-
Notifications
You must be signed in to change notification settings - Fork 1
/
aws-cli-policies.json
94 lines (94 loc) · 3.12 KB
/
aws-cli-policies.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": [
"cloudformation:ListExports",
"kms:GetPublicKey",
"iam:DeleteAccessKey",
"cloudformation:ListStackInstances",
"cloudformation:DescribeChangeSetHooks",
"s3:CreateBucket",
"cloudformation:DescribeStackResource",
"cloudformation:CreateChangeSet",
"cloudformation:ListTypeRegistrations",
"cloudformation:ListStackSetOperationResults",
"cloudformation:DescribeStackEvents",
"cloudformation:UpdateStack",
"cloudformation:BatchDescribeTypeConfigurations",
"s3:DeleteObject",
"cloudformation:DescribeChangeSet",
"cloudformation:ExecuteChangeSet",
"cloudformation:ListStackResources",
"cloudformation:DescribeStackInstance",
"iam:UpdateUser",
"cloudformation:DescribeStackResources",
"iam:UpdateAccessKey",
"s3:DeleteBucketPolicy",
"kms:DisableKey",
"cloudformation:DescribeStacks",
"s3:PutObject",
"cloudformation:DescribeStackResourceDrifts",
"cloudformation:GetStackPolicy",
"cloudformation:GetTemplate",
"cloudformation:DeleteStack",
"cloudformation:UntagResource",
"kms:DeleteAlias",
"cloudformation:ValidateTemplate",
"cloudformation:ListTypeVersions",
"cloudformation:DetectStackSetDrift",
"cloudformation:DescribeStackDriftDetectionStatus",
"cloudformation:DetectStackDrift",
"kms:UntagResource",
"cloudformation:ListStackSetOperations",
"kms:PutKeyPolicy",
"cloudformation:ListTypes",
"s3:ListBucket",
"iam:CreateUser",
"s3:GetBucketPolicy",
"cloudformation:DeleteChangeSet",
"iam:CreateAccessKey",
"cloudformation:DetectStackResourceDrift",
"cloudformation:EstimateTemplateCost",
"kms:TagResource",
"s3:PutBucketTagging",
"kms:ScheduleKeyDeletion",
"cloudformation:DescribeStackSetOperation",
"kms:DescribeKey",
"kms:CreateKey",
"cloudformation:DescribeAccountLimits",
"kms:Sign",
"s3:DeleteBucket",
"iam:ListAccessKeys",
"cloudformation:ListStacks",
"s3:PutBucketPublicAccessBlock",
"cloudformation:DescribeType",
"cloudformation:ListImports",
"kms:GetKeyPolicy",
"s3:PutBucketOwnershipControls",
"iam:DeleteUser",
"s3:GetBucketAcl",
"cloudformation:DescribePublisher",
"cloudformation:DescribeTypeRegistration",
"iam:TagUser",
"kms:UpdateAlias",
"cloudformation:GetTemplateSummary",
"iam:UntagUser",
"kms:ListKeys",
"s3:ListAllMyBuckets",
"cloudformation:DescribeStackSet",
"cloudformation:ListStackSets",
"cloudformation:CreateStack",
"kms:CreateAlias",
"s3:PutBucketPolicy",
"cloudformation:TagResource",
"iam:ListUsers",
"iam:GetUser",
"cloudformation:ListChangeSets"
],
"Resource": "*"
}
]
}