Create a gist now

Instantly share code, notes, and snippets.

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"codedeploy:RegisterApplicationRevision",
"codedeploy:GetApplicationRevision"
],
"Resource": [
"arn:aws:codedeploy:us-east-1:870116389747:application:DemoApplication"
]
},
{
"Effect": "Allow",
"Action": [
"codedeploy:CreateDeployment",
"codedeploy:GetDeployment"
],
"Resource": [
"arn:aws:codedeploy:us-east-1:870116389747:deploymentgroup:DemoApplication/*"
]
},
{
"Effect": "Allow",
"Action": [
"codedeploy:GetDeploymentConfig"
],
"Resource": [
"arn:aws:codedeploy:us-east-1:870116389747:deploymentconfig:CodeDeployDefault.OneAtATime",
"arn:aws:codedeploy:us-east-1:870116389747:deploymentconfig:CodeDeployDefault.HalfAtATime",
"arn:aws:codedeploy:us-east-1:870116389747:deploymentconfig:CodeDeployDefault.AllAtOnce"
]
}
]
}
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"s3:PutObject"
],
"Resource": [
"arn:aws:s3:::codeship-codedeploy-bucket/testname/*"
]
}
]
}
@wehappyfew

In my humble opinion Gists should have a description as any piece of code...

This policy provides the entity that is attached to [IAM user] , with the rights to actually create new application revisions, create new deployments, update the deployment configuration and get the status of a deployment. The following snippet for CodeDeploy sets the minimum required rights. Please note, that you need to adapt the snippet to your specific configuration (e.g. setting the proper AWS region, your AWS account id and application name and other deployment configs).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment