From 34ad8f8ee111c5b1f67a82959870ba5960cea951 Mon Sep 17 00:00:00 2001 From: udondan Date: Thu, 18 Apr 2024 02:12:41 +0000 Subject: [PATCH] Adds latest IAM updates from AWS --- CHANGELOG/v0.628.0.md | 17 +++++ README.md | 4 +- VERSION | 2 +- docs/source/conf.py | 2 +- docs/source/index.rst | 4 +- .../cloudwatchinternetmonitor.ts | 37 ++++++++++ .../emroneksemrcontainers.ts | 60 ++++++++++++++++ .../policy-statements/kinesisanalyticsv2.ts | 68 ++++++++++--------- lib/generated/policy-statements/outposts.ts | 60 ++++++++++++++++ stats/actions/emr-containers | 3 + stats/actions/internetmonitor | 2 + stats/actions/outposts | 5 ++ stats/resources/emr-containers | 1 + stats/resources/internetmonitor | 1 + 14 files changed, 229 insertions(+), 37 deletions(-) create mode 100644 CHANGELOG/v0.628.0.md diff --git a/CHANGELOG/v0.628.0.md b/CHANGELOG/v0.628.0.md new file mode 100644 index 000000000..c9af36174 --- /dev/null +++ b/CHANGELOG/v0.628.0.md @@ -0,0 +1,17 @@ +**New actions:** + +- emr-containers:CreateSecurityConfiguration +- emr-containers:DescribeSecurityConfiguration +- emr-containers:ListSecurityConfigurations +- internetmonitor:GetInternetEvent +- internetmonitor:ListInternetEvents +- outposts:CancelCapacityTask +- outposts:GetCapacityTask +- outposts:GetOutpostSupportedInstanceTypes +- outposts:ListCapacityTasks +- outposts:StartCapacityTask + +**New resource types:** + +- emr-containers:securityConfiguration +- internetmonitor:InternetEvent diff --git a/README.md b/README.md index 5ae794d74..d4277b702 100644 --- a/README.md +++ b/README.md @@ -17,8 +17,8 @@ Support for: - 390 Services -- 16542 Actions -- 1773 Resource Types +- 16552 Actions +- 1775 Resource Types - 1721 Condition keys diff --git a/VERSION b/VERSION index 8a3648b1c..0a0080896 100644 --- a/VERSION +++ b/VERSION @@ -1 +1 @@ -0.627.0 +0.628.0 diff --git a/docs/source/conf.py b/docs/source/conf.py index db529556f..1b6a63bf4 100644 --- a/docs/source/conf.py +++ b/docs/source/conf.py @@ -24,7 +24,7 @@ author = 'Daniel Schroeder' # The full version, including alpha/beta/rc tags -release = '0.627.0' +release = '0.628.0' # -- General configuration --------------------------------------------------- diff --git a/docs/source/index.rst b/docs/source/index.rst index ff6e1b35f..de4d3bdce 100644 --- a/docs/source/index.rst +++ b/docs/source/index.rst @@ -31,8 +31,8 @@ AWS IAM policy statement generator with fluent interface. Support for: - 390 Services -- 16542 Actions -- 1773 Resource Types +- 16552 Actions +- 1775 Resource Types - 1721 Condition keys .. diff --git a/lib/generated/policy-statements/cloudwatchinternetmonitor.ts b/lib/generated/policy-statements/cloudwatchinternetmonitor.ts index ee19e6174..3d88e5596 100644 --- a/lib/generated/policy-statements/cloudwatchinternetmonitor.ts +++ b/lib/generated/policy-statements/cloudwatchinternetmonitor.ts @@ -55,6 +55,17 @@ export class Internetmonitor extends PolicyStatement { return this.to('GetHealthEvent'); } + /** + * Grants permission to get information about a specified internet event + * + * Access Level: Read + * + * https://docs.aws.amazon.com/internet-monitor/latest/api/API_GetInternetEvent.html + */ + public toGetInternetEvent() { + return this.to('GetInternetEvent'); + } + /** * Grants permission to get information about a monitor * @@ -110,6 +121,17 @@ export class Internetmonitor extends PolicyStatement { return this.to('ListHealthEvents'); } + /** + * Grants permission to list all internet events + * + * Access Level: List + * + * https://docs.aws.amazon.com/internet-monitor/latest/api/API_ListInternetEvents.html + */ + public toListInternetEvents() { + return this.to('ListInternetEvents'); + } + /** * Grants permission to list all monitors in an account and their statuses * @@ -203,6 +225,7 @@ export class Internetmonitor extends PolicyStatement { ], Read: [ 'GetHealthEvent', + 'GetInternetEvent', 'GetMonitor', 'GetQueryResults', 'GetQueryStatus', @@ -212,6 +235,7 @@ export class Internetmonitor extends PolicyStatement { ], List: [ 'ListHealthEvents', + 'ListInternetEvents', 'ListMonitors' ], Tagging: [ @@ -252,6 +276,19 @@ export class Internetmonitor extends PolicyStatement { return this.on(`arn:${ partition ?? this.defaultPartition }:internetmonitor:${ region ?? this.defaultRegion }:${ account ?? this.defaultAccount }:monitor/${ monitorName }`); } + /** + * Adds a resource of type InternetEvent to the statement + * + * https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-IM-components.html + * + * @param internetEventId - Identifier for the internetEventId. + * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. + * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. + */ + public onInternetEvent(internetEventId: string, account?: string, partition?: string) { + return this.on(`arn:${ partition ?? this.defaultPartition }:internetmonitor::${ account ?? this.defaultAccount }:internet-event/${ internetEventId }`); + } + /** * Filters access by tag key-value pairs in the request * diff --git a/lib/generated/policy-statements/emroneksemrcontainers.ts b/lib/generated/policy-statements/emroneksemrcontainers.ts index 6486a320f..7113b450d 100644 --- a/lib/generated/policy-statements/emroneksemrcontainers.ts +++ b/lib/generated/policy-statements/emroneksemrcontainers.ts @@ -60,6 +60,21 @@ export class EmrContainers extends PolicyStatement { return this.to('CreateManagedEndpoint'); } + /** + * Grants permission to create a security configuration + * + * Access Level: Write + * + * Possible conditions: + * - .ifAwsRequestTag() + * - .ifAwsTagKeys() + * + * https://docs.aws.amazon.com/emr-on-eks/latest/APIReference/API_CreateSecurityConfiguration.html + */ + public toCreateSecurityConfiguration() { + return this.to('CreateSecurityConfiguration'); + } + /** * Grants permission to create a virtual cluster * @@ -141,6 +156,17 @@ export class EmrContainers extends PolicyStatement { return this.to('DescribeManagedEndpoint'); } + /** + * Grants permission to describe a security configuration + * + * Access Level: Read + * + * https://docs.aws.amazon.com/emr-on-eks/latest/APIReference/API_DescribeSecurityConfiguration.html + */ + public toDescribeSecurityConfiguration() { + return this.to('DescribeSecurityConfiguration'); + } + /** * Grants permission to describe a virtual cluster * @@ -196,6 +222,17 @@ export class EmrContainers extends PolicyStatement { return this.to('ListManagedEndpoints'); } + /** + * Grants permission to list security configurations + * + * Access Level: List + * + * https://docs.aws.amazon.com/emr-on-eks/latest/APIReference/API_ListSecurityConfigurations.html + */ + public toListSecurityConfigurations() { + return this.to('ListSecurityConfigurations'); + } + /** * Grants permission to list tags for the specified resource * @@ -269,6 +306,7 @@ export class EmrContainers extends PolicyStatement { 'CancelJobRun', 'CreateJobTemplate', 'CreateManagedEndpoint', + 'CreateSecurityConfiguration', 'CreateVirtualCluster', 'DeleteJobTemplate', 'DeleteManagedEndpoint', @@ -280,12 +318,14 @@ export class EmrContainers extends PolicyStatement { 'DescribeJobRun', 'DescribeJobTemplate', 'DescribeManagedEndpoint', + 'DescribeSecurityConfiguration', 'DescribeVirtualCluster' ], List: [ 'ListJobRuns', 'ListJobTemplates', 'ListManagedEndpoints', + 'ListSecurityConfigurations', 'ListTagsForResource', 'ListVirtualClusters' ], @@ -365,6 +405,23 @@ export class EmrContainers extends PolicyStatement { return this.on(`arn:${ partition ?? this.defaultPartition }:emr-containers:${ region ?? this.defaultRegion }:${ account ?? this.defaultAccount }:/virtualclusters/${ virtualClusterId }/endpoints/${ endpointId }`); } + /** + * Adds a resource of type securityConfiguration to the statement + * + * https://docs.aws.amazon.com/emr/latest/EMR-on-EKS-DevelopmentGuide/security-configurations.html + * + * @param securityConfigurationId - Identifier for the securityConfigurationId. + * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. + * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region. + * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. + * + * Possible conditions: + * - .ifAwsResourceTag() + */ + public onSecurityConfiguration(securityConfigurationId: string, account?: string, region?: string, partition?: string) { + return this.on(`arn:${ partition ?? this.defaultPartition }:emr-containers:${ region ?? this.defaultRegion }:${ account ?? this.defaultAccount }:/securityconfigurations/${ securityConfigurationId }`); + } + /** * Filters access by the tag key-value pairs present in the request * @@ -373,6 +430,7 @@ export class EmrContainers extends PolicyStatement { * Applies to actions: * - .toCreateJobTemplate() * - .toCreateManagedEndpoint() + * - .toCreateSecurityConfiguration() * - .toCreateVirtualCluster() * - .toStartJobRun() * - .toTagResource() @@ -395,6 +453,7 @@ export class EmrContainers extends PolicyStatement { * - jobRun * - jobTemplate * - managedEndpoint + * - securityConfiguration * * @param tagKey The tag key to check * @param value The value(s) to check @@ -412,6 +471,7 @@ export class EmrContainers extends PolicyStatement { * Applies to actions: * - .toCreateJobTemplate() * - .toCreateManagedEndpoint() + * - .toCreateSecurityConfiguration() * - .toCreateVirtualCluster() * - .toStartJobRun() * - .toTagResource() diff --git a/lib/generated/policy-statements/kinesisanalyticsv2.ts b/lib/generated/policy-statements/kinesisanalyticsv2.ts index 0066c758b..f62f7d872 100644 --- a/lib/generated/policy-statements/kinesisanalyticsv2.ts +++ b/lib/generated/policy-statements/kinesisanalyticsv2.ts @@ -23,7 +23,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_AddApplicationCloudWatchLoggingOption.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_AddApplicationCloudWatchLoggingOption.html */ public toAddApplicationCloudWatchLoggingOption() { return this.to('AddApplicationCloudWatchLoggingOption'); @@ -34,7 +34,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_AddApplicationInput.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_AddApplicationInput.html */ public toAddApplicationInput() { return this.to('AddApplicationInput'); @@ -45,7 +45,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_AddApplicationInputProcessingConfiguration.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_AddApplicationInputProcessingConfiguration.html */ public toAddApplicationInputProcessingConfiguration() { return this.to('AddApplicationInputProcessingConfiguration'); @@ -56,7 +56,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_AddApplicationOutput.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_AddApplicationOutput.html */ public toAddApplicationOutput() { return this.to('AddApplicationOutput'); @@ -67,7 +67,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_AddApplicationReferenceDataSource.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_AddApplicationReferenceDataSource.html */ public toAddApplicationReferenceDataSource() { return this.to('AddApplicationReferenceDataSource'); @@ -78,7 +78,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_AddApplicationVpcConfiguration.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_AddApplicationVpcConfiguration.html */ public toAddApplicationVpcConfiguration() { return this.to('AddApplicationVpcConfiguration'); @@ -93,7 +93,10 @@ export class KinesisanalyticsV2 extends PolicyStatement { * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_CreateApplication.html + * Dependent actions: + * - iam:PassRole + * + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_CreateApplication.html */ public toCreateApplication() { return this.to('CreateApplication'); @@ -104,7 +107,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Read * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_CreateApplicationPresignedUrl.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_CreateApplicationPresignedUrl.html */ public toCreateApplicationPresignedUrl() { return this.to('CreateApplicationPresignedUrl'); @@ -115,7 +118,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_CreateApplicationSnapshot.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_CreateApplicationSnapshot.html */ public toCreateApplicationSnapshot() { return this.to('CreateApplicationSnapshot'); @@ -126,7 +129,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_DeleteApplication.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_DeleteApplication.html */ public toDeleteApplication() { return this.to('DeleteApplication'); @@ -137,7 +140,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_DeleteApplicationCloudWatchLoggingOption.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_DeleteApplicationCloudWatchLoggingOption.html */ public toDeleteApplicationCloudWatchLoggingOption() { return this.to('DeleteApplicationCloudWatchLoggingOption'); @@ -148,7 +151,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_DeleteApplicationInputProcessingConfiguration.