@cloud-copilot/iam-data
Version:
1,258 lines • 34.6 kB
JSON
{
"associatetablereplica": {
"name": "AssociateTableReplica",
"isPermissionOnly": true,
"description": "Grants permission to create multi account global table replica",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"batchgetitem": {
"name": "BatchGetItem",
"description": "Grants permission to return the attributes of one or more items from one or more tables",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:LeadingKeys",
"dynamodb:ReturnConsumedCapacity",
"dynamodb:Select"
],
"dependentActions": []
},
"batchwriteitem": {
"name": "BatchWriteItem",
"description": "Grants permission to put or delete multiple items in one or more tables",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:LeadingKeys",
"dynamodb:ReturnConsumedCapacity"
],
"dependentActions": []
},
"conditioncheckitem": {
"name": "ConditionCheckItem",
"description": "Grants permission to the ConditionCheckItem operation checks the existence of a set of attributes for the item with the given primary key",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:LeadingKeys",
"dynamodb:ReturnConsumedCapacity",
"dynamodb:ReturnValues"
],
"dependentActions": []
},
"createbackup": {
"name": "CreateBackup",
"description": "Grants permission to create a backup for an existing table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createglobaltable": {
"name": "CreateGlobalTable",
"description": "Grants permission to create a global table from an existing table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "global-table",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createglobaltablewitness": {
"name": "CreateGlobalTableWitness",
"isPermissionOnly": true,
"description": "Grants permission to add a Witness to a Global Table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createtable": {
"name": "CreateTable",
"description": "Grants permission to the CreateTable operation adds a new table to your account",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"createtablereplica": {
"name": "CreateTableReplica",
"isPermissionOnly": true,
"description": "Grants permission to add a new replica table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deletebackup": {
"name": "DeleteBackup",
"description": "Grants permission to delete an existing backup of a table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "backup",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deleteglobaltablewitness": {
"name": "DeleteGlobalTableWitness",
"isPermissionOnly": true,
"description": "Grants permission to remove a Witness from a Global Table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deleteitem": {
"name": "DeleteItem",
"description": "Grants permission to deletes a single item in a table by primary key",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:EnclosingOperation",
"dynamodb:LeadingKeys",
"dynamodb:ReturnConsumedCapacity",
"dynamodb:ReturnValues"
],
"dependentActions": []
},
"deleteresourcepolicy": {
"name": "DeleteResourcePolicy",
"description": "Grants permission to delete the resource-based policy attached to the resource",
"accessLevel": "Permissions management",
"resourceTypes": [
{
"name": "stream",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deletetable": {
"name": "DeleteTable",
"description": "Grants permission to the DeleteTable operation which deletes a table and all of its items",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deletetablereplica": {
"name": "DeleteTableReplica",
"isPermissionOnly": true,
"description": "Grants permission to delete a replica table and all of its items",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describebackup": {
"name": "DescribeBackup",
"description": "Grants permission to describe an existing backup of a table",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "backup",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describecontinuousbackups": {
"name": "DescribeContinuousBackups",
"description": "Grants permission to check the status of the backup restore settings on the specified table",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describecontributorinsights": {
"name": "DescribeContributorInsights",
"description": "Grants permission to describe the contributor insights status and related details for a given table or global secondary index",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "index",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describeendpoints": {
"name": "DescribeEndpoints",
"description": "Grants permission to return the regional endpoint information",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describeexport": {
"name": "DescribeExport",
"description": "Grants permission to describe an existing Export of a table",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "export",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describeglobaltable": {
"name": "DescribeGlobalTable",
"description": "Grants permission to return information about the specified global table",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "global-table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describeglobaltablesettings": {
"name": "DescribeGlobalTableSettings",
"description": "Grants permission to return settings information about the specified global table",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "global-table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describeimport": {
"name": "DescribeImport",
"description": "Grants permission to describe an existing import",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "import",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describekinesisstreamingdestination": {
"name": "DescribeKinesisStreamingDestination",
"description": "Grants permission to grant permission to describe the status of Kinesis streaming and related details for a given table",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describelimits": {
"name": "DescribeLimits",
"description": "Grants permission to return the current provisioned-capacity limits for your AWS account in a region, both for the region as a whole and for any one DynamoDB table that you create there",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describereservedcapacity": {
"name": "DescribeReservedCapacity",
"isPermissionOnly": true,
"description": "Grants permission to describe one or more of the Reserved Capacity purchased",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describereservedcapacityofferings": {
"name": "DescribeReservedCapacityOfferings",
"isPermissionOnly": true,
"description": "Grants permission to describe Reserved Capacity offerings that are available for purchase",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describestream": {
