AWS Chalice所需的AWS IAM策略

Question

AWS Chalice所需的AWS IAM策略

pythonaws-lambdaamazon-iamchalice

5

IAM角色策略要求什么是AWS Chalice。

Github中没有官方文档？

运行AWS Chalice需要哪些权限？

- Thirumal

1个回答

网页内容由stack overflow 提供, 点击上面的

可以查看英文原文，
原文链接

- Thirumal · Accepted Answer

截至2020年7月9日，Github上没有官方文档，关于IAM的文档问题存在一个未解决的问题。

所需权限包括：

API网关
IAM
Lambda

适合我的策略是：

{
"Version": "2012-10-17",
"Statement": [
    {
        "Sid": "Stmt1471020565000",
        "Effect": "Allow",
        "Action": [
            "iam:AttachRolePolicy",
            "iam:DeleteRolePolicy",
            "iam:DetachRolePolicy",
            "iam:CreateRole",
            "iam:PutRolePolicy",
            "iam:GetRole",
            "iam:PassRole"
        ],
        "Resource": [
            "*"
        ]
    },
    {
        "Sid": "Stmt1471020565001",
        "Effect": "Allow",
        "Action": [
            "apigateway:GET",
            "apigateway:HEAD",
            "apigateway:POST"
        ],
        "Resource": [
            "arn:aws:apigateway:ap-south-1::/restapis",
            "arn:aws:apigateway:ap-south-1::/restapis/*/resources",
            "arn:aws:apigateway:ap-south-1::/restapis/*/resources/*"
        ]
    },
    {
        "Sid": "Stmt1471020565002",
        "Effect": "Allow",
        "Action": [
            "apigateway:DELETE"
        ],
        "Resource": [
            "arn:aws:apigateway:ap-south-1::/restapis/*/resources/*"
        ]
    },
    {
        "Sid": "Stmt1471020565003",
        "Effect": "Allow",
        "Action": [
            "apigateway:POST"
        ],
        "Resource": [
            "arn:aws:apigateway:ap-south-1::/restapis/*/deployments",
            "arn:aws:apigateway:ap-south-1::/restapis/*/resources/*"
        ]
    },
    {
        "Sid": "Stmt1471020565004",
        "Effect": "Allow",
        "Action": [
            "apigateway:PUT"
        ],
        "Resource": [
            "arn:aws:apigateway:ap-south-1::/restapis/*/methods/GET",
            "arn:aws:apigateway:ap-south-1::/restapis/*/methods/GET/*",
            "arn:aws:apigateway:ap-south-1::/restapis/*/methods/POST",
            "arn:aws:apigateway:ap-south-1::/restapis/*/methods/POST/*",
            "arn:aws:apigateway:ap-south-1::/restapis/*/methods/PUT",
            "arn:aws:apigateway:ap-south-1::/restapis/*/methods/PUT/*"
        ]
    },
    {
        "Sid": "Stmt1471020565005",
        "Effect": "Allow",
        "Action": [
            "apigateway:PATCH"
        ],
        "Resource": [
            "arn:aws:apigateway:ap-south-1::/restapis/*"
        ]
    },
    {
        "Effect": "Allow",
        "Action": "lambda:*",
        "Resource": "*"
    }
]
}