@cloud-copilot/iam-data
Version:
352 lines • 10.9 kB
JSON
{
"createidentitypool": {
"name": "CreateIdentityPool",
"description": "Grants permission to create a new identity pool",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"deleteidentities": {
"name": "DeleteIdentities",
"description": "Grants permission to delete identities from an identity pool. You can specify a list of 1-60 identities that you want to delete",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"cognito-identity:IdentityPoolArn"
],
"dependentActions": []
},
"deleteidentitypool": {
"name": "DeleteIdentityPool",
"description": "Grants permission to delete a user pool. Once a pool is deleted, users will not be able to authenticate with the pool",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describeidentity": {
"name": "DescribeIdentity",
"description": "Grants permission to return metadata related to the given identity, including when the identity was created and any associated linked logins",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [
"cognito-identity:IdentityPoolArn"
],
"dependentActions": []
},
"describeidentitypool": {
"name": "DescribeIdentityPool",
"description": "Grants permission to get details about a particular identity pool, including the pool name, ID description, creation date, and current number of users",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getcredentialsforidentity": {
"name": "GetCredentialsForIdentity",
"description": "Grants permission to return credentials for the provided identity ID",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [
"cognito-identity-unauth:IdentityPoolArn",
"cognito-identity-unauth:AccountId",
"cognito-identity-auth:IdentityPoolArn",
"cognito-identity-auth:AccountId"
],
"dependentActions": []
},
"getid": {
"name": "GetId",
"description": "Grants permission to generate (or retrieve) a Cognito ID. Supplying multiple logins will create an implicit linked account",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"cognito-identity-unauth:IdentityPoolArn",
"cognito-identity-unauth:AccountId",
"cognito-identity-auth:IdentityPoolArn",
"cognito-identity-auth:AccountId"
],
"dependentActions": []
},
"getidentitypoolanalytics": {
"name": "GetIdentityPoolAnalytics",
"description": "Grants permission to get analytics data about the total current identity count for all identity pool identity provider (IdPs)",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getidentitypooldailyanalytics": {
"name": "GetIdentityPoolDailyAnalytics",
"description": "Grants permission to get analytics data about the number of new identities and total identities for all identity pool identity providers (IdPs)",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getidentitypoolroles": {
"name": "GetIdentityPoolRoles",
"description": "Grants permission to get the roles for an identity pool",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getidentityproviderdailyanalytics": {
"name": "GetIdentityProviderDailyAnalytics",
"description": "Grants permission to get analytics data about the number of new identities and total identities for one identity pool identity provider (IdPs)",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getopenidtoken": {
"name": "GetOpenIdToken",
"description": "Grants permission to get an OpenID token, using a known Cognito ID",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [
"cognito-identity-unauth:IdentityPoolArn",
"cognito-identity-unauth:AccountId",
"cognito-identity-auth:IdentityPoolArn",
"cognito-identity-auth:AccountId"
],
"dependentActions": []
},
"getopenidtokenfordeveloperidentity": {
"name": "GetOpenIdTokenForDeveloperIdentity",
"description": "Grants permission to register (or retrieve) a Cognito IdentityId and an OpenID Connect token for a user authenticated by your backend authentication process",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getprincipaltagattributemap": {
"name": "GetPrincipalTagAttributeMap",
"description": "Grants permission to get the principal tags for an identity pool and provider",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listidentities": {
"name": "ListIdentities",
"description": "Grants permission to list the identities in an identity pool",
"accessLevel": "List",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listidentitypools": {
"name": "ListIdentityPools",
"description": "Grants permission to list all of the Cognito identity pools registered for your account",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listtagsforresource": {
"name": "ListTagsForResource",
"description": "Grants permission to list the tags that are assigned to an Amazon Cognito identity pool",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "identitypool",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"lookupdeveloperidentity": {
"name": "LookupDeveloperIdentity",
"description": "Grants permission to retrieve the IdentityId associated with a DeveloperUserIdentifier or the list of DeveloperUserIdentifiers associated with an IdentityId for an existing identity",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"mergedeveloperidentities": {
"name": "MergeDeveloperIdentities",
"description": "Grants permission to merge two users having different IdentityIds, existing in the same identity pool, and identified by the same developer provider",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"setidentitypoolroles": {
"name": "SetIdentityPoolRoles",
"description": "Grants permission to set the roles for an identity pool. These roles are used when making calls to GetCredentialsForIdentity action",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"setprincipaltagattributemap": {
"name": "SetPrincipalTagAttributeMap",
"description": "Grants permission to set the principal tags for an identity pool and provider. These tags are used when making calls to GetOpenIdToken action",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"tagresource": {
"name": "TagResource",
"description": "Grants permission to assign a set of tags to an Amazon Cognito identity pool",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"unlinkdeveloperidentity": {
"name": "UnlinkDeveloperIdentity",
"description": "Grants permission to unlink a DeveloperUserIdentifier from an existing identity",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"unlinkidentity": {
"name": "UnlinkIdentity",
"description": "Grants permission to unlink a federated identity from an existing account",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"cognito-identity-auth:IdentityPoolArn",
"cognito-identity-auth:AccountId"
],
"dependentActions": []
},
"untagresource": {
"name": "UntagResource",
"description": "Grants permission to remove the specified tags from an Amazon Cognito identity pool",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:TagKeys"
],
"dependentActions": []
},
"updateidentitypool": {
"name": "UpdateIdentityPool",
"description": "Grants permission to update an identity pool",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "identitypool",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
}
}