nakada0907/daisuke-iam-infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
daisuke-iam-infra/policies/aws-mcp-policy.yaml
Daisuke ebd5d751e2 Add AWS MCP policy and expand CloudFormation role permissions 
- Add new AWS MCP managed policy with permissions for MCP tool invocation
- Extend IAM permissions: add AttachRolePolicy and CreatePolicy actions
- Add ELB permissions for target group modification
- Add ECS permissions for task definition management (register/deregister/tag)
2026-01-02 16:45:03 +09:00

18 lines
513 B
YAML
Raw Blame History

AWSTemplateFormatVersion: '2010-09-09'
Description: AWS MCP Managed Policy
Resources:
AWSMCPPolicy:
Type: AWS::IAM::ManagedPolicy
Properties:
ManagedPolicyName: AWSMCPPolicy
Description: AWS MCP permissions for invoking MCP tools
PolicyDocument:
Version: '2012-10-17'
Statement:
- Effect: Allow
Action:
- aws-mcp:InvokeMcp
- aws-mcp:CallReadOnlyTool
- aws-mcp:CallReadWriteTool
Resource: "*"
Reference in a new issue View git blame Copy permalink