iam-floyd
Version:
AWS IAM policy statement generator with fluent interface
1,592 lines • 391 kB
JavaScript
"use strict";
Object.defineProperty(exports, "__esModule", { value: true });
exports.Iot = void 0;
const shared_1 = require("../../shared");
/**
* Statement provider for service [iot](https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiot.html).
*
* @param sid [SID](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_sid.html) of the statement
*/
class Iot extends shared_1.PolicyStatement {
/**
* Statement provider for service [iot](https://docs.aws.amazon.com/service-authorization/latest/reference/list_awsiot.html).
*
* @param sid [SID](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_sid.html) of the statement
*/
constructor(sid) {
super(sid);
this.servicePrefix = 'iot';
this.accessLevelList = {
Write: [
'AcceptCertificateTransfer',
'AddThingToBillingGroup',
'AddThingToThingGroup',
'AssociateSbomWithPackageVersion',
'AssociateTargetsWithJob',
'AttachSecurityProfile',
'AttachThingPrincipal',
'CancelAuditMitigationActionsTask',
'CancelAuditTask',
'CancelCertificateTransfer',
'CancelDetectMitigationActionsTask',
'CancelJob',
'CancelJobExecution',
'ClearDefaultAuthorizer',
'CloseTunnel',
'ConfirmTopicRuleDestination',
'Connect',
'CreateAuditSuppression',
'CreateAuthorizer',
'CreateBillingGroup',
'CreateCertificateFromCsr',
'CreateCertificateProvider',
'CreateCommand',
'CreateCustomMetric',
'CreateDimension',
'CreateDomainConfiguration',
'CreateDynamicThingGroup',
'CreateFleetMetric',
'CreateJob',
'CreateJobTemplate',
'CreateKeysAndCertificate',
'CreateMitigationAction',
'CreateOTAUpdate',
'CreatePackage',
'CreatePackageVersion',
'CreateProvisioningClaim',
'CreateProvisioningTemplate',
'CreateProvisioningTemplateVersion',
'CreateRoleAlias',
'CreateScheduledAudit',
'CreateSecurityProfile',
'CreateStream',
'CreateThing',
'CreateThingGroup',
'CreateThingType',
'CreateTopicRule',
'CreateTopicRuleDestination',
'DeleteAccountAuditConfiguration',
'DeleteAuditSuppression',
'DeleteAuthorizer',
'DeleteBillingGroup',
'DeleteCACertificate',
'DeleteCertificate',
'DeleteCertificateProvider',
'DeleteCommand',
'DeleteCommandExecution',
'DeleteConnection',
'DeleteCustomMetric',
'DeleteDimension',
'DeleteDomainConfiguration',
'DeleteDynamicThingGroup',
'DeleteFleetMetric',
'DeleteJob',
'DeleteJobExecution',
'DeleteJobTemplate',
'DeleteMitigationAction',
'DeleteOTAUpdate',
'DeletePackage',
'DeletePackageVersion',
'DeleteProvisioningTemplate',
'DeleteProvisioningTemplateVersion',
'DeleteRegistrationCode',
'DeleteRoleAlias',
'DeleteScheduledAudit',
'DeleteSecurityProfile',
'DeleteStream',
'DeleteThing',
'DeleteThingGroup',
'DeleteThingShadow',
'DeleteThingType',
'DeleteTopicRule',
'DeleteTopicRuleDestination',
'DeleteV2LoggingLevel',
'DeprecateThingType',
'DetachSecurityProfile',
'DetachThingPrincipal',
'DisableTopicRule',
'DisassociateSbomFromPackageVersion',
'EnableTopicRule',
'OpenTunnel',
'Publish',
'PutVerificationStateOnViolation',
'Receive',
'RegisterCACertificate',
'RegisterCertificate',
'RegisterCertificateWithoutCA',
'RegisterThing',
'RejectCertificateTransfer',
'RemoveThingFromBillingGroup',
'RemoveThingFromThingGroup',
'ReplaceTopicRule',
'RetainPublish',
'RotateTunnelAccessToken',
'SetLoggingOptions',
'SetV2LoggingLevel',
'SetV2LoggingOptions',
'StartAuditMitigationActionsTask',
'StartCommandExecution',
'StartDetectMitigationActionsTask',
'StartOnDemandAuditTask',
'StartThingRegistrationTask',
'StopThingRegistrationTask',
'Subscribe',
'TransferCertificate',
'UpdateAccountAuditConfiguration',
'UpdateAuditSuppression',
'UpdateAuthorizer',
'UpdateBillingGroup',
'UpdateCACertificate',
'UpdateCertificate',
'UpdateCertificateProvider',
'UpdateCommand',
'UpdateCustomMetric',
'UpdateDimension',
'UpdateDomainConfiguration',
'UpdateDynamicThingGroup',
'UpdateEncryptionConfiguration',
'UpdateEventConfigurations',
'UpdateFleetMetric',
'UpdateIndexingConfiguration',
'UpdateJob',
'UpdateMitigationAction',
'UpdatePackage',
'UpdatePackageConfiguration',
'UpdatePackageVersion',
'UpdateProvisioningTemplate',
'UpdateRoleAlias',
'UpdateScheduledAudit',
'UpdateSecurityProfile',
'UpdateStream',
'UpdateThing',
'UpdateThingGroup',
'UpdateThingGroupsForThing',
'UpdateThingShadow',
