From 3a9de781f84b79008c94c255cad28cbb3c672ab3 Mon Sep 17 00:00:00 2001
From: udondan <deemes79@googlemail.com>
Date: Sat, 11 May 2024 02:14:20 +0000
Subject: [PATCH] Adds latest IAM updates from AWS

---
 CHANGELOG/v0.640.0.md                         |  7 ++++
 README.md                                     |  2 +-
 VERSION                                       |  2 +-
 docs/source/conf.py                           |  2 +-
 docs/source/index.rst                         |  2 +-
 lib/generated/policy-statements/q.ts          | 36 +++++++++++++++----
 .../policy-statements/systemsmanagerforsap.ts | 36 +++++++++++++++++++
 stats/actions/q                               |  2 ++
 stats/actions/ssm-sap                         |  3 ++
 9 files changed, 82 insertions(+), 10 deletions(-)
 create mode 100644 CHANGELOG/v0.640.0.md

diff --git a/CHANGELOG/v0.640.0.md b/CHANGELOG/v0.640.0.md
new file mode 100644
index 000000000..050f22668
--- /dev/null
+++ b/CHANGELOG/v0.640.0.md
@@ -0,0 +1,7 @@
+**New actions:**
+
+- q:CreateAssignment
+- q:DeleteAssignment
+- ssm-sap:ListOperationEvents
+- ssm-sap:StartApplication
+- ssm-sap:StopApplication
diff --git a/README.md b/README.md
index c5831dfa0..49a5b1868 100644
--- a/README.md
+++ b/README.md
@@ -17,7 +17,7 @@
 Support for:
 
 - 393 Services
-- 16645 Actions
+- 16650 Actions
 - 1786 Resource Types
 - 1737 Condition keys
 <!-- /stats -->
diff --git a/VERSION b/VERSION
index 5994d4666..b7002dc86 100644
--- a/VERSION
+++ b/VERSION
@@ -1 +1 @@
-0.639.0
+0.640.0
diff --git a/docs/source/conf.py b/docs/source/conf.py
index bd2cf5f40..1e4a7e830 100644
--- a/docs/source/conf.py
+++ b/docs/source/conf.py
@@ -24,7 +24,7 @@
 author = 'Daniel Schroeder'
 
 # The full version, including alpha/beta/rc tags
-release = '0.639.0'
+release = '0.640.0'
 
 # -- General configuration ---------------------------------------------------
 
diff --git a/docs/source/index.rst b/docs/source/index.rst
index 4306baf4f..e9472a7cd 100644
--- a/docs/source/index.rst
+++ b/docs/source/index.rst
@@ -31,7 +31,7 @@ AWS IAM policy statement generator with fluent interface.
 Support for:
 
 - 393 Services
-- 16645 Actions
+- 16650 Actions
 - 1786 Resource Types
 - 1737 Condition keys
 
diff --git a/lib/generated/policy-statements/q.ts b/lib/generated/policy-statements/q.ts
index f3f986d8f..72bdff0d0 100644
--- a/lib/generated/policy-statements/q.ts
+++ b/lib/generated/policy-statements/q.ts
@@ -18,6 +18,28 @@ export class Q extends PolicyStatement {
     super(sid);
   }
 
+  /**
+   * Grants permission to create a user or group assignment for an Amazon Q Developer Profile
+   *
+   * Access Level: Write
+   *
+   * https://docs.aws.amazon.com/amazonq/latest/aws-builder-use-ug/security_iam_manage-access-with-policies.html
+   */
+  public toCreateAssignment() {
+    return this.to('CreateAssignment');
+  }
+
+  /**
+   * Grants permission to delete a user or group assignment for an Amazon Q Developer Profile
+   *
+   * Access Level: Write
+   *
+   * https://docs.aws.amazon.com/amazonq/latest/aws-builder-use-ug/security_iam_manage-access-with-policies.html
+   */
+  public toDeleteAssignment() {
+    return this.to('DeleteAssignment');
+  }
+
   /**
    * Grants permission to get individual messages associated with a specific conversation with Amazon Q
    *
@@ -129,19 +151,21 @@ export class Q extends PolicyStatement {
   }
 
   protected accessLevelList: AccessLevelList = {
-    Read: [
-      'GetConversation',
-      'GetIdentityMetadata',
-      'GetTroubleshootingResults',
-      'ListConversations'
-    ],
     Write: [
+      'CreateAssignment',
+      'DeleteAssignment',
       'PassRequest',
       'SendMessage',
       'StartConversation',
       'StartTroubleshootingAnalysis',
       'StartTroubleshootingResolutionExplanation',
       'UpdateTroubleshootingCommandResult'
+    ],
+    Read: [
+      'GetConversation',
+      'GetIdentityMetadata',
+      'GetTroubleshootingResults',
+      'ListConversations'
     ]
   };
 }
diff --git a/lib/generated/policy-statements/systemsmanagerforsap.ts b/lib/generated/policy-statements/systemsmanagerforsap.ts
index d9cdd1bb7..6c79be4f1 100644
--- a/lib/generated/policy-statements/systemsmanagerforsap.ts
+++ b/lib/generated/policy-statements/systemsmanagerforsap.ts
@@ -139,6 +139,17 @@ export class SsmSap extends PolicyStatement {
     return this.to('ListDatabases');
   }
 
+  /**
+   * Grants permission to retrieve a list of all operation events in a specified operation
+   *
+   * Access Level: List
+   *
+   * https://docs.aws.amazon.com/systems-manager/index.html
+   */
+  public toListOperationEvents() {
+    return this.to('ListOperationEvents');
+  }
+
   /**
    * Grants permission to retrieve a list of all operations in the account of customer, additional filters can be applied
    *
@@ -198,6 +209,17 @@ export class SsmSap extends PolicyStatement {
     return this.to('RestoreDatabase');
   }
 
+  /**
+   * Grants permission to start a registered SSM for SAP application
+   *
+   * Access Level: Write
+   *
+   * https://docs.aws.amazon.com/systems-manager/index.html
+   */
+  public toStartApplication() {
+    return this.to('StartApplication');
+  }
+
   /**
    * Grants permission to start an on-demand discovery of a registered SSM for SAP application
    *
@@ -209,6 +231,17 @@ export class SsmSap extends PolicyStatement {
     return this.to('StartApplicationRefresh');
   }
 
+  /**
+   * Grants permission to stop a registered SSM for SAP application
+   *
+   * Access Level: Write
+   *
+   * https://docs.aws.amazon.com/systems-manager/index.html
+   */
+  public toStopApplication() {
+    return this.to('StopApplication');
+  }
+
   /**
    * Grants permission to tag a specified resource ARN
    *
@@ -268,7 +301,9 @@ export class SsmSap extends PolicyStatement {
       'PutResourcePermission',
       'RegisterApplication',
       'RestoreDatabase',
+      'StartApplication',
       'StartApplicationRefresh',
+      'StopApplication',
       'UpdateApplicationSettings',
       'UpdateHANABackupSettings'
     ],
@@ -284,6 +319,7 @@ export class SsmSap extends PolicyStatement {
       'ListApplications',
       'ListComponents',
       'ListDatabases',
+      'ListOperationEvents',
       'ListOperations'
     ],
     Tagging: [
diff --git a/stats/actions/q b/stats/actions/q
index dc2efc689..53efab143 100644
--- a/stats/actions/q
+++ b/stats/actions/q
@@ -1,3 +1,5 @@
+q:CreateAssignment;Write
+q:DeleteAssignment;Write
 q:GetConversation;Read
 q:GetIdentityMetadata;Read
 q:GetTroubleshootingResults;Read
diff --git a/stats/actions/ssm-sap b/stats/actions/ssm-sap
index 6b316cd5f..db1163c2e 100644
--- a/stats/actions/ssm-sap
+++ b/stats/actions/ssm-sap
@@ -9,12 +9,15 @@ ssm-sap:GetResourcePermission;Read
 ssm-sap:ListApplications;List
 ssm-sap:ListComponents;List
 ssm-sap:ListDatabases;List
+ssm-sap:ListOperationEvents;List
 ssm-sap:ListOperations;List
 ssm-sap:ListTagsForResource;Read
 ssm-sap:PutResourcePermission;Write
 ssm-sap:RegisterApplication;Write
 ssm-sap:RestoreDatabase;Write
+ssm-sap:StartApplication;Write
 ssm-sap:StartApplicationRefresh;Write
+ssm-sap:StopApplication;Write
 ssm-sap:TagResource;Tagging
 ssm-sap:UntagResource;Tagging
 ssm-sap:UpdateApplicationSettings;Write