首页 发现 帮助
注册 登录
Apq
/
docker-compose
镜像自地址 https://github.com/docker/compose.git
1
0
派生 0
文件 工单管理 0 Wiki
目录树: 3e30f2cd1a
分支列表 标签列表
docker-compose
/
ecs
/
pkg
/
amazon
/
iam.go

iam.go 923 B
文件历史 原始文件

12345678910111213141516171819202122232425262728293031 
  1. package amazon
    2. 

  2. 

  3. var assumeRolePolicyDocument = PolicyDocument{
    4. 

  4. 	Version: "2012-10-17", // https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_version.html
    5. 

  5. 	Statement: []PolicyStatement{
    6. 

  6. 		{
    7. 

  7. 			Effect: "Allow",
    8. 

  8. 			Principal: PolicyPrincipal{
    9. 

  9. 				Service: "ecs-tasks.amazonaws.com",
    10. 

  10. 			},
    11. 

  11. 			Action: []string{"sts:AssumeRole"},
    12. 

  12. 		},
    13. 

  13. 	},
    14. 

  14. }
    15. 

  15. 

  16. // could alternatively depend on https://github.com/kubernetes-sigs/cluster-api-provider-aws/blob/master/pkg/cloud/services/iam/types.go#L52
    17. 

  17. type PolicyDocument struct {
    18. 

  18. 	Version   string            `json:",omitempty"`
    19. 

  19. 	Statement []PolicyStatement `json:",omitempty"`
    20. 

  20. }
    21. 

  21. 

  22. type PolicyStatement struct {
    23. 

  23. 	Effect    string          `json:",omitempty"`
    24. 

  24. 	Action    []string        `json:",omitempty"`
    25. 

  25. 	Principal PolicyPrincipal `json:",omitempty"`
    26. 

  26. 	Resource  []string        `json:",omitempty"`
    27. 

  27. }
    28. 

  28. 

  29. type PolicyPrincipal struct {
    30. 

  30. 	Service string `json:",omitempty"`
    31. 

  31. }
    32.