UNPKG

@cloud-copilot/iam-data

Version:

AWS IAM Data

github.com/cloud-copilot/iam-data

cloud-copilot/iam-data

67 lines 2.86 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
{ "aws:requesttag/${tagkey}": { "key": "aws:RequestTag/${TagKey}", "description": "Filters access by the tags that are passed in the request when creating or tagging a resource share. If users don't pass these specific tags, or if they don't specify tags at all, the request fails", "type": "String" }, "aws:resourcetag/${tagkey}": { "key": "aws:ResourceTag/${TagKey}", "description": "Filters access by the tags associated with the resource", "type": "String" }, "aws:tagkeys": { "key": "aws:TagKeys", "description": "Filters access by the tag keys that are passed when creating or tagging a resource share", "type": "ArrayOfString" }, "ram:allowsexternalprincipals": { "key": "ram:AllowsExternalPrincipals", "description": "Filters access by resource shares that allow or deny sharing with external principals. For example, specify true if the action can only be performed on resource shares that allow sharing with external principals. External principals are AWS accounts that are outside of its AWS organization", "type": "Bool" }, "ram:permissionarn": { "key": "ram:PermissionArn", "description": "Filters access by the specified Permission ARN", "type": "ARN" }, "ram:permissionresourcetype": { "key": "ram:PermissionResourceType", "description": "Filters access by permissions of specified resource type", "type": "String" }, "ram:principal": { "key": "ram:Principal", "description": "Filters access by format of the specified principal", "type": "String" }, "ram:requestedallowsexternalprincipals": { "key": "ram:RequestedAllowsExternalPrincipals", "description": "Filters access by the specified value for 'allowExternalPrincipals'. External principals are AWS accounts that are outside of its AWS Organization", "type": "Bool" }, "ram:requestedresourcetype": { "key": "ram:RequestedResourceType", "description": "Filters access by the specified resource type", "type": "String" }, "ram:resourcearn": { "key": "ram:ResourceArn", "description": "Filters access by the specified ARN", "type": "ARN" }, "ram:resourcesharename": { "key": "ram:ResourceShareName", "description": "Filters access by a resource share with the specified name", "type": "String" }, "ram:resourcetag/${tagkey}": { "key": "ram:ResourceTag/${TagKey}", "description": "Filters access by the tags associated with the resource", "type": "String" }, "ram:shareowneraccountid": { "key": "ram:ShareOwnerAccountId", "description": "Filters access by resource shares owned by a specific account. For example, you can use this condition key to specify which resource share invitations can be accepted or rejected based on the resource share owner's account ID", "type": "String" } }