tomfa/AWSElasticBeanstalkMulticontainerDocker

## AWSElasticBeanstalkMulticontainerDocker
{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "ECSAccess",
      "Effect": "Allow",
      "Action": [
        "ecs:Poll",
        "ecs:StartTask",
        "ecs:StopTask",
        "ecs:DiscoverPollEndpoint",
        "ecs:StartTelemetrySession",
        "ecs:RegisterContainerInstance",
        "ecs:DeregisterContainerInstance",
        "ecs:DescribeContainerInstances",
        "ecs:Submit*",
        "ecs:DescribeTasks"
      ],
      "Resource": "*"
    }
  ]
}

## AWSElasticBeanstalkWebTier
{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "BucketAccess",
      "Action": [
        "s3:Get*",
        "s3:List*",
        "s3:PutObject"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:s3:::elasticbeanstalk-*",
        "arn:aws:s3:::elasticbeanstalk-*/*"
      ]
    }
  ]
}

## AWSElasticBeanstalkWorkerTier
{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "MetricsAccess",
      "Action": [
        "cloudwatch:PutMetricData"
      ],
      "Effect": "Allow",
      "Resource": "*"
    },
    {
      "Sid": "QueueAccess",
      "Action": [
        "sqs:ChangeMessageVisibility",
        "sqs:DeleteMessage",
        "sqs:ReceiveMessage",
        "sqs:SendMessage"
      ],
      "Effect": "Allow",
      "Resource": "*"
    },
    {
      "Sid": "BucketAccess",
      "Action": [
        "s3:Get*",
        "s3:List*",
        "s3:PutObject"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:s3:::elasticbeanstalk-*",
        "arn:aws:s3:::elasticbeanstalk-*/*"
      ]
    },
    {
      "Sid": "DynamoPeriodicTasks",
      "Action": [
        "dynamodb:BatchGetItem",
        "dynamodb:BatchWriteItem",
        "dynamodb:DeleteItem",
        "dynamodb:GetItem",
        "dynamodb:PutItem",
        "dynamodb:Query",
        "dynamodb:Scan",
        "dynamodb:UpdateItem"
      ],
      "Effect": "Allow",
      "Resource": [
        "arn:aws:dynamodb:*:*:table/*-stack-AWSEBWorkerCronLeaderRegistry*"
      ]
    }
  ]
}
	{
	"Version": "2012-10-17",
	"Statement": [
	{
	"Sid": "ECSAccess",
	"Effect": "Allow",
	"Action": [
	"ecs:Poll",
	"ecs:StartTask",
	"ecs:StopTask",
	"ecs:DiscoverPollEndpoint",
	"ecs:StartTelemetrySession",
	"ecs:RegisterContainerInstance",
	"ecs:DeregisterContainerInstance",
	"ecs:DescribeContainerInstances",
	"ecs:Submit*",
	"ecs:DescribeTasks"
	],
	"Resource": "*"
	}
	]
	}
	{
	"Version": "2012-10-17",
	"Statement": [
	{
	"Sid": "BucketAccess",
	"Action": [
	"s3:Get*",
	"s3:List*",
	"s3:PutObject"
	],
	"Effect": "Allow",
	"Resource": [
	"arn:aws:s3:::elasticbeanstalk-*",
	"arn:aws:s3:::elasticbeanstalk-/"
	]
	}
	]
	}
	{
	"Version": "2012-10-17",
	"Statement": [
	{
	"Sid": "MetricsAccess",
	"Action": [
	"cloudwatch:PutMetricData"
	],
	"Effect": "Allow",
	"Resource": "*"
	},
	{
	"Sid": "QueueAccess",
	"Action": [
	"sqs:ChangeMessageVisibility",
	"sqs:DeleteMessage",
	"sqs:ReceiveMessage",
	"sqs:SendMessage"
	],
	"Effect": "Allow",
	"Resource": "*"
	},
	{
	"Sid": "BucketAccess",
	"Action": [
	"s3:Get*",
	"s3:List*",
	"s3:PutObject"
	],
	"Effect": "Allow",
	"Resource": [
	"arn:aws:s3:::elasticbeanstalk-*",
	"arn:aws:s3:::elasticbeanstalk-/"
	]
	},
	{
	"Sid": "DynamoPeriodicTasks",
	"Action": [
	"dynamodb:BatchGetItem",
	"dynamodb:BatchWriteItem",
	"dynamodb:DeleteItem",
	"dynamodb:GetItem",
	"dynamodb:PutItem",
	"dynamodb:Query",
	"dynamodb:Scan",
	"dynamodb:UpdateItem"
	],
	"Effect": "Allow",
	"Resource": [
	"arn:aws:dynamodb:::table/-stack-AWSEBWorkerCronLeaderRegistry"
	]
	}
	]
	}