourceTag/${TagKey}"
|
|
44
|
+
]
|
|
31
45
|
}
|
|
32
46
|
}
|
|
@@ -47,5 +47,12 @@
|
|
|
47
47
|
"conditionKeys": [
|
|
48
48
|
"aws:ResourceTag/${TagKey}"
|
|
49
49
|
]
|
|
50
|
+
},
|
|
51
|
+
"scheduled-query": {
|
|
52
|
+
"key": "scheduled-query",
|
|
53
|
+
"arn": "arn:${Partition}:logs:${Region}:${Account}:scheduled-query:${ScheduledQueryId}",
|
|
54
|
+
"conditionKeys": [
|
|
55
|
+
"aws:ResourceTag/${TagKey}"
|
|
56
|
+
]
|
|
50
57
|
}
|
|
51
58
|
}
|
|
@@ -1,19 +1,31 @@
|
|
|
1
1
|
{
|
|
2
2
|
"entitlement": {
|
|
3
3
|
"key": "Entitlement",
|
|
4
|
-
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:entitlement:${FlowId}:${EntitlementName}"
|
|
4
|
+
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:entitlement:${FlowId}:${EntitlementName}",
|
|
5
|
+
"conditionKeys": [
|
|
6
|
+
"aws:ResourceTag/${TagKey}"
|
|
7
|
+
]
|
|
5
8
|
},
|
|
6
9
|
"flow": {
|
|
7
10
|
"key": "Flow",
|
|
8
|
-
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:flow:${FlowId}:${FlowName}"
|
|
11
|
+
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:flow:${FlowId}:${FlowName}",
|
|
12
|
+
"conditionKeys": [
|
|
13
|
+
"aws:ResourceTag/${TagKey}"
|
|
14
|
+
]
|
|
9
15
|
},
|
|
10
16
|
"output": {
|
|
11
17
|
"key": "Output",
|
|
12
|
-
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:output:${OutputId}:${OutputName}"
|
|
18
|
+
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:output:${OutputId}:${OutputName}",
|
|
19
|
+
"conditionKeys": [
|
|
20
|
+
"aws:ResourceTag/${TagKey}"
|
|
21
|
+
]
|
|
13
22
|
},
|
|
14
23
|
"source": {
|
|
15
24
|
"key": "Source",
|
|
16
|
-
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:source:${SourceId}:${SourceName}"
|
|
25
|
+
"arn": "arn:${Partition}:mediaconnect:${Region}:${Account}:source:${SourceId}:${SourceName}",
|
|
26
|
+
"conditionKeys": [
|
|
27
|
+
"aws:ResourceTag/${TagKey}"
|
|
28
|
+
]
|
|
17
29
|
},
|
|
18
30
|
"gateway": {
|
|
19
31
|
"key": "Gateway",
|
|
@@ -1,21 +1,21 @@
|
|
|
1
1
|
{
|
|
2
2
|
"telemetry-rule": {
|
|
3
3
|
"key": "telemetry-rule",
|
|
4
|
-
"arn": "arn:${Partition}:observabilityadmin:${Region}:${Account}:telemetry-rule
|
|
4
|
+
"arn": "arn:${Partition}:observabilityadmin:${Region}:${Account}:telemetry-rule/${TelemetryRuleName}",
|
|
5
5
|
"conditionKeys": [
|
|
6
6
|
"aws:ResourceTag/${TagKey}"
|
|
7
7
|
]
|
|
8
8
|
},
|
|
9
9
|
"organization-telemetry-rule": {
|
|
10
10
|
"key": "organization-telemetry-rule",
|
|
11
|
-
"arn": "arn:${Partition}:observabilityadmin:${Region}:${Account}:organization-telemetry-rule
|
|
11
|
+
"arn": "arn:${Partition}:observabilityadmin:${Region}:${Account}:organization-telemetry-rule/${TelemetryRuleName}",
|
|
12
12
|
"conditionKeys": [
|
|
13
13
|
"aws:ResourceTag/${TagKey}"
|
|
14
14
|
]
|
|
15
15
|
},
|
|
16
16
|
"organization-centralization-rule": {
|
|
17
17
|
"key": "organization-centralization-rule",
|
|
18
|
-
"arn": "arn:${Partition}:observabilityadmin:${Region}:${Account}:organization-centralization-rule
|
|
18
|
+
"arn": "arn:${Partition}:observabilityadmin:${Region}:${Account}:organization-centralization-rule/${CentralizationRuleName}",
|
|
19
19
|
"conditionKeys": [
|
|
20
20
|
"aws:ResourceTag/${TagKey}"
|
|
21
21
|
]
|
|
@@ -45,5 +45,12 @@
|
|
|
45
45
|
"conditionKeys": [
|
|
46
46
|
"aws:ResourceTag/${TagKey}"
|
|
47
47
|
]
|
|
48
|
+
},
|
|
49
|
+
"responsibilitytransfer": {
|
|
50
|
+
"key": "responsibilitytransfer",
|
|
51
|
+
"arn": "arn:${Partition}:organizations::${Account}:transfer/o-${OrganizationId}/${TransferType}/${TransferDirection}/rt-${ResponsibilityTransferId}",
|
|
52
|
+
"conditionKeys": [
|
|
53
|
+
"aws:ResourceTag/${TagKey}"
|
|
54
|
+
]
|
|
48
55
|
}
|
|
49
56
|
}
|