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_DeleteApplicationInputProcessingConfiguration.html */ public toDeleteApplicationInputProcessingConfiguration() { return this.to('DeleteApplicationInputProcessingConfiguration'); @@ -159,7 +162,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_DeleteApplicationOutput.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_DeleteApplicationOutput.html */ public toDeleteApplicationOutput() { return this.to('DeleteApplicationOutput'); @@ -170,7 +173,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_DeleteApplicationReferenceDataSource.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_DeleteApplicationReferenceDataSource.html */ public toDeleteApplicationReferenceDataSource() { return this.to('DeleteApplicationReferenceDataSource'); @@ -181,7 +184,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_DeleteApplicationSnapshot.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_DeleteApplicationSnapshot.html */ public toDeleteApplicationSnapshot() { return this.to('DeleteApplicationSnapshot'); @@ -192,7 +195,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_DeleteApplicationVpcConfiguration.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_DeleteApplicationVpcConfiguration.html */ public toDeleteApplicationVpcConfiguration() { return this.to('DeleteApplicationVpcConfiguration'); @@ -203,7 +206,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Read * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_DescribeApplication.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_DescribeApplication.html */ public toDescribeApplication() { return this.to('DescribeApplication'); @@ -214,7 +217,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Read * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_DescribeApplicationSnapshot.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_DescribeApplicationSnapshot.html */ public toDescribeApplicationSnapshot() { return this.to('DescribeApplicationSnapshot'); @@ -225,7 +228,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Read * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_DescribeApplicationVersion.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_DescribeApplicationVersion.html */ public toDescribeApplicationVersion() { return this.to('DescribeApplicationVersion'); @@ -236,7 +239,10 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Read * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_DiscoverInputSchema.html + * Dependent actions: + * - iam:PassRole + * + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_DiscoverInputSchema.html */ public toDiscoverInputSchema() { return this.to('DiscoverInputSchema'); @@ -247,7 +253,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Read * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_ListApplicationSnapshots.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_ListApplicationSnapshots.html */ public toListApplicationSnapshots() { return this.to('ListApplicationSnapshots'); @@ -258,7 +264,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Read * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_ListApplicationVersions.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_ListApplicationVersions.html */ public toListApplicationVersions() { return this.to('ListApplicationVersions'); @@ -269,7 +275,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: List * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_ListApplications.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_ListApplications.html */ public toListApplications() { return this.to('ListApplications'); @@ -280,7 +286,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Read * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_ListTagsForResource.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_ListTagsForResource.html */ public toListTagsForResource() { return this.to('ListTagsForResource'); @@ -291,7 +297,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_RollbackApplication.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_RollbackApplication.html */ public toRollbackApplication() { return this.to('RollbackApplication'); @@ -302,7 +308,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_StartApplication.