AWS Cloud Map (servicediscovery)

Additions

Actions

• DeleteResourcePolicy
  
  • Description:  Grants permission to delete the RAM access control policy for a namespace
  • Access:  Write
  • Resources: 

    Name: namespace

    Required: Yes

• GetResourcePolicy
  
  • Description:  Grants permission to read the RAM access control policy for a namespace
  • Access:  Read
  • Resources: 

    Name: namespace

    Required: Yes

• PutResourcePolicy
  
  • Description:  Grants permission to define the RAM access control policy for a namespace
  • Access:  Write
  • Resources: 

    Name: namespace

    Required: Yes

Conditions

• servicediscovery:ServiceCreatedByAccount
  
  • Description:  Filters access by specifying the account id of the related service creator
  • Type:  String

Updates

Actions

• DeleteServiceAttributes
  
  Conditions
  
  • ＋ servicediscovery:ServiceCreatedByAccount
• DeregisterInstance
  
  Conditions
  
  • ＋ servicediscovery:ServiceCreatedByAccount
• DiscoverInstances
  
  Conditions
  
  • ＋ servicediscovery:ServiceCreatedByAccount
• DiscoverInstancesRevision
  
  Resources
  
  • ＋ namespace
  • ＋ service
• GetInstance
  
  Resources
  
  • ＋ namespace
  • ＋ service
• GetInstancesHealthStatus
  
  Resources
  
  • ＋ service
• GetNamespace
  
  Resources
  
  • ＋ service
• GetService
  
  Resources
  
  • ＋ namespace
  • ＋ service
• ListOperations
  
  Resources
  
  • ＋ service
• UpdateHttpNamespace
  
  Conditions
  
  • ＋ servicediscovery:ServiceCreatedByAccount
• UpdateService
  
  Resources
  
  • ＋ service
  Conditions
  
  • ＋ servicediscovery:ServiceCreatedByAccount