aripalo/sam-deploy-user.yml

## sam-deploy-user.yml
Resources:
  SamDeployUser:
    Type: AWS::IAM::User
    Properties:
      UserName: sam-deploy-user
      Path: "/"
      Policies:
        - PolicyName: allow-sam-deploy-access
          PolicyDocument:
            Version: "2012-10-17"
            Statement:
              - Effect: "Allow"
                Action:
                  - "cloudformation:*"
                  - "lambda:*"
                  - "apigateway:*"
                  - "s3:ListBucket"
                  - "s3:GetObject"
                  - "s3:GetObjectAcl"
                  - "s3:PutObject"
                  - "s3:PutObjectAcl"
                  - "iam:CreateRole"
                  - "iam:AttachRolePolicy"
                  - "iam:GetRole*"
                  - "iam:PassRole"
                  - "events:*"
                Resource: "*"
	Resources:
	SamDeployUser:
	Type: AWS::IAM::User
	Properties:
	UserName: sam-deploy-user
	Path: "/"
	Policies:
	- PolicyName: allow-sam-deploy-access
	PolicyDocument:
	Version: "2012-10-17"
	Statement:
	- Effect: "Allow"
	Action:
	- "cloudformation:*"
	- "lambda:*"
	- "apigateway:*"
	- "s3:ListBucket"
	- "s3:GetObject"
	- "s3:GetObjectAcl"
	- "s3:PutObject"
	- "s3:PutObjectAcl"
	- "iam:CreateRole"
	- "iam:AttachRolePolicy"
	- "iam:GetRole*"
	- "iam:PassRole"
	- "events:*"
	Resource: "*"