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_StartApplication.html */ public toStartApplication() { return this.to('StartApplication'); @@ -313,7 +319,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_StopApplication.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_StopApplication.html */ public toStopApplication() { return this.to('StopApplication'); @@ -328,7 +334,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * - .ifAwsRequestTag() * - .ifAwsTagKeys() * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_TagResource.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_TagResource.html */ public toTagResource() { return this.to('TagResource'); @@ -342,7 +348,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * Possible conditions: * - .ifAwsTagKeys() * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_UntagResource.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_UntagResource.html */ public toUntagResource() { return this.to('UntagResource'); @@ -353,7 +359,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_UpdateApplication.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_UpdateApplication.html */ public toUpdateApplication() { return this.to('UpdateApplication'); @@ -364,7 +370,7 @@ export class KinesisanalyticsV2 extends PolicyStatement { * * Access Level: Write * - * https://docs.aws.amazon.com/kinesisanalytics/latest/apiv2/API_UpdateApplicationMaintenanceConfiguration.html + * https://docs.aws.amazon.com/managed-flink/latest/apiv2/API_UpdateApplicationMaintenanceConfiguration.html */ public toUpdateApplicationMaintenanceConfiguration() { return this.to('UpdateApplicationMaintenanceConfiguration'); diff --git a/lib/generated/policy-statements/outposts.ts b/lib/generated/policy-statements/outposts.ts index 4b55f18c1..1be290ccf 100644 --- a/lib/generated/policy-statements/outposts.ts +++ b/lib/generated/policy-statements/outposts.ts @@ -18,6 +18,17 @@ export class Outposts extends PolicyStatement { super(sid); } + /** + * Grants permission to cancel a Capacity Task + * + * Access Level: Write + * + * https://docs.aws.amazon.com/outposts/latest/APIReference/API_CancelCapacityTask.html + */ + public toCancelCapacityTask() { + return this.to('CancelCapacityTask'); + } + /** * Grants permission to cancel an order * @@ -103,6 +114,17 @@ export class Outposts extends PolicyStatement { return this.to('DeleteSite'); } + /** + * Grants permission to get information about the specified Capacity Task + * + * Access Level: Read + * + * https://docs.aws.amazon.com/outposts/latest/APIReference/API_GetCapacityTask.html + */ + public toGetCapacityTask() { + return this.to('GetCapacityTask'); + } + /** * Grants permission to get a catalog item * @@ -158,6 +180,17 @@ export class Outposts extends PolicyStatement { return this.to('GetOutpostInstanceTypes'); } + /** + * Grants permission to get the supported instance types for the specified Outpost + * + * Access Level: Read + * + * https://docs.aws.amazon.com/outposts/latest/APIReference/API_GetOutpostSupportedInstanceTypes.html + */ + public toGetOutpostSupportedInstanceTypes() { + return this.to('GetOutpostSupportedInstanceTypes'); + } + /** * Grants permission to get a private connectivity configuration * @@ -202,6 +235,17 @@ export class Outposts extends PolicyStatement { return this.to('ListAssets'); } + /** + * Grants permission to list the Capacity Tasks for your AWS account + * + * Access Level: List + * + * https://docs.aws.amazon.com/outposts/latest/APIReference/API_ListCapacityTasks.html + */ + public toListCapacityTasks() { + return this.to('ListCapacityTasks'); + } + /** * Grants permission to list all catalog items * @@ -257,6 +301,17 @@ export class Outposts extends PolicyStatement { return this.to('ListTagsForResource'); } + /** + * Grants permission to create a Capacity Task + * + * Access Level: Write + * + * https://docs.aws.amazon.com/outposts/latest/APIReference/API_StartCapacityTask.html + */ + public toStartCapacityTask() { + return this.to('StartCapacityTask'); + } + /** * Grants permission to start a connection for your Outpost server * @@ -343,6 +398,7 @@ export class Outposts extends PolicyStatement { protected accessLevelList: AccessLevelList = { Write: [ + 'CancelCapacityTask', 'CancelOrder', 'CreateOrder', 'CreateOutpost', @@ -350,6 +406,7 @@ export class Outposts extends PolicyStatement { 'CreateSite', 'DeleteOutpost', 'DeleteSite', + 'StartCapacityTask', 'StartConnection', 'UpdateOutpost', 'UpdateSite', @@ -357,11 +414,13 @@ export class Outposts extends PolicyStatement { 'UpdateSiteRackPhysicalProperties' ], Read: [ + 'GetCapacityTask', 'GetCatalogItem', 'GetConnection', 'GetOrder', 'GetOutpost', 'GetOutpostInstanceTypes', + 'GetOutpostSupportedInstanceTypes', 'GetPrivateConnectivityConfig', 'GetSite', 'GetSiteAddress', @@ -369,6 +428,7 @@ export class Outposts extends PolicyStatement { ], List: [ 'ListAssets', + 'ListCapacityTasks', 'ListCatalogItems', 'ListOrders', 'ListOutposts', diff --git a/stats/actions/emr-containers b/stats/actions/emr-containers index 11e49b037..dd3cf04aa 100644 --- a/stats/actions/emr-containers +++ b/stats/actions/emr-containers @@ -1,6 +1,7 @@ emr-containers:CancelJobRun;Write emr-containers:CreateJobTemplate;Write emr-containers:CreateManagedEndpoint;Write +emr-containers:CreateSecurityConfiguration;Write emr-containers:CreateVirtualCluster;Write emr-containers:DeleteJobTemplate;Write emr-containers:DeleteManagedEndpoint;Write @@ -8,11 +9,13 @@ emr-containers:DeleteVirtualCluster;Write emr-containers:DescribeJobRun;Read emr-containers:DescribeJobTemplate;Read emr-containers:DescribeManagedEndpoint;Read +emr-containers:DescribeSecurityConfiguration;Read emr-containers:DescribeVirtualCluster;Read emr-containers:GetManagedEndpointSessionCredentials;Write emr-containers:ListJobRuns;List emr-containers:ListJobTemplates;List emr-containers:ListManagedEndpoints;List +emr-containers:ListSecurityConfigurations;List emr-containers:ListTagsForResource;List emr-containers:ListVirtualClusters;List emr-containers:StartJobRun;Write diff --git a/stats/actions/internetmonitor b/stats/actions/internetmonitor index 520503d8f..2cc8fe446 100644 --- a/stats/actions/internetmonitor +++ b/stats/actions/internetmonitor @@ -1,11 +1,13 @@ internetmonitor:CreateMonitor;Write internetmonitor:DeleteMonitor;Write internetmonitor:GetHealthEvent;Read +internetmonitor:GetInternetEvent;Read internetmonitor:GetMonitor;Read internetmonitor:GetQueryResults;Read internetmonitor:GetQueryStatus;Read internetmonitor:Link;Write internetmonitor:ListHealthEvents;List +internetmonitor:ListInternetEvents;List internetmonitor:ListMonitors;List internetmonitor:ListTagsForResource;Read internetmonitor:StartQuery;Read diff --git a/stats/actions/outposts b/stats/actions/outposts index cea47117e..16f61b962 100644 --- a/stats/actions/outposts +++ b/stats/actions/outposts @@ -1,3 +1,4 @@ +outposts:CancelCapacityTask;Write outposts:CancelOrder;Write outposts:CreateOrder;Write outposts:CreateOutpost;Write @@ -5,20 +6,24 @@ outposts:CreatePrivateConnectivityConfig;Write outposts:CreateSite;Write outposts:DeleteOutpost;Write outposts:DeleteSite;Write +outposts:GetCapacityTask;Read outposts:GetCatalogItem;Read outposts:GetConnection;Read outposts:GetOrder;Read outposts:GetOutpost;Read outposts:GetOutpostInstanceTypes;Read +outposts:GetOutpostSupportedInstanceTypes;Read outposts:GetPrivateConnectivityConfig;Read outposts:GetSite;Read outposts:GetSiteAddress;Read outposts:ListAssets;List +outposts:ListCapacityTasks;List outposts:ListCatalogItems;List outposts:ListOrders;List outposts:ListOutposts;List outposts:ListSites;List outposts:ListTagsForResource;Read +outposts:StartCapacityTask;Write outposts:StartConnection;Write outposts:TagResource;Tagging outposts:UntagResource;Tagging diff --git a/stats/resources/emr-containers b/stats/resources/emr-containers index 6431400b5..eef0829a3 100644 --- a/stats/resources/emr-containers +++ b/stats/resources/emr-containers @@ -1,4 +1,5 @@ emr-containers:jobRun emr-containers:jobTemplate emr-containers:managedEndpoint +emr-containers:securityConfiguration emr-containers:virtualCluster diff --git a/stats/resources/internetmonitor b/stats/resources/internetmonitor index f42c4d722..68f8a2d98 100644 --- a/stats/resources/internetmonitor +++ b/stats/resources/internetmonitor @@ -1,2 +1,3 @@ internetmonitor:HealthEvent +internetmonitor:InternetEvent internetmonitor:Monitor