Skip to content

Commit

Permalink
Fixed permission samples
Browse files Browse the repository at this point in the history 
[skip actions]
  • Loading branch information
@eytannnaim
eytannnaim committed Jun 18, 2024
1 parent 57453ea commit 8a1a25d
Show file tree
Hide file tree
Showing 3 changed files with 27 additions and 12 deletions.
37 changes: 25 additions & 12 deletions permissions_samples/aws/OnboardMssqlRdsWithDataPermissions.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -82,6 +82,7 @@
"Action": [
"logs:DescribeLogGroups",
"logs:ListTagsLogGroup",
"logs:ListTagsForResource",
"logs:PutRetentionPolicy"
],
"Resource": "*"
Expand Down Expand Up @@ -204,6 +205,26 @@
"s3:DeleteBucket",
"s3:DeleteObject",
"s3:CreateBucket",
"s3:PutObject",
"s3:PutObjectAcl",
"s3:PutBucketTagging",
"s3:PutObjectTagging",
"s3:PutObjectVersionTagging",
"s3:DeleteAccessPoint",
"s3:DeleteObjectVersion",
"s3:CreateAccessPoint",
"s3:PutBucketPublicAccessBlock",
"s3:PutAccountPublicAccessBlock"
],
"Resource": [
"arn:aws:s3:::imperva-dsf-*",
"arn:aws:s3:::imperva-dsf-*/*"
]
},
{
"Sid": "s3GeneralPermissions",
"Effect": "Allow",
"Action": [
"s3:ListBucket",
"s3:ListAllMyBuckets",
"s3:ListBucketVersions",
Expand All @@ -219,29 +240,21 @@
"s3:GetReplicationConfiguration",
"s3:GetEncryptionConfiguration",
"s3:GetBucketObjectLockConfiguration",
"s3:PutObject",
"s3:PutObjectAcl",
"s3:PutBucketTagging",
"s3:PutObjectTagging",
"s3:PutObjectVersionTagging",
"s3:GetObject",
"s3:GetBucketAcl",
"s3:GetObjectAcl",
"s3:GetBucketLocation",
"s3:GetBucketTagging",
"s3:GetObjectTagging",
"s3:GetAccountPublicAccessBlock",
"s3:GetBucketPublicAccessBlock",
"s3:DeleteAccessPoint",
"s3:DeleteObjectVersion",
"s3:CreateAccessPoint",
"s3:PutBucketPublicAccessBlock",
"s3:PutAccountPublicAccessBlock"
"s3:GetBucketPublicAccessBlock"
],
"Resource": [
"arn:aws:s3:::ae309159-115c-4504-b0c2-03dd022f3368",
"arn:aws:s3:::ae309159-115c-4504-b0c2-03dd022f3368/*",
"arn:aws:s3:::imperva-dsf-*",
"arn:aws:s3:::imperva-dsf-*/*"
]
}
]
}
}
1 change: 1 addition & 0 deletions permissions_samples/aws/OnboardMysqlRdsPermissions.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -74,6 +74,7 @@
"Action": [
"logs:DescribeLogGroups",
"logs:ListTagsLogGroup",
"logs:ListTagsForResource",
"logs:PutRetentionPolicy"
],
"Resource": "*"
Expand Down
1 change: 1 addition & 0 deletions permissions_samples/aws/OnboardPostgreSqlRdsPermissions.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -75,6 +75,7 @@
"Action": [
"logs:DescribeLogGroups",
"logs:ListTagsLogGroup",
"logs:ListTagsForResource",
"logs:PutRetentionPolicy"
],
"Resource": "*"
Expand Down

0 comments on commit 8a1a25d

Please sign in to comment.