'UpdateThingType',
'UpdateTopicRuleDestination'
],
'Permissions management': [
'AttachPolicy',
'AttachPrincipalPolicy',
'CreatePolicy',
'CreatePolicyVersion',
'DeletePolicy',
'DeletePolicyVersion',
'DetachPolicy',
'DetachPrincipalPolicy',
'SetDefaultAuthorizer',
'SetDefaultPolicyVersion'
],
Read: [
'DescribeAccountAuditConfiguration',
'DescribeAuditFinding',
'DescribeAuditMitigationActionsTask',
'DescribeAuditSuppression',
'DescribeAuditTask',
'DescribeAuthorizer',
'DescribeBillingGroup',
'DescribeCACertificate',
'DescribeCertificate',
'DescribeCertificateProvider',
'DescribeCustomMetric',
'DescribeDefaultAuthorizer',
'DescribeDetectMitigationActionsTask',
'DescribeDimension',
'DescribeDomainConfiguration',
'DescribeEncryptionConfiguration',
'DescribeEndpoint',
'DescribeEventConfigurations',
'DescribeFleetMetric',
'DescribeIndex',
'DescribeJob',
'DescribeJobExecution',
'DescribeJobTemplate',
'DescribeManagedJobTemplate',
'DescribeMitigationAction',
'DescribeProvisioningTemplate',
'DescribeProvisioningTemplateVersion',
'DescribeRoleAlias',
'DescribeScheduledAudit',
'DescribeSecurityProfile',
'DescribeStream',
'DescribeThing',
'DescribeThingGroup',
'DescribeThingRegistrationTask',
'DescribeThingType',
'DescribeTunnel',
'GetBucketsAggregation',
'GetCardinality',
'GetCommand',
'GetCommandExecution',
'GetEffectivePolicies',
'GetIndexingConfiguration',
'GetJobDocument',
'GetLoggingOptions',
'GetOTAUpdate',
'GetPackage',
'GetPackageConfiguration',
'GetPackageVersion',
'GetPercentiles',
'GetPolicy',
'GetPolicyVersion',
'GetRegistrationCode',
'GetRetainedMessage',
'GetStatistics',
'GetThingConnectivityData',
'GetThingShadow',
'GetTopicRule',
'GetTopicRuleDestination',
'GetV2LoggingOptions',
'ListTagsForResource',
'SearchIndex',
'TestAuthorization',
'TestInvokeAuthorizer',
'ValidateSecurityProfileBehaviors'
],
List: [
'GetBehaviorModelTrainingSummaries',
'ListActiveViolations',
'ListAttachedPolicies',
'ListAuditFindings',
'ListAuditMitigationActionsExecutions',
'ListAuditMitigationActionsTasks',
'ListAuditSuppressions',
'ListAuditTasks',
'ListAuthorizers',
'ListBillingGroups',
'ListCACertificates',
'ListCertificateProviders',
'ListCertificates',
'ListCertificatesByCA',
'ListCommandExecutions',
'ListCommands',
'ListCustomMetrics',
'ListDetectMitigationActionsExecutions',
'ListDetectMitigationActionsTasks',
'ListDimensions',
'ListDomainConfigurations',
'ListFleetMetrics',
'ListIndices',
'ListJobExecutionsForJob',
'ListJobExecutionsForThing',
'ListJobTemplates',
'ListJobs',
'ListManagedJobTemplates',
'ListMetricValues',
'ListMitigationActions',
'ListNamedShadowsForThing',
'ListOTAUpdates',
'ListOutgoingCertificates',
'ListPackageVersions',
'ListPackages',
'ListPolicies',
'ListPolicyPrincipals',
'ListPolicyVersions',
'ListPrincipalPolicies',
'ListPrincipalThings',
'ListPrincipalThingsV2',
'ListProvisioningTemplateVersions',
'ListProvisioningTemplates',
'ListRelatedResourcesForAuditFinding',
'ListRetainedMessages',
'ListRoleAliases',
'ListSbomValidationResults',
'ListScheduledAudits',
'ListSecurityProfiles',
'ListSecurityProfilesForTarget',
'ListStreams',
'ListTargetsForPolicy',
'ListTargetsForSecurityProfile',
'ListThingGroups',
'ListThingGroupsForThing',
'ListThingPrincipals',
'ListThingPrincipalsV2',
'ListThingRegistrationTaskReports',
'ListThingRegistrationTasks',
'ListThingTypes',
'ListThings',
'ListThingsInBillingGroup',
'ListThingsInThingGroup',
'ListTopicRuleDestinations',
'ListTopicRules',
'ListTunnels',
'ListV2LoggingLevels',
'ListViolationEvents'
],
Tagging: [
'TagResource',
'UntagResource'
]
};
}
/**
* Grants permission to accept a pending certificate transfer
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_AcceptCertificateTransfer.html
*/
toAcceptCertificateTransfer() {
return this.to('AcceptCertificateTransfer');
}
/**
* Grants permission to add a thing to the specified billing group
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_AddThingToBillingGroup.html
*/
toAddThingToBillingGroup() {
return this.to('AddThingToBillingGroup');
}
/**
* Grants permission to add a thing to the specified thing group
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_AddThingToThingGroup.html
*/
toAddThingToThingGroup() {
return this.to('AddThingToThingGroup');
}
/**
