@cloud-copilot/iam-data
Version:
454 lines • 14.5 kB
JSON
{
"addpermission": {
"name": "AddPermission",
"description": "Grants permission to add a statement to a topic's access control policy, granting access for the specified AWS accounts to the specified actions",
"accessLevel": "Permissions management",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"checkifphonenumberisoptedout": {
"name": "CheckIfPhoneNumberIsOptedOut",
"description": "Grants permission to accept a phone number and indicate whether the phone holder has opted out of receiving SMS messages from your account",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"confirmsubscription": {
"name": "ConfirmSubscription",
"description": "Grants permission to verify an endpoint owner's intent to receive messages by validating the token sent to the endpoint by an earlier Subscribe action",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createplatformapplication": {
"name": "CreatePlatformApplication",
"description": "Grants permission to create a platform application object for one of the supported push notification services, such as APNS and GCM, to which devices and mobile apps may register",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": [
"iam:PassRole"
]
},
"createplatformendpoint": {
"name": "CreatePlatformEndpoint",
"description": "Grants permission to create an endpoint for a device and mobile app on one of the supported push notification services, such as GCM and APNS",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"createsmssandboxphonenumber": {
"name": "CreateSMSSandboxPhoneNumber",
"description": "Grants permission to add a destination phone number and send a one-time password (OTP) to that phone number for an AWS account",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"createtopic": {
"name": "CreateTopic",
"description": "Grants permission to create a topic to which notifications can be published",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": [
"iam:PassRole"
]
}
],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"deleteendpoint": {
"name": "DeleteEndpoint",
"description": "Grants permission to delete the endpoint for a device and mobile app from Amazon SNS",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"deleteplatformapplication": {
"name": "DeletePlatformApplication",
"description": "Grants permission to delete a platform application object for one of the supported push notification services, such as APNS and GCM",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"deletesmssandboxphonenumber": {
"name": "DeleteSMSSandboxPhoneNumber",
"description": "Grants permission to delete an AWS account's verified or pending phone number",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"deletetopic": {
"name": "DeleteTopic",
"description": "Grants permission to delete a topic and all its subscriptions",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getdataprotectionpolicy": {
"name": "GetDataProtectionPolicy",
"description": "Grants permission to return the data protection policy of the topic",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getendpointattributes": {
"name": "GetEndpointAttributes",
"description": "Grants permission to retrieve the endpoint attributes for a device on one of the supported push notification services, such as GCM and APNS",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"getplatformapplicationattributes": {
"name": "GetPlatformApplicationAttributes",
"description": "Grants permission to retrieve the attributes of the platform application object for the supported push notification services, such as APNS and GCM",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"getsmsattributes": {
"name": "GetSMSAttributes",
"description": "Grants permission to return the settings for sending SMS messages from your account",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"getsmssandboxaccountstatus": {
"name": "GetSMSSandboxAccountStatus",
"description": "Grants permission to retrieve the sandbox status for the calling account in the target region",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"getsubscriptionattributes": {
"name": "GetSubscriptionAttributes",
"description": "Grants permission to return all of the properties of a subscription",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"gettopicattributes": {
"name": "GetTopicAttributes",
"description": "Grants permission to return all of the properties of a topic",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listendpointsbyplatformapplication": {
"name": "ListEndpointsByPlatformApplication",
"description": "Grants permission to list the endpoints and endpoint attributes for devices in a supported push notification service, such as GCM and APNS",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listoriginationnumbers": {
"name": "ListOriginationNumbers",
"description": "Grants permission to list all origination numbers, and their metadata",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listphonenumbersoptedout": {
"name": "ListPhoneNumbersOptedOut",
"description": "Grants permission to return a list of phone numbers that are opted out, meaning you cannot send SMS messages to them",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listplatformapplications": {
"name": "ListPlatformApplications",
"description": "Grants permission to list the platform application objects for the supported push notification services, such as APNS and GCM",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listsmssandboxphonenumbers": {
"name": "ListSMSSandboxPhoneNumbers",
"description": "Grants permission to list the calling account's current pending and verified destination phone numbers",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listsubscriptions": {
"name": "ListSubscriptions",
"description": "Grants permission to return a list of the requester's subscriptions",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listsubscriptionsbytopic": {
"name": "ListSubscriptionsByTopic",
"description": "Grants permission to return a list of the subscriptions to a specific topic",
"accessLevel": "List",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listtagsforresource": {
"name": "ListTagsForResource",
"description": "Grants permission to list all tags added to the specified Amazon SNS topic",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "topic",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listtopics": {
"name": "ListTopics",
"description": "Grants permission to return a list of the requester's topics",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"optinphonenumber": {
"name": "OptInPhoneNumber",
"description": "Grants permission to opt in a phone number that is currently opted out, which enables you to resume sending SMS messages to the number",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"publish": {
"name": "Publish",
"description": "Grants permission to send a message to all of a topic's subscribed endpoints",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"putdataprotectionpolicy": {
"name": "PutDataProtectionPolicy",
"description": "Grants permission to allow a topic owner to set the data protection policy",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"removepermission": {
"name": "RemovePermission",
"description": "Grants permission to remove a statement from a topic's access control policy",
"accessLevel": "Permissions management",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"setendpointattributes": {
"name": "SetEndpointAttributes",
"description": "Grants permission to set the attributes for an endpoint for a device on one of the supported push notification services, such as GCM and APNS",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"setplatformapplicationattributes": {
"name": "SetPlatformApplicationAttributes",
"description": "Grants permission to set the attributes of the platform application object for the supported push notification services, such as APNS and GCM",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": [
"iam:PassRole"
]
},
"setsmsattributes": {
"name": "SetSMSAttributes",
"description": "Grants permission to set the default settings for sending SMS messages and receiving daily SMS usage reports",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"setsubscriptionattributes": {
"name": "SetSubscriptionAttributes",
"description": "Grants permission to allow a subscription owner to set an attribute of the topic to a new value",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"settopicattributes": {
"name": "SetTopicAttributes",
"description": "Grants permission to allow a topic owner to set an attribute of the topic to a new value",
"accessLevel": "Permissions management",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"iam:PassRole"
]
},
"subscribe": {
"name": "Subscribe",
"description": "Grants permission to prepare to subscribe an endpoint by sending the endpoint a confirmation message",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "topic",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"sns:Endpoint",
"sns:Protocol"
],
"dependentActions": []
},
"tagresource": {
"name": "TagResource",
"description": "Grants permission to add tags to the specified Amazon SNS topic",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "topic",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"unsubscribe": {
"name": "Unsubscribe",
"description": "Grants permission to delete a subscription",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"untagresource": {
"name": "UntagResource",
"description": "Grants permission to remove tags from the specified Amazon SNS topic",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "topic",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:TagKeys"
],
"dependentActions": []
},
"verifysmssandboxphonenumber": {
"name": "VerifySMSSandboxPhoneNumber",
"description": "Grants permission to verify a destination phone number with a one-time password (OTP) for an AWS account",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
}
}