iamdata 0.1.202509301__py3-none-any.whl → 0.1.202512101__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of iamdata might be problematic. Click here for more details.
- iamdata/data/actions/aco-automation.json +252 -0
- iamdata/data/actions/action-recommendations.json +10 -0
- iamdata/data/actions/aidevops.json +481 -0
- iamdata/data/actions/aiops.json +159 -0
- iamdata/data/actions/airflow-serverless.json +225 -0
- iamdata/data/actions/application-signals.json +8 -0
- iamdata/data/actions/appstream.json +120 -36
- iamdata/data/actions/aps.json +190 -0
- iamdata/data/actions/athena.json +88 -1
- iamdata/data/actions/autoscaling.json +41 -3
- iamdata/data/actions/aws-marketplace.json +48 -0
- iamdata/data/actions/aws-mcp.json +26 -0
- iamdata/data/actions/backup.json +170 -2
- iamdata/data/actions/batch.json +28 -18
- iamdata/data/actions/bcm-data-exports.json +12 -0
- iamdata/data/actions/bedrock-agentcore.json +921 -11
- iamdata/data/actions/bedrock-mantle.json +106 -0
- iamdata/data/actions/bedrock.json +130 -5
- iamdata/data/actions/billing.json +22 -4
- iamdata/data/actions/braket.json +62 -0
- iamdata/data/actions/ce.json +8 -0
- iamdata/data/actions/cloudformation.json +33 -0
- iamdata/data/actions/cloudfront.json +309 -87
- iamdata/data/actions/cloudtrail.json +35 -8
- iamdata/data/actions/cloudwatch.json +45 -0
- iamdata/data/actions/cognito-idp.json +75 -0
- iamdata/data/actions/connect.json +1159 -9
- iamdata/data/actions/cost-optimization-hub.json +8 -0
- iamdata/data/actions/datazone.json +240 -0
- iamdata/data/actions/dms.json +132 -0
- iamdata/data/actions/dsql.json +46 -8
- iamdata/data/actions/ec2.json +219 -33
- iamdata/data/actions/ecr.json +78 -0
- iamdata/data/actions/ecs.json +110 -2
- iamdata/data/actions/eks-mcp.json +26 -0
- iamdata/data/actions/eks.json +130 -2
- iamdata/data/actions/elasticloadbalancing.json +9 -0
- iamdata/data/actions/emr-containers.json +15 -0
- iamdata/data/actions/es.json +60 -0
- iamdata/data/actions/fsx.json +15 -6
- iamdata/data/actions/glue.json +92 -16
- iamdata/data/actions/groundstation.json +15 -0
- iamdata/data/actions/guardduty.json +47 -1
- iamdata/data/actions/healthlake.json +226 -0
- iamdata/data/actions/iam.json +158 -5
- iamdata/data/actions/identitystore.json +95 -27
- iamdata/data/actions/imagebuilder.json +50 -6
- iamdata/data/actions/invoicing.json +57 -2
- iamdata/data/actions/iotmanagedintegrations.json +15 -0
- iamdata/data/actions/kafka.json +71 -0
- iamdata/data/actions/kinesis.json +63 -0
- iamdata/data/actions/kinesisvideo.json +30 -0
- iamdata/data/actions/kms.json +4 -1
- iamdata/data/actions/lakeformation.json +16 -0
- iamdata/data/actions/lambda.json +300 -6
- iamdata/data/actions/license-manager.json +217 -3
- iamdata/data/actions/logs.json +203 -0
- iamdata/data/actions/mediaconnect.json +795 -65
- iamdata/data/actions/medialive.json +24 -0
- iamdata/data/actions/mgn.json +54 -1
- iamdata/data/actions/notifications-contacts.json +2 -1
- iamdata/data/actions/nova-act.json +276 -0
- iamdata/data/actions/observabilityadmin.json +204 -3
- iamdata/data/actions/odb.json +37 -0
- iamdata/data/actions/opensearch.json +40 -0
- iamdata/data/actions/organizations.json +117 -0
- iamdata/data/actions/partnercentral-account-management.json +22 -0
- iamdata/data/actions/partnercentral.json +1340 -155
- iamdata/data/actions/pcs.json +26 -0
- iamdata/data/actions/pi.json +6 -0
- iamdata/data/actions/pricingplanmanager.json +66 -0
- iamdata/data/actions/profile.json +398 -0
- iamdata/data/actions/quicksight.json +466 -0
- iamdata/data/actions/rds.json +66 -11
- iamdata/data/actions/redshift-serverless.json +2 -2
- iamdata/data/actions/resource-explorer-2.json +82 -0
- iamdata/data/actions/route53.json +15 -0
- iamdata/data/actions/route53globalresolver.json +700 -0
- iamdata/data/actions/rtbfabric.json +481 -0
- iamdata/data/actions/s3.json +66 -1
- iamdata/data/actions/s3tables.json +325 -2
- iamdata/data/actions/s3vectors.json +147 -22
- iamdata/data/actions/sagemaker-unified-studio-mcp.json +29 -0
- iamdata/data/actions/sagemaker.json +110 -0
- iamdata/data/actions/scn.json +17 -5
- iamdata/data/actions/secretsmanager.json +42 -20
- iamdata/data/actions/security-ir.json +31 -0
- iamdata/data/actions/securityagent.json +503 -0
- iamdata/data/actions/securityhub.json +30 -0
- iamdata/data/actions/servicequotas.json +32 -0
- iamdata/data/actions/signin.json +16 -0
- iamdata/data/actions/social-messaging.json +64 -8
- iamdata/data/actions/sts.json +34 -0
- iamdata/data/actions/support-console.json +18 -0
- iamdata/data/actions/support.json +35 -1
- iamdata/data/actions/tag.json +8 -0
- iamdata/data/actions/transform-custom.json +274 -0
- iamdata/data/actions/transform.json +72 -0
- iamdata/data/actions/user-subscriptions.json +8 -0
- iamdata/data/actions/vpc-lattice-svcs.json +2 -0
- iamdata/data/actions/vpc-lattice.json +81 -0
- iamdata/data/actions/vpce.json +14 -1
- iamdata/data/actions/workspaces-web.json +25 -9
- iamdata/data/actions/xray.json +6 -2
- iamdata/data/conditionKeys/aco-automation.json +17 -0
- iamdata/data/conditionKeys/aidevops.json +22 -0
- iamdata/data/conditionKeys/airflow-serverless.json +17 -0
- iamdata/data/conditionKeys/bedrock-agentcore.json +35 -0
- iamdata/data/conditionKeys/bedrock-mantle.json +17 -0
- iamdata/data/conditionKeys/bedrock.json +5 -0
- iamdata/data/conditionKeys/connect.json +10 -0
- iamdata/data/conditionKeys/dynamodb.json +21 -1
- iamdata/data/conditionKeys/ec2.json +15 -15
- iamdata/data/conditionKeys/eks-mcp.json +1 -0
- iamdata/data/conditionKeys/eks.json +5 -0
- iamdata/data/conditionKeys/events.json +1 -1
- iamdata/data/conditionKeys/glue.json +5 -0
- iamdata/data/conditionKeys/iam.json +20 -0
- iamdata/data/conditionKeys/identitystore.json +26 -1
- iamdata/data/conditionKeys/kinesis.json +15 -0
- iamdata/data/conditionKeys/lambda.json +5 -0
- iamdata/data/conditionKeys/mediaconnect.json +17 -1
- iamdata/data/conditionKeys/nova-act.json +1 -0
- iamdata/data/conditionKeys/observabilityadmin.json +5 -0
- iamdata/data/conditionKeys/organizations.json +10 -0
- iamdata/data/conditionKeys/partnercentral-account-management.json +12 -1
- iamdata/data/conditionKeys/partnercentral.json +22 -2
- iamdata/data/conditionKeys/pricingplanmanager.json +1 -0
- iamdata/data/conditionKeys/route53globalresolver.json +17 -0
- iamdata/data/conditionKeys/rtbfabric.json +47 -0
- iamdata/data/conditionKeys/s3.json +5 -0
- iamdata/data/conditionKeys/s3tables.json +25 -0
- iamdata/data/conditionKeys/s3vectors.json +20 -0
- iamdata/data/conditionKeys/sagemaker-unified-studio-mcp.json +1 -0
- iamdata/data/conditionKeys/secretsmanager.json +15 -0
- iamdata/data/conditionKeys/securityagent.json +1 -0
- iamdata/data/conditionKeys/sso.json +10 -0
- iamdata/data/conditionKeys/sts.json +10 -0
- iamdata/data/conditionKeys/transform-custom.json +17 -0
- iamdata/data/conditionKeys/vpc-lattice-svcs.json +5 -0
- iamdata/data/conditionKeys/vpc-lattice.json +15 -0
- iamdata/data/conditionKeys/xray.json +5 -0
- iamdata/data/conditionPatterns.json +11 -0
- iamdata/data/metadata.json +2 -2
- iamdata/data/resourceTypes/aco-automation.json +9 -0
- iamdata/data/resourceTypes/action-recommendations.json +1 -0
- iamdata/data/resourceTypes/aidevops.json +24 -0
- iamdata/data/resourceTypes/airflow-serverless.json +9 -0
- iamdata/data/resourceTypes/apigateway.json +3 -0
- iamdata/data/resourceTypes/aps.json +9 -0
- iamdata/data/resourceTypes/athena.json +7 -0
- iamdata/data/resourceTypes/aws-mcp.json +1 -0
- iamdata/data/resourceTypes/backup.json +7 -0
- iamdata/data/resourceTypes/bcm-data-exports.json +7 -0
- iamdata/data/resourceTypes/bedrock-agentcore.json +48 -7
- iamdata/data/resourceTypes/bedrock-mantle.json +6 -0
- iamdata/data/resourceTypes/bedrock.json +4 -0
- iamdata/data/resourceTypes/braket.json +7 -0
- iamdata/data/resourceTypes/cloudformation.json +4 -0
- iamdata/data/resourceTypes/cloudfront.json +14 -0
- iamdata/data/resourceTypes/connect.json +18 -0
- iamdata/data/resourceTypes/ec2.json +19 -5
- iamdata/data/resourceTypes/eks-mcp.json +1 -0
- iamdata/data/resourceTypes/eks.json +7 -0
- iamdata/data/resourceTypes/guardduty.json +4 -1
- iamdata/data/resourceTypes/iam.json +7 -0
- iamdata/data/resourceTypes/invoicing.json +7 -0
- iamdata/data/resourceTypes/lambda.json +11 -0
- iamdata/data/resourceTypes/license-manager.json +14 -0
- iamdata/data/resourceTypes/logs.json +7 -0
- iamdata/data/resourceTypes/mediaconnect.json +55 -14
- iamdata/data/resourceTypes/nova-act.json +10 -0
- iamdata/data/resourceTypes/observabilityadmin.json +17 -3
- iamdata/data/resourceTypes/omics.json +0 -4
- iamdata/data/resourceTypes/organizations.json +7 -0
- iamdata/data/resourceTypes/partnercentral.json +63 -0
- iamdata/data/resourceTypes/pi.json +4 -1
- iamdata/data/resourceTypes/pricingplanmanager.json +6 -0
- iamdata/data/resourceTypes/profile.json +14 -0
- iamdata/data/resourceTypes/quicksight.json +26 -1
- iamdata/data/resourceTypes/rds.json +8 -2
- iamdata/data/resourceTypes/route53globalresolver.json +37 -0
- iamdata/data/resourceTypes/rtbfabric.json +46 -0
- iamdata/data/resourceTypes/s3.json +11 -2
- iamdata/data/resourceTypes/s3tables.json +7 -1
- iamdata/data/resourceTypes/s3vectors.json +10 -2
- iamdata/data/resourceTypes/sagemaker-unified-studio-mcp.json +1 -0
- iamdata/data/resourceTypes/sagemaker.json +8 -0
- iamdata/data/resourceTypes/scn.json +16 -4
- iamdata/data/resourceTypes/secretsmanager.json +2 -1
- iamdata/data/resourceTypes/securityagent.json +38 -0
- iamdata/data/resourceTypes/transform-custom.json +18 -0
- iamdata/data/resourceTypes/vpc-lattice.json +12 -0
- iamdata/data/resourceTypes/vpce.json +10 -1
- iamdata/data/serviceNames.json +15 -3
- iamdata/data/services.json +14 -2
- iamdata/data/unassociatedConditions.json +3 -0
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202512101.dist-info}/METADATA +1 -1
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202512101.dist-info}/RECORD +203 -167
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202512101.dist-info}/WHEEL +1 -1
- iamdata/data/actions/application-cost-profiler.json +0 -50
- iamdata/data/actions/deepcomposer.json +0 -316
- iamdata/data/conditionKeys/deepcomposer.json +0 -17
- iamdata/data/resourceTypes/deepcomposer.json +0 -20
- /iamdata/data/conditionKeys/{application-cost-profiler.json → action-recommendations.json} +0 -0
- /iamdata/data/{resourceTypes/application-cost-profiler.json → conditionKeys/aws-mcp.json} +0 -0
- {iamdata-0.1.202509301.dist-info → iamdata-0.1.202512101.dist-info}/licenses/LICENSE.txt +0 -0
iamdata/data/actions/ecs.json
CHANGED
|
@@ -3,8 +3,18 @@
|
|
|
3
3
|
"name": "CreateCapacityProvider",
|
|
4
4
|
"description": "Grants permission to create a new capacity provider. Capacity providers are associated with an Amazon ECS cluster and are used in capacity provider strategies to facilitate cluster auto scaling",
|
|
5
5
|
"accessLevel": "Write",
|
|
6
|
-
"resourceTypes": [
|
|
6
|
+
"resourceTypes": [
|
|
7
|
+
{
|
|
8
|
+
"name": "capacity-provider",
|
|
9
|
+
"required": true,
|
|
10
|
+
"conditionKeys": [
|
|
11
|
+
"aws:ResourceTag/${TagKey}"
|
|
12
|
+
],
|
|
13
|
+
"dependentActions": []
|
|
14
|
+
}
|
|
15
|
+
],
|
|
7
16
|
"conditionKeys": [
|
|
17
|
+
"ecs:propagate-tags",
|
|
8
18
|
"aws:RequestTag/${TagKey}",
|
|
9
19
|
"aws:TagKeys"
|
|
10
20
|
],
|
|
@@ -32,6 +42,36 @@
|
|
|
32
42
|
],
|
|
33
43
|
"dependentActions": []
|
|
34
44
|
},
|
|
45
|
+
"createexpressgatewayservice": {
|
|
46
|
+
"name": "CreateExpressGatewayService",
|
|
47
|
+
"description": "Grants permission to create a new Amazon ECS Express Gateway service with cluster and task definition",
|
|
48
|
+
"accessLevel": "Write",
|
|
49
|
+
"resourceTypes": [
|
|
50
|
+
{
|
|
51
|
+
"name": "service",
|
|
52
|
+
"required": true,
|
|
53
|
+
"conditionKeys": [
|
|
54
|
+
"ecs:cluster",
|
|
55
|
+
"aws:ResourceTag/${TagKey}"
|
|
56
|
+
],
|
|
57
|
+
"dependentActions": [
|
|
58