* Grants permission to associate SBOM files to a package version
*
* Access Level: Write
*
* Dependent actions:
* - iot:GetIndexingConfiguration
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_AssociateSbomWithPackageVersion.html
*/
toAssociateSbomWithPackageVersion() {
return this.to('AssociateSbomWithPackageVersion');
}
/**
* Grants permission to associate a group with a continuous job
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_AssociateTargetsWithJob.html
*/
toAssociateTargetsWithJob() {
return this.to('AssociateTargetsWithJob');
}
/**
* Grants permission to attach a policy to the specified target
*
* Access Level: Permissions management
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_AttachPolicy.html
*/
toAttachPolicy() {
return this.to('AttachPolicy');
}
/**
* Grants permission to attach the specified policy to the specified principal (certificate or other credential)
*
* Access Level: Permissions management
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_AttachPrincipalPolicy.html
*/
toAttachPrincipalPolicy() {
return this.to('AttachPrincipalPolicy');
}
/**
* Grants permission to associate a Device Defender security profile with a thing group or with this account
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_AttachSecurityProfile.html
*/
toAttachSecurityProfile() {
return this.to('AttachSecurityProfile');
}
/**
* Grants permission to attach the specified principal to the specified thing
*
* Access Level: Write
*
* Possible conditions:
* - .ifThingArn()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_AttachThingPrincipal.html
*/
toAttachThingPrincipal() {
return this.to('AttachThingPrincipal');
}
/**
* Grants permission to cancel a mitigation action task that is in progress
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CancelAuditMitigationActionsTask.html
*/
toCancelAuditMitigationActionsTask() {
return this.to('CancelAuditMitigationActionsTask');
}
/**
* Grants permission to cancel an audit that is in progress. The audit can be either scheduled or on-demand
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CancelAuditTask.html
*/
toCancelAuditTask() {
return this.to('CancelAuditTask');
}
/**
* Grants permission to cancel a pending transfer for the specified certificate
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CancelCertificateTransfer.html
*/
toCancelCertificateTransfer() {
return this.to('CancelCertificateTransfer');
}
/**
* Grants permission to cancel a Device Defender ML Detect mitigation action
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CancelDetectMitigationActionsTask.html
*/
toCancelDetectMitigationActionsTask() {
return this.to('CancelDetectMitigationActionsTask');
}
/**
* Grants permission to cancel a job
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CancelJob.html
*/
toCancelJob() {
return this.to('CancelJob');
}
/**
* Grants permission to cancel a job execution on a particular device
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CancelJobExecution.html
*/
toCancelJobExecution() {
return this.to('CancelJobExecution');
}
/**
* Grants permission to clear the default authorizer
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_ClearDefaultAuthorizer.html
*/
toClearDefaultAuthorizer() {
return this.to('ClearDefaultAuthorizer');
}
/**
* Grants permission to close a tunnel
*
* Access Level: Write
*
* Possible conditions:
* - .ifDelete()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_iot-secure-tunneling_CloseTunnel.html
*/
toCloseTunnel() {
return this.to('CloseTunnel');
}
/**
* Grants permission to confirm a http url TopicRuleDestinationDestination
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_ConfirmTopicRuleDestination.html
*/
toConfirmTopicRuleDestination() {
return this.to('ConfirmTopicRuleDestination');
}
/**
* Grants permission to connect as the specified client
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/developerguide/policy-actions.html
*/
toConnect() {
return this.to('Connect');
}
/**
* Grants permission to create a Device Defender audit suppression
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateAuditSuppression.html
*/
toCreateAuditSuppression() {
return this.to('CreateAuditSuppression');
}
/**
* Grants permission to create an authorizer
