IAM Policy
Customer-managed JSON policy, or a reference to an AWS-managed policy.
Configuration
Section titled “Configuration”| Setting | Type | Required | Default |
|---|---|---|---|
| Policy type Options: Customer managed (write JSON), AWS managed (pick from list) | Choice | — | customer |
| AWS managed policy Options: AdministratorAccess, PowerUserAccess, ReadOnlyAccess, IAMFullAccess, IAMReadOnlyAccess, AmazonS3FullAccess, AmazonS3ReadOnlyAccess, AmazonEC2FullAccess, AmazonEC2ReadOnlyAccess, AmazonECS_FullAccess, AmazonECSTaskExecutionRolePolicy (service-role), AmazonEC2ContainerServiceforEC2Role (service-role), AmazonEC2ContainerRegistryFullAccess, AmazonEC2ContainerRegistryPowerUser, AmazonEC2ContainerRegistryReadOnly, AmazonEKSClusterPolicy, AmazonEKSServicePolicy, AmazonEKSWorkerNodePolicy, AmazonEKS_CNI_Policy, AmazonRDSFullAccess, AmazonRDSReadOnlyAccess, AmazonDynamoDBFullAccess, AmazonDynamoDBReadOnlyAccess, AmazonElastiCacheFullAccess, AmazonSQSFullAccess, AmazonSQSReadOnlyAccess, AmazonSNSFullAccess, AmazonSNSReadOnlyAccess, AmazonEventBridgeFullAccess, AmazonEventBridgeReadOnlyAccess, AmazonKinesisFullAccess, CloudWatchFullAccess, CloudWatchReadOnlyAccess, CloudWatchLogsFullAccess, CloudWatchAgentServerPolicy, AWSLambda_FullAccess, AWSLambda_ReadOnlyAccess, AWSLambdaBasicExecutionRole (service-role), AWSLambdaVPCAccessExecutionRole (service-role), AWSLambdaSQSQueueExecutionRole (service-role), AmazonSSMManagedInstanceCore, AmazonSSMFullAccess, SecretsManagerReadWrite, AWSKeyManagementServicePowerUser, AmazonVPCFullAccess, AmazonVPCReadOnlyAccess, AmazonElasticFileSystemFullAccess, AWSCodeBuildAdminAccess, AWSCodeBuildDeveloperAccess (service-role), AWSCodeDeployFullAccess, AWSCodeDeployRoleForECS, AWSCodeDeployRole (service-role), AWSCodePipeline_FullAccess, AWSCodePipeline_ReadOnlyAccess, AmazonAPIGatewayPushToCloudWatchLogs (service-role) | Choice | Yes | — |
| Policy name | Text | Yes | — |
| Description | Text | — | — |
| Policy document (JSON) | Text | Yes | {
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "*",
"Resource": "*"
}
]
} |
| Path | Text | — | / |
| Tags | Key–value | — | — |
Connections
Section titled “Connections”| Socket | Direction | Accepts | Terraform arg |
|---|---|---|---|
| Attached to | Output | any | — |