|
+
"ecs:RegisterTaskDefinition",
|
|
59
|
+
"iam:PassRole"
|
|
60
|
+
]
|
|
61
|
+
}
|
|
62
|
+
],
|
|
63
|
+
"conditionKeys": [
|
|
64
|
+
"aws:RequestTag/${TagKey}",
|
|
65
|
+
"aws:TagKeys",
|
|
66
|
+
"ecs:task-definition",
|
|
67
|
+
"ecs:subnet",
|
|
68
|
+
"ecs:enable-ecs-managed-tags",
|
|
69
|
+
"ecs:propagate-tags",
|
|
70
|
+
"ecs:task-cpu",
|
|
71
|
+
"ecs:task-memory"
|
|
72
|
+
],
|
|
73
|
+
"dependentActions": []
|
|
74
|
+
},
|
|
35
75
|
"createservice": {
|
|
36
76
|
"name": "CreateService",
|
|
37
77
|
"description": "Grants permission to run and maintain a desired number of tasks from a specified task definition via service creation",
|
|
@@ -70,7 +110,14 @@
|
|
|
70
110
|
"name": "CreateTaskSet",
|
|
71
111
|
"description": "Grants permission to create a new Amazon ECS task set",
|
|
72
112
|
"accessLevel": "Write",
|
|
73
|
-
"resourceTypes": [
|
|
113
|
+
"resourceTypes": [
|
|
114
|
+
{
|
|
115
|
+
"name": "task-set",
|
|
116
|
+
"required": true,
|
|
117
|
+
"conditionKeys": [],
|
|
118
|
+
"dependentActions": []
|
|
119
|
+
}
|
|
120
|
+
],
|
|
74
121
|
"conditionKeys": [
|
|
75
122
|
"aws:RequestTag/${TagKey}",
|
|
76
123
|
"aws:TagKeys",
|
|
@@ -143,6 +190,24 @@
|
|
|
143
190
|
],
|
|
144
191
|
"dependentActions": []
|
|
145
192
|
},
|
|
193
|
+
"deleteexpressgatewayservice": {
|
|
194
|
+
"name": "DeleteExpressGatewayService",
|
|
195
|
+
"description": "Grants permission to delete a specified Express Gateway service",
|
|
196
|
+
"accessLevel": "Write",
|
|
197
|
+
"resourceTypes": [
|
|
198
|
+
{
|
|
199
|
+
"name": "service",
|
|
200
|
+
"required": true,
|
|
201
|
+
"conditionKeys": [],
|
|
202
|
+
"dependentActions": []
|
|
203
|
+
}
|
|
204
|
+
],
|
|
205
|
+
"conditionKeys": [
|
|
206
|
+
"ecs:cluster",
|
|
207
|
+
"aws:ResourceTag/${TagKey}"
|
|
208
|
+
],
|
|
209
|
+
"dependentActions": []
|
|
210
|
+
},
|
|
146
211
|
"deleteservice": {
|
|
147
212
|
"name": "DeleteService",
|
|
148
213
|
"description": "Grants permission to delete a specified service within a cluster",
|
|
@@ -274,6 +339,24 @@
|
|
|
274
339
|
],
|
|
275
340
|
"dependentActions": []
|
|
276
341
|
},
|
|
342
|
+
"describeexpressgatewayservice": {
|
|
343
|
+
"name": "DescribeExpressGatewayService",
|
|
344
|
+
"description": "Grants permission to describe the specified Express Gateway service",
|
|
345
|
+
"accessLevel": "Read",
|
|
346
|
+
"resourceTypes": [
|
|
347
|
+
{
|
|
348
|
+
"name": "service",
|
|
349
|
+
"required": true,
|
|
350
|
+
"conditionKeys": [],
|
|
351
|
+
"dependentActions": []
|
|
352
|
+
}
|
|
353
|
+
],
|
|
354
|
+
"conditionKeys": [
|
|
355
|
+
"ecs:cluster",
|
|
356
|
+
"aws:ResourceTag/${TagKey}"
|
|
357
|
+
],
|
|
358
|
+
"dependentActions": []
|
|
359
|
+
},
|
|
277
360
|
"describeservicedeployments": {
|
|
278
361
|
"name": "DescribeServiceDeployments",
|
|
279
362
|
"description": "Grants permission to describe one or more of your service deployments",
|
|
@@ -1053,6 +1136,7 @@
|
|
|
1053
1136
|
}
|
|
1054
1137
|
],
|
|
1055
1138
|
"conditionKeys": [
|
|
1139
|
+
"ecs:propagate-tags",
|
|
1056
1140
|
"aws:ResourceTag/${TagKey}"
|
|
1057
1141
|
],
|
|
1058
1142
|
"dependentActions": []
|
|
@@ -1129,6 +1213,30 @@
|
|
|
1129
1213
|
],
|
|
1130
1214
|
"dependentActions": []
|
|
1131
1215
|
},
|
|
1216
|
+
"updateexpressgatewayservice": {
|
|
1217
|
+
"name": "UpdateExpressGatewayService",
|
|
1218
|
+
"description": "Grants permission to modify the parameters of an Express Gateway service",
|
|
1219
|
+
"accessLevel": "Write",
|
|
1220
|
+
"resourceTypes": [
|
|
1221
|
+
{
|
|
1222
|
+
"name": "service",
|
|
1223
|
+
"required": true,
|
|
1224
|
+
"conditionKeys": [
|
|
1225
|
+
"ecs:cluster",
|
|
1226
|
+
"aws:ResourceTag/${TagKey}"
|
|
1227
|
+
],
|
|
1228
|
+
"dependentActions": []
|
|
1229
|
+
}
|
|
1230
|
+
],
|
|
1231
|
+
"conditionKeys": [
|
|
1232
|
+
"ecs:subnet",
|
|
1233
|
+
"ecs:enable-ecs-managed-tags",
|
|
1234
|
+
"ecs:propagate-tags",
|
|
1235
|
+
"ecs:task-cpu",
|
|
1236
|
+
"ecs:task-memory"
|
|
1237
|
+
],
|
|
1238
|
+
"dependentActions": []
|
|
1239
|
+
},
|
|
1132
1240
|
"updateservice": {
|
|
1133
1241
|
"name": "UpdateService",
|
|
1134
1242
|
"description": "Grants permission to modify the parameters of a service",
|
|
@@ -0,0 +1,26 @@
|
|
|
1
|
+
{
|
|
2
|
+
"callprivilegedtool": {
|
|
3
|
+
"name": "CallPrivilegedTool",
|
|
4
|
+
"description": "Grants permission to call privileged tools in MCP service",
|
|
5
|
+
"accessLevel": "Write",
|
|
6
|
+
"resourceTypes": [],
|
|
7
|
+
"conditionKeys": [],
|
|
8
|
+
"dependentActions": []
|
|
9
|
+
},
|
|
10
|
+
"callreadonlytool": {
|
|
11
|
+
"name": "CallReadOnlyTool",
|
|
12
|
+
"description": "Grants permission to call read-only tools in MCP service",
|
|
13
|
+
"accessLevel": "Read",
|
|
14
|
+
"resourceTypes": [],
|
|
15
|
+
"conditionKeys": [],
|
|
16
|
+
"dependentActions": []
|
|
17
|
+
},
|
|
18
|
+
"invokemcp": {
|
|
19
|
+
"name": "InvokeMcp",
|
|
20
|
+
"description": "Grants permission to use MCP service",
|
|
21
|
+
"accessLevel": "Read",
|
|
22
|
+
"resourceTypes": [],
|
|
23
|
+
"conditionKeys": [],
|
|
24
|
+
"dependentActions": []
|
|
25
|
+
}
|
|
26
|
+
}
|
iamdata/data/actions/eks.json
CHANGED
|
@@ -115,6 +115,24 @@
|
|
|
115
115
|
],
|
|
116
116
|
"dependentActions": []
|
|
117
117
|
},
|
|
118
|
+
"createcapability": {
|
|
119
|
+
"name": "CreateCapability",
|
|
120
|
+
"description": "Grants permission to create a capability for an Amazon EKS cluster",
|
|
121
|
+
"accessLevel": "Write",
|
|
122
|
+
"resourceTypes": [
|
|
123
|
+
{
|
|
124
|
+
"name": "cluster",
|
|
125
|
+
"required": true,
|
|
126
|
+
"conditionKeys": [],
|
|
127
|
+
"dependentActions": []
|
|
128
|
+
}
|
|
129
|
+
],
|
|
130
|
+
"conditionKeys": [
|
|
131
|
+
"aws:RequestTag/${TagKey}",
|
|
132
|
+
"aws:TagKeys"
|
|
133
|
+
],
|
|
134
|
+
"dependentActions": []
|
|
135
|
+
},
|
|
118
136
|
"createcluster": {
|
|
119
137
|
"name": "CreateCluster",
|
|
120
138
|
"description": "Grants permission to create an Amazon EKS cluster",
|
|
@@ -129,7 +147,8 @@
|
|
|
129
147
|
"eks:supportType",
|
|
130
148
|
"eks:computeConfigEnabled",
|
|
131
149
|
"eks:elasticLoadBalancingEnabled",
|
|
132
|
-
"eks:blockStorageEnabled"
|
|
150
|
+
"eks:blockStorageEnabled",
|
|
151
|
+
"eks:loggingType/${type}"
|
|
133
152
|
],
|
|
134
153
|
"dependentActions": []
|
|
135
154
|
},
|
|
@@ -234,6 +253,21 @@
|
|
|
234
253
|
"conditionKeys": [],
|
|
235
254
|
"dependentActions": []
|
|
236
255
|
},
|
|
256
|
+
"deletecapability": {
|
|
257
|
+
"name": "DeleteCapability",
|
|
258
|
+
"description": "Grants permission to delete a capability from an Amazon EKS cluster",
|
|
259
|
+
"accessLevel": "Write",
|
|
260
|
+
"resourceTypes": [
|
|
261
|
+
{
|
|
262
|
+
"name": "capability",
|
|
263
|
+
"required": true,
|
|
264
|
+
"conditionKeys": [],
|
|
265
|
+
"dependentActions": []
|
|
266
|
+
}
|
|
267
|
+
],
|
|
268
|
+
"conditionKeys": [],
|
|
269
|
+
"dependentActions": []
|
|
270
|
+
},
|
|
237
271
|
"deletecluster": {
|
|
238
272
|
"name": "DeleteCluster",
|
|
239
273
|
"description": "Grants permission to delete an Amazon EKS cluster",
|
|
@@ -370,6 +404,21 @@
|
|
|
370
404
|
"conditionKeys": [],
|
|
371
405
|
"dependentActions": []
|
|
372
406
|
},
|
|
407
|
+
"describecapability": {
|
|
408
|
+
"name": "DescribeCapability",
|
|
409
|
+
"description": "Grants permission to describe a capability for an Amazon EKS cluster",
|
|
410
|
+
"accessLevel": "Read",
|
|
411
|
+
"resourceTypes": [
|
|
412
|
+
{
|
|
413
|
+
"name": "capability",
|
|
414
|
+
"required": true,
|
|
415
|
+
"conditionKeys": [],
|
|
416
|
+
"dependentActions": []
|
|
417
|
+
}
|
|
418
|
+
],
|
|
419
|
+
"conditionKeys": [],
|
|
420
|
+
"dependentActions": []
|
|
421
|
+
},
|
|
373
422
|
"describecluster": {
|
|
374
423
|
"name": "DescribeCluster",
|
|
375
424
|
"description": "Grants permission to retrieve descriptive information about an Amazon EKS cluster",
|
|
@@ -515,6 +564,12 @@
|
|
|
515
564
|
"conditionKeys": [],
|
|
516
565
|
"dependentActions": []
|
|
517
566
|
},
|
|
567
|
+
{
|
|
568
|
+
"name": "capability",
|
|
569
|
+
"required": false,
|
|
570
|
+
"conditionKeys": [],
|
|
571
|
+
"dependentActions": []
|
|
572
|
+
},
|
|
518
573
|
{
|
|
519
574
|
"name": "nodegroup",
|
|
520
575
|
"required": false,
|
|
@@ -612,6 +667,21 @@
|
|
|
612
667
|
"conditionKeys": [],
|
|
613
668
|
"dependentActions": []
|
|
614
669
|
},
|
|
670
|
+
"listcapabilities": {
|
|
671
|
+
"name": "ListCapabilities",
|
|
672
|
+
"description": "Grants permission to list capabilities for an Amazon EKS cluster",
|
|
673
|
+
"accessLevel": "List",
|
|
674
|
+
"resourceTypes": [
|
|
675
|
+
{
|
|
676
|
+
"name": "cluster",
|
|
677
|
+
"required": true,
|
|
678
|
+
"conditionKeys": [],
|
|
679
|
+
"dependentActions": []
|
|
680
|
+
}
|
|
681
|
+
],
|
|
682
|
+
"conditionKeys": [],
|
|
683
|
+
"dependentActions": []
|
|
684
|
+
},
|
|
615
685
|
"listclusters": {
|
|
616
686
|
"name": "ListClusters",
|
|
617
687
|
"description": "Grants permission to list the Amazon EKS clusters in your AWS account (in the specified or default region)",
|
|
@@ -744,6 +814,12 @@
|
|
|
744
814
|
"conditionKeys": [],
|
|
745
815
|
"dependentActions": []
|
|
746
816
|
},
|
|
817
|
+
{
|
|
818
|
+
"name": "capability",
|
|
819
|
+
"required": false,
|
|
820
|
+
"conditionKeys": [],
|
|
821
|
+
"dependentActions": []
|
|
822
|
+
},
|
|
747
823
|
{
|
|
748
824
|
"name": "cluster",
|
|
749
825
|
"required": false,
|
|
@@ -801,6 +877,12 @@
|
|
|
801
877
|
"conditionKeys": [],
|
|
802
878
|
"dependentActions": []
|
|
803
879
|
},
|
|
880
|
+
{
|
|
881
|
+
"name": "capability",
|
|
882
|
+
"required": false,
|
|
883
|
+
"conditionKeys": [],
|
|
884
|
+
"dependentActions": []
|
|
885
|
+
},
|
|
804
886
|
{
|
|
805
887
|
"name": "nodegroup",
|
|
806
888
|
"required": false,
|
|
@@ -811,6 +893,24 @@
|
|
|
811
893
|
"conditionKeys": [],
|
|
812
894
|
"dependentActions": []
|
|
813
895
|
},
|
|
896
|
+
"mutateviakubernetesapi": {
|
|
897
|
+
"name": "MutateViaKubernetesApi",
|
|
898
|
+
"isPermissionOnly": true,
|
|
899
|
+
"description": "Grants permission to modify Kubernetes objects via AWS console",
|
|
900
|
+
"accessLevel": "Write",
|
|
901
|
+
"resourceTypes": [
|
|
902
|
+
{
|
|
903
|
+
"name": "cluster",
|
|
904
|
+
"required": true,
|
|
905
|
+
"conditionKeys": [],
|
|
906
|
+
"dependentActions": []
|
|
907
|
+
}
|
|
908
|
+
],
|
|
909
|
+
"conditionKeys": [],
|
|
910
|
+
"dependentActions": [
|
|
911
|
+
"eks:AccessKubernetesApi"
|
|
912
|
+
]
|
|
913
|
+
},
|
|
814
914
|
"registercluster": {
|
|
815
915
|
"name": "RegisterCluster",
|
|
816
916
|
"description": "Grants permission to register an External cluster",
|
|
@@ -854,6 +954,12 @@
|
|
|
854
954
|
"conditionKeys": [],
|
|
855
955
|
"dependentActions": []
|
|
856
956
|
},
|
|
957
|
+
{
|
|
958
|
+
"name": "capability",
|
|
959
|
+
"required": false,
|
|
960
|
+
"conditionKeys": [],
|
|
961
|
+
"dependentActions": []
|
|
962
|
+
},
|
|
857
963
|
{
|
|
858
964
|
"name": "cluster",
|
|
859
965
|
"required": false,
|
|
@@ -920,6 +1026,12 @@
|
|
|
920
1026
|
"conditionKeys": [],
|
|
921
1027
|
"dependentActions": []
|
|
922
1028
|
},
|
|
1029
|
+
{
|
|
1030
|
+
"name": "capability",
|
|
1031
|
+
"required": false,
|
|
1032
|
+
"conditionKeys": [],
|
|
1033
|
+
"dependentActions": []
|
|
1034
|
+
},
|
|
923
1035
|
{
|
|
924
1036
|
"name": "cluster",
|
|
925
1037
|
"required": false,
|
|
@@ -1004,6 +1116,21 @@
|
|
|
1004
1116
|
"conditionKeys": [],
|
|
1005
1117
|
"dependentActions": []
|
|
1006
1118
|
},
|
|
1119
|
+
"updatecapability": {
|
|
1120
|
+
"name": "UpdateCapability",
|
|
1121
|
+
"description": "Grants permission to update a capability for an Amazon EKS cluster",
|
|
1122
|
+
"accessLevel": "Write",
|
|
1123
|
+
"resourceTypes": [
|
|
1124
|
+
{
|
|
1125
|
+
"name": "capability",
|
|
1126
|
+
"required": true,
|
|
1127
|
+
"conditionKeys": [],
|
|
1128
|
+
"dependentActions": []
|
|
1129
|
+
}
|
|
1130
|
+
],
|
|
1131
|
+
"conditionKeys": [],
|
|
1132
|
+
"dependentActions": []
|
|
1133
|
+
},
|
|
1007
1134
|
"updateclusterconfig": {
|
|
1008
1135
|
"name": "UpdateClusterConfig",
|
|
1009
1136
|
"description": "Grants permission to update Amazon EKS cluster configurations (eg: API server endpoint access)",
|
|
@@ -1021,7 +1148,8 @@
|
|
|
1021
1148
|
"eks:supportType",
|
|
1022
1149
|
"eks:computeConfigEnabled",
|
|
1023
1150
|
"eks:elasticLoadBalancingEnabled",
|
|
1024
|
-
"eks:blockStorageEnabled"
|
|
1151
|
+
"eks:blockStorageEnabled",
|
|
1152
|
+
"eks:loggingType/${type}"
|
|
1025
1153
|
],
|
|
1026
1154
|
"dependentActions": []
|
|
1027
1155
|
},
|
|
@@ -62,6 +62,15 @@
|
|
|
62
62
|
],
|
|
63
63
|
"dependentActions": []
|
|
64
64
|
},
|
|
65
|
+
"allowvendedlogdeliveryforresource": {
|
|
66
|
+
"name": "AllowVendedLogDeliveryForResource",
|
|
67
|
+
"isPermissionOnly": true,
|
|
68
|
+
"description": "Grants permission to configure vended log delivery for load balancers",
|
|
69
|
+
"accessLevel": "Permissions management",
|
|
70
|
+
"resourceTypes": [],
|
|
71
|
+
"conditionKeys": [],
|
|
72
|
+
"dependentActions": []
|
|
73
|
+
},
|
|
65
74
|
"createlistener": {
|
|
66
75
|
"name": "CreateListener",
|
|
67
76
|
"description": "Grants permission to create a listener for the specified Application Load Balancer",
|
|
@@ -104,6 +104,21 @@
|
|
|
104
104
|
"conditionKeys": [],
|
|
105
105
|
"dependentActions": []
|
|
106
106
|
},
|
|
107
|
+
"deletesecurityconfiguration": {
|
|
108
|
+
"name": "DeleteSecurityConfiguration",
|
|
109
|
+
"description": "Grants permission to delete a security configuration",
|
|
110
|
+
"accessLevel": "Write",
|
|
111
|
+
"resourceTypes": [
|
|
112
|
+
{
|
|
113
|
+
"name": "securityConfiguration",
|
|
114
|
+
"required": true,
|
|
115
|
+
"conditionKeys": [],
|
|
116
|
+
"dependentActions": []
|
|
117
|
+
}
|
|
118
|
+
],
|
|
119
|
+
"conditionKeys": [],
|
|
120
|
+
"dependentActions": []
|
|
121
|
+
},
|
|
107
122
|
"deletevirtualcluster": {
|
|
108
123
|
"name": "DeleteVirtualCluster",
|
|
109
124
|
"description": "Grants permission to delete a virtual cluster",
|
iamdata/data/actions/es.json
CHANGED
|
@@ -216,6 +216,21 @@
|
|
|
216
216
|
"conditionKeys": [],
|
|
217
217
|
"dependentActions": []
|
|
218
218
|
},
|
|
219
|
+
"createindex": {
|
|
220
|
+
"name": "CreateIndex",
|
|
221
|
+
"description": "Grants permission to create index for the OpenSearch Service domain",
|
|
222
|
+
"accessLevel": "Write",
|
|
223
|
+
"resourceTypes": [
|
|
224
|
+
{
|
|
225
|
+
"name": "domain",
|
|
226
|
+
"required": true,
|
|
227
|
+
"conditionKeys": [],
|
|
228
|
+
"dependentActions": []
|
|
229
|
+
}
|
|
230
|
+
],
|
|
231
|
+
"conditionKeys": [],
|
|
232
|
+
"dependentActions": []
|
|
233
|
+
},
|
|
219
234
|
"createoutboundconnection": {
|
|
220
235
|
"name": "CreateOutboundConnection",
|
|
221
236
|
"description": "Grants permission to create a new cross-cluster search connection from a source domain to a destination domain",
|
|
@@ -369,6 +384,21 @@
|
|
|
369
384
|
"conditionKeys": [],
|
|
370
385
|
"dependentActions": []
|
|
371
386
|
},
|
|
387
|
+
"deleteindex": {
|
|
388
|
+
"name": "DeleteIndex",
|
|
389
|
+
"description": "Grants permission to delete Index for the OpenSearch Service domain",
|
|
390
|
+
"accessLevel": "Write",
|
|
391
|
+
"resourceTypes": [
|
|
392
|
+
{
|
|
393
|
+
"name": "domain",
|
|
394
|
+
"required": true,
|
|
395
|
+
"conditionKeys": [],
|
|
396
|
+
"dependentActions": []
|
|
397
|
+
}
|
|
398
|
+
],
|
|
399
|
+
"conditionKeys": [],
|
|
400
|
+
"dependentActions": []
|
|
401
|
+
},
|
|
372
402
|
"deleteoutboundconnection": {
|
|
373
403
|
"name": "DeleteOutboundConnection",
|
|
374
404
|
"description": "Grants permission to the source domain owner to delete an existing outbound cross-cluster search connection",
|
|
@@ -887,6 +917,21 @@
|
|
|
887
917
|
"conditionKeys": [],
|
|
888
918
|
"dependentActions": []
|
|
889
919
|
},
|
|
920
|
+
"getindex": {
|
|
921
|
+
"name": "GetIndex",
|
|
922
|
+
"description": "Grants permission to get index for the OpenSearch Service domain",
|
|
923
|
+
"accessLevel": "Read",
|
|
924
|
+
"resourceTypes": [
|
|
925
|
+
{
|
|
926
|
+
"name": "domain",
|
|
927
|
+
"required": true,
|
|
928
|
+
"conditionKeys": [],
|
|
929
|
+
"dependentActions": []
|
|
930
|
+
}
|
|
931
|
+
],
|
|
932
|
+
"conditionKeys": [],
|
|
933
|
+
"dependentActions": []
|
|
934
|
+
},
|
|
890
935
|
"getpackageversionhistory": {
|
|
891
936
|
"name": "GetPackageVersionHistory",
|
|
892
937
|
"description": "Grants permission to fetch the version history for a package",
|
|
@@ -1311,6 +1356,21 @@
|
|
|
1311
1356
|
"conditionKeys": [],
|
|
1312
1357
|
"dependentActions": []
|
|
1313
1358
|
},
|
|
1359
|
+
"updateindex": {
|
|
1360
|
+
"name": "UpdateIndex",
|
|
1361
|
+
"description": "Grants permission to update index for the OpenSearch Service domain",
|
|
1362
|
+
"accessLevel": "Write",
|
|
1363
|
+
"resourceTypes": [
|
|
1364
|
+
{
|
|
1365
|
+
"name": "domain",
|
|
1366
|
+
"required": true,
|
|
1367
|
+
"conditionKeys": [],
|
|
1368
|
+
"dependentActions": []
|
|
1369
|
+
}
|
|
1370
|
+
],
|
|
1371
|
+
"conditionKeys": [],
|
|
1372
|
+
"dependentActions": []
|
|
1373
|
+
},
|
|
1314
1374
|
"updatepackage": {
|
|
1315
1375
|
"name": "UpdatePackage",
|
|
1316
1376
|
"description": "Grants permission to update a package for use with OpenSearch Service domains",
|
iamdata/data/actions/fsx.json
CHANGED
|
@@ -161,7 +161,10 @@
|
|
|
161
161
|
{
|
|
162
162
|
"name": "association",
|
|
163
163
|
"required": true,
|
|
164
|
-
"conditionKeys": [
|
|
164
|
+
"conditionKeys": [
|
|
165
|
+
"fsx:NfsDataRepositoryAuthenticationEnabled",
|
|
166
|
+
"fsx:NfsDataRepositoryEncryptionInTransitEnabled"
|
|
167
|
+
],
|
|
165
168
|
"dependentActions": [
|
|
166
169
|
"fsx:TagResource"
|
|
167
170
|
]
|
|
@@ -490,7 +493,7 @@
|
|
|
490
493
|
"deleteresourcepolicy": {
|
|
491
494
|
"name": "DeleteResourcePolicy",
|
|
492
495
|
"isPermissionOnly": true,
|
|
493
|
-
"description": "
|
|
496
|
+
"description": "Grants permission to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). PutResourcePolicy and GetResourcePolicy are also required",
|
|
494
497
|
"accessLevel": "Permissions management",
|
|
495
498
|
"resourceTypes": [
|
|
496
499
|
{
|
|
@@ -723,7 +726,7 @@
|
|
|
723
726
|
"getresourcepolicy": {
|
|
724
727
|
"name": "GetResourcePolicy",
|
|
725
728
|
"isPermissionOnly": true,
|
|
726
|
-
"description": "
|
|
729
|
+
"description": "Grants permission to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). PutResourcePolicy and DeleteResourcePolicy are also required",
|
|
727
730
|
"accessLevel": "Permissions management",
|
|
728
731
|
"resourceTypes": [
|
|
729
732
|
{
|
|
@@ -812,7 +815,7 @@
|
|
|
812
815
|
"putresourcepolicy": {
|
|
813
816
|
"name": "PutResourcePolicy",
|
|
814
817
|
"isPermissionOnly": true,
|
|
815
|
-
"description": "
|
|
818
|
+
"description": "Grants permission to manage cross-account sharing of FSx volumes through AWS Resource Access Manager (RAM). DeleteResourcePolicy and GetResourcePolicy are also required",
|
|
816
819
|
"accessLevel": "Permissions management",
|
|
817
820
|
"resourceTypes": [
|
|
818
821
|
{
|
|
@@ -884,7 +887,10 @@
|
|
|
884
887
|
{
|
|
885
888
|
"name": "association",
|
|
886
889
|
"required": false,
|
|
887
|
-
"conditionKeys": [
|
|
890
|
+
"conditionKeys": [
|
|
891
|
+
"fsx:NfsDataRepositoryAuthenticationEnabled",
|
|
892
|
+
"fsx:NfsDataRepositoryEncryptionInTransitEnabled"
|
|
893
|
+
],
|
|
888
894
|
"dependentActions": []
|
|
889
895
|
},
|
|
890
896
|
{
|
|
@@ -926,7 +932,10 @@
|
|
|
926
932
|
{
|
|
927
933
|
"name": "volume",
|
|
928
934
|
"required": false,
|
|
929
|
-
"conditionKeys": [
|
|
935
|
+
"conditionKeys": [
|
|
936
|
+
"fsx:ParentVolumeId",
|
|
937
|
+
"fsx:StorageVirtualMachineId"
|
|
938
|
+
],
|
|
930
939
|
"dependentActions": []
|
|
931
940
|
}
|
|
932
941
|
],
|