@cloud-copilot/iam-data
Version:
1,117 lines • 29.2 kB
JSON
{
"associatebrowsersettings": {
"name": "AssociateBrowserSettings",
"description": "Grants permission to associate browser settings to web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "browserSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"associatedataprotectionsettings": {
"name": "AssociateDataProtectionSettings",
"description": "Grants permission to associate data protection settings with web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "dataProtectionSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"associateipaccesssettings": {
"name": "AssociateIpAccessSettings",
"description": "Grants permission to associate ip access settings with web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "ipAccessSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"associatenetworksettings": {
"name": "AssociateNetworkSettings",
"description": "Grants permission to associate network settings to web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "networkSettings",
"required": true,
"conditionKeys": [],
"dependentActions": [
"ec2:CreateNetworkInterface",
"ec2:CreateNetworkInterfacePermission",
"ec2:CreateTags",
"ec2:DeleteNetworkInterface",
"ec2:DeleteNetworkInterfacePermission",
"ec2:ModifyNetworkInterfaceAttribute"
]
},
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"associatetruststore": {
"name": "AssociateTrustStore",
"description": "Grants permission to associate trust stores with web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "trustStore",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"associateuseraccessloggingsettings": {
"name": "AssociateUserAccessLoggingSettings",
"description": "Grants permission to associate user access logging settings with web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": [
"kinesis:PutRecord",
"kinesis:PutRecords"
]
},
{
"name": "userAccessLoggingSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"associateusersettings": {
"name": "AssociateUserSettings",
"description": "Grants permission to associate user settings with web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "userSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createbrowsersettings": {
"name": "CreateBrowserSettings",
"description": "Grants permission to create browser settings",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:TagKeys",
"aws:RequestTag/${TagKey}"
],
"dependentActions": [
"kms:CreateGrant",
"kms:Decrypt",
"kms:DescribeKey",
"kms:GenerateDataKey"
]
},
"createdataprotectionsettings": {
"name": "CreateDataProtectionSettings",
"description": "Grants permission to create data protection settings",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:TagKeys",
"aws:RequestTag/${TagKey}"
],
"dependentActions": []
},
"createidentityprovider": {
"name": "CreateIdentityProvider",
"description": "Grants permission to create identity providers",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "identityProvider",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:TagKeys",
"aws:RequestTag/${TagKey}"
],
"dependentActions": []
},
"createipaccesssettings": {
"name": "CreateIpAccessSettings",
"description": "Grants permission to create ip access settings",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:TagKeys",
"aws:RequestTag/${TagKey}"
],
"dependentActions": []
},
"createnetworksettings": {
"name": "CreateNetworkSettings",
"description": "Grants permission to create network settings",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:TagKeys",
"aws:RequestTag/${TagKey}"
],
"dependentActions": [
"iam:CreateServiceLinkedRole"
]
},
"createportal": {
"name": "CreatePortal",
"description": "Grants permission to create web portals",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:TagKeys",
"aws:RequestTag/${TagKey}"
],
"dependentActions": [
"iam:CreateServiceLinkedRole",
"kms:CreateGrant",
"kms:Decrypt",
"kms:DescribeKey",
"kms:GenerateDataKey"
]
},
"createtruststore": {
"name": "CreateTrustStore",
"description": "Grants permission to create trust stores",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:TagKeys",
"aws:RequestTag/${TagKey}"
],
"dependentActions": []
},
"createuseraccessloggingsettings": {
"name": "CreateUserAccessLoggingSettings",
"description": "Grants permission to create user access logging settings",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:TagKeys",
"aws:RequestTag/${TagKey}"
],
"dependentActions": []
},
"createusersettings": {
"name": "CreateUserSettings",
"description": "Grants permission to create user settings",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:TagKeys",
"aws:RequestTag/${TagKey}"
],
"dependentActions": []
},
"deletebrowsersettings": {
"name": "DeleteBrowserSettings",
"description": "Grants permission to delete browser settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "browserSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deletedataprotectionsettings": {
"name": "DeleteDataProtectionSettings",
"description": "Grants permission to delete data protection settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "dataProtectionSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deleteidentityprovider": {
"name": "DeleteIdentityProvider",
"description": "Grants permission to delete identity providers",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "identityProvider",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deleteipaccesssettings": {
"name": "DeleteIpAccessSettings",
"description": "Grants permission to delete ip access settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "ipAccessSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deletenetworksettings": {
"name": "DeleteNetworkSettings",
"description": "Grants permission to delete network settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "networkSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deleteportal": {
"name": "DeletePortal",
"description": "Grants permission to delete web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deletetruststore": {
"name": "DeleteTrustStore",
"description": "Grants permission to delete trust stores",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "trustStore",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deleteuseraccessloggingsettings": {
"name": "DeleteUserAccessLoggingSettings",
"description": "Grants permission to delete user access logging settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "userAccessLoggingSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deleteusersettings": {
"name": "DeleteUserSettings",
"description": "Grants permission to delete user settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "userSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"disassociatebrowsersettings": {
"name": "DisassociateBrowserSettings",
"description": "Grants permission to disassociate browser settings from web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"disassociatedataprotectionsettings": {
"name": "DisassociateDataProtectionSettings",
"description": "Grants permission to disassociate data protection logging from web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"disassociateipaccesssettings": {
"name": "DisassociateIpAccessSettings",
"description": "Grants permission to disassociate ip access logging from web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"disassociatenetworksettings": {
"name": "DisassociateNetworkSettings",
"description": "Grants permission to disassociate network settings from web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"disassociatetruststore": {
"name": "DisassociateTrustStore",
"description": "Grants permission to disassociate trust stores from web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"disassociateuseraccessloggingsettings": {
"name": "DisassociateUserAccessLoggingSettings",
"description": "Grants permission to disassociate user access logging settings from web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"disassociateusersettings": {
"name": "DisassociateUserSettings",
"description": "Grants permission to disassociate user settings from web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"expiresession": {
"name": "ExpireSession",
"description": "Grants permission to expire a session from a specific portal",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getbrowsersettings": {
"name": "GetBrowserSettings",
"description": "Grants permission to get details on browser settings",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "browserSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getdataprotectionsettings": {
"name": "GetDataProtectionSettings",
