[appmesh] Add IAM Grants to Resources #11639
Labels
@aws-cdk/aws-appmesh
Related to AWS App Mesh
effort/large
Large work item – several weeks of effort
feature-request
A feature should be added or improved.
p2
Milestone
Per the CDK Design Guidelines App Mesh should have grants on a per resource basis.
Use Case
Granting permissions to other services to call App Mesh is an important part of stabilizing the App Mesh L2 APIs
Proposed Solution
For each resource, we should implement a grant for
Describe
,Delete
,Update
,TagResource
, andUntagResource
. There should also be high levelListAll
andDescribeAll
permissions as described in the CDK Design Guidelines.For Virtual Nodes and Virtual Gateways, we should implement a grant for
StreamAggregatedResources
Other
This is a 🚀 Feature Request
The text was updated successfully, but these errors were encountered: