iamdata 0.1.202509301__py3-none-any.whl → 0.1.202511241__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of iamdata might be problematic. Click here for more details.
- iamdata/data/actions/action-recommendations.json +10 -0
- iamdata/data/actions/aiops.json +159 -0
- iamdata/data/actions/airflow-serverless.json +225 -0
- iamdata/data/actions/application-signals.json +8 -0
- iamdata/data/actions/appstream.json +120 -36
- iamdata/data/actions/aps.json +190 -0
- iamdata/data/actions/athena.json +88 -1
- iamdata/data/actions/autoscaling.json +41 -3
- iamdata/data/actions/backup.json +170 -2
- iamdata/data/actions/batch.json +28 -18
- iamdata/data/actions/bedrock-agentcore.json +325 -7
- iamdata/data/actions/bedrock.json +46 -2
- iamdata/data/actions/billing.json +22 -4
- iamdata/data/actions/braket.json +62 -0
- iamdata/data/actions/cloudformation.json +33 -0
- iamdata/data/actions/cloudfront.json +71 -88
- iamdata/data/actions/cloudtrail.json +35 -8
- iamdata/data/actions/cognito-idp.json +75 -0
- iamdata/data/actions/connect.json +77 -0
- iamdata/data/actions/cost-optimization-hub.json +8 -0
- iamdata/data/actions/datazone.json +224 -0
- iamdata/data/actions/dms.json +132 -0
- iamdata/data/actions/dsql.json +46 -8
- iamdata/data/actions/ec2.json +219 -33
- iamdata/data/actions/ecs.json +110 -2
- iamdata/data/actions/eks-mcp.json +26 -0
- iamdata/data/actions/eks.json +22 -2
- iamdata/data/actions/elasticloadbalancing.json +9 -0
- iamdata/data/actions/emr-containers.json +15 -0
- iamdata/data/actions/es.json +60 -0
- iamdata/data/actions/fsx.json +15 -6
- iamdata/data/actions/glue.json +92 -16
- iamdata/data/actions/groundstation.json +15 -0
- iamdata/data/actions/guardduty.json +47 -1
- iamdata/data/actions/healthlake.json +225 -0
- iamdata/data/actions/iam.json +158 -5
- iamdata/data/actions/identitystore.json +76 -27
- iamdata/data/actions/imagebuilder.json +50 -6
- iamdata/data/actions/invoicing.json +57 -2
- iamdata/data/actions/iotmanagedintegrations.json +15 -0
- iamdata/data/actions/kafka.json +71 -0
- iamdata/data/actions/kinesis.json +63 -0
- iamdata/data/actions/kinesisvideo.json +30 -0
- iamdata/data/actions/kms.json +4 -1
- iamdata/data/actions/lakeformation.json +16 -0
- iamdata/data/actions/lambda.json +4 -2
- iamdata/data/actions/license-manager.json +217 -3
- iamdata/data/actions/logs.json +98 -0
- iamdata/data/actions/mediaconnect.json +83 -10
- iamdata/data/actions/medialive.json +24 -0
- iamdata/data/actions/mgn.json +54 -1
- iamdata/data/actions/notifications-contacts.json +2 -1
- iamdata/data/actions/observabilityadmin.json +24 -3
- iamdata/data/actions/odb.json +37 -0
- iamdata/data/actions/organizations.json +117 -0
- iamdata/data/actions/partnercentral.json +307 -3
- iamdata/data/actions/pcs.json +26 -0
- iamdata/data/actions/pi.json +6 -0
- iamdata/data/actions/pricingplanmanager.json +66 -0
- iamdata/data/actions/profile.json +398 -0
- iamdata/data/actions/quicksight.json +466 -0
- iamdata/data/actions/rds.json +19 -8
- iamdata/data/actions/redshift-serverless.json +2 -2
- iamdata/data/actions/resource-explorer-2.json +82 -0
- iamdata/data/actions/rtbfabric.json +481 -0
- iamdata/data/actions/s3.json +65 -1
- iamdata/data/actions/s3tables.json +85 -2
- iamdata/data/actions/sagemaker-unified-studio-mcp.json +26 -0
- iamdata/data/actions/scn.json +17 -5
- iamdata/data/actions/secretsmanager.json +42 -20
- iamdata/data/actions/securityhub.json +30 -0
- iamdata/data/actions/servicequotas.json +32 -0
- iamdata/data/actions/signin.json +16 -0
- iamdata/data/actions/social-messaging.json +64 -8
- iamdata/data/actions/sts.json +34 -0
- iamdata/data/actions/support-console.json +18 -0
- iamdata/data/actions/support.json +35 -1
- iamdata/data/actions/tag.json +8 -0
- iamdata/data/actions/user-subscriptions.json +8 -0
- iamdata/data/actions/vpc-lattice-svcs.json +2 -0
- iamdata/data/actions/vpc-lattice.json +81 -0
- iamdata/data/actions/workspaces-web.json +25 -9
- iamdata/data/actions/xray.json +6 -2
- iamdata/data/conditionKeys/airflow-serverless.json +17 -0
- iamdata/data/conditionKeys/bedrock-agentcore.json +40 -0
- iamdata/data/conditionKeys/bedrock.json +5 -0
- iamdata/data/conditionKeys/dynamodb.json +21 -1
- iamdata/data/conditionKeys/ec2.json +15 -15
- iamdata/data/conditionKeys/eks.json +5 -0
- iamdata/data/conditionKeys/events.json +1 -1
- iamdata/data/conditionKeys/glue.json +5 -0
- iamdata/data/conditionKeys/iam.json +20 -0
- iamdata/data/conditionKeys/identitystore.json +26 -1
- iamdata/data/conditionKeys/kinesis.json +15 -0
- iamdata/data/conditionKeys/lambda.json +5 -0
- iamdata/data/conditionKeys/mediaconnect.json +17 -1
- iamdata/data/conditionKeys/organizations.json +10 -0
- iamdata/data/conditionKeys/partnercentral.json +7 -2
- iamdata/data/conditionKeys/pricingplanmanager.json +1 -0
- iamdata/data/conditionKeys/rtbfabric.json +47 -0
- iamdata/data/conditionKeys/s3.json +5 -0
- iamdata/data/conditionKeys/s3tables.json +20 -0
- iamdata/data/conditionKeys/sagemaker-unified-studio-mcp.json +1 -0
- iamdata/data/conditionKeys/secretsmanager.json +15 -0
- iamdata/data/conditionKeys/sso.json +10 -0
- iamdata/data/conditionKeys/sts.json +10 -0
- iamdata/data/conditionKeys/vpc-lattice-svcs.json +5 -0
- iamdata/data/conditionKeys/vpc-lattice.json +15 -0
- iamdata/data/conditionKeys/xray.json +5 -0
- iamdata/data/conditionPatterns.json +7 -0
- iamdata/data/metadata.json +2 -2
- iamdata/data/resourceTypes/action-recommendations.json +1 -0
- iamdata/data/resourceTypes/airflow-serverless.json +9 -0
- iamdata/data/resourceTypes/aps.json +9 -0
- iamdata/data/resourceTypes/athena.json +7 -0
- iamdata/data/resourceTypes/backup.json +7 -0
- iamdata/data/resourceTypes/bedrock-agentcore.json +28 -7
- iamdata/data/resourceTypes/bedrock.json +4 -0
- iamdata/data/resourceTypes/braket.json +7 -0
- iamdata/data/resourceTypes/cloudformation.json +4 -0
- iamdata/data/resourceTypes/ec2.json +19 -5
- iamdata/data/resourceTypes/eks-mcp.json +1 -0
- iamdata/data/resourceTypes/guardduty.json +4 -1
- iamdata/data/resourceTypes/iam.json +7 -0
- iamdata/data/resourceTypes/invoicing.json +7 -0
- iamdata/data/resourceTypes/license-manager.json +14 -0
- iamdata/data/resourceTypes/logs.json +7 -0
- iamdata/data/resourceTypes/mediaconnect.json +16 -4
- iamdata/data/resourceTypes/observabilityadmin.json +3 -3
- iamdata/data/resourceTypes/organizations.json +7 -0
- iamdata/data/resourceTypes/partnercentral.json +21 -0
- iamdata/data/resourceTypes/pi.json +4 -1
- iamdata/data/resourceTypes/pricingplanmanager.json +6 -0
- iamdata/data/resourceTypes/profile.json +14 -0
- iamdata/data/resourceTypes/quicksight.json +26 -1
- iamdata/data/resourceTypes/rtbfabric.json +46 -0
- iamdata/data/resourceTypes/s3.json +11 -2
- iamdata/data/resourceTypes/s3tables.json +7 -1
- iamdata/data/resourceTypes/sagemaker-unified-studio-mcp.json +1 -0
- iamdata/data/resourceTypes/scn.json +16 -4
- iamdata/data/resourceTypes/secretsmanager.json +2 -1
- iamdata/data/resourceTypes/vpc-lattice.json +12 -0
- iamdata/data/serviceNames.json +7 -2
- iamdata/data/services.json +6 -1
- iamdata/data/unassociatedConditions.json +3 -0
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202511241.dist-info}/METADATA +1 -1
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202511241.dist-info}/RECORD +151 -136
- iamdata/data/actions/application-cost-profiler.json +0 -50
- /iamdata/data/conditionKeys/{application-cost-profiler.json → action-recommendations.json} +0 -0
- /iamdata/data/{resourceTypes/application-cost-profiler.json → conditionKeys/eks-mcp.json} +0 -0
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202511241.dist-info}/WHEEL +0 -0
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202511241.dist-info}/licenses/LICENSE.txt +0 -0
|
@@ -0,0 +1,26 @@
|
|
|
1
|
+
{
|
|
2
|
+
"callprivilegedtool": {
|
|
3
|
+
"name": "CallPrivilegedTool",
|
|
4
|
+
"description": "Grants permission to call privileged tools in MCP service",
|
|
5
|
+
"accessLevel": "Write",
|
|
6
|
+
"resourceTypes": [],
|
|
7
|
+
"conditionKeys": [],
|
|
8
|
+
"dependentActions": []
|
|
9
|
+
},
|
|
10
|
+
"callreadonlytool": {
|
|
11
|
+
"name": "CallReadOnlyTool",
|
|
12
|
+
"description": "Grants permission to call read-only tools in MCP service",
|
|
13
|
+
"accessLevel": "Read",
|
|
14
|
+
"resourceTypes": [],
|
|
15
|
+
"conditionKeys": [],
|
|
16
|
+
"dependentActions": []
|
|
17
|
+
},
|
|
18
|
+
"invokemcp": {
|
|
19
|
+
"name": "InvokeMcp",
|
|
20
|
+
"description": "Grants permission to use MCP service",
|
|
21
|
+
"accessLevel": "Read",
|
|
22
|
+
"resourceTypes": [],
|
|
23
|
+
"conditionKeys": [],
|
|
24
|
+
"dependentActions": []
|
|
25
|
+
}
|
|
26
|
+
}
|
iamdata/data/actions/eks.json
CHANGED
|
@@ -129,7 +129,8 @@
|
|
|
129
129
|
"eks:supportType",
|
|
130
130
|
"eks:computeConfigEnabled",
|
|
131
131
|
"eks:elasticLoadBalancingEnabled",
|
|
132
|
-
"eks:blockStorageEnabled"
|
|
132
|
+
"eks:blockStorageEnabled",
|
|
133
|
+
"eks:loggingType/${type}"
|
|
133
134
|
],
|
|
134
135
|
"dependentActions": []
|
|
135
136
|
},
|
|
@@ -811,6 +812,24 @@
|
|
|
811
812
|
"conditionKeys": [],
|
|
812
813
|
"dependentActions": []
|
|
813
814
|
},
|
|
815
|
+
"mutateviakubernetesapi": {
|
|
816
|
+
"name": "MutateViaKubernetesApi",
|
|
817
|
+
"isPermissionOnly": true,
|
|
818
|
+
"description": "Grants permission to modify Kubernetes objects via AWS console",
|
|
819
|
+
"accessLevel": "Write",
|
|
820
|
+
"resourceTypes": [
|
|
821
|
+
{
|
|
822
|
+
"name": "cluster",
|
|
823
|
+
"required": true,
|
|
824
|
+
"conditionKeys": [],
|
|
825
|
+
"dependentActions": []
|
|
826
|
+
}
|
|
827
|
+
],
|
|
828
|
+
"conditionKeys": [],
|
|
829
|
+
"dependentActions": [
|
|
830
|
+
"eks:AccessKubernetesApi"
|
|
831
|
+
]
|
|
832
|
+
},
|
|
814
833
|
"registercluster": {
|
|
815
834
|
"name": "RegisterCluster",
|
|
816
835
|
"description": "Grants permission to register an External cluster",
|
|
@@ -1021,7 +1040,8 @@
|
|
|
1021
1040
|
"eks:supportType",
|
|
1022
1041
|
"eks:computeConfigEnabled",
|
|
1023
1042
|
"eks:elasticLoadBalancingEnabled",
|
|
1024
|
-
"eks:blockStorageEnabled"
|
|
1043
|
+
"eks:blockStorageEnabled",
|
|
1044
|
+
"eks:loggingType/${type}"
|
|
1025
1045
|
],
|
|
1026
1046
|
"dependentActions": []
|
|
1027
1047
|
},
|
|
@@ -62,6 +62,15 @@
|
|
|
62
62
|
],
|
|
63
63
|
"dependentActions": []
|
|
64
64
|
},
|
|
65
|
+
"allowvendedlogdeliveryforresource": {
|
|
66
|
+
"name": "AllowVendedLogDeliveryForResource",
|
|
67
|
+
"isPermissionOnly": true,
|
|
68
|
+
"description": "Grants permission to configure vended log delivery for load balancers",
|
|
69
|
+
"accessLevel": "Permissions management",
|
|
70
|
+
"resourceTypes": [],
|
|
71
|
+
"conditionKeys": [],
|
|
72
|
+
"dependentActions": []
|
|
73
|
+
},
|
|
65
74
|
"createlistener": {
|
|
66
75
|
"name": "CreateListener",
|
|
67
76
|
"description": "Grants permission to create a listener for the specified Application Load Balancer",
|
|
@@ -104,6 +104,21 @@
|
|
|
104
104
