|
1587 | 1587 | } |
1588 | 1588 | ] |
1589 | 1589 | } |
| 1590 | + }, |
| 1591 | + "CodeCommitCrudPolicy": { |
| 1592 | + "Description": "Gives permissions to create/read/update/delete objects within a specific codecommit repository", |
| 1593 | + "Parameters": { |
| 1594 | + "RepositoryName": { |
| 1595 | + "Description": "Name of the CodeCommit Repository" |
| 1596 | + } |
| 1597 | + }, |
| 1598 | + "Definition": { |
| 1599 | + "Statement": [ |
| 1600 | + { |
| 1601 | + "Effect": "Allow", |
| 1602 | + "Action": [ |
| 1603 | + "codecommit:GitPull", |
| 1604 | + "codecommit:GitPush", |
| 1605 | + "codecommit:CreateBranch", |
| 1606 | + "codecommit:DeleteBranch", |
| 1607 | + "codecommit:GetBranch", |
| 1608 | + "codecommit:ListBranches", |
| 1609 | + "codecommit:MergeBranchesByFastForward", |
| 1610 | + "codecommit:MergeBranchesBySquash", |
| 1611 | + "codecommit:MergeBranchesByThreeWay", |
| 1612 | + "codecommit:UpdateDefaultBranch", |
| 1613 | + "codecommit:BatchDescribeMergeConflicts", |
| 1614 | + "codecommit:CreateUnreferencedMergeCommit", |
| 1615 | + "codecommit:DescribeMergeConflicts", |
| 1616 | + "codecommit:GetMergeCommit", |
| 1617 | + "codecommit:GetMergeOptions", |
| 1618 | + "codecommit:BatchGetPullRequests", |
| 1619 | + "codecommit:CreatePullRequest", |
| 1620 | + "codecommit:DescribePullRequestEvents", |
| 1621 | + "codecommit:GetCommentsForPullRequest", |
| 1622 | + "codecommit:GetCommitsFromMergeBase", |
| 1623 | + "codecommit:GetMergeConflicts", |
| 1624 | + "codecommit:GetPullRequest", |
| 1625 | + "codecommit:ListPullRequests", |
| 1626 | + "codecommit:MergePullRequestByFastForward", |
| 1627 | + "codecommit:MergePullRequestBySquash", |
| 1628 | + "codecommit:MergePullRequestByThreeWay", |
| 1629 | + "codecommit:PostCommentForPullRequest", |
| 1630 | + "codecommit:UpdatePullRequestDescription", |
| 1631 | + "codecommit:UpdatePullRequestStatus", |
| 1632 | + "codecommit:UpdatePullRequestTitle", |
| 1633 | + "codecommit:DeleteFile", |
| 1634 | + "codecommit:GetBlob", |
| 1635 | + "codecommit:GetFile", |
| 1636 | + "codecommit:GetFolder", |
| 1637 | + "codecommit:PutFile", |
| 1638 | + "codecommit:DeleteCommentContent", |
| 1639 | + "codecommit:GetComment", |
| 1640 | + "codecommit:GetCommentsForComparedCommit", |
| 1641 | + "codecommit:PostCommentForComparedCommit", |
| 1642 | + "codecommit:PostCommentReply", |
| 1643 | + "codecommit:UpdateComment", |
| 1644 | + "codecommit:BatchGetCommits", |
| 1645 | + "codecommit:CreateCommit", |
| 1646 | + "codecommit:GetCommit", |
| 1647 | + "codecommit:GetCommitHistory", |
| 1648 | + "codecommit:GetDifferences", |
| 1649 | + "codecommit:GetObjectIdentifier", |
| 1650 | + "codecommit:GetReferences", |
| 1651 | + "codecommit:GetTree", |
| 1652 | + "codecommit:GetRepository", |
| 1653 | + "codecommit:UpdateRepositoryDescription", |
| 1654 | + "codecommit:ListTagsForResource", |
| 1655 | + "codecommit:TagResource", |
| 1656 | + "codecommit:UntagResource", |
| 1657 | + "codecommit:GetRepositoryTriggers", |
| 1658 | + "codecommit:PutRepositoryTriggers", |
| 1659 | + "codecommit:TestRepositoryTriggers", |
| 1660 | + "codecommit:GetBranch", |
| 1661 | + "codecommit:GetCommit", |
| 1662 | + "codecommit:UploadArchive", |
| 1663 | + "codecommit:GetUploadArchiveStatus", |
| 1664 | + "codecommit:CancelUploadArchive" |
| 1665 | + ], |
| 1666 | + "Resource": { |
| 1667 | + "Fn::Sub": [ |
| 1668 | + "arn:${AWS::Partition}:codecommit:${AWS::Region}:${AWS::AccountId}:${repositoryName}", |
| 1669 | + { |
| 1670 | + "repositoryName": { |
| 1671 | + "Ref": "RepositoryName" |
| 1672 | + } |
| 1673 | + } |
| 1674 | + ] |
| 1675 | + } |
| 1676 | + } |
| 1677 | + ] |
| 1678 | + } |
| 1679 | + }, |
| 1680 | + "CodeCommitReadPolicy": { |
| 1681 | + "Description": "Gives permissions to read objects within a specific codecommit repository", |
| 1682 | + "Parameters": { |
| 1683 | + "RepositoryName": { |
| 1684 | + "Description": "Name of the CodeCommit Repository" |
| 1685 | + } |
| 1686 | + }, |
| 1687 | + "Definition": { |
| 1688 | + "Statement": [ |
| 1689 | + { |
| 1690 | + "Effect": "Allow", |
| 1691 | + "Action": [ |
| 1692 | + "codecommit:GitPull", |
| 1693 | + "codecommit:GetBranch", |
| 1694 | + "codecommit:ListBranches", |
| 1695 | + "codecommit:BatchDescribeMergeConflicts", |
| 1696 | + "codecommit:DescribeMergeConflicts", |
| 1697 | + "codecommit:GetMergeCommit", |
| 1698 | + "codecommit:GetMergeOptions", |
| 1699 | + "codecommit:BatchGetPullRequests", |
| 1700 | + "codecommit:DescribePullRequestEvents", |
| 1701 | + "codecommit:GetCommentsForPullRequest", |
| 1702 | + "codecommit:GetCommitsFromMergeBase", |
| 1703 | + "codecommit:GetMergeConflicts", |
| 1704 | + "codecommit:GetPullRequest", |
| 1705 | + "codecommit:ListPullRequests", |
| 1706 | + "codecommit:GetBlob", |
| 1707 | + "codecommit:GetFile", |
| 1708 | + "codecommit:GetFolder", |
| 1709 | + "codecommit:GetComment", |
| 1710 | + "codecommit:GetCommentsForComparedCommit", |
| 1711 | + "codecommit:BatchGetCommits", |
| 1712 | + "codecommit:GetCommit", |
| 1713 | + "codecommit:GetCommitHistory", |
| 1714 | + "codecommit:GetDifferences", |
| 1715 | + "codecommit:GetObjectIdentifier", |
| 1716 | + "codecommit:GetReferences", |
| 1717 | + "codecommit:GetTree", |
| 1718 | + "codecommit:GetRepository", |
| 1719 | + "codecommit:ListTagsForResource", |
| 1720 | + "codecommit:GetRepositoryTriggers", |
| 1721 | + "codecommit:TestRepositoryTriggers", |
| 1722 | + "codecommit:GetBranch", |
| 1723 | + "codecommit:GetCommit", |
| 1724 | + "codecommit:GetUploadArchiveStatus" |
| 1725 | + ], |
| 1726 | + "Resource": { |
| 1727 | + "Fn::Sub": [ |
| 1728 | + "arn:${AWS::Partition}:codecommit:${AWS::Region}:${AWS::AccountId}:${repositoryName}", |
| 1729 | + { |
| 1730 | + "repositoryName": { |
| 1731 | + "Ref": "RepositoryName" |
| 1732 | + } |
| 1733 | + } |
| 1734 | + ] |
| 1735 | + } |
| 1736 | + } |
| 1737 | + ] |
| 1738 | + } |
1590 | 1739 | } |
1591 | 1740 | } |
1592 | 1741 | } |
0 commit comments