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateAuthorizer.html
*/
toCreateAuthorizer() {
return this.to('CreateAuthorizer');
}
/**
* Grants permission to create a billing group
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateBillingGroup.html
*/
toCreateBillingGroup() {
return this.to('CreateBillingGroup');
}
/**
* Grants permission to create an X.509 certificate using the specified certificate signing request
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateCertificateFromCsr.html
*/
toCreateCertificateFromCsr() {
return this.to('CreateCertificateFromCsr');
}
/**
* Grants permission to create a certificate provider
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateCertificateProvider.html
*/
toCreateCertificateProvider() {
return this.to('CreateCertificateProvider');
}
/**
* Grants permission to create a command that can be used to start new executions against a device
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateCommand.html
*/
toCreateCommand() {
return this.to('CreateCommand');
}
/**
* Grants permission to create a custom metric for device side metric reporting and monitoring
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateCustomMetric.html
*/
toCreateCustomMetric() {
return this.to('CreateCustomMetric');
}
/**
* Grants permission to define a dimension that can be used to to limit the scope of a metric used in a security profile
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateDimension.html
*/
toCreateDimension() {
return this.to('CreateDimension');
}
/**
* Grants permission to create a domain configuration
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
* - .ifDomainName()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateDomainConfiguration.html
*/
toCreateDomainConfiguration() {
return this.to('CreateDomainConfiguration');
}
/**
* Grants permission to create a Dynamic Thing Group
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateDynamicThingGroup.html
*/
toCreateDynamicThingGroup() {
return this.to('CreateDynamicThingGroup');
}
/**
* Grants permission to create a fleet metric
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateFleetMetric.html
*/
toCreateFleetMetric() {
return this.to('CreateFleetMetric');
}
/**
* Grants permission to create a job
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateJob.html
*/
toCreateJob() {
return this.to('CreateJob');
}
/**
* Grants permission to create a job template
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateJobTemplate.html
*/
toCreateJobTemplate() {
return this.to('CreateJobTemplate');
}
/**
* Grants permission to create a 2048 bit RSA key pair and issues an X.509 certificate using the issued public key
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateKeysAndCertificate.html
*/
toCreateKeysAndCertificate() {
return this.to('CreateKeysAndCertificate');
}
/**
* Grants permission to define an action that can be applied to audit findings by using StartAuditMitigationActionsTask
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateMitigationAction.html
*/
toCreateMitigationAction() {
return this.to('CreateMitigationAction');
}
/**
* Grants permission to create an OTA update job
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateOTAUpdate.html
*/
toCreateOTAUpdate() {
return this.to('CreateOTAUpdate');
}
/**
* Grants permission to create a software package that you can deploy to your devices
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* Dependent actions:
* - iot:GetIndexingConfiguration
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreatePackage.html
*/
toCreatePackage() {
return this.to('CreatePackage');
}
/**
* Grants permission to create a version under the specified package
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* Dependent actions:
* - iot:GetIndexingConfiguration
* - s3:GetObjectVersion
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreatePackageVersion.html
*/
toCreatePackageVersion() {
return this.to('CreatePackageVersion');
}
/**
* Grants permission to create an AWS IoT policy
*
* Access Level: Permissions management
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreatePolicy.html
*/
toCreatePolicy() {
return this.to('CreatePolicy');
}
/**
* Grants permission to create a new version of the specified AWS IoT policy
*
* Access Level: Permissions management
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreatePolicyVersion.html
*/
toCreatePolicyVersion() {
return this.to('CreatePolicyVersion');
}
/**
* Grants permission to create a provisioning claim
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateProvisioningClaim.html
*/
toCreateProvisioningClaim() {
return this.to('CreateProvisioningClaim');
}
/**
* Grants permission to create a fleet provisioning template
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* Dependent actions:
* - iam:PassRole
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateProvisioningTemplate.html
*/
toCreateProvisioningTemplate() {
return this.to('CreateProvisioningTemplate');
}
/**
* Grants permission to create a new version of a fleet provisioning template
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateProvisioningTemplateVersion.html
*/
toCreateProvisioningTemplateVersion() {
return this.to('CreateProvisioningTemplateVersion');
}
/**
* Grants permission to create a role alias
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* Dependent actions:
* - iam:PassRole
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateRoleAlias.html
*/
toCreateRoleAlias() {
return this.to('CreateRoleAlias');
}
/**
* Grants permission to create a scheduled audit that is run at a specified time interval
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateScheduledAudit.html
*/
toCreateScheduledAudit() {
return this.to('CreateScheduledAudit');
}
/**
* Grants permission to create a Device Defender security profile
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateSecurityProfile.html
*/
toCreateSecurityProfile() {
return this.to('CreateSecurityProfile');
}
/**
* Grants permission to create a new AWS IoT stream
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateStream.html
*/
toCreateStream() {
return this.to('CreateStream');
}
/**
* Grants permission to create a thing in the thing registry
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateThing.html
*/
toCreateThing() {
return this.to('CreateThing');
}
/**
* Grants permission to create a thing group
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateThingGroup.html
*/
toCreateThingGroup() {
return this.to('CreateThingGroup');
}
/**
* Grants permission to create a new thing type
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateThingType.html
*/
toCreateThingType() {
return this.to('CreateThingType');
}
/**
* Grants permission to create a rule
*
* Access Level: Write
*
* Possible conditions:
* - .ifAwsRequestTag()
* - .ifAwsTagKeys()
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateTopicRule.html
*/
toCreateTopicRule() {
return this.to('CreateTopicRule');
}
/**
* Grants permission to create a TopicRuleDestination
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_CreateTopicRuleDestination.html
*/
toCreateTopicRuleDestination() {
return this.to('CreateTopicRuleDestination');
}
/**
* Grants permission to delete the audit configuration associated with the account
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteAccountAuditConfiguration.html
*/
toDeleteAccountAuditConfiguration() {
return this.to('DeleteAccountAuditConfiguration');
}
/**
* Grants permission to delete a Device Defender audit suppression
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteAuditSuppression.html
*/
toDeleteAuditSuppression() {
return this.to('DeleteAuditSuppression');
}
/**
* Grants permission to delete the specified authorizer
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteAuthorizer.html
*/
toDeleteAuthorizer() {
return this.to('DeleteAuthorizer');
}
/**
* Grants permission to delete the specified billing group
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteBillingGroup.html
*/
toDeleteBillingGroup() {
return this.to('DeleteBillingGroup');
}
/**
* Grants permission to delete a registered CA certificate
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteCACertificate.html
*/
toDeleteCACertificate() {
return this.to('DeleteCACertificate');
}
/**
* Grants permission to delete the specified certificate
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteCertificate.html
*/
toDeleteCertificate() {
