AWS Supply Chain (scn)

2023-02-22

10 new actions, 1 new resource, 3 new conditions

Additions

    Actions
  • AssignAdminPermissionsToUser
    • Description:  Grants permission to add AWS Supply Chain administrator permission to federated user
    • Access:  Write
    • Resources: 

      Name: instance

      Required: Yes

  • CreateInstance
    • Description:  Grants permission to create a new AWS Supply Chain instance
    • Access:  Write
    • Resources: 

      Name: instance

      Required: Yes

  • CreateSSOApplication
    • Description:  Grants permission to create IAM Identity Center application for a AWS Supply Chain instance
    • Access:  Write
    • Resources: 

      Name: instance

      Required: Yes

  • DeleteInstance
    • Description:  Grants permission to delete an AWS Supply Chain instance
    • Access:  Write
    • Resources: 

      Name: instance

      Required: Yes

  • DeleteSSOApplication
    • Description:  Grants permission to delete IAM Identity Center application of the AWS Supply Chain instance
    • Access:  Write
    • Resources: 

      Name: instance

      Required: Yes

  • DescribeInstance
    • Description:  Grants permission to view details of an AWS Supply Chain instance
    • Access:  Read
    • Resources: 

      Name: instance

      Required: Yes

  • ListAdminUsers
    • Description:  Grants permission to list AWS Supply Chain administrators of an instance
    • Access:  List
    • Resources: 

      Name: instance

      Required: Yes

  • ListInstances
    • Description:  Grants permission to view the AWS Supply Chain instances associated with an AWS account
    • Access:  List
    • Resources: 

      Name: instance

      Required: Yes

  • RemoveAdminPermissionsForUser
    • Description:  Grants permission to remove AWS Supply Chain administrator permission from federated user
    • Access:  Write
    • Resources: 

      Name: instance

      Required: Yes

  • UpdateInstance
    • Description:  Grants permission to update an AWS Supply Chain instance
    • Access:  Write
    • Resources: 

      Name: instance

      Required: Yes

    Resources
  • instance
    • Arn:  arn:${Partition}:scn:${Region}:${Account}:instance/${InstanceId}
    Conditions
  • aws:RequestTag/${TagKey}
    • Description:  Filters access by using tag key-value pairs in the request
    • Type:  String
  • aws:ResourceTag/${TagKey}
    • Description:  Filters access by using tag key-value pairs attached to the resource
    • Type:  String
  • aws:TagKeys
    • Description:  Filters access by using tag keys in the request
    • Type:  ArrayOfString