Skip to content

Preserve resources when guessing actions #53

New issue
New issue
Open
Open
Preserve resources when guessing actions#53
Labels
enhancementguess-featureIssues regarding the guessing of related events
@flosell

Description

@flosell
flosell
opened on Jun 10, 2018

#22 introduced a feature to guess actions that are similar to an existing policy. It currently always guesses * resources.
Extend this feature so that resources are preserved as appropriate:

Input

{
  "Action": ["s3:PutObject"],
  "Effect": "Allow",
  "Resource": ["arn:aws:s3:::some-bucket"]
}

Expected guess:

{
  "Action": [ "s3:DeleteObject","s3:GetObject","s3:ListObjects"],
  "Effect": "Allow",
  "Resource": ["arn:aws:s3:::some-bucket"]
}

Pitfall: Some actions only support "*"!

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementguess-featureIssues regarding the guessing of related events

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions