@cloud-copilot/iam-data/data/actions/cloud9.json

AWS IAM Data

{
  "activateec2remote": {
    "name": "ActivateEC2Remote",
    "isPermissionOnly": true,
    "description": "Grants permission to start the Amazon EC2 instance that your AWS Cloud9 IDE connects to",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "createenvironmentec2": {
    "name": "CreateEnvironmentEC2",
    "description": "Grants permission to create an AWS Cloud9 development environment, launches an Amazon Elastic Compute Cloud (Amazon EC2) instance, and then hosts the environment on the instance",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [
      "cloud9:EnvironmentName",
      "cloud9:InstanceType",
      "cloud9:SubnetId",
      "cloud9:UserArn",
      "cloud9:OwnerArn",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys"
    ],
    "dependentActions": [
      "ec2:DescribeSubnets",
      "ec2:DescribeVpcs",
      "iam:CreateServiceLinkedRole"
    ]
  },
  "createenvironmentmembership": {
    "name": "CreateEnvironmentMembership",
    "description": "Grants permission to add an environment member to an AWS Cloud9 development environment",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [
      "cloud9:UserArn",
      "cloud9:EnvironmentId",
      "cloud9:Permissions"
    ],
    "dependentActions": []
  },
  "createenvironmentssh": {
    "name": "CreateEnvironmentSSH",
    "isPermissionOnly": true,
    "description": "Grants permission to create an AWS Cloud9 SSH development environment",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [
      "cloud9:EnvironmentName",
      "cloud9:OwnerArn",
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys"
    ],
    "dependentActions": []
  },
  "createenvironmenttoken": {
    "name": "CreateEnvironmentToken",
    "isPermissionOnly": true,
    "description": "Grants permission to create an authentication token that allows a connection between the AWS Cloud9 IDE and the user's environment",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "deleteenvironment": {
    "name": "DeleteEnvironment",
    "description": "Grants permission to delete an AWS Cloud9 development environment. If the environment is hosted on an Amazon Elastic Compute Cloud (Amazon EC2) instance, also terminates the instance",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": [
      "iam:CreateServiceLinkedRole"
    ]
  },
  "deleteenvironmentmembership": {
    "name": "DeleteEnvironmentMembership",
    "description": "Grants permission to delete an environment member from an AWS Cloud9 development environment",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeec2remote": {
    "name": "DescribeEC2Remote",
    "isPermissionOnly": true,
    "description": "Grants permission to get details about the connection to the EC2 development environment, including host, user, and port",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeenvironmentmemberships": {
    "name": "DescribeEnvironmentMemberships",
    "description": "Grants permission to get information about environment members for an AWS Cloud9 development environment",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [
      "cloud9:UserArn",
      "cloud9:EnvironmentId"
    ],
    "dependentActions": []
  },
  "describeenvironmentstatus": {
    "name": "DescribeEnvironmentStatus",
    "description": "Grants permission to get status information for an AWS Cloud9 development environment",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describeenvironments": {
    "name": "DescribeEnvironments",
    "description": "Grants permission to get information about AWS Cloud9 development environments",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "describesshremote": {
    "name": "DescribeSSHRemote",
    "isPermissionOnly": true,
    "description": "Grants permission to get details about the connection to the SSH development environment, including host, user, and port",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "getenvironmentconfig": {
    "name": "GetEnvironmentConfig",
    "isPermissionOnly": true,
    "description": "Grants permission to get configuration information that's used to initialize the AWS Cloud9 IDE",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "getenvironmentsettings": {
    "name": "GetEnvironmentSettings",
    "isPermissionOnly": true,
    "description": "Grants permission to get the AWS Cloud9 IDE settings for a specified development environment",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "getmembershipsettings": {
    "name": "GetMembershipSettings",
    "isPermissionOnly": true,
    "description": "Grants permission to get the AWS Cloud9 IDE settings for a specified environment member",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "getmigrationexperiences": {
    "name": "GetMigrationExperiences",
    "isPermissionOnly": true,
    "description": "Grants permission to get the migration experience for a cloud9 user",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "getuserpublickey": {
    "name": "GetUserPublicKey",
    "isPermissionOnly": true,
    "description": "Grants permission to get the user's public SSH key, which is used by AWS Cloud9 to connect to SSH development environments",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [
      "cloud9:UserArn"
    ],
    "dependentActions": []
  },
  "getusersettings": {
    "name": "GetUserSettings",
    "isPermissionOnly": true,
    "description": "Grants permission to get the AWS Cloud9 IDE settings for a specified user",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "listenvironments": {
    "name": "ListEnvironments",
    "description": "Grants permission to get a list of AWS Cloud9 development environment identifiers",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "listtagsforresource": {
    "name": "ListTagsForResource",
    "description": "Grants permission to list tags for a cloud9 environment",
    "accessLevel": "Read",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "modifytemporarycredentialsonenvironmentec2": {
    "name": "ModifyTemporaryCredentialsOnEnvironmentEC2",
    "isPermissionOnly": true,
    "description": "Grants permission to set AWS managed temporary credentials on the Amazon EC2 instance that's used by the AWS Cloud9 integrated development environment (IDE)",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "tagresource": {
    "name": "TagResource",
    "description": "Grants permission to add tags to a cloud9 environment",
    "accessLevel": "Tagging",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [
      "aws:RequestTag/${TagKey}",
      "aws:TagKeys"
    ],
    "dependentActions": []
  },
  "untagresource": {
    "name": "UntagResource",
    "description": "Grants permission to remove tags from a cloud9 environment",
    "accessLevel": "Tagging",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [
      "aws:TagKeys"
    ],
    "dependentActions": []
  },
  "updateenvironment": {
    "name": "UpdateEnvironment",
    "description": "Grants permission to change the settings of an existing AWS Cloud9 development environment",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "updateenvironmentmembership": {
    "name": "UpdateEnvironmentMembership",
    "description": "Grants permission to change the settings of an existing environment member for an AWS Cloud9 development environment",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [
      "cloud9:UserArn",
      "cloud9:EnvironmentId",
      "cloud9:Permissions"
    ],
    "dependentActions": []
  },
  "updateenvironmentsettings": {
    "name": "UpdateEnvironmentSettings",
    "isPermissionOnly": true,
    "description": "Grants permission to update the AWS Cloud9 IDE settings for a specified development environment",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "updatemembershipsettings": {
    "name": "UpdateMembershipSettings",
    "isPermissionOnly": true,
    "description": "Grants permission to update the AWS Cloud9 IDE settings for a specified environment member",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "updatesshremote": {
    "name": "UpdateSSHRemote",
    "isPermissionOnly": true,
    "description": "Grants permission to update details about the connection to the SSH development environment, including host, user, and port",
    "accessLevel": "Write",
    "resourceTypes": [
      {
        "name": "environment",
        "required": true,
        "conditionKeys": [],
        "dependentActions": []
      }
    ],
    "conditionKeys": [],
    "dependentActions": []
  },
  "updateusersettings": {
    "name": "UpdateUserSettings",
    "isPermissionOnly": true,
    "description": "Grants permission to update IDE-specific settings of an AWS Cloud9 user",
    "accessLevel": "Write",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  },
  "validateenvironmentname": {
    "name": "ValidateEnvironmentName",
    "isPermissionOnly": true,
    "description": "Grants permission to validate the environment name during the process of creating an AWS Cloud9 development environment",
    "accessLevel": "Read",
    "resourceTypes": [],
    "conditionKeys": [],
    "dependentActions": []
  }
}