@cloud-copilot/iam-data
Version:
967 lines • 24.1 kB
JSON
{
"allowvendedlogdeliveryforresource": {
"name": "AllowVendedLogDeliveryForResource",
"isPermissionOnly": true,
"description": "Grants permission to authorize vended logs",
"accessLevel": "Permissions management",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"associateservice": {
"name": "AssociateService",
"description": "Grants permission to associate service",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "associations",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createagentspace": {
"name": "CreateAgentSpace",
"description": "Grants permission to create agentspace",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"createbacklogtask": {
"name": "CreateBacklogTask",
"description": "Grants permission to create a new backlog task",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createchat": {
"name": "CreateChat",
"description": "Grants permission to create a chat",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createknowledgeitem": {
"name": "CreateKnowledgeItem",
"description": "Grants permission to create a new knowledge item",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createonetimeloginsession": {
"name": "CreateOneTimeLoginSession",
"description": "Grants permission to generate secure one-time session for initiating off-console Application login",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createprivateconnection": {
"name": "CreatePrivateConnection",
"description": "Grants permission to create a private connection",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "private-connection",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"deleteagentspace": {
"name": "DeleteAgentSpace",
"description": "Grants permission to delete agentspace",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:ResourceTag/${TagKey}"
],
"dependentActions": []
},
"deleteknowledgeitem": {
"name": "DeleteKnowledgeItem",
"description": "Grants permission to delete a knowledge item",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deleteprivateconnection": {
"name": "DeletePrivateConnection",
"description": "Grants permission to delete a private connection",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "private-connection",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:ResourceTag/${TagKey}"
],
"dependentActions": []
},
"deregisterservice": {
"name": "DeregisterService",
"description": "Grants permission to deregister a service",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "service",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:ResourceTag/${TagKey}"
],
"dependentActions": []
},
"describeprivateconnection": {
"name": "DescribePrivateConnection",
"description": "Grants permission to describe a private connection",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "private-connection",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:ResourceTag/${TagKey}"
],
"dependentActions": []
},
"describeservices": {
"name": "DescribeServices",
"description": "Grants permission to describe support services",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describesupportlevel": {
"name": "DescribeSupportLevel",
"description": "Grants permission to describe customer support level",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"disableoperatorapp": {
"name": "DisableOperatorApp",
"description": "Grants permission to disable the Operator App access to the given AgentSpace",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"disassociateservice": {
"name": "DisassociateService",
"description": "Grants permission to disassociate service",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "associations",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"discovertopology": {
"name": "DiscoverTopology",
"description": "Grants permission to discover topology information",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"enableoperatorapp": {
"name": "EnableOperatorApp",
"description": "Grants permission to enable the Operator App to access the given AgentSpace",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"endchatforcase": {
"name": "EndChatForCase",
"description": "Grants permission to end a chat for a case",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getaccountusage": {
"name": "GetAccountUsage",
"description": "Grants permission to retrieve account usage information",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"getagentspace": {
"name": "GetAgentSpace",
"description": "Grants permission to get agentspace",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:ResourceTag/${TagKey}"
],
"dependentActions": []
},
"getassociation": {
"name": "GetAssociation",
"description": "Grants permission to get association",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "associations",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getbacklogtask": {
"name": "GetBacklogTask",
"description": "Grants permission to get a backlog task",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getknowledgeitem": {
"name": "GetKnowledgeItem",
"description": "Grants permission to get a knowledge item",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getoperatorapp": {
"name": "GetOperatorApp",
"description": "Grants permission to get operator auth config for any enabled auth flow",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getrecommendation": {
"name": "GetRecommendation",
"description": "Grants permission to get a recommendation",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getservice": {
"name": "GetService",
"description": "Grants permission to get services",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "service",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:ResourceTag/${TagKey}"
],
"dependentActions": []
},
"initiatechatforcase": {
"name": "InitiateChatForCase",
"description": "Grants permission to initiate a chat for a case",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listagentspaces": {
"name": "ListAgentSpaces",
"description": "Grants permission to list agentspace",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listassociations": {
"name": "ListAssociations",
"description": "Grants permission to list associations",
"accessLevel": "List",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listbacklogtasks": {
