Knowledge

List of AWS policies required by Buddy actions

This is the list of policies that need to be checked in order to make Buddy work properly with the AWS services.

Amazon S3

s3:ListAllMyBuckets
s3:GetObject
s3:PutObject
s3:PutObjectAcl (required for Public flag)
s3:DeleteObject

CloudFront

cloudfront:ListDistributions
cloudfront:CreateInvalidation

CodeDeploy

codedeploy:ListApplications
codedeploy:ListDeploymentGroups
codedeploy:ListDeploymentConfigs
codedeploy:CreateDeployment
codedeploy:GetDeploymentConfig
codedeploy:RegisterApplicationRevision
s3:CreateBucket
s3:PutObject

ECR

ecr:DescribeRepositories
ecr:GetAuthorizationToken
ecr:BatchCheckLayerAvailability
ecr:CompleteLayerUpload
ecr:InitiateLayerUpload
ecr:PutImage
ecr:UploadLayerPart

Elastic Beanstalk

If you use auto-scaling or load balancing you may need additional permissions. If you're not sure which permissions to set, check AWSElasticBeanstalkFullAcces.

elasticbeanstalk:DescribeApplications
elasticbeanstalk:DescribeEnvironments
elasticbeanstalk:CreateApplicationVersion
elasticbeanstalk:DescribeApplicationVersions
elasticbeanstalk:UpdateApplication
elasticbeanstalk:UpdateEnvironment
elasticbeanstalk:UpdateApplicationVersion
s3:CreateBucket
s3:PutObject
s3:CopyObject
s3:GetObject
s3:GetObjectAcl
s3:GetObjectMetadata
s3:ListBucket
s3:ListBuckets
s3:ListObjects
cloudformation:GetTemplate

Elastic Beanstalk Monitoring

elasticbeanstalk:DescribeApplications
elasticbeanstalk:DescribeEnvironments
elasticbeanstalk:DescribeEnvironmentHealth

Lambda

lambda:ListFunctions
lambda:InvokeFunction

Get started now

14 days of unlimited trial. No credit card required.