Last active
May 14, 2017 12:52
-
-
Save flomotlik/b33a5399ba1a3512797d to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "Version": "2012-10-17", | |
| "Statement": [ | |
| { | |
| "Effect": "Allow", | |
| "Action": [ | |
| "codedeploy:RegisterApplicationRevision", | |
| "codedeploy:GetApplicationRevision" | |
| ], | |
| "Resource": [ | |
| "arn:aws:codedeploy:us-east-1:870116389747:application:DemoApplication" | |
| ] | |
| }, | |
| { | |
| "Effect": "Allow", | |
| "Action": [ | |
| "codedeploy:CreateDeployment", | |
| "codedeploy:GetDeployment" | |
| ], | |
| "Resource": [ | |
| "arn:aws:codedeploy:us-east-1:870116389747:deploymentgroup:DemoApplication/*" | |
| ] | |
| }, | |
| { | |
| "Effect": "Allow", | |
| "Action": [ | |
| "codedeploy:GetDeploymentConfig" | |
| ], | |
| "Resource": [ | |
| "arn:aws:codedeploy:us-east-1:870116389747:deploymentconfig:CodeDeployDefault.OneAtATime", | |
| "arn:aws:codedeploy:us-east-1:870116389747:deploymentconfig:CodeDeployDefault.HalfAtATime", | |
| "arn:aws:codedeploy:us-east-1:870116389747:deploymentconfig:CodeDeployDefault.AllAtOnce" | |
| ] | |
| } | |
| ] | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "Version": "2012-10-17", | |
| "Statement": [ | |
| { | |
| "Effect": "Allow", | |
| "Action": [ | |
| "s3:PutObject" | |
| ], | |
| "Resource": [ | |
| "arn:aws:s3:::codeship-codedeploy-bucket/testname/*" | |
| ] | |
| } | |
| ] | |
| } |
totally waste kinda gist it is.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In my humble opinion Gists should have a description as any piece of code...
This policy provides the entity that is attached to [IAM user] , with the rights to actually create new application revisions, create new deployments, update the deployment configuration and get the status of a deployment. The following snippet for CodeDeploy sets the minimum required rights. Please note, that you need to adapt the snippet to your specific configuration (e.g. setting the proper AWS region, your AWS account id and application name and other deployment configs).