"description": "Grants permission to get details on data protection settings",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "dataProtectionSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getidentityprovider": {
"name": "GetIdentityProvider",
"description": "Grants permission to get details on identity providers",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "identityProvider",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getipaccesssettings": {
"name": "GetIpAccessSettings",
"description": "Grants permission to get details on ip access settings",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "ipAccessSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getnetworksettings": {
"name": "GetNetworkSettings",
"description": "Grants permission to get details on network settings",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "networkSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getportal": {
"name": "GetPortal",
"description": "Grants permission to get details on web portals",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getportalserviceprovidermetadata": {
"name": "GetPortalServiceProviderMetadata",
"description": "Grants permission to get service provider metadata information for web portals",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getsession": {
"name": "GetSession",
"description": "Grants permission to get information about a particular session for a portal",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"gettruststore": {
"name": "GetTrustStore",
"description": "Grants permission to get details on trust stores",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "trustStore",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"gettruststorecertificate": {
"name": "GetTrustStoreCertificate",
"description": "Grants permission to get certificates from trust stores",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "trustStore",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getuseraccessloggingsettings": {
"name": "GetUserAccessLoggingSettings",
"description": "Grants permission to get details on user access logging settings",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "userAccessLoggingSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getusersettings": {
"name": "GetUserSettings",
"description": "Grants permission to get details on user settings",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "userSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listbrowsersettings": {
"name": "ListBrowserSettings",
"description": "Grants permission to list browser settings",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listdataprotectionsettings": {
"name": "ListDataProtectionSettings",
"description": "Grants permission to list data protection settings",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listidentityproviders": {
"name": "ListIdentityProviders",
"description": "Grants permission to list identity providers",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "identityProvider",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listipaccesssettings": {
"name": "ListIpAccessSettings",
"description": "Grants permission to list ip access settings",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listnetworksettings": {
"name": "ListNetworkSettings",
"description": "Grants permission to list network settings",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listportals": {
"name": "ListPortals",
"description": "Grants permission to list web portals",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listsessions": {
"name": "ListSessions",
"description": "Grants permission to list sessions for a Portal using optional filters",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listtagsforresource": {
"name": "ListTagsForResource",
"description": "Grants permission to list tags for a resource",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listtruststorecertificates": {
"name": "ListTrustStoreCertificates",
"description": "Grants permission to list certificates in a trust store",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listtruststores": {
"name": "ListTrustStores",
"description": "Grants permission to list trust stores",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listuseraccessloggingsettings": {
"name": "ListUserAccessLoggingSettings",
"description": "Grants permission to list user access logging settings",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listusersettings": {
"name": "ListUserSettings",
"description": "Grants permission to list user settings",
"accessLevel": "Read",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"tagresource": {
"name": "TagResource",
"description": "Grants permission to add one or more tags to a resource",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "browserSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "dataProtectionSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "identityProvider",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "ipAccessSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "networkSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "portal",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "trustStore",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "userAccessLoggingSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "userSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:TagKeys",
"aws:RequestTag/${TagKey}"
],
"dependentActions": []
},
"untagresource": {
"name": "UntagResource",
"description": "Grants permission to remove one or more tags from a resource",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "browserSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "dataProtectionSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "identityProvider",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "ipAccessSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "networkSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "portal",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "trustStore",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "userAccessLoggingSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "userSettings",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:TagKeys"
],
"dependentActions": []
},
"updatebrowsersettings": {
"name": "UpdateBrowserSettings",
"description": "Grants permission to update browser settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "browserSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updatedataprotectionsettings": {
"name": "UpdateDataProtectionSettings",
"description": "Grants permission to update data protection settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "dataProtectionSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updateidentityprovider": {
"name": "UpdateIdentityProvider",
"description": "Grants permission to update identity provider",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "identityProvider",
"required": true,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updateipaccesssettings": {
"name": "UpdateIpAccessSettings",
"description": "Grants permission to update ip access settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "ipAccessSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updatenetworksettings": {
"name": "UpdateNetworkSettings",
"description": "Grants permission to update network settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "networkSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"ec2:CreateNetworkInterface",
"ec2:CreateNetworkInterfacePermission",
"ec2:CreateTags",
"ec2:DeleteNetworkInterface",
"ec2:DeleteNetworkInterfacePermission",
"ec2:ModifyNetworkInterfaceAttribute"
]
},
"updateportal": {
"name": "UpdatePortal",
"description": "Grants permission to update web portals",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "portal",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updatetruststore": {
"name": "UpdateTrustStore",
"description": "Grants permission to update trust stores",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "trustStore",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updateuseraccessloggingsettings": {
"name": "UpdateUserAccessLoggingSettings",
"description": "Grants permission to update user access logging settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "userAccessLoggingSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kinesis:PutRecord",
"kinesis:PutRecords"
]
},
"updateusersettings": {
"name": "UpdateUserSettings",
"description": "Grants permission to update user settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "userSettings",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
}
}