Simplified AWS service information for programmatic access
AWS provides service reference information in JSON format to streamline the automation of policy management workflows. With the service reference information, you can access available actions across AWS services from machine-readable files. Security administrators can establish guardrails and developers can ensure appropriate access to applications by identifying the available actions for each AWS service. AWS provides service reference information for AWS services to allow you to incorporate the metadata into your policy management workflows.
For an inventory of actions, resources, and condition context keys for use in IAM policies, see the Service Authorization Reference page for the AWS service.
Note
Changes to the service reference information may take up to 24 hours to be reflected in the list of action-level permissions for the service.
Accessing AWS service reference information
-
Navigate to the service reference information
to access the list of AWS services for which reference information is available. The following example shows a partial list of services and URLs for their respective reference information:
[ { "service": "s3", "url": "https://servicereference.us-east-1.amazonaws.com/v1/s3/s3.json" }, { "service": "dynamodb", "url": "https://servicereference.us-east-1.amazonaws.com/v1/dynamodb/dynamodb.json" }, … ] -
Choose a service and navigate to the service information page in the
urlfield for the service to view a list of action-level permissions for the service.The following example shows a partial list of action-level permissions for Amazon S3:
{ "Name": "s3", "Actions": [ { "Name": "GetObject" }, { "Name": "ListBucket" }, … ], "Version": "v1.00" } -
Download the JSON file from the service URL to use in your policy authoring workflows.
