iam-floyd

import { AccessLevelList } from '../../shared/access-level'; import { PolicyStatement, Operator } from '../../shared'; /** * Statement provider for service [rds](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonrds.html). * * @param sid [SID](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_sid.html) of the statement */ export declare class Rds extends PolicyStatement { servicePrefix: string; /** * Statement provider for service [rds](https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonrds.html). * * @param sid [SID](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_sid.html) of the statement */ constructor(sid?: string); /** * Grants permission to associate an Identity and Access Management (IAM) role from an Aurora DB cluster * * Access Level: Write * * Dependent actions: * - iam:PassRole * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_AddRoleToDBCluster.html */ toAddRoleToDBCluster(): this; /** * Grants permission to associate an AWS Identity and Access Management (IAM) role with a DB instance * * Access Level: Write * * Dependent actions: * - iam:PassRole * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_AddRoleToDBInstance.html */ toAddRoleToDBInstance(): this; /** * Grants permission to add a source identifier to an existing RDS event notification subscription * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_AddSourceIdentifierToSubscription.html */ toAddSourceIdentifierToSubscription(): this; /** * Grants permission to add metadata tags to an Amazon RDS resource * * Access Level: Tagging * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_AddTagsToResource.html */ toAddTagsToResource(): this; /** * Grants permission to apply a pending maintenance action to a resource * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ApplyPendingMaintenanceAction.html */ toApplyPendingMaintenanceAction(): this; /** * Grants permission to enable ingress to a DBSecurityGroup using one of two forms of authorization * * Access Level: Permissions management * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_AuthorizeDBSecurityGroupIngress.html */ toAuthorizeDBSecurityGroupIngress(): this; /** * Grants permission to backtrack a DB cluster to a specific time, without creating a new DB cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_BacktrackDBCluster.html */ toBacktrackDBCluster(): this; /** * Grants permission to cancel an export task in progress * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CancelExportTask.html */ toCancelExportTask(): this; /** * Grants permission to copy a custom engine version * * Access Level: Write * * https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonrds.html */ toCopyCustomDBEngineVersion(): this; /** * Grants permission to copy the specified DB cluster parameter group * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CopyDBClusterParameterGroup.html */ toCopyDBClusterParameterGroup(): this; /** * Grants permission to create a snapshot of a DB cluster * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CopyDBClusterSnapshot.html */ toCopyDBClusterSnapshot(): this; /** * Grants permission to copy the specified DB parameter group * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CopyDBParameterGroup.html */ toCopyDBParameterGroup(): this; /** * Grants permission to copy the specified DB snapshot * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifCopyOptionGroup() * * Dependent actions: * - rds:AddTagsToResource * - rds:CopyCustomDBEngineVersion * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CopyDBSnapshot.html */ toCopyDBSnapshot(): this; /** * Grants permission to copy the specified option group * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CopyOptionGroup.html */ toCopyOptionGroup(): this; /** * Grants permission to create a blue-green deployment for a given source cluster or instance * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsResourceTag() * - .ifAwsTagKeys() * - .ifClusterTag() * - .ifClusterPgTag() * - .ifDbTag() * - .ifPgTag() * - .ifReqTag() * - .ifDatabaseEngine() * - .ifDatabaseName() * - .ifStorageEncrypted() * - .ifDatabaseClass() * - .ifStorageSize() * - .ifMultiAz() * - .ifPiops() * - .ifVpc() * * Dependent actions: * - rds:AddTagsToResource * - rds:CreateDBCluster * - rds:CreateDBClusterEndpoint * - rds:CreateDBInstance * - rds:CreateDBInstanceReadReplica * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateBlueGreenDeployment.html */ toCreateBlueGreenDeployment(): this; /** * Grants permission to create a custom engine version * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * Dependent actions: * - iam:CreateServiceLinkedRole * - mediaimport:CreateDatabaseBinarySnapshot * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateCustomDBEngineVersion.html */ toCreateCustomDBEngineVersion(): this; /** * Grants permission to create a new DB cluster * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * - .ifDatabaseEngine() * - .ifDatabaseName() * - .ifStorageEncrypted() * - .ifDatabaseClass() * - .ifStorageSize() * - .ifPiops() * - .ifManageMasterUserPassword() * * Dependent actions: * - iam:PassRole * - kms:CreateGrant * - kms:Decrypt * - kms:DescribeKey * - kms:GenerateDataKey * - rds:AddTagsToResource * - rds:CreateDBInstance * - secretsmanager:CreateSecret * - secretsmanager:TagResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBCluster.html */ toCreateDBCluster(): this; /** * Grants permission to create a new custom endpoint and associates it with an Amazon Aurora DB cluster or Amazon DocumentDB cluster * * Access Level: Write * * Possible conditions: * - .ifEndpointType() * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBClusterEndpoint.html */ toCreateDBClusterEndpoint(): this; /** * Grants permission to create a new DB cluster parameter group * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBClusterParameterGroup.html */ toCreateDBClusterParameterGroup(): this; /** * Grants permission to create a snapshot of a DB cluster * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBClusterSnapshot.html */ toCreateDBClusterSnapshot(): this; /** * Grants permission to create a new DB instance * * Access Level: Write * * Possible conditions: * - .ifBackupTarget() * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * - .ifManageMasterUserPassword() * * Dependent actions: * - iam:PassRole * - kms:CreateGrant * - kms:Decrypt * - kms:DescribeKey * - kms:GenerateDataKey * - rds:AddTagsToResource * - rds:CreateTenantDatabase * - secretsmanager:CreateSecret * - secretsmanager:TagResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBInstance.html */ toCreateDBInstance(): this; /** * Grants permission to create a DB instance that acts as a Read Replica of a source DB instance * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * Dependent actions: * - iam:PassRole * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBInstanceReadReplica.html */ toCreateDBInstanceReadReplica(): this; /** * Grants permission to create a new DB parameter group * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBParameterGroup.html */ toCreateDBParameterGroup(): this; /** * Grants permission to create a database proxy * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * Dependent actions: * - iam:PassRole * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBProxy.html */ toCreateDBProxy(): this; /** * Grants permission to create a database proxy endpoint * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBProxyEndpoint.html */ toCreateDBProxyEndpoint(): this; /** * Grants permission to create a new DB security group. DB security groups control access to a DB instance * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBSecurityGroup.html */ toCreateDBSecurityGroup(): this; /** * Grants permission to create a new Aurora Limitless Database DB shard group * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBShardGroup.html */ toCreateDBShardGroup(): this; /** * Grants permission to create a DBSnapshot * * Access Level: Write * * Possible conditions: * - .ifBackupTarget() * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBSnapshot.html */ toCreateDBSnapshot(): this; /** * Grants permission to create a new DB subnet group * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateDBSubnetGroup.html */ toCreateDBSubnetGroup(): this; /** * Grants permission to create an RDS event notification subscription * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateEventSubscription.html */ toCreateEventSubscription(): this; /** * Grants permission to create an Aurora global database or DocumentDB global database spread across multiple regions * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateGlobalCluster.html */ toCreateGlobalCluster(): this; /** * Grants permission to create an Aurora zero-ETL integration with Redshift * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * Dependent actions: * - kms:CreateGrant * - kms:DescribeKey * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateIntegration.html */ toCreateIntegration(): this; /** * Grants permission to create a new option group * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateOptionGroup.html */ toCreateOptionGroup(): this; /** * Grants permission to create a new tenant database * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifTenantDatabaseName() * * Dependent actions: * - rds:AddTagsToResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_CreateTenantDatabase.html */ toCreateTenantDatabase(): this; /** * Grants permission to access a resource in the remote Region when executing cross-Region operations, such as cross-Region snapshot copy or cross-Region read replica creation * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/security_iam_service-with-iam.html#UsingWithRDS.IAM.Conditions */ toCrossRegionCommunication(): this; /** * Grants permission to delete blue green deployments * * Access Level: Write * * Possible conditions: * - .ifAwsResourceTag() * * Dependent actions: * - rds:DeleteDBCluster * - rds:DeleteDBClusterEndpoint * - rds:DeleteDBInstance * - rds:PromoteReadReplica * - rds:PromoteReadReplicaDBCluster * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteBlueGreenDeployment.html */ toDeleteBlueGreenDeployment(): this; /** * Grants permission to delete an existing custom engine version * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteCustomDBEngineVersion.html */ toDeleteCustomDBEngineVersion(): this; /** * Grants permission to delete a previously provisioned DB cluster * * Access Level: Write * * Dependent actions: * - rds:AddTagsToResource * - rds:CreateDBClusterSnapshot * - rds:DeleteDBInstance * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBCluster.html */ toDeleteDBCluster(): this; /** * Grants permission to delete cluster automated backups based on the source cluster's DbClusterResourceId value or the restorable cluster's resource ID * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBClusterAutomatedBackup.html */ toDeleteDBClusterAutomatedBackup(): this; /** * Grants permission to delete a custom endpoint and removes it from an Amazon Aurora DB cluster or Amazon DocumentDB cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBClusterEndpoint.html */ toDeleteDBClusterEndpoint(): this; /** * Grants permission to delete a specified DB cluster parameter group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBClusterParameterGroup.html */ toDeleteDBClusterParameterGroup(): this; /** * Grants permission to delete a DB cluster snapshot * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBClusterSnapshot.html */ toDeleteDBClusterSnapshot(): this; /** * Grants permission to delete a previously provisioned DB instance * * Access Level: Write * * Dependent actions: * - rds:AddTagsToResource * - rds:CreateDBSnapshot * - rds:DeleteTenantDatabase * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBInstance.html */ toDeleteDBInstance(): this; /** * Grants permission to delete automated backups based on the source instance's DbiResourceId value or the restorable instance's resource ID * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBInstanceAutomatedBackup.html */ toDeleteDBInstanceAutomatedBackup(): this; /** * Grants permission to delete a specified DBParameterGroup * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBParameterGroup.html */ toDeleteDBParameterGroup(): this; /** * Grants permission to delete a database proxy * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBProxy.html */ toDeleteDBProxy(): this; /** * Grants permission to delete a database proxy endpoint * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBProxyEndpoint.html */ toDeleteDBProxyEndpoint(): this; /** * Grants permission to delete a DB security group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBSecurityGroup.html */ toDeleteDBSecurityGroup(): this; /** * Grants permission to delete an Aurora Limitless Database DB shard group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBShardGroup.html */ toDeleteDBShardGroup(): this; /** * Grants permission to delete a DBSnapshot * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBSnapshot.html */ toDeleteDBSnapshot(): this; /** * Grants permission to delete a DB subnet group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteDBSubnetGroup.html */ toDeleteDBSubnetGroup(): this; /** * Grants permission to delete an RDS event notification subscription * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteEventSubscription.html */ toDeleteEventSubscription(): this; /** * Grants permission to delete a global database cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteGlobalCluster.html */ toDeleteGlobalCluster(): this; /** * Grants permission to delete an Aurora zero-ETL integration with Redshift * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteIntegration.html */ toDeleteIntegration(): this; /** * Grants permission to delete an existing option group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteOptionGroup.html */ toDeleteOptionGroup(): this; /** * Grants permission to delete a tenant database * * Access Level: Write * * Dependent actions: * - rds:AddTagsToResource * - rds:CreateDBSnapshot * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeleteTenantDatabase.html */ toDeleteTenantDatabase(): this; /** * Grants permission to remove targets from a database proxy target group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DeregisterDBProxyTargets.html */ toDeregisterDBProxyTargets(): this; /** * Grants permission to list all of the attributes for a customer account * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeAccountAttributes.html */ toDescribeAccountAttributes(): this; /** * Grants permission to describe blue green deployments * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeBlueGreenDeployments.html */ toDescribeBlueGreenDeployments(): this; /** * Grants permission to list