"name": "ListBacklogTasks",
"description": "Grants permission to list backlog tasks",
"accessLevel": "List",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listchats": {
"name": "ListChats",
"description": "Grants permission to list chats",
"accessLevel": "List",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listexecutions": {
"name": "ListExecutions",
"description": "Grants permission to list executions",
"accessLevel": "List",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listgoals": {
"name": "ListGoals",
"description": "Grants permission to list goals",
"accessLevel": "List",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listjournalrecords": {
"name": "ListJournalRecords",
"description": "Grants permission to list journal records",
"accessLevel": "List",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listknowledgeitemversions": {
"name": "ListKnowledgeItemVersions",
"description": "Grants permission to list knowledge item versions",
"accessLevel": "List",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listknowledgeitems": {
"name": "ListKnowledgeItems",
"description": "Grants permission to list knowledge items",
"accessLevel": "List",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listpendingmessages": {
"name": "ListPendingMessages",
"description": "Grants permission to list pending messages",
"accessLevel": "List",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listprivateconnections": {
"name": "ListPrivateConnections",
"description": "Grants permission to list private connections",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listrecommendations": {
"name": "ListRecommendations",
"description": "Grants permission to list recommendations",
"accessLevel": "List",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listservices": {
"name": "ListServices",
"description": "Grants permission to list services",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listtagsforresource": {
"name": "ListTagsForResource",
"description": "Grants permission to list tags for a resource",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "agentspace",
"required": false,
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
{
"name": "private-connection",
"required": false,
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
{
"name": "service",
"required": false,
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
}
],
"conditionKeys": [
"aws:ResourceTag/${TagKey}"
],
"dependentActions": []
},
"listwebhooks": {
"name": "ListWebhooks",
"description": "Grants permission to list webhooks for association",
"accessLevel": "List",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "associations",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"registerservice": {
"name": "RegisterService",
"description": "Grants permission to register specific service",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "service",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"searchserviceaccessibleresource": {
"name": "SearchServiceAccessibleResource",
"description": "Grants permission to look up a registered service accessible resources",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"sendmessage": {
"name": "SendMessage",
"description": "Grants permission to send chat messages",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"tagresource": {
"name": "TagResource",
"description": "Grants permission to tag a resource",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "agentspace",
"required": false,
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
{
"name": "private-connection",
"required": false,
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
{
"name": "service",
"required": false,
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
}
],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"untagresource": {
"name": "UntagResource",
"description": "Grants permission to untag a resource",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "agentspace",
"required": false,
"conditionKeys": [
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
{
"name": "private-connection",
"required": false,
"conditionKeys": [
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
{
"name": "service",
"required": false,
"conditionKeys": [
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
}
],
"conditionKeys": [
"aws:ResourceTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"updateagentspace": {
"name": "UpdateAgentSpace",
"description": "Grants permission to update agentspace",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:ResourceTag/${TagKey}"
],
"dependentActions": []
},
"updateassociation": {
"name": "UpdateAssociation",
"description": "Grants permission to update association",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "associations",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updatebacklogtask": {
"name": "UpdateBacklogTask",
"description": "Grants permission to update a task",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updategoal": {
"name": "UpdateGoal",
"description": "Grants permission to update a goal",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updateknowledgeitem": {
"name": "UpdateKnowledgeItem",
"description": "Grants permission to update a knowledge item",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updateoperatorappidpconfig": {
"name": "UpdateOperatorAppIdpConfig",
"description": "Grants permission to update the external Identity Provider configuration for the Operator App",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updateprivateconnectioncertificate": {
"name": "UpdatePrivateConnectionCertificate",
"description": "Grants permission to update a private connection certificate",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "private-connection",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:ResourceTag/${TagKey}"
],
"dependentActions": []
},
"updaterecommendation": {
"name": "UpdateRecommendation",
"description": "Grants permission to update a recommendation",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"validateawsassociations": {
"name": "ValidateAwsAssociations",
"description": "Grants permission to validate aws association",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "agentspace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
}
}