nakada0907/daisuke-iam-infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
7 commits 1 branch 0 tags 43 KiB
Commit graph

7 commits

This branch
This branch
All branches
Author SHA1 Message Date
Daisuke
4e533c005d feat: add permissions for ECR, S3, CodePipeline, CodeBuild, Lambda, and API Gateway 2026-01-04 12:40:23 +09:00
Daisuke
5ca77a5360 chore(github): add repository GitHub configuration 2026-01-03 20:34:47 +09:00
Daisuke
d6b591a815 feat(iam): update CloudFormation write role principal and permissions 2026-01-03 20:34:25 +09:00
Daisuke
c6eaeb96fb Subject: infra(roles): update CloudFormation write role permissions 
Body: Adjust IAM permissions in roles/cloudformation-write-role.yaml to ensure
CloudFormation has the required write access for stack operations.
 2026-01-02 18:13:00 +09:00
Daisuke
ebd5d751e2 Add AWS MCP policy and expand CloudFormation role permissions 
- Add new AWS MCP managed policy with permissions for MCP tool invocation
- Extend IAM permissions: add AttachRolePolicy and CreatePolicy actions
- Add ELB permissions for target group modification
- Add ECS permissions for task definition management (register/deregister/tag)
 2026-01-02 16:45:03 +09:00
Daisuke
c4cc90881e feat(iam): extend CloudFormation write role permissions for pipeline and events 
- allow setting ECR repository policies
- add IAM role lifecycle and PassRole permissions
- grant Secrets Manager read access
- enable S3 bucket notification updates
- allow CodePipeline updates
- allow EventBridge rule and target management
 2026-01-01 11:16:58 +09:00
Daisuke
ef8bceff67 Add CloudFormation write IAM role, managed policy, and repository README 2025-12-31 19:52:14 +09:00