本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。
AWSCodeBuildAdminAccess
描述:提供 AWS CodeBuild 透過的完整存取 AWS Management Console。同時附加 AmazonS3 ReadOnlyAccess 以提供下載組建成品的存取權,並附加 IAM FullAccess 以建立和管理的服務角色。 CodeBuild
AWSCodeBuildAdminAccess是AWS 受管理的策略。
使用此政策
您可以附加AWSCodeBuildAdminAccess至您的使用者、群組和角色。
政策詳情
-
類型: AWS 受管理的策略
-
創建時間:二零一六年十二月一日, 19:04 世界標準時
-
編輯時間:2024 年 5 月 2 日, 01:45 世界標準時間
-
ARN:
arn:aws:iam::aws:policy/AWSCodeBuildAdminAccess
政策版本
策略版本:v14(預設值)
原則的預設版本是定義原則權限的版本。當具有策略的使用者或角色發出要求以存取 AWS 資源時,請 AWS 檢查原則的預設版本,以決定是否允許該要求。
政策文件
{ "Version" : "2012-10-17", "Statement" : [ { "Sid" : "AWSServicesAccess", "Action" : [ "codebuild:*", "codecommit:GetBranch", "codecommit:GetCommit", "codecommit:GetRepository", "codecommit:ListBranches", "codecommit:ListRepositories", "cloudwatch:GetMetricStatistics", "ec2:DescribeVpcs", "ec2:DescribeSecurityGroups", "ec2:DescribeSubnets", "ecr:DescribeRepositories", "ecr:ListImages", "elasticfilesystem:DescribeFileSystems", "events:DeleteRule", "events:DescribeRule", "events:DisableRule", "events:EnableRule", "events:ListTargetsByRule", "events:ListRuleNamesByTarget", "events:PutRule", "events:PutTargets", "events:RemoveTargets", "logs:GetLogEvents", "s3:GetBucketLocation", "s3:ListAllMyBuckets" ], "Effect" : "Allow", "Resource" : "*" }, { "Sid" : "CWLDeleteLogGroupAccess", "Action" : [ "logs:DeleteLogGroup" ], "Effect" : "Allow", "Resource" : "arn:aws:logs:*:*:log-group:/aws/codebuild/*:log-stream:*" }, { "Sid" : "SSMParameterWriteAccess", "Effect" : "Allow", "Action" : [ "ssm:PutParameter" ], "Resource" : "arn:aws:ssm:*:*:parameter/CodeBuild/*" }, { "Sid" : "SSMStartSessionAccess", "Effect" : "Allow", "Action" : [ "ssm:StartSession" ], "Resource" : "arn:aws:ecs:*:*:task/*/*" }, { "Sid" : "CodeStarConnectionsReadWriteAccess", "Effect" : "Allow", "Action" : [ "codestar-connections:CreateConnection", "codestar-connections:DeleteConnection", "codestar-connections:UpdateConnectionInstallation", "codestar-connections:TagResource", "codestar-connections:UntagResource", "codestar-connections:ListConnections", "codestar-connections:ListInstallationTargets", "codestar-connections:ListTagsForResource", "codestar-connections:GetConnection", "codestar-connections:GetIndividualAccessToken", "codestar-connections:GetInstallationUrl", "codestar-connections:PassConnection", "codestar-connections:StartOAuthHandshake", "codestar-connections:UseConnection" ], "Resource" : [ "arn:aws:codestar-connections:*:*:connection/*", "arn:aws:codeconnections:*:*:connection/*" ] }, { "Sid" : "CodeStarNotificationsReadWriteAccess", "Effect" : "Allow", "Action" : [ "codestar-notifications:CreateNotificationRule", "codestar-notifications:DescribeNotificationRule", "codestar-notifications:UpdateNotificationRule", "codestar-notifications:DeleteNotificationRule", "codestar-notifications:Subscribe", "codestar-notifications:Unsubscribe" ], "Resource" : "*", "Condition" : { "StringLike" : { "codestar-notifications:NotificationsForResource" : "arn:aws:codebuild:*" } } }, { "Sid" : "CodeStarNotificationsListAccess", "Effect" : "Allow", "Action" : [ "codestar-notifications:ListNotificationRules", "codestar-notifications:ListEventTypes", "codestar-notifications:ListTargets", "codestar-notifications:ListTagsforResource" ], "Resource" : "*" }, { "Sid" : "CodeStarNotificationsSNSTopicCreateAccess", "Effect" : "Allow", "Action" : [ "sns:CreateTopic", "sns:SetTopicAttributes" ], "Resource" : "arn:aws:sns:*:*:codestar-notifications*" }, { "Sid" : "SNSTopicListAccess", "Effect" : "Allow", "Action" : [ "sns:ListTopics", "sns:GetTopicAttributes" ], "Resource" : "*" }, { "Sid" : "CodeStarNotificationsChatbotAccess", "Effect" : "Allow", "Action" : [ "chatbot:DescribeSlackChannelConfigurations", "chatbot:ListMicrosoftTeamsChannelConfigurations" ], "Resource" : "*" } ] }
進一步了解