return this.to('DeleteCertificate');
}
/**
* Grants permission to delete a certificate provider
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteCertificateProvider.html
*/
toDeleteCertificateProvider() {
return this.to('DeleteCertificateProvider');
}
/**
* Grants permission to delete a command
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteCommand.html
*/
toDeleteCommand() {
return this.to('DeleteCommand');
}
/**
* Grants permission to delete a command execution
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteCommandExecution.html
*/
toDeleteCommandExecution() {
return this.to('DeleteCommandExecution');
}
/**
* Grants permission to disconnect the specified connection
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/developerguide/policy-actions.html
*/
toDeleteConnection() {
return this.to('DeleteConnection');
}
/**
* Grants permission to deletes the specified custom metric from your AWS account
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteCustomMetric.html
*/
toDeleteCustomMetric() {
return this.to('DeleteCustomMetric');
}
/**
* Grants permission to remove the specified dimension from your AWS account
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteDimension.html
*/
toDeleteDimension() {
return this.to('DeleteDimension');
}
/**
* Grants permission to delete a domain configuration
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteDomainConfiguration.html
*/
toDeleteDomainConfiguration() {
return this.to('DeleteDomainConfiguration');
}
/**
* Grants permission to delete the specified Dynamic Thing Group
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteDynamicThingGroup.html
*/
toDeleteDynamicThingGroup() {
return this.to('DeleteDynamicThingGroup');
}
/**
* Grants permission to delete the specified fleet metric
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteFleetMetric.html
*/
toDeleteFleetMetric() {
return this.to('DeleteFleetMetric');
}
/**
* Grants permission to delete a job and its related job executions
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteJob.html
*/
toDeleteJob() {
return this.to('DeleteJob');
}
/**
* Grants permission to delete a job execution
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteJobExecution.html
*/
toDeleteJobExecution() {
return this.to('DeleteJobExecution');
}
/**
* Grants permission to delete a job template
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteJobTemplate.html
*/
toDeleteJobTemplate() {
return this.to('DeleteJobTemplate');
}
/**
* Grants permission to delete a defined mitigation action from your AWS account
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteMitigationAction.html
*/
toDeleteMitigationAction() {
return this.to('DeleteMitigationAction');
}
/**
* Grants permission to delete an OTA update job
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteOTAUpdate.html
*/
toDeleteOTAUpdate() {
return this.to('DeleteOTAUpdate');
}
/**
* Grants permission to delete a package
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeletePackage.html
*/
toDeletePackage() {
return this.to('DeletePackage');
}
/**
* Grants permission to delete a version of the specified package
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeletePackageVersion.html
*/
toDeletePackageVersion() {
return this.to('DeletePackageVersion');
}
/**
* Grants permission to delete the specified policy
*
* Access Level: Permissions management
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeletePolicy.html
*/
toDeletePolicy() {
return this.to('DeletePolicy');
}
/**
* Grants permission to Delete the specified version of the specified policy
*
* Access Level: Permissions management
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeletePolicyVersion.html
*/
toDeletePolicyVersion() {
return this.to('DeletePolicyVersion');
}
/**
* Grants permission to delete a fleet provisioning template
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteProvisioningTemplate.html
*/
toDeleteProvisioningTemplate() {
return this.to('DeleteProvisioningTemplate');
}
/**
* Grants permission to delete a fleet provisioning template version
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteProvisioningTemplateVersion.html
*/
toDeleteProvisioningTemplateVersion() {
return this.to('DeleteProvisioningTemplateVersion');
}
/**
* Grants permission to delete a CA certificate registration code
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteRegistrationCode.html
*/
toDeleteRegistrationCode() {
return this.to('DeleteRegistrationCode');
}
/**
* Grants permission to delete the specified role alias
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteRoleAlias.html
*/
toDeleteRoleAlias() {
return this.to('DeleteRoleAlias');
}
/**
* Grants permission to delete a scheduled audit
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteScheduledAudit.html
*/
toDeleteScheduledAudit() {
return this.to('DeleteScheduledAudit');
}
/**
* Grants permission to delete a Device Defender security profile
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteSecurityProfile.html
*/
toDeleteSecurityProfile() {
return this.to('DeleteSecurityProfile');
}
/**
* Grants permission to delete a specified stream
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteStream.html
*/
toDeleteStream() {
return this.to('DeleteStream');
}
/**
* Grants permission to delete the specified thing
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteThing.html
*/
toDeleteThing() {
return this.to('DeleteThing');
}
/**
* Grants permission to delete the specified thing group
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteThingGroup.html
*/
toDeleteThingGroup() {
return this.to('DeleteThingGroup');
}
/**
* Grants permission to delete the specified thing shadow
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/developerguide/policy-actions.html
*/
toDeleteThingShadow() {
return this.to('DeleteThingShadow');
}
/**
* Grants permission to delete the specified thing type
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteThingType.html
*/
toDeleteThingType() {
return this.to('DeleteThingType');
}
/**
* Grants permission to delete the specified rule
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteTopicRule.html
*/
toDeleteTopicRule() {
return this.to('DeleteTopicRule');
}
/**
* Grants permission to delete a TopicRuleDestination
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteTopicRuleDestination.html
*/
toDeleteTopicRuleDestination() {
return this.to('DeleteTopicRuleDestination');
}
/**
* Grants permission to delete the specified v2 logging level
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeleteV2LoggingLevel.html
*/
toDeleteV2LoggingLevel() {
return this.to('DeleteV2LoggingLevel');
}
/**
* Grants permission to deprecate the specified thing type
*
* Access Level: Write
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DeprecateThingType.html
*/
toDeprecateThingType() {
return this.to('DeprecateThingType');
}
/**
* Grants permission to get information about audit configurations for the account
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeAccountAuditConfiguration.html
*/
toDescribeAccountAuditConfiguration() {
return this.to('DescribeAccountAuditConfiguration');
}
/**
* Grants permission to get information about a single audit finding. Properties include the reason for noncompliance, the severity of the issue, and when the audit that returned the finding was started
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeAuditFinding.html
*/
toDescribeAuditFinding() {
return this.to('DescribeAuditFinding');
}
/**
* Grants permission to get information about an audit mitigation task that is used to apply mitigation actions to a set of audit findings
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeAuditMitigationActionsTask.html
*/
toDescribeAuditMitigationActionsTask() {
return this.to('DescribeAuditMitigationActionsTask');
}
/**
* Grants permission to get information about a Device Defender audit suppression
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeAuditSuppression.html
*/
toDescribeAuditSuppression() {
return this.to('DescribeAuditSuppression');
}
/**
* Grants permission to get information about a Device Defender audit
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeAuditTask.html
*/
toDescribeAuditTask() {
return this.to('DescribeAuditTask');
}
/**
* Grants permission to describe an authorizer
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeAuthorizer.html
*/
toDescribeAuthorizer() {
return this.to('DescribeAuthorizer');
}
/**
* Grants permission to get information about the specified billing group
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeBillingGroup.html
*/
toDescribeBillingGroup() {
return this.to('DescribeBillingGroup');
}
/**
* Grants permission to describe a registered CA certificate
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeCACertificate.html
*/
toDescribeCACertificate() {
return this.to('DescribeCACertificate');
}
/**
* Grants permission to get information about the specified certificate
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeCertificate.html
*/
toDescribeCertificate() {
return this.to('DescribeCertificate');
}
/**
* Grants permission to describe a certificate provider
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeCertificateProvider.html
*/
toDescribeCertificateProvider() {
return this.to('DescribeCertificateProvider');
}
/**
* Grants permission to describe a custom metric that is defined in your AWS account
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeCustomMetric.html
*/
toDescribeCustomMetric() {
return this.to('DescribeCustomMetric');
}
/**
* Grants permission to describe the default authorizer
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeDefaultAuthorizer.html
*/
toDescribeDefaultAuthorizer() {
return this.to('DescribeDefaultAuthorizer');
}
/**
* Grants permission to describe a Device Defender ML Detect mitigation action
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeDetectMitigationActionsTask.html
*/
toDescribeDetectMitigationActionsTask() {
return this.to('DescribeDetectMitigationActionsTask');
}
/**
* Grants permission to get details about a dimension that is defined in your AWS account
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeDimension.html
*/
toDescribeDimension() {
return this.to('DescribeDimension');
}
/**
* Grants permission to get information about the domain configuration
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeDomainConfiguration.html
*/
toDescribeDomainConfiguration() {
return this.to('DescribeDomainConfiguration');
}
/**
* Grants permission to describe the encryption configuration for the account
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeEncryptionConfiguration.html
*/
toDescribeEncryptionConfiguration() {
return this.to('DescribeEncryptionConfiguration');
}
/**
* Grants permission to get a unique endpoint specific to the AWS account making the call
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeEndpoint.html
*/
toDescribeEndpoint() {
return this.to('DescribeEndpoint');
}
/**
* Grants permission to get account event configurations
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeEventConfigurations.html
*/
toDescribeEventConfigurations() {
return this.to('DescribeEventConfigurations');
}
/**
* Grants permission to get information about the specified fleet metric
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeFleetMetric.html
*/
toDescribeFleetMetric() {
return this.to('DescribeFleetMetric');
}
/**
* Grants permission to get information about the specified index
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeIndex.html
*/
toDescribeIndex() {
return this.to('DescribeIndex');
}
/**
* Grants permission to describe a job
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeJob.html
*/
toDescribeJob() {
return this.to('DescribeJob');
}
/**
* Grants permission to describe a job execution
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeJobExecution.html
*/
toDescribeJobExecution() {
return this.to('DescribeJobExecution');
}
/**
* Grants permission to describe a job template
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeJobTemplate.html
*/
toDescribeJobTemplate() {
return this.to('DescribeJobTemplate');
}
/**
* Grants permission to describe a managed job template
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeManagedJobTemplate.html
*/
toDescribeManagedJobTemplate() {
return this.to('DescribeManagedJobTemplate');
}
/**
* Grants permission to get information about a mitigation action
*
* Access Level: Read
*
* https://docs.aws.amazon.com/iot/latest/apireference/API_DescribeMitigationAction.html
*/
toDescribeMitigationAction() {
return this.to('DescribeMitigationAction');
}
/**
* Grants permission to get information a