@cloud-copilot/iam-data
Version:
484 lines • 16.4 kB
JSON
{
"batchupdaterecommendationresourceexclusion": {
"name": "BatchUpdateRecommendationResourceExclusion",
"description": "Grants permission to update one or more exclusion status for a list of recommendation resources",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"createengagement": {
"name": "CreateEngagement",
"description": "Grants permission to create an engagement",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"createengagementattachment": {
"name": "CreateEngagementAttachment",
"description": "Grants permission to create an engagement attachment",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"createengagementcommunication": {
"name": "CreateEngagementCommunication",
"description": "Grants permission to create an engagement communication",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"deletenotificationconfigurationfordelegatedadmin": {
"name": "DeleteNotificationConfigurationForDelegatedAdmin",
"description": "Grants permission to the organization management account to delete email notification preferences from a delegated administrator account for Trusted Advisor Priority",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describeaccount": {
"name": "DescribeAccount",
"isPermissionOnly": true,
"description": "Grants permission to view the AWS Support plan and various AWS Trusted Advisor preferences",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describeaccountaccess": {
"name": "DescribeAccountAccess",
"isPermissionOnly": true,
"description": "Grants permission to view if the AWS account has enabled or disabled AWS Trusted Advisor",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describecheckitems": {
"name": "DescribeCheckItems",
"description": "Grants permission to view details for the check items",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "checks",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describecheckrefreshstatuses": {
"name": "DescribeCheckRefreshStatuses",
"description": "Grants permission to view the refresh statuses for AWS Trusted Advisor checks",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "checks",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describecheckstatushistorychanges": {
"name": "DescribeCheckStatusHistoryChanges",
"isPermissionOnly": true,
"description": "Grants permission to view the results and changed statuses for checks in the last 30 days",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "checks",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describechecksummaries": {
"name": "DescribeCheckSummaries",
"description": "Grants permission to view AWS Trusted Advisor check summaries",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "checks",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"describechecks": {
"name": "DescribeChecks",
"description": "Grants permission to view details for AWS Trusted Advisor checks",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describenotificationconfigurations": {
"name": "DescribeNotificationConfigurations",
"description": "Grants permission to get your email notification preferences for Trusted Advisor Priority",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describenotificationpreferences": {
"name": "DescribeNotificationPreferences",
"isPermissionOnly": true,
"description": "Grants permission to view the notification preferences for the AWS account",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describeorganization": {
"name": "DescribeOrganization",
"isPermissionOnly": true,
"description": "Grants permission to view if the AWS account meets the requirements to enable the organizational view feature",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describeorganizationaccounts": {
"name": "DescribeOrganizationAccounts",
"isPermissionOnly": true,
"description": "Grants permission to view the linked AWS accounts that are in the organization",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describereports": {
"name": "DescribeReports",
"isPermissionOnly": true,
"description": "Grants permission to view details for organizational view reports, such as the report name, runtime, date created, status, and format",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describerisk": {
"name": "DescribeRisk",
"description": "Grants permission to view risk details in AWS Trusted Advisor Priority",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describeriskresources": {
"name": "DescribeRiskResources",
"description": "Grants permission to view affected resources for a risk in AWS Trusted Advisor Priority",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describerisks": {
"name": "DescribeRisks",
"description": "Grants permission to view risks in AWS Trusted Advisor Priority",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"describeservicemetadata": {
"name": "DescribeServiceMetadata",
"isPermissionOnly": true,
"description": "Grants permission to view information about organizational view reports, such as the AWS Regions, check categories, check names, and resource statuses",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"downloadrisk": {
"name": "DownloadRisk",
"description": "Grants permission to download a file that contains details about the risk in AWS Trusted Advisor Priority",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"excludecheckitems": {
"name": "ExcludeCheckItems",
"isPermissionOnly": true,
"description": "Grants permission to exclude recommendations for AWS Trusted Advisor checks",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "checks",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"generatereport": {
"name": "GenerateReport",
"isPermissionOnly": true,
"description": "Grants permission to create a report for AWS Trusted Advisor checks in your organization",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"getengagement": {
"name": "GetEngagement",
"description": "Grants permission to view an engagment",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"getengagementattachment": {
"name": "GetEngagementAttachment",
