Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

[Feature request] List of access required for a IAM user #51

Open
Bastian0930 opened this issue May 9, 2023 · 1 comment
Open

[Feature request] List of access required for a IAM user #51

Bastian0930 opened this issue May 9, 2023 · 1 comment

Comments

@Bastian0930
Copy link

Is your feature request related to a problem? Please describe.
Sort of - it's a non issue, really. I don't exactly know what permissions the access key needs.

Describe the solution you'd like
I'd like in the FAQ for there to be a list of accesses it needs.

Describe alternatives you've considered
I ended up just giving it admin access, which usually isn't a good practice.

Additional context
I'm using this on a IAM user to minimize the amount of root keys I give out.

Thank you for your work on the project - it's quite amazing!

@314pies
Copy link
Contributor

314pies commented May 22, 2023

Hi Bastian0930,
Sorry for the late reply.
I believe the only permission the user really need is the access to the EC2 instance (there really aren't much reason to give out permission to other resources such as lambda or S3).

Thus, the policy for the IAM user should be something like this:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Action": "ec2:*",
            "Effect": "Allow",
            "Resource": "<The EC2 instance resource>"
        },
    ]
}

Let me know if this help!

# for free to join this conversation on GitHub. Already have an account? # to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants