允许用户部署Elastic Beanstalk应用程序需要哪些权限?我已经使用策略生成器添加了我认为与ARN相关的所有权限,但我的开发人员仍然被告知以下错误:
User is not authorized to perform: elasticbeanstalk:CreateStorageLocation
我还试图使用其中一个托管策略为他们提供对S3的完全访问权限,但没有运气。有任何想法吗?以下是使用中的尝试政策。
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "Stmt1492446920000",
"Effect": "Allow",
"Action": [
"elasticbeanstalk:CheckDNSAvailability",
"elasticbeanstalk:CreateStorageLocation",
"elasticbeanstalk:DescribeApplicationVersions",
"elasticbeanstalk:DescribeApplications",
"elasticbeanstalk:DescribeConfigurationOptions",
"elasticbeanstalk:DescribeConfigurationSettings",
"elasticbeanstalk:DescribeEnvironmentHealth",
"elasticbeanstalk:DescribeEnvironmentManagedActions",
"elasticbeanstalk:DescribeEnvironmentManagedActionHistory",
"elasticbeanstalk:DescribeEnvironmentResources",
"elasticbeanstalk:DescribeEnvironments",
"elasticbeanstalk:DescribeEvents",
"elasticbeanstalk:DescribeInstancesHealth",
"elasticbeanstalk:RebuildEnvironment",
"elasticbeanstalk:RequestEnvironmentInfo",
"elasticbeanstalk:RestartAppServer",
"elasticbeanstalk:RetrieveEnvironmentInfo",
"elasticbeanstalk:UpdateEnvironment"
],
"Resource": [
"<redacted>"
]
}
]
}