|
"conditionKeys": [],
|
|
105
105
|
"dependentActions": []
|
|
106
106
|
},
|
|
107
|
+
"deletesecurityconfiguration": {
|
|
108
|
+
"name": "DeleteSecurityConfiguration",
|
|
109
|
+
"description": "Grants permission to delete a security configuration",
|
|
110
|
+
"accessLevel": "Write",
|
|
111
|
+
"resourceTypes": [
|
|
112
|
+
{
|
|
113
|
+
"name": "securityConfiguration",
|
|
114
|
+
"required": true,
|
|
115
|
+
"conditionKeys": [],
|
|
116
|
+
"dependentActions": []
|
|
117
|
+
}
|
|
118
|
+
],
|
|
119
|
+
"conditionKeys": [],
|
|
120
|
+
"dependentActions": []
|
|
121
|
+
},
|
|
107
122
|
"deletevirtualcluster": {
|
|
108
123
|
"name": "DeleteVirtualCluster",
|
|
109
124
|
"description": "Grants permission to delete a virtual cluster",
|
iamdata/data/actions/es.json
CHANGED
|
@@ -216,6 +216,21 @@
|
|
|
216
216
|
"conditionKeys": [],
|
|
217
217
|
"dependentActions": []
|
|
218
218
|
},
|
|
219
|
+
"createindex": {
|
|
220
|
+
"name": "CreateIndex",
|
|
221
|
+
"description": "Grants permission to create index for the OpenSearch Service domain",
|
|
222
|
+
"accessLevel": "Write",
|
|
223
|
+
"resourceTypes": [
|
|
224
|
+
{
|
|
225
|
+
"name": "domain",
|
|
226
|
+
"required": true,
|
|
227
|
+
"conditionKeys": [],
|
|
228
|
+
"dependentActions": []
|
|
229
|
+
}
|
|
230
|
+
],
|
|
231
|
+
"conditionKeys": [],
|
|
232
|
+
"dependentActions": []
|
|
233
|
+
},
|
|
219
234
|
"createoutboundconnection": {
|
|
220
235
|
"name": "CreateOutboundConnection",
|
|
221
236
|
"description": "Grants permission to create a new cross-cluster search connection from a source domain to a destination domain",
|
|
@@ -369,6 +384,21 @@
|
|
|
369
384
|
"conditionKeys": [],
|
|
370
385
|
"dependentActions": []
|
|
371
386
|
},
|
|
387
|
+
"deleteindex": {
|
|
388
|
+
"name": "DeleteIndex",
|
|
389
|
+
"description": "Grants permission to delete Index for the OpenSearch Service domain",
|
|
390
|
+
"accessLevel": "Write",
|
|
391
|
+
"resourceTypes": [
|
|
392
|
+
{
|
|
393
|
+
"name": "domain",
|
|
394
|
+
"required": true,
|
|
395
|
+
"conditionKeys": [],
|
|
396
|
+
"dependentActions": []
|
|
397
|
+
}
|
|
398
|
+
],
|
|
399
|
+
"conditionKeys": [],
|
|
400
|
+
"dependentActions": []
|
|
401
|
+
},
|
|
372
402
|
"deleteoutboundconnection": {
|
|
373
403
|
"name": "DeleteOutboundConnection",
|
|
374
404
|
"description": "Grants permission to the source domain owner to delete an existing outbound cross-cluster search connection",
|
|
@@ -887,6 +917,21 @@
|
|
|
887
917
|
"conditionKeys": [],
|
|
888
918
|
"dependentActions": []
|
|
889
919
|
},
|
|
920
|
+
"getindex": {
|
|
921
|
+
"name": "GetIndex",
|
|
922
|
+
"description": "Grants permission to get index for the OpenSearch Service domain",
|
|
923
|
+
"accessLevel": "Read",
|
|
924
|
+
"resourceTypes": [
|
|
925
|
+
{
|
|
926
|
+
"name": "domain",
|
|
927
|
+
"required": true,
|
|
928
|
+
"conditionKeys": [],
|
|
929
|
+
"dependentActions": []
|
|
930
|
+
}
|
|
931
|
+
],
|
|
932
|
+
"conditionKeys": [],
|
|
933
|
+
"dependentActions": []
|
|
934
|
+
},
|
|
890
935
|
"getpackageversionhistory": {
|
|
891
936
|
"name": "GetPackageVersionHistory",
|
|
892
937
|
"description": "Grants permission to fetch the version history for a package",
|
|
@@ -1311,6 +1356,21 @@
|
|
|
1311
1356
|
"conditionKeys": [],
|
|
1312
1357
|
"dependentActions": []
|
|
1313
1358
|
},
|
|
1359
|
+
"updateindex": {
|
|
1360
|
+
"name": "UpdateIndex",
|
|
1361
|
+
"description": "Grants permission to update index for the OpenSearch Service domain",
|
|
1362
|
+
"accessLevel": "Write",
|
|
1363
|
+
"resourceTypes": [
|
|
1364
|
+
{
|
|
1365
|
+
"name": "domain",
|
|
1366
|
+
"required": true,
|
|
1367
|
+
"conditionKeys": [],
|
|
1368
|
+
"dependentActions": []
|
|
1369
|
+
}
|
|
1370
|
+
],
|
|
1371
|
+
"conditionKeys": [],
|
|
1372
|
+
"dependentActions": []
|
|
1373
|
+
},
|
|
1314
1374
|
"updatepackage": {
|
|
1315
1375
|
"name": "UpdatePackage",
|
|
1316
1376
|
"description": "Grants permission to update a package for use with OpenSearch Service domains",
|
iamdata/data/actions/fsx.json
CHANGED
|
@@ -161,7 +161,10 @@
|
|
|
161
161
|
{
|
|
162
162
|
"name": "association",
|
|
163
163
|
"required": true,
|
|
164
|
-
"conditionKeys": [
|
|
164
|
+
"conditionKeys": [
|
|
165
|
+
"fsx:NfsDataRepositoryAuthenticationEnabled",
|
|
166
|
+
"fsx:NfsDataRepositoryEncryptionInTransitEnabled"
|
|
167
|
+
],
|
|
165
168
|
"dependentActions": [
|
|
166
169
|
"fsx:TagResource"
|
|
167
170
|
]
|
|
@@ -490,7 +493,7 @@
|
|
|
490
493
|
"deleteresourcepolicy": {
|
|
491
494
|
"name": "DeleteResourcePolicy",
|
|
492
495
|
"isPermissionOnly": true,
|
|
493
|
-
"description": "
|
|
496
|
+
"description": "Grants permission to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). PutResourcePolicy and GetResourcePolicy are also required",
|
|
494
497
|
"accessLevel": "Permissions management",
|
|
495
498
|
"resourceTypes": [
|
|
496
499
|
{
|
|
@@ -723,7 +726,7 @@
|
|
|
723
726
|
"getresourcepolicy": {
|
|
724
727
|
"name": "GetResourcePolicy",
|
|
725
728
|
"isPermissionOnly": true,
|
|
726
|
-
"description": "
|
|
729
|
+
"description": "Grants permission to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). PutResourcePolicy and DeleteResourcePolicy are also required",
|
|
727
730
|
"accessLevel": "Permissions management",
|
|
728
731
|
"resourceTypes": [
|
|
729
732
|
{
|
|
@@ -812,7 +815,7 @@
|
|
|
812
815
|
"putresourcepolicy": {
|
|
813
816
|
"name": "PutResourcePolicy",
|
|
814
817
|
"isPermissionOnly": true,
|
|
815
|
-
"description": "
|
|
818
|
+
"description": "Grants permission to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). DeleteResourcePolicy and GetResourcePolicy are also required",
|
|
816
819
|
"accessLevel": "Permissions management",
|
|
817
820
|
"resourceTypes": [
|
|
818
821
|
{
|
|
@@ -884,7 +887,10 @@
|
|
|
884
887
|
{
|
|
885
888
|
"name": "association",
|
|
886
889
|
"required": false,
|
|
887
|
-
"conditionKeys": [
|
|
890
|
+
"conditionKeys": [
|
|
891
|
+
"fsx:NfsDataRepositoryAuthenticationEnabled",
|
|
892
|
+
"fsx:NfsDataRepositoryEncryptionInTransitEnabled"
|
|
893
|
+
],
|
|
888
894
|
"dependentActions": []
|
|
889
895
|
},
|
|
890
896
|
{
|
|
@@ -926,7 +932,10 @@
|
|
|
926
932
|
{
|
|
927
933
|
"name": "volume",
|
|
928
934
|
"required": false,
|
|
929
|
-
"conditionKeys": [
|
|
935
|
+
"conditionKeys": [
|
|
936
|
+
"fsx:ParentVolumeId",
|
|
937
|
+
"fsx:StorageVirtualMachineId"
|
|
938
|
+
],
|
|
930
939
|
"dependentActions": []
|
|
931
940
|
}
|
|
932
941
|
],
|
iamdata/data/actions/glue.json
CHANGED
|
@@ -503,7 +503,8 @@
|
|
|
503
503
|
}
|
|
504
504
|
],
|
|
505
505
|
"conditionKeys": [
|
|
506
|
-
"glue:LakeFormationPermissions"
|
|
506
|
+
"glue:LakeFormationPermissions",
|
|
507
|
+
"glue:FederatedAuthorizationSource"
|
|
507
508
|
],
|
|
508
509
|
"dependentActions": []
|
|
509
510
|
},
|
|
@@ -619,7 +620,8 @@
|
|
|
619
620
|
}
|
|
620
621
|
],
|
|
621
622
|
"conditionKeys": [
|
|
622
|
-
"glue:LakeFormationPermissions"
|
|
623
|
+
"glue:LakeFormationPermissions",
|
|
624
|
+
"glue:FederatedAuthorizationSource"
|
|
623
625
|
],
|
|
624
626
|
"dependentActions": []
|
|
625
627
|
},
|
|
@@ -956,7 +958,8 @@
|
|
|
956
958
|
}
|
|
957
959
|
],
|
|
958
960
|
"conditionKeys": [
|
|
959
|
-
"glue:LakeFormationPermissions"
|
|
961
|
+
"glue:LakeFormationPermissions",
|
|
962
|
+
"glue:FederatedAuthorizationSource"
|
|
960
963
|
],
|
|
961
964
|
"dependentActions": []
|
|
962
965
|
},
|
|
@@ -1106,7 +1109,8 @@
|
|
|
1106
1109
|
}
|
|
1107
1110
|
],
|
|
1108
1111
|
"conditionKeys": [
|
|
1109
|
-
"glue:LakeFormationPermissions"
|
|
1112
|
+
"glue:LakeFormationPermissions",
|
|
1113
|
+
"glue:FederatedAuthorizationSource"
|
|
1110
1114
|
],
|
|
1111
1115
|
"dependentActions": []
|
|
1112
1116
|
},
|
|
@@ -1313,7 +1317,8 @@
|
|
|
1313
1317
|
}
|
|
1314
1318
|
],
|
|
1315
1319
|
"conditionKeys": [
|
|
1316
|
-
"glue:LakeFormationPermissions"
|
|
1320
|
+
"glue:LakeFormationPermissions",
|
|
1321
|
+
"glue:FederatedAuthorizationSource"
|
|
1317
1322
|
],
|
|
1318
1323
|
"dependentActions": []
|
|
1319
1324
|
},
|
|
@@ -1610,7 +1615,8 @@
|
|
|
1610
1615
|
}
|
|
1611
1616
|
],
|
|
1612
1617
|
"conditionKeys": [
|
|
1613
|
-
"glue:LakeFormationPermissions"
|
|
1618
|
+
"glue:LakeFormationPermissions",
|
|
1619
|
+
"glue:FederatedAuthorizationSource"
|
|
1614
1620
|
],
|
|
1615
1621
|
"dependentActions": []
|
|
1616
1622
|
},
|
|
@@ -1820,6 +1826,30 @@
|
|
|
1820
1826
|
],
|
|
1821
1827
|
"dependentActions": []
|
|
1822
1828
|
},
|
|
1829
|
+
"federateauthorization": {
|
|
1830
|
+
"name": "FederateAuthorization",
|
|
1831
|
+
"description": "Grants permission to read and write redshift federated resources",
|
|
1832
|
+
"accessLevel": "Write",
|
|
1833
|
+
"resourceTypes": [
|
|
1834
|
+
{
|
|
1835
|
+
"name": "rootcatalog",
|
|
1836
|
+
"required": true,
|
|
1837
|
+
"conditionKeys": [],
|
|
1838
|
+
"dependentActions": []
|
|
1839
|
+
},
|
|
1840
|
+
{
|
|
1841
|
+
"name": "catalog",
|
|
1842
|
+
"required": false,
|
|
1843
|
+
"conditionKeys": [],
|
|
1844
|
+
"dependentActions": []
|
|
1845
|
+
}
|
|
1846
|
+
],
|
|
1847
|
+
"conditionKeys": [
|
|
1848
|
+
"glue:EnabledForRedshiftAutoDiscovery",
|
|
1849
|
+
"glue:FederatedAuthorizationSource"
|
|
1850
|
+
],
|
|
1851
|
+
"dependentActions": []
|
|
1852
|
+
},
|
|
1823
1853
|
"getblueprint": {
|
|
1824
1854
|
"name": "GetBlueprint",
|
|
1825
1855
|
"description": "Grants permission to retrieve a blueprint",
|
|
@@ -1885,7 +1915,8 @@
|
|
|
1885
1915
|
],
|
|
1886
1916
|
"conditionKeys": [
|
|
1887
1917
|
"glue:EnabledForRedshiftAutoDiscovery",
|
|
1888
|
-
"glue:LakeFormationPermissions"
|
|
1918
|
+
"glue:LakeFormationPermissions",
|
|
1919
|
+
"glue:FederatedAuthorizationSource"
|
|
1889
1920
|
],
|
|
1890
1921
|
"dependentActions": []
|
|
1891
1922
|
},
|
|
@@ -1926,7 +1957,8 @@
|
|
|
1926
1957
|
],
|
|
1927
1958
|
"conditionKeys": [
|
|
1928
1959
|
"glue:EnabledForRedshiftAutoDiscovery",
|
|
1929
|
-
"glue:LakeFormationPermissions"
|
|
1960
|
+
"glue:LakeFormationPermissions",
|
|
1961
|
+
"glue:FederatedAuthorizationSource"
|
|
1930
1962
|
],
|
|
1931
1963
|
"dependentActions": []
|
|
1932
1964
|
},
|
|
@@ -2305,7 +2337,8 @@
|
|
|
2305
2337
|
}
|
|
2306
2338
|
],
|
|
2307
2339
|
"conditionKeys": [
|
|
2308
|
-
"glue:LakeFormationPermissions"
|
|
2340
|
+
"glue:LakeFormationPermissions",
|
|
2341
|
+
"glue:FederatedAuthorizationSource"
|
|
2309
2342
|
],
|
|
2310
2343
|
"dependentActions": []
|
|
2311
2344
|
},
|
|
@@ -2334,7 +2367,8 @@
|
|
|
2334
2367
|
}
|
|
2335
2368
|
],
|
|
2336
2369
|
"conditionKeys": [
|
|
2337
|
-
"glue:LakeFormationPermissions"
|
|
2370
|
+
"glue:LakeFormationPermissions",
|
|
2371
|
+
"glue:FederatedAuthorizationSource"
|
|
2338
2372
|
],
|
|
2339
2373
|
"dependentActions": []
|
|
2340
2374
|
},
|
|
@@ -3051,7 +3085,8 @@
|
|
|
3051
3085
|
}
|
|
3052
3086
|
],
|
|
3053
3087
|
"conditionKeys": [
|
|
3054
|
-
"glue:LakeFormationPermissions"
|
|
3088
|
+
