AWS IoT TwinMaker (iottwinmaker)

2021-12-04

26 new actions, 4 new resources, 3 new conditions

Additions

    Actions
  • BatchPutPropertyValues
    • Description:  Grants permission to set values for multiple time series properties
    • Access:  Write
    • Resources: 

      Name: workspace

      Required: Yes

      Name: entity

      Required: No

    • Dependents: 

      iottwinmaker:GetComponentType

      iottwinmaker:GetEntity

      iottwinmaker:GetWorkspace

  • CreateComponentType
    • Description:  Grants permission to create a componentType
    • Access:  Write
    • Resources: 

      Name: workspace

      Required: Yes

    • Conditions: 

      aws:RequestTag/${TagKey}

      aws:TagKeys

  • CreateEntity
    • Description:  Grants permission to create an entity
    • Access:  Write
    • Resources: 

      Name: workspace

      Required: Yes

    • Conditions: 

      aws:RequestTag/${TagKey}

      aws:TagKeys

  • CreateScene
    • Description:  Grants permission to create a scene
    • Access:  Write
    • Resources: 

      Name: workspace

      Required: Yes

    • Conditions: 

      aws:RequestTag/${TagKey}

      aws:TagKeys

  • CreateWorkspace
    • Description:  Grants permission to create a workspace
    • Access:  Write
    • Conditions: 

      aws:RequestTag/${TagKey}

      aws:TagKeys

  • DeleteComponentType
    • Description:  Grants permission to delete a componentType
    • Access:  Write
    • Resources: 

      Name: componentType

      Required: Yes

      Name: workspace

      Required: Yes

  • DeleteEntity
    • Description:  Grants permission to delete an entity
    • Access:  Write
    • Resources: 

      Name: entity

      Required: Yes

      Name: workspace

      Required: Yes

  • DeleteScene
    • Description:  Grants permission to delete a scene
    • Access:  Write
    • Resources: 

      Name: scene

      Required: Yes

      Name: workspace

      Required: Yes

  • DeleteWorkspace
    • Description:  Grants permission to delete a workspace
    • Access:  Write
    • Resources: 

      Name: workspace

      Required: Yes

  • GetComponentType
    • Description:  Grants permission to get a componentType
    • Access:  Read
    • Resources: 

      Name: componentType

      Required: Yes

      Name: workspace

      Required: Yes

  • GetEntity
    • Description:  Grants permission to get an entity
    • Access:  Read
    • Resources: 

      Name: entity

      Required: Yes

      Name: workspace

      Required: Yes

  • GetPropertyValue
    • Description:  Grants permission to retrieve the property values
    • Access:  Read
    • Resources: 

      Name: workspace

      Required: Yes

      Name: componentType

      Required: No

      Name: entity

      Required: No

    • Dependents: 

      iottwinmaker:GetComponentType

      iottwinmaker:GetEntity

      iottwinmaker:GetWorkspace

  • GetPropertyValueHistory
    • Description:  Grants permission to retrieve the time series value history
    • Access:  Read
    • Resources: 

      Name: workspace

      Required: Yes

      Name: componentType

      Required: No

      Name: entity

      Required: No

    • Dependents: 

      iottwinmaker:GetComponentType

      iottwinmaker:GetEntity

      iottwinmaker:GetWorkspace

  • GetScene
    • Description:  Grants permission to get a scene
    • Access:  Read
    • Resources: 

      Name: scene

      Required: Yes

      Name: workspace

      Required: Yes

  • GetWorkspace
    • Description:  Grants permission to get a workspace
    • Access:  Read
    • Resources: 

      Name: workspace

      Required: Yes

  • ListComponentTypes
    • Description:  Grants permission to list all componentTypes in a workspace
    • Access:  List
    • Resources: 

      Name: workspace

      Required: Yes

  • ListEntities
    • Description:  Grants permission to list all entities in a workspace
    • Access:  List
    • Resources: 

      Name: workspace

      Required: Yes

  • ListScenes
    • Description:  Grants permission to list all scenes in a workspace
    • Access:  List
    • Resources: 

      Name: workspace

      Required: Yes

  • ListTagsForResource
    • Description:  Grants permission to list all tags for a resource
    • Access:  List
    • Resources: 

      Name: componentType

      Required: No

      Name: entity

      Required: No

      Name: scene

      Required: No

      Name: workspace

      Required: No

    • Conditions: 

      aws:ResourceTag/${TagKey}

  • ListWorkspaces
    • Description:  Grants permission to list all workspaces
    • Access:  List
  • TagResource
    • Description:  Grants permission to tag a resource
    • Access:  Tagging
    • Resources: 

      Name: componentType

      Required: No

      Name: entity

      Required: No

      Name: scene

      Required: No

      Name: workspace

      Required: No

    • Conditions: 

      aws:RequestTag/${TagKey}

      aws:TagKeys

  • UntagResource
    • Description:  Grants permission to untag a resource
    • Access:  Tagging
    • Resources: 

      Name: componentType

      Required: No

      Name: entity

      Required: No

      Name: scene

      Required: No

      Name: workspace

      Required: No

    • Conditions: 

      aws:TagKeys

  • UpdateComponentType
    • Description:  Grants permission to update a componentType
    • Access:  Write
    • Resources: 

      Name: componentType

      Required: Yes

      Name: workspace

      Required: Yes

  • UpdateEntity
    • Description:  Grants permission to update an entity
    • Access:  Write
    • Resources: 

      Name: entity

      Required: Yes

      Name: workspace

      Required: Yes

  • UpdateScene
    • Description:  Grants permission to update a scene
    • Access:  Write
    • Resources: 

      Name: scene

      Required: Yes

      Name: workspace

      Required: Yes

  • UpdateWorkspace
    • Description:  Grants permission to update a workspace
    • Access:  Write
    • Resources: 

      Name: workspace

      Required: Yes

    Resources
  • workspace
    • Arn:  arn:${Partition}:iottwinmaker:${Region}:${Account}:workspace/${WorkspaceId}
    • Conditions: 

      aws:ResourceTag/${TagKey}

  • entity
    • Arn:  arn:${Partition}:iottwinmaker:${Region}:${Account}:workspace/${WorkspaceId}/entity/${EntityId}
    • Conditions: 

      aws:ResourceTag/${TagKey}

  • componentType
    • Arn:  arn:${Partition}:iottwinmaker:${Region}:${Account}:workspace/${WorkspaceId}/component-type/${ComponentTypeId}
    • Conditions: 

      aws:ResourceTag/${TagKey}

  • scene
    • Arn:  arn:${Partition}:iottwinmaker:${Region}:${Account}:workspace/${WorkspaceId}/scene/${SceneId}
    • Conditions: 

      aws:ResourceTag/${TagKey}

    Conditions
  • aws:RequestTag/${TagKey}
    • Description:  Filters access by the tag key-value pairs in the request
    • Type:  String
  • aws:ResourceTag/${TagKey}
    • Description:  Filters access by the tags attached to the resource
    • Type:  String
  • aws:TagKeys
    • Description:  Filters access by the tag keys in the request
    • Type:  String