本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。
AWSDataExchangeFullAccess
描述:授與 AWS Data Exchange 的完整存取權限,以及使用 AWS Management Console 和 SDK 的 AWS Marketplace 動作。它還提供了對充分利用 AWS Data Exchange 所需的相關服務的選擇訪問權限。
AWSDataExchangeFullAccess是AWS 受管理的策略。
使用此政策
您可以附加AWSDataExchangeFullAccess至您的使用者、群組和角色。
政策詳情
-
類型: AWS 受管理的策略
-
創建時間:二零一九年十一月十三日, 世界標準時間
-
編輯時間:世界標準時間 2024 年 6 月 24 日,19:54
-
ARN:
arn:aws:iam::aws:policy/AWSDataExchangeFullAccess
政策版本
策略版本:v8(預設值)
原則的預設版本是定義原則權限的版本。當具有該策略的使用者或角色發出要求以存取 AWS 資源時,請 AWS 檢查原則的預設版本以決定是否允許該要求。
政策文件
{
"Version" : "2012-10-17",
"Statement" : [
{
"Sid" : "DataExchangeActions",
"Effect" : "Allow",
"Action" : [
"dataexchange:*"
],
"Resource" : "*"
},
{
"Sid" : "S3GetActionConditionalResourceAndADX",
"Effect" : "Allow",
"Action" : "s3:GetObject",
"Resource" : "arn:aws:s3:::*aws-data-exchange*",
"Condition" : {
"ForAnyValue:StringEquals" : {
"aws:CalledVia" : [
"dataexchange.amazonaws.com"
]
}
}
},
{
"Sid" : "S3GetActionConditionalTagAndADX",
"Effect" : "Allow",
"Action" : "s3:GetObject",
"Resource" : "*",
"Condition" : {
"StringEqualsIgnoreCase" : {
"s3:ExistingObjectTag/AWSDataExchange" : "true"
},
"ForAnyValue:StringEquals" : {
"aws:CalledVia" : [
"dataexchange.amazonaws.com"
]
}
}
},
{
"Sid" : "S3WriteActions",
"Effect" : "Allow",
"Action" : [
"s3:PutObject",
"s3:PutObjectAcl"
],
"Resource" : "arn:aws:s3:::*aws-data-exchange*",
"Condition" : {
"ForAnyValue:StringEquals" : {
"aws:CalledVia" : [
"dataexchange.amazonaws.com"
]
}
}
},
{
"Sid" : "S3ReadActions",
"Effect" : "Allow",
"Action" : [
"s3:GetBucketLocation",
"s3:ListBucket",
"s3:ListAllMyBuckets"
],
"Resource" : "*"
},
{
"Sid" : "AWSMarketplaceProviderActions",
"Effect" : "Allow",
"Action" : [
"aws-marketplace:DescribeEntity",
"aws-marketplace:ListEntities",
"aws-marketplace:StartChangeSet",
"aws-marketplace:ListChangeSets",
"aws-marketplace:DescribeChangeSet",
"aws-marketplace:CancelChangeSet",
"aws-marketplace:GetAgreementApprovalRequest",
"aws-marketplace:ListAgreementApprovalRequests",
"aws-marketplace:AcceptAgreementApprovalRequest",
"aws-marketplace:RejectAgreementApprovalRequest",
"aws-marketplace:UpdateAgreementApprovalRequest",
"aws-marketplace:SearchAgreements",
"aws-marketplace:GetAgreementTerms",
"aws-marketplace:TagResource",
"aws-marketplace:UntagResource",
"aws-marketplace:ListTagsForResource"
],
"Resource" : "*"
},
{
"Sid" : "AWSMarketplaceSubscriberActions",
"Effect" : "Allow",
"Action" : [
"aws-marketplace:Subscribe",
"aws-marketplace:Unsubscribe",
"aws-marketplace:ViewSubscriptions",
"aws-marketplace:GetAgreementRequest",
"aws-marketplace:ListAgreementRequests",
"aws-marketplace:CancelAgreementRequest",
"aws-marketplace:ListPrivateListings",
"aws-marketplace:DescribeAgreement"
],
"Resource" : "*"
},
{
"Sid" : "KMSActions",
"Effect" : "Allow",
"Action" : [
"kms:DescribeKey",
"kms:ListAliases",
"kms:ListKeys"
],
"Resource" : "*"
},
{
"Sid" : "RedshiftConditionalActions",
"Effect" : "Allow",
"Action" : [
"redshift:AuthorizeDataShare"
],
"Resource" : "*",
"Condition" : {
"StringEqualsIgnoreCase" : {
"redshift:ConsumerIdentifier" : "ADX"
}
}
},
{
"Sid" : "RedshiftActions",
"Effect" : "Allow",
"Action" : [
"redshift:DescribeDataSharesForProducer",
"redshift:DescribeDataShares"
],
"Resource" : "*"
},
{
"Sid" : "APIGatewayActions",
"Effect" : "Allow",
"Action" : [
"apigateway:GET"
],
"Resource" : "*"
}
]
}進一步了解
