iamdata 0.1.202511181__py3-none-any.whl → 0.1.202512281__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- iamdata/data/actions/account.json +21 -0
- iamdata/data/actions/aco-automation.json +252 -0
- iamdata/data/actions/aidevops.json +481 -0
- iamdata/data/actions/apigateway.json +451 -0
- iamdata/data/actions/application-signals.json +8 -0
- iamdata/data/actions/arc-region-switch.json +15 -0
- iamdata/data/actions/artifact.json +8 -0
- iamdata/data/actions/autoscaling.json +16 -0
- iamdata/data/actions/aws-marketplace.json +48 -0
- iamdata/data/actions/aws-mcp.json +26 -0
- iamdata/data/actions/backup.json +170 -2
- iamdata/data/actions/bcm-data-exports.json +12 -0
- iamdata/data/actions/bedrock-agentcore.json +593 -0
- iamdata/data/actions/bedrock-mantle.json +106 -0
- iamdata/data/actions/bedrock.json +132 -37
- iamdata/data/actions/braket.json +62 -0
- iamdata/data/actions/ce.json +8 -0
- iamdata/data/actions/cleanrooms.json +15 -0
- iamdata/data/actions/cloudformation.json +21 -0
- iamdata/data/actions/cloudfront.json +239 -0
- iamdata/data/actions/cloudtrail.json +35 -8
- iamdata/data/actions/cloudwatch.json +45 -0
- iamdata/data/actions/cognito-identity.json +30 -8
- iamdata/data/actions/connect.json +1084 -8
- iamdata/data/actions/cost-optimization-hub.json +8 -0
- iamdata/data/actions/datazone.json +16 -0
- iamdata/data/actions/deadline.json +3 -3
- iamdata/data/actions/dms.json +27 -0
- iamdata/data/actions/ec2.json +1321 -28
- iamdata/data/actions/ecr.json +78 -0
- iamdata/data/actions/ecs.json +90 -0
- iamdata/data/actions/eks.json +108 -0
- iamdata/data/actions/glue.json +38 -1
- iamdata/data/actions/groundstation.json +11 -0
- iamdata/data/actions/guardduty.json +24 -0
- iamdata/data/actions/healthlake.json +1 -0
- iamdata/data/actions/iam.json +158 -5
- iamdata/data/actions/identitystore.json +95 -27
- iamdata/data/actions/imagebuilder.json +40 -0
- iamdata/data/actions/invoicing.json +56 -0
- iamdata/data/actions/kafka.json +57 -1
- iamdata/data/actions/kinesisvideo.json +30 -0
- iamdata/data/actions/lakeformation.json +16 -0
- iamdata/data/actions/lambda.json +297 -6
- iamdata/data/actions/license-manager.json +217 -3
- iamdata/data/actions/logs.json +235 -0
- iamdata/data/actions/mediaconnect.json +748 -91
- iamdata/data/actions/mgn.json +54 -1
- iamdata/data/actions/network-firewall.json +403 -0
- iamdata/data/actions/network-security-director.json +7 -15
- iamdata/data/actions/networkmanager.json +3 -3
- iamdata/data/actions/notifications-contacts.json +2 -1
- iamdata/data/actions/nova-act.json +276 -0
- iamdata/data/actions/observabilityadmin.json +180 -0
- iamdata/data/actions/odb.json +22 -0
- iamdata/data/actions/opensearch.json +40 -0
- iamdata/data/actions/organizations.json +117 -0
- iamdata/data/actions/partnercentral-account-management.json +22 -0
- iamdata/data/actions/partnercentral.json +1340 -155
- iamdata/data/actions/payment-cryptography.json +108 -0
- iamdata/data/actions/pricingplanmanager.json +66 -0
- iamdata/data/actions/quicksight.json +24 -0
- iamdata/data/actions/rds.json +47 -3
- iamdata/data/actions/redshift-serverless.json +32 -0
- iamdata/data/actions/redshift.json +40 -1
- iamdata/data/actions/route53.json +15 -0
- iamdata/data/actions/route53globalresolver.json +700 -0
- iamdata/data/actions/s3.json +66 -1
- iamdata/data/actions/s3tables.json +243 -3
- iamdata/data/actions/s3vectors.json +147 -22
- iamdata/data/actions/sagemaker-mlflow.json +180 -60
- iamdata/data/actions/sagemaker-unified-studio-mcp.json +3 -0
- iamdata/data/actions/sagemaker.json +187 -19
- iamdata/data/actions/secretsmanager.json +42 -20
- iamdata/data/actions/security-ir.json +31 -0
- iamdata/data/actions/securityagent.json +503 -0
- iamdata/data/actions/securityhub.json +30 -0
- iamdata/data/actions/servicequotas.json +16 -0
- iamdata/data/actions/ses.json +66 -8
- iamdata/data/actions/signin.json +16 -0
- iamdata/data/actions/ssm.json +20 -4
- iamdata/data/actions/tag.json +8 -0
- iamdata/data/actions/timestream-influxdb.json +38 -0
- iamdata/data/actions/transform-custom.json +361 -0
- iamdata/data/actions/transform.json +72 -0
- iamdata/data/actions/vpce.json +14 -1
- iamdata/data/actions/wickr.json +603 -9
- iamdata/data/conditionKeys/aco-automation.json +17 -0
- iamdata/data/conditionKeys/aidevops.json +22 -0
- iamdata/data/conditionKeys/apigateway.json +95 -0
- iamdata/data/conditionKeys/aws-mcp.json +1 -0
- iamdata/data/conditionKeys/bedrock-mantle.json +17 -0
- iamdata/data/conditionKeys/bedrock.json +5 -0
- iamdata/data/conditionKeys/cognito-identity.json +27 -2
- iamdata/data/conditionKeys/connect.json +10 -0
- iamdata/data/conditionKeys/dynamodb.json +21 -1
- iamdata/data/conditionKeys/ec2.json +45 -0
- iamdata/data/conditionKeys/glue.json +1 -1
- iamdata/data/conditionKeys/iam.json +20 -0
- iamdata/data/conditionKeys/identitystore.json +26 -1
- iamdata/data/conditionKeys/nova-act.json +1 -0
- iamdata/data/conditionKeys/observabilityadmin.json +5 -0
- iamdata/data/conditionKeys/organizations.json +10 -0
- iamdata/data/conditionKeys/partnercentral-account-management.json +12 -1
- iamdata/data/conditionKeys/partnercentral.json +22 -2
- iamdata/data/conditionKeys/pricingplanmanager.json +1 -0
- iamdata/data/conditionKeys/route53globalresolver.json +17 -0
- iamdata/data/conditionKeys/s3.json +5 -0
- iamdata/data/conditionKeys/s3tables.json +5 -0
- iamdata/data/conditionKeys/s3vectors.json +20 -0
- iamdata/data/conditionKeys/sagemaker-mlflow.json +0 -5
- iamdata/data/conditionKeys/sagemaker.json +5 -0
- iamdata/data/conditionKeys/secretsmanager.json +15 -0
- iamdata/data/conditionKeys/securityagent.json +1 -0
- iamdata/data/conditionKeys/ssm.json +5 -0
- iamdata/data/conditionKeys/transform-custom.json +17 -0
- iamdata/data/conditionPatterns.json +6 -1
- iamdata/data/metadata.json +2 -2
- iamdata/data/resourceTypes/aco-automation.json +9 -0
- iamdata/data/resourceTypes/aidevops.json +24 -0
- iamdata/data/resourceTypes/apigateway.json +41 -0
- iamdata/data/resourceTypes/aws-mcp.json +1 -0
- iamdata/data/resourceTypes/backup.json +7 -0
- iamdata/data/resourceTypes/bcm-data-exports.json +7 -0
- iamdata/data/resourceTypes/bedrock-agentcore.json +20 -0
- iamdata/data/resourceTypes/bedrock-mantle.json +6 -0
- iamdata/data/resourceTypes/bedrock.json +1 -1
- iamdata/data/resourceTypes/braket.json +7 -0
- iamdata/data/resourceTypes/cloudfront.json +14 -0
- iamdata/data/resourceTypes/connect.json +18 -0
- iamdata/data/resourceTypes/deadline.json +0 -4
- iamdata/data/resourceTypes/ec2.json +85 -1
- iamdata/data/resourceTypes/eks.json +7 -0
- iamdata/data/resourceTypes/iam.json +7 -0
- iamdata/data/resourceTypes/invoicing.json +7 -0
- iamdata/data/resourceTypes/lambda.json +11 -0
- iamdata/data/resourceTypes/license-manager.json +14 -0
- iamdata/data/resourceTypes/logs.json +7 -0
- iamdata/data/resourceTypes/mediaconnect.json +41 -12
- iamdata/data/resourceTypes/network-firewall.json +21 -0
- iamdata/data/resourceTypes/nova-act.json +10 -0
- iamdata/data/resourceTypes/observabilityadmin.json +14 -0
- iamdata/data/resourceTypes/omics.json +0 -4
- iamdata/data/resourceTypes/organizations.json +7 -0
- iamdata/data/resourceTypes/partnercentral.json +63 -0
- iamdata/data/resourceTypes/pricingplanmanager.json +6 -0
- iamdata/data/resourceTypes/rds.json +8 -2
- iamdata/data/resourceTypes/route53globalresolver.json +37 -0
- iamdata/data/resourceTypes/s3.json +11 -2
- iamdata/data/resourceTypes/s3vectors.json +10 -2
- iamdata/data/resourceTypes/sagemaker-mlflow.json +1 -5
- iamdata/data/resourceTypes/sagemaker.json +6 -10
- iamdata/data/resourceTypes/secretsmanager.json +2 -1
- iamdata/data/resourceTypes/securityagent.json +38 -0
- iamdata/data/resourceTypes/ses.json +8 -2
- iamdata/data/resourceTypes/ssm.json +4 -1
- iamdata/data/resourceTypes/transform-custom.json +23 -0
- iamdata/data/resourceTypes/vpce.json +10 -1
- iamdata/data/serviceNames.json +11 -3
- iamdata/data/services.json +9 -1
- iamdata/data/unassociatedConditions.json +6 -0
- {iamdata-0.1.202511181.dist-info → iamdata-0.1.202512281.dist-info}/METADATA +1 -1
- {iamdata-0.1.202511181.dist-info → iamdata-0.1.202512281.dist-info}/RECORD +165 -141
- {iamdata-0.1.202511181.dist-info → iamdata-0.1.202512281.dist-info}/WHEEL +1 -1
- iamdata/data/actions/deepcomposer.json +0 -316
- iamdata/data/conditionKeys/deepcomposer.json +0 -17