"glue:LakeFormationPermissions",
|
|
3089
|
+
"glue:FederatedAuthorizationSource"
|
|
3055
3090
|
],
|
|
3056
3091
|
"dependentActions": []
|
|
3057
3092
|
},
|
|
@@ -3185,7 +3220,8 @@
|
|
|
3185
3220
|
}
|
|
3186
3221
|
],
|
|
3187
3222
|
"conditionKeys": [
|
|
3188
|
-
"glue:LakeFormationPermissions"
|
|
3223
|
+
"glue:LakeFormationPermissions",
|
|
3224
|
+
"glue:FederatedAuthorizationSource"
|
|
3189
3225
|
],
|
|
3190
3226
|
"dependentActions": []
|
|
3191
3227
|
},
|
|
@@ -3350,7 +3386,8 @@
|
|
|
3350
3386
|
}
|
|
3351
3387
|
],
|
|
3352
3388
|
"conditionKeys": [
|
|
3353
|
-
"glue:LakeFormationPermissions"
|
|
3389
|
+
"glue:LakeFormationPermissions",
|
|
3390
|
+
"glue:FederatedAuthorizationSource"
|
|
3354
3391
|
],
|
|
3355
3392
|
"dependentActions": []
|
|
3356
3393
|
},
|
|
@@ -4005,6 +4042,42 @@
|
|
|
4005
4042
|
"conditionKeys": [],
|
|
4006
4043
|
"dependentActions": []
|
|
4007
4044
|
},
|
|
4045
|
+
"renametable": {
|
|
4046
|
+
"name": "RenameTable",
|
|
4047
|
+
"description": "Grants permission to rename a table",
|
|
4048
|
+
"accessLevel": "Write",
|
|
4049
|
+
"resourceTypes": [
|
|
4050
|
+
{
|
|
4051
|
+
"name": "database",
|
|
4052
|
+
"required": true,
|
|
4053
|
+
"conditionKeys": [],
|
|
4054
|
+
"dependentActions": []
|
|
4055
|
+
},
|
|
4056
|
+
{
|
|
4057
|
+
"name": "rootcatalog",
|
|
4058
|
+
"required": true,
|
|
4059
|
+
"conditionKeys": [],
|
|
4060
|
+
"dependentActions": []
|
|
4061
|
+
},
|
|
4062
|
+
{
|
|
4063
|
+
"name": "table",
|
|
4064
|
+
"required": true,
|
|
4065
|
+
"conditionKeys": [],
|
|
4066
|
+
"dependentActions": []
|
|
4067
|
+
},
|
|
4068
|
+
{
|
|
4069
|
+
"name": "catalog",
|
|
4070
|
+
"required": false,
|
|
4071
|
+
"conditionKeys": [],
|
|
4072
|
+
"dependentActions": []
|
|
4073
|
+
}
|
|
4074
|
+
],
|
|
4075
|
+
"conditionKeys": [
|
|
4076
|
+
"glue:LakeFormationPermissions",
|
|
4077
|
+
"glue:FederatedAuthorizationSource"
|
|
4078
|
+
],
|
|
4079
|
+
"dependentActions": []
|
|
4080
|
+
},
|
|
4008
4081
|
"requestlogparsing": {
|
|
4009
4082
|
"name": "RequestLogParsing",
|
|
4010
4083
|
"description": "Grants permission to request log parsing for SparkUI",
|
|
@@ -4763,7 +4836,8 @@
|
|
|
4763
4836
|
}
|
|
4764
4837
|
],
|
|
4765
4838
|
"conditionKeys": [
|
|
4766
|
-
"glue:LakeFormationPermissions"
|
|
4839
|
+
"glue:LakeFormationPermissions",
|
|
4840
|
+
"glue:FederatedAuthorizationSource"
|
|
4767
4841
|
],
|
|
4768
4842
|
"dependentActions": []
|
|
4769
4843
|
},
|
|
@@ -4958,7 +5032,8 @@
|
|
|
4958
5032
|
}
|
|
4959
5033
|
],
|
|
4960
5034
|
"conditionKeys": [
|
|
4961
|
-
"glue:LakeFormationPermissions"
|
|
5035
|
+
"glue:LakeFormationPermissions",
|
|
5036
|
+
"glue:FederatedAuthorizationSource"
|
|
4962
5037
|
],
|
|
4963
5038
|
"dependentActions": []
|
|
4964
5039
|
},
|
|
@@ -5205,7 +5280,8 @@
|
|
|
5205
5280
|
}
|
|
5206
5281
|
],
|
|
5207
5282
|
"conditionKeys": [
|
|
5208
|
-
"glue:LakeFormationPermissions"
|
|
5283
|
+
"glue:LakeFormationPermissions",
|
|
5284
|
+
"glue:FederatedAuthorizationSource"
|
|
5209
5285
|
],
|
|
5210
5286
|
"dependentActions": []
|
|
5211
5287
|
},
|
|
@@ -163,6 +163,21 @@
|
|
|
163
163
|
"conditionKeys": [],
|
|
164
164
|
"dependentActions": []
|
|
165
165
|
},
|
|
166
|
+
"getagenttaskresponseurl": {
|
|
167
|
+
"name": "GetAgentTaskResponseUrl",
|
|
168
|
+
"description": "Grants permission to retrieve presigned S3 logging URLs",
|
|
169
|
+
"accessLevel": "Read",
|
|
170
|
+
"resourceTypes": [
|
|
171
|
+
{
|
|
172
|
+
"name": "Agent",
|
|
173
|
+
"required": true,
|
|
174
|
+
"conditionKeys": [],
|
|
175
|
+
"dependentActions": []
|
|
176
|
+
}
|
|
177
|
+
],
|
|
178
|
+
"conditionKeys": [],
|
|
179
|
+
"dependentActions": []
|
|
180
|
+
},
|
|
166
181
|
"getconfig": {
|
|
167
182
|
"name": "GetConfig",
|
|
168
183
|
"description": "Grants permission to return a configuration",
|
|
@@ -93,7 +93,11 @@
|
|
|
93
93
|
"description": "Grants permission to create a publishing destination",
|
|
94
94
|
"accessLevel": "Write",
|
|
95
95
|
"resourceTypes": [],
|
|
96
|
-
"conditionKeys": [
|
|
96
|
+
"conditionKeys": [
|
|
97
|
+
"aws:RequestTag/${TagKey}",
|
|
98
|
+
"aws:ResourceTag/${TagKey}",
|
|
99
|
+
"aws:TagKeys"
|
|
100
|
+
],
|
|
97
101
|
"dependentActions": [
|
|
98
102
|
"s3:GetObject",
|
|
99
103
|
"s3:ListBucket"
|
|
@@ -467,6 +471,14 @@
|
|
|
467
471
|
"conditionKeys": [],
|
|
468
472
|
"dependentActions": []
|
|
469
473
|
},
|
|
474
|
+
"getmalwarescan": {
|
|
475
|
+
"name": "GetMalwareScan",
|
|
476
|
+
"description": "Grants permission to retrieve a malware scan's details",
|
|
477
|
+
"accessLevel": "Read",
|
|
478
|
+
"resourceTypes": [],
|
|
479
|
+
"conditionKeys": [],
|
|
480
|
+
"dependentActions": []
|
|
481
|
+
},
|
|
470
482
|
"getmalwarescansettings": {
|
|
471
483
|
"name": "GetMalwareScanSettings",
|
|
472
484
|
"description": "Grants permission to retrieve the malware scan settings",
|
|
@@ -639,6 +651,14 @@
|
|
|
639
651
|
"conditionKeys": [],
|
|
640
652
|
"dependentActions": []
|
|
641
653
|
},
|
|
654
|
+
"listmalwarescans": {
|
|
655
|
+
"name": "ListMalwareScans",
|
|
656
|
+
"description": "Grants permission to retrieve a list of malware scans",
|
|
657
|
+
"accessLevel": "List",
|
|
658
|
+
"resourceTypes": [],
|
|
659
|
+
"conditionKeys": [],
|
|
660
|
+
"dependentActions": []
|
|
661
|
+
},
|
|
642
662
|
"listmembers": {
|
|
643
663
|
"name": "ListMembers",
|
|
644
664
|
"description": "Grants permission to retrieve a list of GuardDuty member accounts associated with an administrator account",
|
|
@@ -692,6 +712,12 @@
|
|
|
692
712
|
"conditionKeys": [],
|
|
693
713
|
"dependentActions": []
|
|
694
714
|
},
|
|
715
|
+
{
|
|
716
|
+
"name": "publishingDestination",
|
|
717
|
+
"required": false,
|
|
718
|
+
"conditionKeys": [],
|
|
719
|
+
"dependentActions": []
|
|
720
|
+
},
|
|
695
721
|
{
|
|
696
722
|
"name": "threatentityset",
|
|
697
723
|
"required": false,
|
|
@@ -738,6 +764,14 @@
|
|
|
738
764
|
"conditionKeys": [],
|
|
739
765
|
"dependentActions": []
|
|
740
766
|
},
|
|
767
|
+
"sendobjectmalwarescan": {
|
|
768
|
+
"name": "SendObjectMalwareScan",
|
|
769
|
+
"description": "Grants permission to initiate a new object malware scan",
|
|
770
|
+
"accessLevel": "Write",
|
|
771
|
+
"resourceTypes": [],
|
|
772
|
+
"conditionKeys": [],
|
|
773
|
+
"dependentActions": []
|
|
774
|
+
},
|
|
741
775
|
"sendsecuritytelemetry": {
|
|
742
776
|
"name": "SendSecurityTelemetry",
|
|
743
777
|
"description": "Grants permission to send security telemetry for a specific GuardDuty account in a Region",
|
|
@@ -799,6 +833,12 @@
|
|
|
799
833
|
"conditionKeys": [],
|
|
800
834
|
"dependentActions": []
|
|
801
835
|
},
|
|
836
|
+
{
|
|
837
|
+
"name": "publishingDestination",
|
|
838
|
+
"required": false,
|
|
839
|
+
"conditionKeys": [],
|
|
840
|
+
"dependentActions": []
|
|
841
|
+
},
|
|
802
842
|
{
|
|
803
843
|
"name": "threatentityset",
|
|
804
844
|
"required": false,
|
|
@@ -861,6 +901,12 @@
|
|
|
861
901
|
"conditionKeys": [],
|
|
862
902
|
"dependentActions": []
|
|
863
903
|
},
|
|
904
|
+
{
|
|
905
|
+
"name": "publishingDestination",
|
|
906
|
+
"required": false,
|
|
907
|
+
"conditionKeys": [],
|
|
908
|
+
"dependentActions": []
|
|
909
|
+
},
|
|
864
910
|
{
|
|
865
911
|
"name": "threatentityset",
|
|
866
912
|
"required": false,
|