Skip to content

Latest commit

 

History

History
40 lines (36 loc) · 782 Bytes

deploy_user_rights.md

File metadata and controls

40 lines (36 loc) · 782 Bytes

We recommand that you use a dedicated AWS user to deploy the project.

The following policy can be associated to the user, so that it has sufficient rights to perform it's task:

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "VisualEditor0",
      "Effect": "Allow",
      "Action": [
        "cloudtrail:*",
        "dynamodb:*",
        "iam:*",
        "lambda:*",
        "logs:*",
        "s3:*"
      ],
      "Resource": "*"
    }
  ]
}

Note that if you plan to use the SES Notifier, you would also need those additional rights:

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "VisualEditor0",
      "Effect": "Allow",
      "Action": ["route53:*", "route53domains:*", "ses:*"],
      "Resource": "*"
    }
  ]
}