-
Notifications
You must be signed in to change notification settings - Fork 18
/
excluded_scoped_actions.tf
67 lines (53 loc) · 2.23 KB
/
excluded_scoped_actions.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
locals {
ignored_scoped_events_built_in = [
"cognito-idp.amazonaws.com:InitiateAuth",
"cognito-idp.amazonaws.com:RespondToAuthChallenge",
"sso.amazonaws.com:Federate",
"sso.amazonaws.com:Authenticate",
"sso.amazonaws.com:Logout",
"sso.amazonaws.com:SearchUsers",
"sso.amazonaws.com:SearchGroups",
"sso.amazonaws.com:CreateToken",
"signin.amazonaws.com:UserAuthentication",
"signin.amazonaws.com:SwitchRole",
"signin.amazonaws.com:RenewRole",
"signin.amazonaws.com:ExternalIdPDirectoryLogin",
"signin.amazonaws.com:CredentialVerification",
"signin.amazonaws.com:CredentialChallenge",
"signin.amazonaws.com:CheckMfa",
"logs.amazonaws.com:StartQuery",
"cloudtrail.amazonaws.com:StartQuery",
"iam.amazonaws.com:SimulatePrincipalPolicy",
"iam.amazonaws.com:GenerateServiceLastAccessedDetails",
"glue.amazonaws.com:BatchGetJobs",
"glue.amazonaws.com:BatchGetCrawlers",
"glue.amazonaws.com:StartJobRun",
"glue.amazonaws.com:StartCrawler",
"athena.amazonaws.com:StartQueryExecution",
"servicecatalog.amazonaws.com:SearchProductsAsAdmin",
"servicecatalog.amazonaws.com:SearchProducts",
"servicecatalog.amazonaws.com:SearchProvisionedProducts",
"servicecatalog.amazonaws.com:TerminateProvisionedProduct",
"cloudshell.amazonaws.com:CreateSession",
"cloudshell.amazonaws.com:PutCredentials",
"cloudshell.amazonaws.com:SendHeartBeat",
"cloudshell.amazonaws.com:CreateEnvironment",
"kms.amazonaws.com:Decrypt",
"kms.amazonaws.com:RetireGrant",
"trustedadvisor.amazonaws.com:RefreshCheck",
# Must CreateMultipartUpload before uploading any parts.
"s3.amazonaws.com:UploadPart",
"s3.amazonaws.com:UploadPartCopy",
"route53domains:TransferDomain",
"support.amazonaws.com:AddAttachmentsToSet",
"support.amazonaws.com:AddCommunicationToCase",
"support.amazonaws.com:CreateCase",
"support.amazonaws.com:InitiateCallForCase",
"support.amazonaws.com:InitiateChatForCase",
"support.amazonaws.com:PutCaseAttributes",
"support.amazonaws.com:RateCaseCommunication",
"support.amazonaws.com:RefreshTrustedAdvisorCheck",
"support.amazonaws.com:ResolveCase",
"grafana.amazonaws.com:login_auth_sso",
]
}