{
"Version":
"2012-10-17",
"Statement": [
{
"Sid":
"FullPolicy",
"Action": [
"autoscaling:Describe*",
"cloudformation:DescribeStacks",
"cloudformation:GetStackPolicy",
"cloudformation:GetTemplate",
"cloudformation:ListStackResources",
"cloudfront:List*",
"cloudfront:GetDistributionConfig",
"cloudfront:GetStreamingDistributionConfig",
"cloudhsm:Describe*",
"cloudhsm:List*",
"cloudsearch:Describe*",
"cloudtrail:GetTrailStatus",
"cloudwatch:GetMetricStatistics",
"cloudwatch:ListMetrics",
"config:Describe*",
"datapipeline:ListPipelines",
"datapipeline:GetPipelineDefinition",
"datapipeline:Describe*",
"dynamodb:ListTables",
"dynamodb:DescribeTable",
"ec2:Describe*",
"ecs:ListClusters",
"ecs:DescribeClusters",
"ecs:ListContainerInstances",
"ecs:DescribeContainerInstances",
"ecs:ListServices",
"ecs:DescribeServices",
"ecs:ListTaskDefinitions",
"ecs:DescribeTaskDefinition",
"ecs:ListTasks",
"ecs:DescribeTasks",
"elasticache:Describe*",
"elasticache:List*",
"elasticloadbalancing:Describe*",
"elasticmapreduce:List*",
"glacier:List*",
"glacier:DescribeVault",
"glacier:GetVaultNotifications",
"glacier:DescribeJob",
"glacier:GetJobOutput",
"iam:Get*",
"iam:List*",
"iam:GenerateCredentialReport",
"kinesis:ListStreams",
"kinesis:DescribeStream",
"kinesis:GetShardIterator",
"kinesis:GetRecords",
"lambda:ListFunctions",
"rds:Describe*",
"rds:List*",
"redshift:Describe*",
"redshift:ViewQueriesInConsole",
"route53:ListHealthChecks",
"route53:ListHostedZones",
"route53:ListResourceRecordSets",
"s3:Get*",
"s3:GetNotificationConfiguration",
"s3:List*",
"ses:ListIdentities",
"ses:GetSendStatistics",
"ses:GetIdentityDkimAttributes",
"ses:GetIdentityVerificationAttributes",
"ses:GetSendQuota",
"sdb:ListDomains",
"sdb:DomainMetadata",
"support:*",
"swf:ListClosedWorkflowExecutions",
"swf:ListDomains",
"swf:ListActivityTypes",
"swf:ListWorkflowTypes",
"sns:GetSnsTopic",
"sns:GetTopicAttributes",
"sns:GetSubscriptionAttributes",
"sns:ListTopics",
"sns:ListSubscriptionsByTopic",
"sqs:ListQueues",
"sqs:GetQueueAttributes",
"workspaces:Describe*"
],
"Effect":
"Allow",
"Resource":
"*"
}
]
}
{
"Statement":[{
"Action":[
"ec2:Describe*"
],
"Effect":"Allow",
"Resource":"*"
},
{
"Action":["rds:Describe*"
],
"Effect":"Allow",
"Resource":"*"
},
{
"Action":["s3:Get*",
"s3:List*"
],
"Effect":"Allow",
"Resource":"*"
},
{
"Action":["sdb:GetAttributes",
"sdb:List*",
"sdb:Select*"
],
"Effect":"Allow",
"Resource":"*"
},
{
"Action":["sns:Get*",
"sns:List*"
],
"Effect":"Allow",
"Resource":"*"
},
{
"Action":["sqs:ListQueues",
"sqs:GetQueueAttributes",
"sqs:ReceiveMessage"
],
"Effect":"Allow",
"Resource":"*"
},
{
"Action":["autoscaling:Describe*"
],
"Effect":"Allow",
"Resource":"*"
},
{
"Action":["elasticloadbalancing:Describe*"
],
"Effect":"Allow",
"Resource":"*"
},
{
"Action":["cloudwatch:Describe*",
"cloudwatch:List*",
"cloudwatch:Get*"
],
"Effect":"Allow",
"Resource":"*"
},
{
"Action":[
"iam:Get*",
"iam:List*"
],
"Effect":"Allow",
"Resource":"*"
}
]
}
No comments:
Post a Comment