Created
February 20, 2019 20:10
-
-
Save 100daysofdevops/4fae9403461b69da7d12a575a97251b3 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "Version": "2012-10-17", | |
| "Statement": [ | |
| { | |
| "Sid": "VisualEditor0", | |
| "Effect": "Allow", | |
| "Action": [ | |
| "ec2:RunInstances", | |
| "ec2:GetConsoleScreenshot" | |
| ], | |
| "Resource": [ | |
| "arn:aws:ec2:*:*:subnet/*", | |
| "arn:aws:ec2:*:*:key-pair/*", | |
| "arn:aws:ec2:*:*:instance/*", | |
| "arn:aws:ec2:*::snapshot/*", | |
| "arn:aws:ec2:*:*:launch-template/*", | |
| "arn:aws:ec2:*:*:volume/*", | |
| "arn:aws:ec2:*:*:security-group/*", | |
| "arn:aws:ec2:*:*:placement-group/*", | |
| "arn:aws:ec2:*:*:network-interface/*", | |
| "arn:aws:ec2:*::image/*" | |
| ], | |
| "Condition": { | |
| "StringLike": { | |
| "ec2:InstanceType": "t2.*" | |
| } | |
| } | |
| }, | |
| { | |
| "Sid": "VisualEditor1", | |
| "Effect": "Allow", | |
| "Action": [ | |
| "ec2:AuthorizeSecurityGroupEgress", | |
| "ec2:AuthorizeSecurityGroupIngress", | |
| "ec2:DeleteSecurityGroup" | |
| ], | |
| "Resource": "arn:aws:ec2:*:*:security-group/*" | |
| }, | |
| { | |
| "Sid": "VisualEditor2", | |
| "Effect": "Allow", | |
| "Action": [ | |
| "ec2:DescribeInstances", | |
| "ec2:CreateKeyPair", | |
| "ec2:DescribeSnapshots", | |
| "ec2:DescribeHostReservationOfferings", | |
| "ec2:DescribeVolumeStatus", | |
| "ec2:DescribeScheduledInstanceAvailability", | |
| "ec2:DescribeVolumes", | |
| "ec2:DescribeFpgaImageAttribute", | |
| "ec2:DescribeExportTasks", | |
| "ec2:DescribeKeyPairs", | |
| "ec2:DescribeReservedInstancesListings", | |
| "ec2:DescribeCapacityReservations", | |
| "ec2:DescribeSpotFleetRequestHistory", | |
| "ec2:DescribeVpcClassicLinkDnsSupport", | |
| "ec2:DescribeSnapshotAttribute", | |
| "ec2:DescribeIdFormat", | |
| "ec2:DescribeVolumeAttribute", | |
| "ec2:DescribeImportSnapshotTasks", | |
| "ec2:GetPasswordData", | |
| "ec2:DescribeVpcEndpointServicePermissions", | |
| "ec2:DescribeTransitGatewayAttachments", | |
| "ec2:DescribeScheduledInstances", | |
| "ec2:DescribeImageAttribute", | |
| "ec2:DescribeFleets", | |
| "ec2:DescribeReservedInstancesModifications", | |
| "ec2:DescribeSubnets", | |
| "ec2:DescribeMovingAddresses", | |
| "ec2:DescribeFleetHistory", | |
| "ec2:DescribePrincipalIdFormat", | |
| "ec2:DescribeFlowLogs", | |
| "ec2:DescribeRegions", | |
| "ec2:DescribeTransitGateways", | |
| "ec2:DescribeVpcEndpointServices", | |
| "ec2:DescribeSpotInstanceRequests", | |
| "ec2:DescribeVpcAttribute", | |
| "ec2:DescribeTransitGatewayRouteTables", | |
| "ec2:DescribeAvailabilityZones", | |
| "ec2:DescribeNetworkInterfaceAttribute", | |
| "ec2:DescribeVpcEndpointConnections", | |
| "ec2:DescribeInstanceStatus", | |
| "ec2:DescribeHostReservations", | |
| "ec2:DescribeBundleTasks", | |
| "ec2:DescribeIdentityIdFormat", | |
| "ec2:DescribeClassicLinkInstances", | |
| "ec2:DescribeVpcEndpointConnectionNotifications", | |
| "ec2:DescribeSecurityGroups", | |
| "ec2:DescribeFpgaImages", | |
| "ec2:DescribeVpcs", | |
| "ec2:DescribeStaleSecurityGroups", | |
| "ec2:DescribeAggregateIdFormat", | |
| "ec2:DescribeVolumesModifications", | |
| "ec2:GetHostReservationPurchasePreview", | |
| "ec2:DescribeByoipCidrs", | |
| "ec2:DescribePlacementGroups", | |
| "ec2:DescribeInternetGateways", | |
| "ec2:SearchTransitGatewayRoutes", | |
| "ec2:GetLaunchTemplateData", | |
| "ec2:DescribeSpotDatafeedSubscription", | |
| "ec2:DescribeAccountAttributes", | |
| "ec2:DescribeNetworkInterfacePermissions", | |
| "ec2:DescribeReservedInstances", | |
| "ec2:DescribeNetworkAcls", | |
| "ec2:DescribeRouteTables", | |
| "ec2:DescribeEgressOnlyInternetGateways", | |
| "ec2:DescribeLaunchTemplates", | |
| "ec2:DescribeVpnConnections", | |
| "ec2:DescribeVpcPeeringConnections", | |
| "ec2:DescribeReservedInstancesOfferings", | |
| "ec2:GetTransitGatewayAttachmentPropagations", | |
| "ec2:DescribeFleetInstances", | |
| "ec2:DescribeVpcEndpointServiceConfigurations", | |
| "ec2:DescribePrefixLists", | |
| "ec2:GetReservedInstancesExchangeQuote", | |
| "ec2:DescribeInstanceCreditSpecifications", | |
| "ec2:DescribeVpcClassicLink", | |
| "ec2:GetTransitGatewayRouteTablePropagations", | |
| "ec2:DescribeVpcEndpoints", | |
| "ec2:DescribeElasticGpus", | |
| "ec2:DeleteKeyPair", | |
| "ec2:DescribeVpnGateways", | |
| "ec2:DescribeAddresses", | |
| "ec2:DescribeInstanceAttribute", | |
| "ec2:DescribeDhcpOptions", | |
| "ec2:GetConsoleOutput", | |
| "ec2:DescribeSpotPriceHistory", | |
| "ec2:DescribeNetworkInterfaces", | |
| "ec2:CreateSecurityGroup", | |
| "ec2:GetTransitGatewayRouteTableAssociations", | |
| "ec2:DescribeIamInstanceProfileAssociations", | |
| "ec2:DescribeTags", | |
| "ec2:DescribeLaunchTemplateVersions", | |
| "ec2:DescribeImportImageTasks", | |
| "ec2:DescribeNatGateways", | |
| "ec2:DescribeCustomerGateways", | |
| "ec2:DescribeSpotFleetRequests", | |
| "ec2:DescribeHosts", | |
| "ec2:DescribeImages", | |
| "ec2:DescribeSpotFleetInstances", | |
| "ec2:DescribeSecurityGroupReferences", | |
| "ec2:DescribePublicIpv4Pools", | |
| "ec2:DescribeTransitGatewayVpcAttachments", | |
| "ec2:DescribeConversionTasks" | |
| ], | |
| "Resource": "*" | |
| } | |
| ] | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment