-
Notifications
You must be signed in to change notification settings - Fork 3
/
Copy pathNetskopeCE_policy_7.json
100 lines (100 loc) · 3.79 KB
/
NetskopeCE_policy_7.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": [
"lambda:CreateFunction",
"lambda:TagResource",
"s3:GetObjectVersionTagging",
"s3:CreateBucket",
"ecs:StartTask",
"ecs:DescribeTaskSets",
"lambda:GetFunctionConfiguration",
"ecs:DescribeTaskDefinition",
"s3:GetIntelligentTieringConfiguration",
"s3:PutLifecycleConfiguration",
"ecs:RegisterTaskDefinition",
"s3:GetObjectVersionAcl",
"s3:PutBucketAcl",
"s3:PutObjectTagging",
"ecs:StopTask",
"lambda:DeleteFunction",
"s3:DeleteObject",
"ecs:DeregisterContainerInstance",
"ecs:TagResource",
"ecs:CreateTaskSet",
"ecs:SubmitTaskStateChange",
"lambda:CreateFunctionUrlConfig",
"s3:GetObjectRetention",
"lambda:InvokeFunctionUrl",
"s3:GetJobTagging",
"lambda:InvokeFunction",
"ecs:CreateCluster",
"ecs:DeleteService",
"ecs:DeleteCluster",
"lambda:GetFunctionUrlConfig",
"ecs:DeleteTaskSet",
"s3:PutObjectLegalHold",
"s3:PutBucketCORS",
"s3:GetBucketNotification",
"s3:DeleteBucketPolicy",
"ecs:DescribeClusters",
"s3:PutObject",
"s3:PutBucketNotification",
"ecs:StartTelemetrySession",
"s3:PutBucketLogging",
"s3:PutObjectVersionAcl",
"s3:GetObjectVersionForReplication",
"s3:CreateJob",
"s3:GetLifecycleConfiguration",
"s3:GetBucketTagging",
"s3:DeleteObjectVersion",
"ecs:ExecuteCommand",
"s3:GetBucketLogging",
"ecs:RegisterContainerInstance",
"s3:GetBucketPolicy",
"lambda:UntagResource",
"ecs:DeleteCapacityProvider",
"s3:PutEncryptionConfiguration",
"ecs:SubmitAttachmentStateChanges",
"ecs:DeregisterTaskDefinition",
"s3:GetEncryptionConfiguration",
"ecs:CreateService",
"ecs:RunTask",
"s3:PutBucketTagging",
"s3:GetObjectTagging",
"s3:GetMetricsConfiguration",
"ecs:DescribeServices",
"ecs:SubmitContainerStateChange",
"ecs:DescribeContainerInstances",
"s3:DeleteBucket",
"ecs:DescribeTasks",
"ecs:UntagResource",
"s3:PutBucketVersioning",
"s3:PutObjectAcl",
"s3:GetBucketPublicAccessBlock",
"s3:PutBucketPublicAccessBlock",
"s3:PutIntelligentTieringConfiguration",
"lambda:GetFunction",
"s3:PutMetricsConfiguration",
"s3:PutObjectVersionTagging",
"s3:PutJobTagging",
"s3:GetBucketVersioning",
"s3:GetBucketAcl",
"s3:BypassGovernanceRetention",
"lambda:AddPermission",
"s3:PutObjectRetention",
"s3:GetBucketCORS",
"s3:PutBucketPolicy",
"lambda:DeleteFunctionUrlConfig",
"s3:GetBucketLocation",
"lambda:RemovePermission",
"s3:GetObjectVersion",
"lambda:GetPolicy"
],
"Resource": "*"
}
]
}