the set of CA certificates provided by Amazon RDS for this AWS account * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeCertificates.html */ toDescribeCertificates(): this; /** * Grants permission to return a list of cluster automated backups for both current and deleted clusters * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBClusterAutomatedBackups.html */ toDescribeDBClusterAutomatedBackups(): this; /** * Grants permission to return information about backtracks for a DB cluster * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBClusterBacktracks.html */ toDescribeDBClusterBacktracks(): this; /** * Grants permission to return information about endpoints for an Amazon Aurora DB cluster * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBClusterEndpoints.html */ toDescribeDBClusterEndpoints(): this; /** * Grants permission to return a list of DBClusterParameterGroup descriptions * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBClusterParameterGroups.html */ toDescribeDBClusterParameterGroups(): this; /** * Grants permission to return the detailed parameter list for a particular DB cluster parameter group * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBClusterParameters.html */ toDescribeDBClusterParameters(): this; /** * Grants permission to return a list of DB cluster snapshot attribute names and values for a manual DB cluster snapshot * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBClusterSnapshotAttributes.html */ toDescribeDBClusterSnapshotAttributes(): this; /** * Grants permission to return information about DB cluster snapshots * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBClusterSnapshots.html */ toDescribeDBClusterSnapshots(): this; /** * Grants permission to return information about provisioned Aurora DB clusters or DocumentDB clusters * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBClusters.html */ toDescribeDBClusters(): this; /** * Grants permission to return a list of the available DB engines * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBEngineVersions.html */ toDescribeDBEngineVersions(): this; /** * Grants permission to return a list of automated backups for both current and deleted instances * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBInstanceAutomatedBackups.html */ toDescribeDBInstanceAutomatedBackups(): this; /** * Grants permission to return information about provisioned RDS instances * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBInstances.html */ toDescribeDBInstances(): this; /** * Grants permission to return a list of DB log files for the DB instance * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBLogFiles.html */ toDescribeDBLogFiles(): this; /** * Grants permission to return a list of DBParameterGroup descriptions * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBParameterGroups.html */ toDescribeDBParameterGroups(): this; /** * Grants permission to return the detailed parameter list for a particular DB parameter group * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBParameters.html */ toDescribeDBParameters(): this; /** * Grants permission to view proxies * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBProxies.html */ toDescribeDBProxies(): this; /** * Grants permission to view proxy endpoints * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBProxyEndpoints.html */ toDescribeDBProxyEndpoints(): this; /** * Grants permission to view database proxy target group details * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBProxyTargetGroups.html */ toDescribeDBProxyTargetGroups(): this; /** * Grants permission to view database proxy target details * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBProxyTargets.html */ toDescribeDBProxyTargets(): this; /** * Grants permission to list recommendation details * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBRecommendations.html */ toDescribeDBRecommendations(): this; /** * Grants permission to return a list of DBSecurityGroup descriptions * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBSecurityGroups.html */ toDescribeDBSecurityGroups(): this; /** * Grants permission to return information about all Aurora Limitless Database DB shard groups for this account. You can filter by shard group(s) * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBShardGroups.html */ toDescribeDBShardGroups(): this; /** * Grants permission to return a list of DB snapshot attribute names and values for a manual DB snapshot * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBSnapshotAttributes.html */ toDescribeDBSnapshotAttributes(): this; /** * Grants permission to return information about tenant databases in DB snapshots. You can filter by Region or snapshot * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBSnapshotTenantDatabases.html */ toDescribeDBSnapshotTenantDatabases(): this; /** * Grants permission to return information about DB snapshots * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBSnapshots.html */ toDescribeDBSnapshots(): this; /** * Grants permission to return a list of DBSubnetGroup descriptions * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeDBSubnetGroups.html */ toDescribeDBSubnetGroups(): this; /** * Grants permission to return the default engine and system parameter information for the cluster database engine * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeEngineDefaultClusterParameters.html */ toDescribeEngineDefaultClusterParameters(): this; /** * Grants permission to return the default engine and system parameter information for the specified database engine * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeEngineDefaultParameters.html */ toDescribeEngineDefaultParameters(): this; /** * Grants permission to display a list of categories for all event source types, or, if specified, for a specified source type * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeEventCategories.html */ toDescribeEventCategories(): this; /** * Grants permission to list all the subscription descriptions for a customer account * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeEventSubscriptions.html */ toDescribeEventSubscriptions(): this; /** * Grants permission to return events related to DB instances, DB security groups, DB snapshots, and DB parameter groups for the past 14 days * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeEvents.html */ toDescribeEvents(): this; /** * Grants permission to return information about the export tasks * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeExportTasks.html */ toDescribeExportTasks(): this; /** * Grants permission to return information about Aurora global database clusters or DocumentDB global database clusters * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeGlobalClusters.html */ toDescribeGlobalClusters(): this; /** * Grants permission to describe an Aurora zero-ETL integration with Redshift * * Access Level: List * * Possible conditions: * - .ifAwsResourceTag() * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeIntegrations.html */ toDescribeIntegrations(): this; /** * Grants permission to describe all available options * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeOptionGroupOptions.html */ toDescribeOptionGroupOptions(): this; /** * Grants permission to describe the available option groups * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeOptionGroups.html */ toDescribeOptionGroups(): this; /** * Grants permission to return a list of orderable DB instance options for the specified engine * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeOrderableDBInstanceOptions.html */ toDescribeOrderableDBInstanceOptions(): this; /** * Grants permission to return a list of resources (for example, DB instances) that have at least one pending maintenance action * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribePendingMaintenanceActions.html */ toDescribePendingMaintenanceActions(): this; /** * Grants permission to return information about recommendation groups * * Access Level: Read * * https://docs.aws.amazon.com/AmazonRDS/latest/USER_Recommendations.html */ toDescribeRecommendationGroups(): this; /** * Grants permission to return information about recommendations * * Access Level: Read * * https://docs.aws.amazon.com/AmazonRDS/latest/USER_Recommendations.html */ toDescribeRecommendations(): this; /** * Grants permission to return information about reserved DB instances for this account, or about a specified reserved DB instance * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeReservedDBInstances.html */ toDescribeReservedDBInstances(): this; /** * Grants permission to list available reserved DB instance offerings * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeReservedDBInstancesOfferings.html */ toDescribeReservedDBInstancesOfferings(): this; /** * Grants permission to return a list of the source AWS Regions where the current AWS Region can create a Read Replica or copy a DB snapshot from * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeSourceRegions.html */ toDescribeSourceRegions(): this; /** * Grants permission to return information about provisioned tenant databases. You can filter by Region or snapshot * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeTenantDatabases.html */ toDescribeTenantDatabases(): this; /** * Grants permission to list available modifications you can make to your DB instance * * Access Level: List * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DescribeValidDBInstanceModifications.html */ toDescribeValidDBInstanceModifications(): this; /** * Grants permission to disable http endpoint for a DB cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DisableHttpEndpoint.html */ toDisableHttpEndpoint(): this; /** * Grants permission to download specified log file * * Access Level: Read * * https://docs.aws.amazon.com/AmazonRDS/latest/USER_LogAccess.html */ toDownloadCompleteDBLogFile(): this; /** * Grants permission to download all or a portion of the specified log file, up to 1 MB in size * * Access Level: Read * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_DownloadDBLogFilePortion.html */ toDownloadDBLogFilePortion(): this; /** * Grants permission to enable http endpoint for a DB cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_EnableHttpEndpoint.html */ toEnableHttpEndpoint(): this; /** * Grants permission to force a failover for a DB cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_FailoverDBCluster.html */ toFailoverDBCluster(): this; /** * Grants permission to failover a global cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_FailoverGlobalCluster.html */ toFailoverGlobalCluster(): this; /** * Grants permission to list all tags on an Amazon RDS resource * * Access Level: Read * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ListTagsForResource.html */ toListTagsForResource(): this; /** * Grants permission to modify a database activity stream * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyActivityStream.html */ toModifyActivityStream(): this; /** * Grants permission to modify the system-default Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificate for Amazon RDS for new DB instances * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyCertificates.html */ toModifyCertificates(): this; /** * Grants permission to modify current cluster capacity for an Amazon Aurora Serverless DB cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyCurrentDBClusterCapacity.html */ toModifyCurrentDBClusterCapacity(): this; /** * Grants permission to modify an existing custom engine version * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyCustomDBEngineVersion.html */ toModifyCustomDBEngineVersion(): this; /** * Grants permission to modify a setting for an Amazon Aurora DB cluster or Amazon DocumentDB cluster * * Access Level: Write * * Possible conditions: * - .ifDatabaseClass() * - .ifStorageSize() * - .ifPiops() * - .ifManageMasterUserPassword() * * Dependent actions: * - iam:PassRole * - kms:CreateGrant * - kms:Decrypt * - kms:DescribeKey * - kms:GenerateDataKey * - rds:ModifyDBInstance * - secretsmanager:CreateSecret * - secretsmanager:RotateSecret * - secretsmanager:TagResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBCluster.html */ toModifyDBCluster(): this; /** * Grants permission to modify the properties of an endpoint in an Amazon Aurora DB cluster or Amazon DocumentDB cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBClusterEndpoint.html */ toModifyDBClusterEndpoint(): this; /** * Grants permission to modify the parameters of a DB cluster parameter group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBClusterParameterGroup.html */ toModifyDBClusterParameterGroup(): this; /** * Grants permission to add an attribute and values to, or removes an attribute and values from, a manual DB cluster snapshot * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBClusterSnapshotAttribute.html */ toModifyDBClusterSnapshotAttribute(): this; /** * Grants permission to modify settings for a DB instance * * Access Level: Write * * Possible conditions: * - .ifManageMasterUserPassword() * * Dependent actions: * - iam:PassRole * - kms:CreateGrant * - kms:Decrypt * - kms:DescribeKey * - kms:GenerateDataKey * - rds:AddTagsToResource * - rds:CreateTenantDatabase * - secretsmanager:CreateSecret * - secretsmanager:RotateSecret * - secretsmanager:TagResource * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBInstance.html */ toModifyDBInstance(): this; /** * Grants permission to modify the parameters of a DB parameter group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBParameterGroup.html */ toModifyDBParameterGroup(): this; /** * Grants permission to modify database proxy * * Access Level: Write * * Dependent actions: * - iam:PassRole * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBProxy.html */ toModifyDBProxy(): this; /** * Grants permission to modify database proxy endpoint * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBProxyEndpoint.html */ toModifyDBProxyEndpoint(): this; /** * Grants permission to modify target group for a database proxy * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBProxyTargetGroup.html */ toModifyDBProxyTargetGroup(): this; /** * Grants permission to modify recommendation * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBRecommendation.html */ toModifyDBRecommendation(): this; /** * Grants permission to modify properties of an Aurora Limitless Database DB shard group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBShardGroup.html */ toModifyDBShardGroup(): this; /** * Grants permission to update a manual DB snapshot, which can be encrypted or not encrypted, with a new engine version * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBSnapshot.html */ toModifyDBSnapshot(): this; /** * Grants permission to add an attribute and values to, or removes an attribute and values from, a manual DB snapshot * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBSnapshotAttribute.html */ toModifyDBSnapshotAttribute(): this; /** * Grants permission to modify an existing DB subnet group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBSubnetGroup.html */ toModifyDBSubnetGroup(): this; /** * Grants permission to modify an existing RDS event notification subscription * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyEventSubscription.html */ toModifyEventSubscription(): this; /** * Grants permission to modify a setting for an Amazon Aurora global cluster or Amazon DocumentDB global cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyGlobalCluster.html */ toModifyGlobalCluster(): this; /** * Grants permission to modify an Aurora zero-ETL integration with Redshift * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyIntegration.html */ toModifyIntegration(): this; /** * Grants permission to modify an existing option group * * Access Level: Write * * Dependent actions: * - iam:PassRole * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyOptionGroup.html */ toModifyOptionGroup(): this; /** * Grants permission to modify recommendation * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/USER_Recommendations.html */ toModifyRecommendation(): this; /** * Grants permission to modify a tenant database * * Access Level: Write * * Possible conditions: * - .ifTenantDatabaseName() * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyTenantDatabase.html */ toModifyTenantDatabase(): this; /** * Grants permission to promote a Read Replica DB instance to a standalone DB instance * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_PromoteReadReplica.html */ toPromoteReadReplica(): this; /** * Grants permission to promote a Read Replica DB cluster to a standalone DB cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_PromoteReadReplicaDBCluster.html */ toPromoteReadReplicaDBCluster(): this; /** * Grants permission to purchase a reserved DB instance offering * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_PurchaseReservedDBInstancesOffering.html */ toPurchaseReservedDBInstancesOffering(): this; /** * Grants permission to reboot a previously provisioned DB cluster * * Access Level: Write * * Dependent actions: * - rds:RebootDBInstance * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_RebootDBCluster.html */ toRebootDBCluster(): this; /** * Grants permission to restart the database engine service * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_RebootDBInstance.html */ toRebootDBInstance(): this; /** * Grants permission to reboot an Aurora Limitless Database DB shard group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_RebootDBShardGroup.html */ toRebootDBShardGroup(): this; /** * Grants permission to add targets to a database proxy target group * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_RegisterDBProxyTargets.html */ toRegisterDBProxyTargets(): this; /** * Grants permission to detach an Aurora secondary cluster from an Aurora global database cluster or DocumentDB global cluster * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_RemoveFromGlobalCluster.html */ toRemoveFromGlobalCluster(): this; /** * Grants permission to disassociate an AWS Identity and Access Management (IAM) role from an Amazon Aurora DB cluster * * Access Level: Write * * Dependent actions: * - iam:PassRole * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_RemoveRoleFromDBCluster.html */ toRemoveRoleFromDBCluster(): this; /** * Grants permission to disassociate an AWS Identity and Access Management (IAM) role from a DB instance * * Access Level: Write * * Dependent actions: * - iam:PassRole * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_RemoveRoleFromDBInstance.html */ toRemoveRoleFromDBInstance(): this; /** * Grants permission to remove a source identifier from an existing RDS event notification subscription * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_RemoveSourceIdentifierFromSubscription.html */ toRemoveSourceIdentifierFromSubscription(): this; /** * Grants permission to remove metadata tags from an Amazon RDS resource * * Access Level: Tagging * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_RemoveTagsFromResource.html */ toRemoveTagsFromResource(): this; /** * Grants permission to modify the parameters of a DB cluster parameter group to the default value * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ResetDBClusterParameterGroup.html */ toResetDBClusterParameterGroup(): this; /** * Grants permission to modify the parameters of a DB parameter group to the engine/system default value * * Access Level: Write * * https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ResetDBParameterGroup.html */ toResetDBParameterGroup(): this; /** * Grants permission to create an Amazon Aurora DB cluster from data stored in an Amazon S3 bucket * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - .ifReqTag() * - .ifDatabas