Pilot53 icon indicating copy to clipboard operation
Pilot53 copied to clipboard

Published 20 hours ago verified publisher icon jnardiello

Provide a default IAM role JSON for us lazy/stupid people

Open richardsj opened this issue 8 years ago • 1 comments

The IAM role should be quite short and easy, but a lot of us find it difficult at times. It would also be the same JSON for everyone, so why not include it?

richardsj avatar Jul 27 '16 04:07 richardsj

Here's a proposed one:

{
    "Version": "2012-10-17",
    "Statement": [{
        "Effect": "Allow",
        "Action": "ec2:Describe*",
        "Resource": "*"
    }, {
        "Effect": "Allow",
        "Action": "elasticloadbalancing:Describe*",
        "Resource": "*"
    }, {
        "Effect": "Allow",
        "Action": [
            "cloudwatch:ListMetrics",
            "cloudwatch:GetMetricStatistics",
            "cloudwatch:Describe*"
        ],
        "Resource": "*"
    }, {
    "Effect": "Allow",
    "Action": [
      "logs:CreateLogGroup",
      "logs:CreateLogStream",
      "logs:PutLogEvents"
    ],
    "Resource": "*"
    } , {
        "Effect": "Allow",
        "Action": "autoscaling:Describe*",
        "Resource": "*"
    }, {
        "Effect": "Allow",
        "Action": [
            "route53:*"
        ],
        "Resource": [
            "*"
        ]
    }, {
        "Effect": "Allow",
        "Action": [
            "elasticloadbalancing:DescribeLoadBalancers"
        ],
        "Resource": [
            "*"
        ]
    }]
}

richardsj avatar Jul 27 '16 07:07 richardsj