| { |
| "Version": "2012-10-17", |
| "Statement": [ |
| { |
| "Sid": "Stmt1605188574000", |
| "Effect": "Allow", |
| "Action": [ |
| "autoscaling:AttachLoadBalancerTargetGroups", |
| "autoscaling:CreateAutoScalingGroup", |
| "autoscaling:CreateLaunchConfiguration", |
| "autoscaling:CreateOrUpdateTags", |
| "autoscaling:DeleteAutoScalingGroup", |
| "autoscaling:DeleteLaunchConfiguration", |
| "autoscaling:DeleteTags", |
| "autoscaling:DescribeAutoScalingGroups", |
| "autoscaling:DescribeAutoScalingInstances", |
| "autoscaling:DescribeLaunchConfigurations", |
| "autoscaling:DescribeLoadBalancerTargetGroups", |
| "autoscaling:DescribeScalingActivities", |
| "autoscaling:DetachLoadBalancerTargetGroups", |
| "autoscaling:UpdateAutoScalingGroup", |
| "cloudformation:*", |
| "cloudwatch:DeleteDashboards", |
| "cloudwatch:GetDashboard", |
| "cloudwatch:ListDashboards", |
| "cloudwatch:PutDashboard", |
| "ec2:AssociateRouteTable", |
| "ec2:AttachInternetGateway", |
| "ec2:AttachVolume", |
| "ec2:AuthorizeSecurityGroupEgress", |
| "ec2:AuthorizeSecurityGroupIngress", |
| "ec2:CreateInternetGateway", |
| "ec2:CreateKeyPair", |
| "ec2:CreateLaunchTemplate", |
| "ec2:CreateRoute", |
| "ec2:CreateRouteTable", |
| "ec2:CreateSecurityGroup", |
| "ec2:CreateSubnet", |
| "ec2:CreateTags", |
| "ec2:CreateVolume", |
| "ec2:CreateVpc", |
| "ec2:DeleteInternetGateway", |
| "ec2:DeleteLaunchTemplate", |
| "ec2:DeleteLaunchTemplateVersions", |
| "ec2:DeleteRoute", |
| "ec2:DeleteRouteTable", |
| "ec2:DeleteSecurityGroup", |
| "ec2:DeleteSubnet", |
| "ec2:DeleteVolume", |
| "ec2:DeleteVpc", |
| "ec2:DescribeAccountAttributes", |
| "ec2:DescribeAvailabilityZones", |
| "ec2:DescribeHosts", |
| "ec2:DescribeImages", |
| "ec2:DescribeInstanceAttribute", |
| "ec2:DescribeInstances", |
| "ec2:DescribeInternetGateways", |
| "ec2:DescribeKeyPairs", |
| "ec2:DescribeLaunchTemplateVersions", |
| "ec2:DescribeLaunchTemplates", |
| "ec2:DescribeRouteTables", |
| "ec2:DescribeSecurityGroups", |
| "ec2:DescribeSubnets", |
| "ec2:DescribeVolumes", |
| "ec2:DescribeVpcs", |
| "ec2:DetachInternetGateway", |
| "ec2:DetachVolume", |
| "ec2:DisassociateRouteTable", |
| "ec2:ModifySubnetAttribute", |
| "ec2:ModifyVolumeAttribute", |
| "ec2:ModifyVpcAttribute", |
| "ec2:RevokeSecurityGroupEgress", |
| "ec2:RevokeSecurityGroupIngress", |
| "ec2:RunInstances", |
| "ecr:BatchCheckLayerAvailability", |
| "ecr:BatchGetImage", |
| "ecr:CompleteLayerUpload", |
| "ecr:DescribeImages", |
| "ecr:GetAuthorizationToken", |
| "ecr:GetDownloadUrlForLayer", |
| "ecr:InitiateLayerUpload", |
| "ecr:ListImages", |
| "ecr:PutImage", |
| "ecr:UploadLayerPart", |
| "ecs:CreateCluster", |
| "ecs:CreateService", |
| "ecs:DeleteCluster", |
| "ecs:DeleteService", |
| "ecs:DeregisterTaskDefinition", |
| "ecs:DescribeClusters", |
| "ecs:DescribeContainerInstances", |
| "ecs:DescribeServices", |
| "ecs:DescribeTaskDefinition", |
| "ecs:DescribeTasks", |
| "ecs:ListClusters", |
| "ecs:ListServices", |
| "ecs:ListTaskDefinitionFamilies", |
| "ecs:ListTaskDefinitions", |
| "ecs:ListTasks", |
| "ecs:RegisterTaskDefinition", |
| "elasticloadbalancing:*", |
| "iam:AddRoleToInstanceProfile", |
| "iam:AttachRolePolicy", |
| "iam:CreateInstanceProfile", |
| "iam:CreateRole", |
| "iam:DeleteInstanceProfile", |
| "iam:DeleteRole", |
| "iam:DeleteRolePolicy", |
| "iam:GetInstanceProfile", |
| "iam:GetRole", |
| "iam:GetRolePolicy", |
| "iam:ListAttachedRolePolicies", |
| "iam:ListRolePolicies", |
| "iam:ListRoles", |
| "iam:PassRole", |
| "iam:PutRolePolicy", |
| "iam:RemoveRoleFromInstanceProfile", |
| "logs:*", |
| "route53:ChangeResourceRecordSets", |
| "route53:GetChange", |
| "route53:GetHostedZone", |
| "route53:ListHostedZones", |
| "route53:ListHostedZonesByName", |
| "route53:ListResourceRecordSets", |
| "s3:CreateBucket", |
| "s3:GetObject", |
| "s3:ListBucket", |
| "s3:PutObject", |
| "ssm:DescribeParameters", |
| "ssm:GetParameter", |
| "ssm:GetParameters", |
| "ssm:PutParameter" |
| ], |
| "Resource": [ |
| "*" |
| ] |
| } |
| ] |
| } |