- iamdata/data/resourceTypes/deepcomposer.json +0 -20
- {iamdata-0.1.202511181.dist-info → iamdata-0.1.202512281.dist-info}/licenses/LICENSE.txt +0 -0
|
@@ -15,6 +15,28 @@
|
|
|
15
15
|
"conditionKeys": [],
|
|
16
16
|
"dependentActions": []
|
|
17
17
|
},
|
|
18
|
+
"authorizeaction": {
|
|
19
|
+
"name": "AuthorizeAction",
|
|
20
|
+
"isPermissionOnly": true,
|
|
21
|
+
"description": "Grants permission to evaluate Cedar policies for authorization requests",
|
|
22
|
+
"accessLevel": "Permissions management",
|
|
23
|
+
"resourceTypes": [
|
|
24
|
+
{
|
|
25
|
+
"name": "gateway",
|
|
26
|
+
"required": true,
|
|
27
|
+
"conditionKeys": [],
|
|
28
|
+
"dependentActions": []
|
|
29
|
+
},
|
|
30
|
+
{
|
|
31
|
+
"name": "policy-engine",
|
|
32
|
+
"required": true,
|
|
33
|
+
"conditionKeys": [],
|
|
34
|
+
"dependentActions": []
|
|
35
|
+
}
|
|
36
|
+
],
|
|
37
|
+
"conditionKeys": [],
|
|
38
|
+
"dependentActions": []
|
|
39
|
+
},
|
|
18
40
|
"batchcreatememoryrecords": {
|
|
19
41
|
"name": "BatchCreateMemoryRecords",
|
|
20
42
|
"description": "Grants permission to create one or more memory records",
|
|
@@ -197,6 +219,14 @@
|
|
|
197
219
|
],
|
|
198
220
|
"dependentActions": []
|
|
199
221
|
},
|
|
222
|
+
"createevaluator": {
|
|
223
|
+
"name": "CreateEvaluator",
|
|
224
|
+
"description": "Grants permission to create a new evaluator",
|
|
225
|
+
"accessLevel": "Write",
|
|
226
|
+
"resourceTypes": [],
|
|
227
|
+
"conditionKeys": [],
|
|
228
|
+
"dependentActions": []
|
|
229
|
+
},
|
|
200
230
|
"createevent": {
|
|
201
231
|
"name": "CreateEvent",
|
|
202
232
|
"description": "Grants permission to create an Event",
|
|
@@ -280,6 +310,39 @@
|
|
|
280
310
|
],
|
|
281
311
|
"dependentActions": []
|
|
282
312
|
},
|
|
313
|
+
"createonlineevaluationconfig": {
|
|
314
|
+
"name": "CreateOnlineEvaluationConfig",
|
|
315
|
+
"description": "Grants permission to create a new online evaluation configuration",
|
|
316
|
+
"accessLevel": "Write",
|
|
317
|
+
"resourceTypes": [],
|
|
318
|
+
"conditionKeys": [],
|
|
319
|
+
"dependentActions": [
|
|
320
|
+
"iam:PassRole"
|
|
321
|
+
]
|
|
322
|
+
},
|
|
323
|
+
"createpolicy": {
|
|
324
|
+
"name": "CreatePolicy",
|
|
325
|
+
"description": "Grants permission to create a new policy within a policy engine",
|
|
326
|
+
"accessLevel": "Write",
|
|
327
|
+
"resourceTypes": [
|
|
328
|
+
{
|
|
329
|
+
"name": "policy-engine",
|
|
330
|
+
"required": true,
|
|
331
|
+
"conditionKeys": [],
|
|
332
|
+
"dependentActions": []
|
|
333
|
+
}
|
|
334
|
+
],
|
|
335
|
+
"conditionKeys": [],
|
|
336
|
+
"dependentActions": []
|
|
337
|
+
},
|
|
338
|
+
"createpolicyengine": {
|
|
339
|
+
"name": "CreatePolicyEngine",
|
|
340
|
+
"description": "Grants permission to create a new policy engine",
|
|
341
|
+
"accessLevel": "Write",
|
|
342
|
+
"resourceTypes": [],
|
|
343
|
+
"conditionKeys": [],
|
|
344
|
+
"dependentActions": []
|
|
345
|
+
},
|
|
283
346
|
"createworkloadidentity": {
|
|
284
347
|
"name": "CreateWorkloadIdentity",
|
|
285
348
|
"description": "Grants permission to create a new Workload Identity",
|
|
@@ -391,6 +454,21 @@
|
|
|
391
454
|
"conditionKeys": [],
|
|
392
455
|
"dependentActions": []
|
|
393
456
|
},
|
|
457
|
+
"deleteevaluator": {
|
|
458
|
+
"name": "DeleteEvaluator",
|
|
459
|
+
"description": "Grants permission to delete an evaluator",
|
|
460
|
+
"accessLevel": "Write",
|
|
461
|
+
"resourceTypes": [
|
|
462
|
+
{
|
|
463
|
+
"name": "evaluator",
|
|
464
|
+
"required": true,
|
|
465
|
+
"conditionKeys": [],
|
|
466
|
+
"dependentActions": []
|
|
467
|
+
}
|
|
468
|
+
],
|
|
469
|
+
"conditionKeys": [],
|
|
470
|
+
"dependentActions": []
|
|
471
|
+
},
|
|
394
472
|
"deleteevent": {
|
|
395
473
|
"name": "DeleteEvent",
|
|
396
474
|
"description": "Grants permission to delete an Event",
|
|
@@ -490,6 +568,84 @@
|
|
|
490
568
|
"conditionKeys": [],
|
|
491
569
|
"dependentActions": []
|
|
492
570
|
},
|
|
571
|
+
"deleteonlineevaluationconfig": {
|
|
572
|
+
"name": "DeleteOnlineEvaluationConfig",
|
|
573
|
+
"description": "Grants permission to delete an online evaluation configuration",
|
|
574
|
+
"accessLevel": "Write",
|
|
575
|
+
"resourceTypes": [
|
|
576
|
+
{
|
|
577
|
+
"name": "online-evaluation-config",
|
|
578
|
+
"required": true,
|
|
579
|
+
"conditionKeys": [],
|
|
580
|
+
"dependentActions": []
|
|
581
|
+
}
|
|
582
|
+
],
|
|
583
|
+
"conditionKeys": [],
|
|
584
|
+
"dependentActions": []
|
|
585
|
+
},
|
|
586
|
+
"deletepolicy": {
|
|
587
|
+
"name": "DeletePolicy",
|
|
588
|
+
"description": "Grants permission to delete a policy",
|
|
589
|
+
"accessLevel": "Write",
|
|
590
|
+
"resourceTypes": [
|
|
591
|
+
{
|
|
592
|
+
"name": "policy",
|
|
593
|
+
"required": true,
|
|
594
|
+
"conditionKeys": [],
|
|
595
|
+
"dependentActions": []
|
|
596
|
+
},
|
|
597
|
+
{
|
|
598
|
+
"name": "policy-engine",
|
|
599
|
+
"required": true,
|
|
600
|
+
"conditionKeys": [],
|
|
601
|
+
"dependentActions": []
|
|
602
|
+
}
|
|
603
|
+
],
|
|
604
|
+
"conditionKeys": [],
|
|
605
|
+
"dependentActions": []
|
|
606
|
+
},
|
|
607
|
+
"deletepolicyengine": {
|
|
608
|
+
"name": "DeletePolicyEngine",
|
|
609
|
+
"description": "Grants permission to delete a policy engine",
|
|
610
|
+
"accessLevel": "Write",
|
|
611
|
+
"resourceTypes": [
|
|
612
|
+
{
|
|
613
|
+
"name": "policy-engine",
|
|
614
|
+
"required": true,
|
|
615
|
+
"conditionKeys": [],
|
|
616
|
+
"dependentActions": []
|
|
617
|
+
}
|
|
618
|
+
],
|
|
619
|
+
"conditionKeys": [],
|
|
620
|
+
"dependentActions": []
|
|
621
|
+
},
|
|
622
|
+
"deleteresourcepolicy": {
|
|
623
|
+
"name": "DeleteResourcePolicy",
|
|
624
|
+
"description": "Grants permission to delete the resource-based policy for a Bedrock resource",
|
|
625
|
+
"accessLevel": "Write",
|
|
626
|
+
"resourceTypes": [
|
|
627
|
+
{
|
|
628
|
+
"name": "gateway",
|
|
629
|
+
"required": false,
|
|
630
|
+
"conditionKeys": [],
|
|
631
|
+
"dependentActions": []
|
|
632
|
+
},
|
|
633
|
+
{
|
|
634
|
+
"name": "runtime",
|
|
635
|
+
"required": false,
|
|
636
|
+
"conditionKeys": [],
|
|
637
|
+
"dependentActions": []
|
|
638
|
+
},
|
|
639
|
+
{
|
|
640
|
+
"name": "runtime-endpoint",
|
|
641
|
+
"required": false,
|
|
642
|
+
"conditionKeys": [],
|
|
643
|
+
"dependentActions": []
|
|
644
|
+
}
|
|
645
|
+
],
|
|
646
|
+
"conditionKeys": [],
|
|
647
|
+
"dependentActions": []
|
|
648
|
+
},
|
|
493
649
|
"deleteworkloadidentity": {
|
|
494
650
|
"name": "DeleteWorkloadIdentity",
|
|
495
651
|
"description": "Grants permission to delete a registered Workload Identity",
|
|
@@ -511,6 +667,21 @@
|
|
|
511
667
|
"conditionKeys": [],
|
|
512
668
|
"dependentActions": []
|
|
513
669
|
},
|
|
670
|
+
"evaluate": {
|
|
671
|
+
"name": "Evaluate",
|
|
672
|
+
"description": "Grants permission to run an evaluation using an evaluator",
|
|
673
|
+
"accessLevel": "Write",
|
|
674
|
+
"resourceTypes": [
|
|
675
|
+
{
|
|
676
|
+
"name": "evaluator",
|
|
677
|
+
"required": true,
|
|
678
|
+
"conditionKeys": [],
|
|
679
|
+
"dependentActions": []
|
|
680
|
+
}
|
|
681
|
+
],
|
|
682
|
+
"conditionKeys": [],
|
|
683
|
+
"dependentActions": []
|
|
684
|
+
},
|
|
514
685
|
"getagentcard": {
|
|
515
686
|
"name": "GetAgentCard",
|
|
516
687
|
"description": "Grants permission to retrieve an agent card for A2A",
|
|
@@ -661,6 +832,21 @@
|
|
|
661
832
|
"conditionKeys": [],
|
|
662
833
|
"dependentActions": []
|
|
663
834
|
},
|
|
835
|
+
"getevaluator": {
|
|
836
|
+
"name": "GetEvaluator",
|
|
837
|
+
"description": "Grants permission to get details of an evaluator",
|
|
838
|
+
"accessLevel": "Read",
|
|
839
|
+
"resourceTypes": [
|
|
840
|
+
{
|
|
841
|
+
"name": "evaluator",
|
|
842
|
+
"required": true,
|
|
843
|
+
"conditionKeys": [],
|
|
844
|
+
"dependentActions": []
|
|
845
|
+
}
|
|
846
|
+
],
|
|
847
|
+
"conditionKeys": [],
|
|
848
|
+
"dependentActions": []
|
|
849
|
+
},
|
|
664
850
|
"getevent": {
|
|
665
851
|
"name": "GetEvent",
|
|
666
852
|
"description": "Grants permission to fetch an Event",
|
|
@@ -760,6 +946,78 @@
|
|
|
760
946
|
"conditionKeys": [],
|
|
761
947
|
"dependentActions": []
|
|
762
948
|
},
|
|
949
|
+
"getonlineevaluationconfig": {
|
|
950
|
+
"name": "GetOnlineEvaluationConfig",
|
|
951
|
+
"description": "Grants permission to get details of an online evaluation configuration",
|
|
952
|
+
"accessLevel": "Read",
|
|
953
|
+
"resourceTypes": [
|
|
954
|
+
{
|
|
955
|
+
"name": "online-evaluation-config",
|
|
956
|
+
"required": true,
|
|
957
|
+
"conditionKeys": [],
|
|
958
|
+
"dependentActions": []
|
|
959
|
+
}
|
|
960
|
+
],
|
|
961
|
+
"conditionKeys": [],
|
|
962
|
+
"dependentActions": []
|
|
963
|
+
},
|
|
964
|
+
"getpolicy": {
|
|
965
|
+
"name": "GetPolicy",
|
|
966
|
+
"description": "Grants permission to retrieve a policy",
|
|
967
|
+
"accessLevel": "Read",
|
|
968
|
+
"resourceTypes": [
|
|
969
|
+
{
|
|
970
|
+
"name": "policy",
|
|
971
|
+
"required": true,
|
|
972
|
+
"conditionKeys": [],
|
|
973
|
+
"dependentActions": []
|
|
974
|
+
},
|
|
975
|
+
{
|
|
976
|
+
"name": "policy-engine",
|
|
977
|
+
"required": true,
|
|
978
|
+
"conditionKeys": [],
|
|
979
|
+
"dependentActions": []
|
|
980
|
+
}
|
|
981
|
+
],
|
|
982
|
+
"conditionKeys": [],
|
|
983
|
+
"dependentActions": []
|
|
984
|
+
},
|
|
985
|
+
"getpolicyengine": {
|
|
986
|
+
"name": "GetPolicyEngine",
|
|
987
|
+
"description": "Grants permission to retrieve a policy engine",
|
|
988
|
+
"accessLevel": "Read",
|
|
989
|
+
"resourceTypes": [
|
|
990
|
+
{
|
|
991
|
+
"name": "policy-engine",
|
|
992
|
+
"required": true,
|
|
993
|
+
"conditionKeys": [],
|
|
994
|
+
"dependentActions": []
|
|
995
|
+
}
|
|
996
|
+
],
|
|
997
|
+
"conditionKeys": [],
|
|
998
|
+
"dependentActions": []
|
|
999
|
+
},
|
|
1000
|
+
"getpolicygeneration": {
|
|
1001
|
+
"name": "GetPolicyGeneration",
|
|
1002
|
+
"description": "Grants permission to retrieve status and results of a policy generation request",
|
|
1003
|
+
"accessLevel": "Read",
|
|
1004
|
+
"resourceTypes": [
|
|
1005
|
+
{
|
|
1006
|
+
"name": "policy-engine",
|
|
1007
|
+
"required": true,
|
|
1008
|
+
"conditionKeys": [],
|
|
1009
|
+
"dependentActions": []
|
|
1010
|
+
},
|
|
1011
|
+
{
|
|
1012
|
+
"name": "policy-generation",
|
|
1013
|
+
"required": true,
|
|
1014
|
+
"conditionKeys": [],
|
|
1015
|
+
"dependentActions": []
|
|
1016
|
+
}
|
|
1017
|
+
],
|
|
1018
|
+
"conditionKeys": [],
|
|
1019
|
+
"dependentActions": []
|
|
1020
|
+
},
|
|
763
1021
|
"getresourceapikey": {
|
|
764
1022
|
"name": "GetResourceApiKey",
|
|
765
1023
|
"description": "Grants permission to retrieve an API Key associated with an Api Key Credential Provider",
|
|
@@ -826,6 +1084,33 @@
|
|
|
826
1084
|
"conditionKeys": [],
|
|
827
1085
|
"dependentActions": []
|
|
828
1086
|
},
|
|
1087
|
+
"getresourcepolicy": {
|
|
1088
|
+
"name": "GetResourcePolicy",
|
|
1089
|
+
"description": "Grants permission to retrieve the resource-based policy for a Bedrock resource",
|
|
1090
|
+
"accessLevel": "Read",
|
|
1091
|
+
"resourceTypes": [
|
|
1092
|
+
{
|
|
1093
|
+
"name": "gateway",
|
|
1094
|
+
"required": false,
|
|
1095
|
+
"conditionKeys": [],
|
|
1096
|
+
"dependentActions": []
|
|
1097
|
+
},
|
|
1098
|
+
{
|
|
1099
|
+
"name": "runtime",
|
|
1100
|
+
"required": false,
|
|
1101
|
+
"conditionKeys": [],
|
|
1102
|
+
"dependentActions": []
|
|
1103
|
+
},
|
|
1104
|
+
{
|
|
1105
|
+
"name": "runtime-endpoint",
|
|
1106
|
+
"required": false,
|
|
1107
|
+
"conditionKeys": [],
|
|
1108
|
+
"dependentActions": []
|
|
1109
|
+
}
|
|
1110
|
+
],
|
|
1111
|
+
"conditionKeys": [],
|
|
1112
|
+
"dependentActions": []
|
|
1113
|
+
},
|
|
829
1114
|
"gettokenvault": {
|
|
830
1115
|
"name": "GetTokenVault",
|
|
831
1116
|
"description": "Grants permission to fetch the current configuration of the TokenVault, including encryption settings",
|
|
@@ -975,6 +1260,48 @@
|
|
|
975
1260
|
"conditionKeys": [],
|
|
976
1261
|
"dependentActions": []
|
|
977
1262
|
},
|
|
1263
|
+
"invokeagentruntimewithwebsocketstream": {
|
|
1264
|
+
"name": "InvokeAgentRuntimeWithWebSocketStream",
|
|
1265
|
+
"description": "Grants permission to invoke an agent runtime endpoint with WebSocket stream",
|
|
1266
|
+
"accessLevel": "Write",
|
|
1267
|
+
"resourceTypes": [
|
|
1268
|
+
{
|
|
1269
|
+
"name": "runtime",
|
|
1270
|
+
"required": true,
|
|
1271
|
+
"conditionKeys": [],
|
|
1272
|
+
"dependentActions": []
|
|
1273
|
+
},
|
|
1274
|
+
{
|
|
1275
|
+
"name": "runtime-endpoint",
|
|
1276
|
+
"required": true,
|
|
1277
|
+
"conditionKeys": [],
|
|
1278
|
+
"dependentActions": []
|
|
1279
|
+
}
|
|
1280
|
+
],
|
|
1281
|
+
"conditionKeys": [],
|
|
1282
|
+
"dependentActions": []
|
|
1283
|
+
},
|
|
1284
|
+
"invokeagentruntimewithwebsocketstreamforuser": {
|
|
1285
|
+
"name": "InvokeAgentRuntimeWithWebSocketStreamForUser",
|
|
1286
|
+
"description": "Grants permission to invoke an agent runtime endpoint with WebSocket stream and with X-Amzn-Bedrock-AgentCore-Runtime-User-Id header",
|
|
1287
|
+
"accessLevel": "Write",
|
|
1288
|
+
"resourceTypes": [
|
|
1289
|
+
{
|
|
1290
|
+
"name": "runtime",
|
|
1291
|
+
"required": true,
|
|
1292
|
+
"conditionKeys": [],
|
|
1293
|
+
"dependentActions": []
|
|
1294
|
+
},
|
|
1295
|
+
{
|
|
1296
|
+
"name": "runtime-endpoint",
|
|
1297
|
+
"required": true,
|
|
1298
|
+
"conditionKeys": [],
|
|
1299
|
+
"dependentActions": []
|
|
1300
|
+
}
|
|
1301
|
+
],
|
|
1302
|
+
"conditionKeys": [],
|
|
1303
|
+
"dependentActions": []
|
|
1304
|
+
},
|
|
978
1305
|
"invokecodeinterpreter": {
|
|
979
1306
|
"name": "InvokeCodeInterpreter",
|
|
980
1307
|
"description": "Grants permission to invoke a code interpreter session",
|
|
@@ -1117,6 +1444,14 @@
|
|
|
1117
1444
|
"conditionKeys": [],
|
|
1118
1445
|
"dependentActions": []
|
|
1119
1446
|
},
|
|
1447
|
+
"listevaluators": {
|
|
1448
|
+
"name": "ListEvaluators",
|
|
1449
|
+
"description": "Grants permission to list evaluators",
|
|
1450
|
+
"accessLevel": "List",
|
|
1451
|
+
"resourceTypes": [],
|
|
1452
|
+
"conditionKeys": [],
|
|
1453
|
+
"dependentActions": []
|
|
1454
|
+
},
|
|
1120
1455
|
"listevents": {
|
|
1121
1456
|
"name": "ListEvents",
|
|
1122
1457
|
"description": "Grants permission to list events",
|
|
@@ -1166,6 +1501,21 @@
|
|
|
1166
1501
|
"conditionKeys": [],
|
|
1167
1502
|
"dependentActions": []
|
|
1168
1503
|
},
|
|
1504
|
+
"listmemoryextractionjobs": {
|
|
1505
|
+
"name": "ListMemoryExtractionJobs",
|
|
1506
|
+
"description": "Grants permission to list extraction jobs for this memory",
|
|
1507
|
+
"accessLevel": "List",
|
|
1508
|
+
"resourceTypes": [
|
|
1509
|
+
{
|
|
1510
|
+
"name": "memory",
|
|
1511
|
+
"required": true,
|
|
1512
|
+
"conditionKeys": [],
|
|
1513
|
+
"dependentActions": []
|
|
1514
|
+
}
|
|
1515
|
+
],
|
|
1516
|
+
"conditionKeys": [],
|
|
1517
|
+
"dependentActions": []
|
|
1518
|
+
},
|
|
1169
1519
|
"listmemoryrecords": {
|
|
1170
1520
|
"name": "ListMemoryRecords",
|
|
1171
1521
|
"description": "Grants permission to list memory records",
|
|
@@ -1205,6 +1555,73 @@
|
|
|
1205
1555
|
"conditionKeys": [],
|
|
1206
1556
|
"dependentActions": []
|
|
1207
1557
|
},
|
|
1558
|
+
"listonlineevaluationconfigs": {
|
|
1559
|
+
"name": "ListOnlineEvaluationConfigs",
|
|
1560
|
+
"description": "Grants permission to list online evaluation configurations",
|
|
1561
|
+
"accessLevel": "List",
|
|
1562
|
+
"resourceTypes": [],
|
|
1563
|
+
"conditionKeys": [],
|
|
1564
|
+
"dependentActions": []
|
|
1565
|
+
},
|
|
1566
|
+
"listpolicies": {
|
|
1567
|
+
"name": "ListPolicies",
|
|
1568
|
+
"description": "Grants permission to list policies within a policy engine",
|
|
1569
|
+
"accessLevel": "List",
|
|
1570
|
+
"resourceTypes": [
|
|
1571
|
+
{
|
|
1572
|
+
"name": "policy-engine",
|
|
1573
|
+
"required": true,
|
|
1574
|
+
"conditionKeys": [],
|
|
1575
|
+
"dependentActions": []
|
|
1576
|
+
}
|
|
1577
|
+
],
|
|
1578
|
+
"conditionKeys": [],
|
|
1579
|
+
"dependentActions": []
|
|
1580
|
+
},
|
|
1581
|
+
"listpolicyengines": {
|
|
1582
|
+
"name": "ListPolicyEngines",
|
|
1583
|
+
"description": "Grants permission to list policy engines",
|
|
1584
|
+
"accessLevel": "List",
|
|
1585
|
+
"resourceTypes": [],
|
|
1586
|
+
"conditionKeys": [],
|
|
1587
|
+
"dependentActions": []
|
|
1588
|
+
},
|
|
1589
|
+
"listpolicygenerationassets": {
|
|
1590
|
+
"name": "ListPolicyGenerationAssets",
|
|
1591
|
+
"description": "Grants permission to list generated policy assets from a generation request",
|
|
1592
|
+
"accessLevel": "List",
|
|
1593
|
+
"resourceTypes": [
|
|
1594
|
+
{
|
|
1595
|
+
"name": "policy-engine",
