Policy: AWS > VPC > Permissions > Levels

Resource Types

This policy targets the following resource types:

• AWS > Account

Primary Policy

This policy is used with the following primary policy:

• AWS > VPC > Permissions

Related Policies

• CGW Administration
• DHCP Options Administration
• EGW Administration
• Endpoint Administration
• Flow Logs Administration
• IGW Administration
• Modifiers
• NAT Gateway Administration
• Network ACL Administration
• Peering Connection Administration
• Route Table Administration
• Security Group Administration
• Subnet Administration
• VGW Administration
• VPC Administration
• VPN Connection Administration

Policy Specification

array

{% if $.availableLevels.items[0].value | length == 0 %} [] {% endif %}{% for item in $.availableLevels.items[0].value %}- {{ item }}
{% endfor %}

- |
  {
    item: account {
      turbot{
        id
      }
    }
  }
- |
  {
    availableLevels: policyValues(filter:"policyTypeLevel:self resourceId:{{ $.item.turbot.id }} policyTypeId:'tmod:@turbot/aws-iam#/policy/types/permissionsLevelsDefault'") {
      items {
        value
      }
    }
  }

Category

• IAM > Permissions

In Your Workspace

• Policy Settings by Type report

Developers

Category URI

tmod:@turbot/turbot#/control/categories/iamPermissions

Policy Type URI

tmod:@turbot/aws-vpc-core#/policy/types/vpcServicePermissionsLevels

GraphQL

query policyType(id: "tmod:@turbot/aws-vpc-core#/policy/types/vpcServicePermissionsLevels") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/aws-vpc-core#/policy/types/vpcServicePermissionsLevels'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/aws-vpc-core#/policy/types/vpcServicePermissionsLevels'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/aws-vpc-core#/policy/types/vpcServicePermissionsLevels"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-vpc-core#/policy/types/vpcServicePermissionsLevels"