AmazonRedshiftQueryEditorV2FullAccess
Description: Grants full access to the Amazon Redshift Query Editor V2 operations and resources. This policy also grants access to other required services. This includes permissions to list the Amazon Redshift clusters, read keys and aliases in AWS KMS and manage the Query Editor V2 secrets in AWS Secrets Manager.
AmazonRedshiftQueryEditorV2FullAccess is an AWS managed policy.
Using this policy
You can attach AmazonRedshiftQueryEditorV2FullAccess to your users, groups, and roles.
Policy details
-
Type: AWS managed policy
-
Creation time: September 24, 2021, 14:06 UTC
-
Edited time: February 21, 2024, 17:20 UTC
-
ARN:
arn:aws:iam::aws:policy/AmazonRedshiftQueryEditorV2FullAccess
Policy version
Policy version: v3 (default)
The policy's default version is the version that defines the permissions for the policy. When a user or role with the policy makes a request to access an AWS resource, AWS checks the default version of the policy to determine whether to allow the request.
JSON policy document
{ "Version" : "2012-10-17", "Statement" : [ { "Sid" : "RedshiftPermissions", "Effect" : "Allow", "Action" : [ "redshift:DescribeClusters", "redshift-serverless:ListNamespaces", "redshift-serverless:ListWorkgroups" ], "Resource" : "*" }, { "Sid" : "KeyManagementServicePermissions", "Effect" : "Allow", "Action" : [ "kms:DescribeKey", "kms:ListAliases" ], "Resource" : "*" }, { "Sid" : "SecretsManagerPermissions", "Effect" : "Allow", "Action" : [ "secretsmanager:CreateSecret", "secretsmanager:GetSecretValue", "secretsmanager:DeleteSecret", "secretsmanager:TagResource" ], "Resource" : "arn:aws:secretsmanager:*:*:sqlworkbench!*" }, { "Sid" : "ResourceGroupsTaggingPermissions", "Effect" : "Allow", "Action" : [ "tag:GetResources" ], "Resource" : "*", "Condition" : { "StringEquals" : { "aws:CalledViaLast" : "sqlworkbench.amazonaws.com" } } }, { "Sid" : "AmazonRedshiftQueryEditorV2Permissions", "Effect" : "Allow", "Action" : "sqlworkbench:*", "Resource" : "*" } ] }
Learn more