"description": "Grants permission to view an engagment attachment",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"getengagementtype": {
"name": "GetEngagementType",
"description": "Grants permission to view a specific engagement type",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"getorganizationrecommendation": {
"name": "GetOrganizationRecommendation",
"description": "Grants permission to get a specific recommendation within an AWS Organization's organization. This API supports only prioritized recommendations",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"getrecommendation": {
"name": "GetRecommendation",
"description": "Grants permission to get a specific Recommendation",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"includecheckitems": {
"name": "IncludeCheckItems",
"isPermissionOnly": true,
"description": "Grants permission to include recommendations for AWS Trusted Advisor checks",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "checks",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listaccountsforparent": {
"name": "ListAccountsForParent",
"isPermissionOnly": true,
"description": "Grants permission to view, in the Trusted Advisor console, all of the accounts in an AWS organization that are contained by a root or organizational unit (OU)",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listchecks": {
"name": "ListChecks",
"description": "Grants permission to list a filterable set of Checks",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listengagementcommunications": {
"name": "ListEngagementCommunications",
"description": "Grants permission to view all communications for an engagement",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listengagementtypes": {
"name": "ListEngagementTypes",
"description": "Grants permission to view all engagement types",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listengagements": {
"name": "ListEngagements",
"description": "Grants permission to view all engagements",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listorganizationrecommendationaccounts": {
"name": "ListOrganizationRecommendationAccounts",
"description": "Grants permission to list the accounts that own the resources for an AWS Organization aggregate recommendation. This API only supports prioritized recommendations",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listorganizationrecommendationresources": {
"name": "ListOrganizationRecommendationResources",
"description": "Grants permission to list Resources of a Recommendation within an AWS Organization. This API only supports prioritized recommendations",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listorganizationrecommendations": {
"name": "ListOrganizationRecommendations",
"description": "Grants permission to list a filterable set of Recommendations within an AWS Organization. This API only supports prioritized recommendations",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listorganizationalunitsforparent": {
"name": "ListOrganizationalUnitsForParent",
"isPermissionOnly": true,
"description": "Grants permission to view, in the Trusted Advisor console, all of the organizational units (OUs) in a parent organizational unit or root",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listrecommendationresources": {
"name": "ListRecommendationResources",
"description": "Grants permission to list Resources of a Recommendation",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listrecommendations": {
"name": "ListRecommendations",
"description": "Grants permission to list a filterable set of Recommendations",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listroots": {
"name": "ListRoots",
"isPermissionOnly": true,
"description": "Grants permission to view, in the Trusted Advisor console, all of the roots that are defined in an AWS organization",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"refreshcheck": {
"name": "RefreshCheck",
"description": "Grants permission to refresh an AWS Trusted Advisor check",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "checks",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"setaccountaccess": {
"name": "SetAccountAccess",
"isPermissionOnly": true,
"description": "Grants permission to enable or disable AWS Trusted Advisor for the account",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"setorganizationaccess": {
"name": "SetOrganizationAccess",
"isPermissionOnly": true,
"description": "Grants permission to enable the organizational view feature for AWS Trusted Advisor",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"updateengagement": {
"name": "UpdateEngagement",
"description": "Grants permission to update the details of an engagement",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"updateengagementstatus": {
"name": "UpdateEngagementStatus",
"description": "Grants permission to update the status of an engagement",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"updatenotificationconfigurations": {
"name": "UpdateNotificationConfigurations",
"description": "Grants permission to create or update your email notification preferences for Trusted Advisor Priority",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"updatenotificationpreferences": {
"name": "UpdateNotificationPreferences",
"isPermissionOnly": true,
"description": "Grants permission to update notification preferences for AWS Trusted Advisor",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"updateorganizationrecommendationlifecycle": {
"name": "UpdateOrganizationRecommendationLifecycle",
"description": "Grants permission to update the lifecyle of a Recommendation within an AWS Organization. This API only supports prioritized recommendations",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"updaterecommendationlifecycle": {
"name": "UpdateRecommendationLifecycle",
"description": "Grants permission to update the lifecyle of a Recommendation. This API only supports prioritized recommendations",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"updateriskstatus": {
"name": "UpdateRiskStatus",
"description": "Grants permission to update the risk status in AWS Trusted Advisor Priority",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
}
}