"name": "DescribeStream",
"description": "Grants permission to return information about a stream, including the current status of the stream, its Amazon Resource Name (ARN), the composition of its shards, and its corresponding DynamoDB table",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "stream",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describetable": {
"name": "DescribeTable",
"description": "Grants permission to return information about the table",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describetablereplicaautoscaling": {
"name": "DescribeTableReplicaAutoScaling",
"description": "Grants permission to describe the auto scaling settings across all replicas of the global table",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describetimetolive": {
"name": "DescribeTimeToLive",
"description": "Grants permission to give a description of the Time to Live (TTL) status on the specified table",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"disablekinesisstreamingdestination": {
"name": "DisableKinesisStreamingDestination",
"description": "Grants permission to grant permission to stop replication from the DynamoDB table to the Kinesis data stream",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"enablekinesisstreamingdestination": {
"name": "EnableKinesisStreamingDestination",
"description": "Grants permission to grant permission to start table data replication to the specified Kinesis data stream at a timestamp chosen during the enable workflow",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"exporttabletopointintime": {
"name": "ExportTableToPointInTime",
"description": "Grants permission to initiate an Export of a DynamoDB table to S3",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getabacstatus": {
"name": "GetAbacStatus",
"isPermissionOnly": true,
"description": "Grants permission to view the status of Attribute Based Access Control for the account",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"getitem": {
"name": "GetItem",
"description": "Grants permission to the GetItem operation that returns a set of attributes for the item with the given primary key",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:EnclosingOperation",
"dynamodb:LeadingKeys",
"dynamodb:ReturnConsumedCapacity",
"dynamodb:Select"
],
"dependentActions": []
},
"getrecords": {
"name": "GetRecords",
"description": "Grants permission to retrieve the stream records from a given shard",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "stream",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getresourcepolicy": {
"name": "GetResourcePolicy",
"description": "Grants permission to view a resource-based policy for a resource",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "stream",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getsharditerator": {
"name": "GetShardIterator",
"description": "Grants permission to return a shard iterator",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "stream",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"importtable": {
"name": "ImportTable",
"description": "Grants permission to initiate an import from S3 to a DynamoDB table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"injecterror": {
"name": "InjectError",
"isPermissionOnly": true,
"description": "Grants permission to start experiments on a Global Table",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"dynamodb:FisActionId",
"dynamodb:FisTargetArns"
],
"dependentActions": []
},
"listbackups": {
"name": "ListBackups",
"description": "Grants permission to list backups associated with the account and endpoint",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listcontributorinsights": {
"name": "ListContributorInsights",
"description": "Grants permission to list the ContributorInsightsSummary for all tables and global secondary indexes associated with the current account and endpoint",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listexports": {
"name": "ListExports",
"description": "Grants permission to list exports associated with the account and endpoint",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listglobaltables": {
"name": "ListGlobalTables",
"description": "Grants permission to list all global tables that have a replica in the specified region",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listimports": {
"name": "ListImports",
"description": "Grants permission to list imports associated with the account and endpoint",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"liststreams": {
"name": "ListStreams",
"description": "Grants permission to return an array of stream ARNs associated with the current account and endpoint",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listtables": {
"name": "ListTables",
"description": "Grants permission to return an array of table names associated with the current account and endpoint",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listtagsofresource": {
"name": "ListTagsOfResource",
"description": "Grants permission to list all tags on an Amazon DynamoDB resource",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"partiqldelete": {
"name": "PartiQLDelete",
"description": "Grants permission to delete a single item in a table by primary key",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:EnclosingOperation",
"dynamodb:LeadingKeys",
"dynamodb:ReturnValues"
],
"dependentActions": []
},
"partiqlinsert": {
"name": "PartiQLInsert",
"description": "Grants permission to create a new item, if an item with same primary key does not exist in the table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:EnclosingOperation",
"dynamodb:LeadingKeys"
],
"dependentActions": []
},
"partiqlselect": {
"name": "PartiQLSelect",
"description": "Grants permission to read a set of attributes for items from a table or index",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "index",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:EnclosingOperation",
"dynamodb:FullTableScan",
"dynamodb:LeadingKeys",
"dynamodb:Select"
],
"dependentActions": []
},
"partiqlupdate": {
"name": "PartiQLUpdate",
"description": "Grants permission to edit an existing item's attributes",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:EnclosingOperation",
"dynamodb:LeadingKeys",
"dynamodb:ReturnValues"
],
"dependentActions": []
},
"purchasereservedcapacityofferings": {
"name": "PurchaseReservedCapacityOfferings",
"isPermissionOnly": true,
"description": "Grants permission to purchases reserved capacity for use with your account",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"putitem": {
"name": "PutItem",
"description": "Grants permission to create a new item, or replace an old item with a new item",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:EnclosingOperation",
"dynamodb:LeadingKeys",
"dynamodb:ReturnConsumedCapacity",
"dynamodb:ReturnValues"
],
"dependentActions": []
},
"putresourcepolicy": {
"name": "PutResourcePolicy",
"description": "Grants permission to attach a resource-based policy to the resource",
"accessLevel": "Permissions management",
"resourceTypes": [
{
"name": "stream",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"query": {
"name": "Query",
"description": "Grants permission to use the primary key of a table or a secondary index to directly access items from that table or index",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "index",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:LeadingKeys",
"dynamodb:ReturnConsumedCapacity",
"dynamodb:ReturnValues",
"dynamodb:Select"
],
"dependentActions": []
},
"readdataforreplication": {
"name": "ReadDataForReplication",
"isPermissionOnly": true,
"description": "Grants permission to read data from a multi account global table replica",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"replicatesettings": {
"name": "ReplicateSettings",
"isPermissionOnly": true,
"description": "Grants permission to configure settings for a multi account global table replica",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"restoretablefromawsbackup": {
"name": "RestoreTableFromAwsBackup",
"isPermissionOnly": true,
"description": "Grants permission to create a new table from recovery point on AWS Backup",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"restoretablefrombackup": {
"name": "RestoreTableFromBackup",
"description": "Grants permission to create a new table from an existing backup",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "backup",
"required": true,
"conditionKeys": [],
"dependentActions": [
"dynamodb:BatchWriteItem",
"dynamodb:DeleteItem",
"dynamodb:GetItem",
"dynamodb:PutItem",
"dynamodb:Query",
"dynamodb:Scan",
"dynamodb:UpdateItem"
]
},
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"restoretabletopointintime": {
"name": "RestoreTableToPointInTime",
"description": "Grants permission to restore a table to a point in time",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"dynamodb:BatchWriteItem",
"dynamodb:DeleteItem",
"dynamodb:GetItem",
"dynamodb:PutItem",
"dynamodb:Query",
"dynamodb:Scan",
"dynamodb:UpdateItem"
]
},
"scan": {
"name": "Scan",
"description": "Grants permission to return one or more items and item attributes by accessing every item in a table or a secondary index",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "index",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:ReturnConsumedCapacity",
"dynamodb:ReturnValues",
"dynamodb:Select"
],
"dependentActions": []
},
"startawsbackupjob": {
"name": "StartAwsBackupJob",
"isPermissionOnly": true,
"description": "Grants permission to create a backup on AWS Backup with advanced features enabled",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"tagresource": {
"name": "TagResource",
"description": "Grants permission to associate a set of tags with an Amazon DynamoDB resource",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"untagresource": {
"name": "UntagResource",
"description": "Grants permission to remove the association of tags from an Amazon DynamoDB resource",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:TagKeys"
],
"dependentActions": []
},
"updateabacstatus": {
"name": "UpdateAbacStatus",
"isPermissionOnly": true,
"description": "Grants permission to update the status of Attribute Based Access Control for the account",
"accessLevel": "Permissions management",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"updatecontinuousbackups": {
"name": "UpdateContinuousBackups",
"description": "Grants permission to enable or disable continuous backups",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updatecontributorinsights": {
"name": "UpdateContributorInsights",
"description": "Grants permission to update the status for contributor insights for a specific table or global secondary index",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "index",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updateglobaltable": {
"name": "UpdateGlobalTable",
"description": "Grants permission to add or remove replicas in the specified global table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "global-table",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updateglobaltablesettings": {
"name": "UpdateGlobalTableSettings",
"description": "Grants permission to update settings of the specified global table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "global-table",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updateglobaltableversion": {
"name": "UpdateGlobalTableVersion",
"isPermissionOnly": true,
"description": "Grants permission to update version of the specified global table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "global-table",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "table",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updateitem": {
"name": "UpdateItem",
"description": "Grants permission to edit an existing item's attributes, or adds a new item to the table if it does not already exist",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"dynamodb:Attributes",
"dynamodb:EnclosingOperation",
"dynamodb:LeadingKeys",
"dynamodb:ReturnConsumedCapacity",
"dynamodb:ReturnValues"
],
"dependentActions": []
},
"updatekinesisstreamingdestination": {
"name": "UpdateKinesisStreamingDestination",
"description": "Grants permission to update data replication configurations for the specified Kinesis data stream",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updatetable": {
"name": "UpdateTable",
"description": "Grants permission to modify the provisioned throughput settings, global secondary indexes, or DynamoDB Streams settings for a given table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updatetablereplicaautoscaling": {
"name": "UpdateTableReplicaAutoScaling",
"description": "Grants permission to update auto scaling settings on your replica table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updatetimetolive": {
"name": "UpdateTimeToLive",
"description": "Grants permission to enable or disable TTL for the specified table",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"writedataforreplication": {
"name": "WriteDataForReplication",
"isPermissionOnly": true,
"description": "Grants permission to write data to a multi account global table replica",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "table",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
}
}