nakada0907/daisuke-iam-infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
No description
11 commits 1 branch 0 tags 44 KiB
Find a file
Exact
Daisuke c31e4e36f7 feat(iam): allow cloudfront function updates 
- grant CloudFront Function and invalidation permissions
2026-02-01 17:30:36 +09:00
.github/skills/commit-message-generator feat: Expand CloudFormation and ELB permissions for infrastructure management 2026-01-10 19:46:55 +09:00
policies feat(iam): allow cloudfront function updates 2026-02-01 17:30:36 +09:00
roles feat: Expand CloudFormation and ELB permissions for infrastructure management 2026-01-10 19:46:55 +09:00
README.md Add CloudFormation write IAM role, managed policy, and repository README 2025-12-31 19:52:14 +09:00

README.md

CloudFormation Write IAM Definitions

This repository defines IAM roles and policies for safely executing AWS CloudFormation operations via AssumeRole.

  • roles/cloudformation-write-role.yaml IAM role for CloudFormation execution, including ECR import permissions. Assumable by specified IAM Identity Center roles.

  • policies/cloudformation-write-policy.yaml Managed policy granting minimal CloudFormation write access. Intended for use via the execution role, not attached directly to users.