|
|
1596
|
+
"required": true,
|
|
1597
|
+
"conditionKeys": [],
|
|
1598
|
+
"dependentActions": []
|
|
1599
|
+
},
|
|
1600
|
+
{
|
|
1601
|
+
"name": "policy-generation",
|
|
1602
|
+
"required": true,
|
|
1603
|
+
"conditionKeys": [],
|
|
1604
|
+
"dependentActions": []
|
|
1605
|
+
}
|
|
1606
|
+
],
|
|
1607
|
+
"conditionKeys": [],
|
|
1608
|
+
"dependentActions": []
|
|
1609
|
+
},
|
|
1610
|
+
"listpolicygenerations": {
|
|
1611
|
+
"name": "ListPolicyGenerations",
|
|
1612
|
+
"description": "Grants permission to list policy generation requests",
|
|
1613
|
+
"accessLevel": "List",
|
|
1614
|
+
"resourceTypes": [
|
|
1615
|
+
{
|
|
1616
|
+
"name": "policy-engine",
|
|
1617
|
+
"required": true,
|
|
1618
|
+
"conditionKeys": [],
|
|
1619
|
+
"dependentActions": []
|
|
1620
|
+
}
|
|
1621
|
+
],
|
|
1622
|
+
"conditionKeys": [],
|
|
1623
|
+
"dependentActions": []
|
|
1624
|
+
},
|
|
1208
1625
|
"listsessions": {
|
|
1209
1626
|
"name": "ListSessions",
|
|
1210
1627
|
"description": "Grants permission to list sessions",
|
|
@@ -1318,6 +1735,80 @@
|
|
|
1318
1735
|
"conditionKeys": [],
|
|
1319
1736
|
"dependentActions": []
|
|
1320
1737
|
},
|
|
1738
|
+
"manageadminpolicy": {
|
|
1739
|
+
"name": "ManageAdminPolicy",
|
|
1740
|
+
"isPermissionOnly": true,
|
|
1741
|
+
"description": "Grants permission to create or modify wildcard policies that apply to gateway resources",
|
|
1742
|
+
"accessLevel": "Permissions management",
|
|
1743
|
+
"resourceTypes": [],
|
|
1744
|
+
"conditionKeys": [],
|
|
1745
|
+
"dependentActions": []
|
|
1746
|
+
},
|
|
1747
|
+
"manageresourcescopedpolicy": {
|
|
1748
|
+
"name": "ManageResourceScopedPolicy",
|
|
1749
|
+
"isPermissionOnly": true,
|
|
1750
|
+
"description": "Grants permission to create or modify policies that apply to specific gateway resources",
|
|
1751
|
+
"accessLevel": "Permissions management",
|
|
1752
|
+
"resourceTypes": [
|
|
1753
|
+
{
|
|
1754
|
+
"name": "gateway",
|
|
1755
|
+
"required": true,
|
|
1756
|
+
"conditionKeys": [],
|
|
1757
|
+
"dependentActions": []
|
|
1758
|
+
}
|
|
1759
|
+
],
|
|
1760
|
+
"conditionKeys": [],
|
|
1761
|
+
"dependentActions": []
|
|
1762
|
+
},
|
|
1763
|
+
"partiallyauthorizeactions": {
|
|
1764
|
+
"name": "PartiallyAuthorizeActions",
|
|
1765
|
+
"isPermissionOnly": true,
|
|
1766
|
+
"description": "Grants permission to perform partial evaluation of Cedar policies to authorize a caller to list tools they are allowed to call",
|
|
1767
|
+
"accessLevel": "Permissions management",
|
|
1768
|
+
"resourceTypes": [
|
|
1769
|
+
{
|
|
1770
|
+
"name": "gateway",
|
|
1771
|
+
"required": true,
|
|
1772
|
+
"conditionKeys": [],
|
|
1773
|
+
"dependentActions": []
|
|
1774
|
+
},
|
|
1775
|
+
{
|
|
1776
|
+
"name": "policy-engine",
|
|
1777
|
+
"required": true,
|
|
1778
|
+
"conditionKeys": [],
|
|
1779
|
+
"dependentActions": []
|
|
1780
|
+
}
|
|
1781
|
+
],
|
|
1782
|
+
"conditionKeys": [],
|
|
1783
|
+
"dependentActions": []
|
|
1784
|
+
},
|
|
1785
|
+
"putresourcepolicy": {
|
|
1786
|
+
"name": "PutResourcePolicy",
|
|
1787
|
+
"description": "Grants permission to create or update the resource-based policy for a Bedrock resource",
|
|
1788
|
+
"accessLevel": "Write",
|
|
1789
|
+
"resourceTypes": [
|
|
1790
|
+
{
|
|
1791
|
+
"name": "gateway",
|
|
1792
|
+
"required": false,
|
|
1793
|
+
"conditionKeys": [],
|
|
1794
|
+
"dependentActions": []
|
|
1795
|
+
},
|
|
1796
|
+
{
|
|
1797
|
+
"name": "runtime",
|
|
1798
|
+
"required": false,
|
|
1799
|
+
"conditionKeys": [],
|
|
1800
|
+
"dependentActions": []
|
|
1801
|
+
},
|
|
1802
|
+
{
|
|
1803
|
+
"name": "runtime-endpoint",
|
|
1804
|
+
"required": false,
|
|
1805
|
+
"conditionKeys": [],
|
|
1806
|
+
"dependentActions": []
|
|
1807
|
+
}
|
|
1808
|
+
],
|
|
1809
|
+
"conditionKeys": [],
|
|
1810
|
+
"dependentActions": []
|
|
1811
|
+
},
|
|
1321
1812
|
"retrievememoryrecords": {
|
|
1322
1813
|
"name": "RetrieveMemoryRecords",
|
|
1323
1814
|
"description": "Grants permission to retrieve memory records through sematic query",
|
|
@@ -1393,6 +1884,40 @@
|
|
|
1393
1884
|
"conditionKeys": [],
|
|
1394
1885
|
"dependentActions": []
|
|
1395
1886
|
},
|
|
1887
|
+
"startmemoryextractionjob": {
|
|
1888
|
+
"name": "StartMemoryExtractionJob",
|
|
1889
|
+
"description": "Grants permission to start memory extraction job",
|
|
1890
|
+
"accessLevel": "Write",
|
|
1891
|
+
"resourceTypes": [
|
|
1892
|
+
{
|
|
1893
|
+
"name": "memory",
|
|
1894
|
+
"required": true,
|
|
1895
|
+
"conditionKeys": [],
|
|
1896
|
+
"dependentActions": []
|
|
1897
|
+
}
|
|
1898
|
+
],
|
|
1899
|
+
"conditionKeys": [
|
|
1900
|
+
"bedrock-agentcore:strategyId",
|
|
1901
|
+
"bedrock-agentcore:sessionId",
|
|
1902
|
+
"bedrock-agentcore:actorId"
|
|
1903
|
+
],
|
|
1904
|
+
"dependentActions": []
|
|
1905
|
+
},
|
|
1906
|
+
"startpolicygeneration": {
|
|
1907
|
+
"name": "StartPolicyGeneration",
|
|
1908
|
+
"description": "Grants permission to start an AI-powered policy generation request",
|
|
1909
|
+
"accessLevel": "Write",
|
|
1910
|
+
"resourceTypes": [
|
|
1911
|
+
{
|
|
1912
|
+
"name": "policy-engine",
|
|
1913
|
+
"required": true,
|
|
1914
|
+
"conditionKeys": [],
|
|
1915
|
+
"dependentActions": []
|
|
1916
|
+
}
|
|
1917
|
+
],
|
|
1918
|
+
"conditionKeys": [],
|
|
1919
|
+
"dependentActions": []
|
|
1920
|
+
},
|
|
1396
1921
|
"stopbrowsersession": {
|
|
1397
1922
|
"name": "StopBrowserSession",
|
|
1398
1923
|
"description": "Grants permission to stop a browser session",
|
|
@@ -1707,6 +2232,21 @@
|
|
|
1707
2232
|
"conditionKeys": [],
|
|
1708
2233
|
"dependentActions": []
|
|
1709
2234
|
},
|
|
2235
|
+
"updateevaluator": {
|
|
2236
|
+
"name": "UpdateEvaluator",
|
|
2237
|
+
"description": "Grants permission to update an evaluator",
|
|
2238
|
+
"accessLevel": "Write",
|
|
2239
|
+
"resourceTypes": [
|
|
2240
|
+
{
|
|
2241
|
+
"name": "evaluator",
|
|
2242
|
+
"required": true,
|
|
2243
|
+
"conditionKeys": [],
|
|
2244
|
+
"dependentActions": []
|
|
2245
|
+
}
|
|
2246
|
+
],
|
|
2247
|
+
"conditionKeys": [],
|
|
2248
|
+
"dependentActions": []
|
|
2249
|
+
},
|
|
1710
2250
|
"updategateway": {
|
|
1711
2251
|
"name": "UpdateGateway",
|
|
1712
2252
|
"description": "Grants permission to update an existing gateway",
|
|
@@ -1777,6 +2317,59 @@
|
|
|
1777
2317
|
"conditionKeys": [],
|
|
1778
2318
|
"dependentActions": []
|
|
1779
2319
|
},
|
|
2320
|
+
"updateonlineevaluationconfig": {
|
|
2321
|
+
"name": "UpdateOnlineEvaluationConfig",
|
|
2322
|
+
"description": "Grants permission to update an online evaluation configuration",
|
|
2323
|
+
"accessLevel": "Write",
|
|
2324
|
+
"resourceTypes": [
|
|
2325
|
+
{
|
|
2326
|
+
"name": "online-evaluation-config",
|
|
2327
|
+
"required": true,
|
|
2328
|
+
"conditionKeys": [],
|
|
2329
|
+
"dependentActions": []
|
|
2330
|
+
}
|
|
2331
|
+
],
|
|
2332
|
+
"conditionKeys": [],
|
|
2333
|
+
"dependentActions": [
|
|
2334
|
+
"iam:PassRole"
|
|
2335
|
+
]
|
|
2336
|
+
},
|
|
2337
|
+
"updatepolicy": {
|
|
2338
|
+
"name": "UpdatePolicy",
|
|
2339
|
+
"description": "Grants permission to update an existing policy",
|
|
2340
|
+
"accessLevel": "Write",
|
|
2341
|
+
"resourceTypes": [
|
|
2342
|
+
{
|
|
2343
|
+
"name": "policy",
|
|
2344
|
+
"required": true,
|
|
2345
|
+
"conditionKeys": [],
|
|
2346
|
+
"dependentActions": []
|
|
2347
|
+
},
|
|
2348
|
+
{
|
|
2349
|
+
"name": "policy-engine",
|
|
2350
|
+
"required": true,
|
|
2351
|
+
"conditionKeys": [],
|
|
2352
|
+
"dependentActions": []
|
|
2353
|
+
}
|
|
2354
|
+
],
|
|
2355
|
+
"conditionKeys": [],
|
|
2356
|
+
"dependentActions": []
|
|
2357
|
+
},
|
|
2358
|
+
"updatepolicyengine": {
|
|
2359
|
+
"name": "UpdatePolicyEngine",
|
|
2360
|
+
"description": "Grants permission to update a policy engine",
|
|
2361
|
+
"accessLevel": "Write",
|
|
2362
|
+
"resourceTypes": [
|
|
2363
|
+
{
|
|
2364
|
+
"name": "policy-engine",
|
|
2365
|
+
"required": true,
|
|
2366
|
+
"conditionKeys": [],
|
|
2367
|
+
"dependentActions": []
|
|
2368
|
+
}
|
|
2369
|
+
],
|
|
2370
|
+
"conditionKeys": [],
|
|
2371
|
+
"dependentActions": []
|
|
2372
|
+
},
|
|
1780
2373
|
"updateworkloadidentity": {
|
|
1781
2374
|
"name": "UpdateWorkloadIdentity",
|
|
1782
2375
|
"description": "Grants permission to update the metadata of an existing Workload Identity",
|