Skip to content

Commit 4be2f38

Browse files
ismael-penacho-sysdigismael-penacho-sysdig
committed
Using new templates
1 parent abcf780 commit 4be2f38

File tree

7 files changed

+24
-54
lines changed

7 files changed

+24
-54
lines changed

modules/foundational.cft.yaml

Lines changed: 24 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -176,6 +176,18 @@ Resources:
176176
- Effect: Allow
177177
Action: account:GetContactInformation
178178
Resource: '*'
179+
- Effect: "Allow"
180+
Action: "bedrock:ListAgents"
181+
Resource: "*"
182+
- Effect: "Allow"
183+
Action: "bedrock:GetAgent"
184+
Resource: "*"
185+
- Effect: "Allow"
186+
Action: "bedrock:ListKnowledgeBases"
187+
Resource: "*"
188+
- Effect: "Allow"
189+
Action: "bedrock:GetKnowledgeBase"
190+
Resource: "*"
179191
OnboardingRole:
180192
Type: AWS::IAM::Role
181193
Properties:
@@ -329,6 +341,18 @@ Resources:
329341
- Effect: "Allow"
330342
Action: "account:GetContactInformation"
331343
Resource: "*"
344+
- Effect: "Allow"
345+
Action: "bedrock:ListAgents"
346+
Resource: "*"
347+
- Effect: "Allow"
348+
Action: "bedrock:GetAgent"
349+
Resource: "*"
350+
- Effect: "Allow"
351+
Action: "bedrock:ListKnowledgeBases"
352+
Resource: "*"
353+
- Effect: "Allow"
354+
Action: "bedrock:GetKnowledgeBase"
355+
Resource: "*"
332356
OnboardingRole:
333357
Type: AWS::IAM::Role
334358
Properties:

templates_cspm/CloudAgentlessRole.yaml

Lines changed: 0 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -73,12 +73,6 @@ Resources:
7373
- Effect: "Allow"
7474
Action: "account:GetContactInformation"
7575
Resource: "*"
76-
- Effect: "Allow"
77-
Action: "bedrock:ListAgents"
78-
Resource: "*"
79-
- Effect: "Allow"
80-
Action: "bedrock:ListKnowledgeBases"
81-
Resource: "*"
8276

8377
Outputs:
8478
RoleARN:

templates_cspm/OrgCloudAgentlessRole.yaml

Lines changed: 0 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -75,12 +75,6 @@ Resources:
7575
- Effect: "Allow"
7676
Action: "account:GetContactInformation"
7777
Resource: "*"
78-
- Effect: "Allow"
79-
Action: "bedrock:ListAgents"
80-
Resource: "*"
81-
- Effect: "Allow"
82-
Action: "bedrock:ListKnowledgeBases"
83-
Resource: "*"
8478
RoleStackSet:
8579
Type: AWS::CloudFormation::StackSet
8680
Properties:
@@ -163,9 +157,3 @@ Resources:
163157
- Effect: "Allow"
164158
Action: "account:GetContactInformation"
165159
Resource: "*"
166-
- Effect: "Allow"
167-
Action: "bedrock:ListAgents"
168-
Resource: "*"
169-
- Effect: "Allow"
170-
Action: "bedrock:ListKnowledgeBases"
171-
Resource: "*"

templates_cspm_cloudlogs/FullInstall.yaml

Lines changed: 0 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -86,12 +86,6 @@ Resources:
8686
- Effect: "Allow"
8787
Action: "account:GetContactInformation"
8888
Resource: "*"
89-
- Effect: "Allow"
90-
Action: "bedrock:ListAgents"
91-
Resource: "*"
92-
- Effect: "Allow"
93-
Action: "bedrock:ListKnowledgeBases"
94-
Resource: "*"
9589
CloudLogsRole:
9690
Type: "AWS::IAM::Role"
9791
Properties:

templates_cspm_cloudlogs/OrgFullInstall.yaml

Lines changed: 0 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -91,12 +91,6 @@ Resources:
9191
- Effect: "Allow"
9292
Action: "account:GetContactInformation"
9393
Resource: "*"
94-
- Effect: "Allow"
95-
Action: "bedrock:ListAgents"
96-
Resource: "*"
97-
- Effect: "Allow"
98-
Action: "bedrock:ListKnowledgeBases"
99-
Resource: "*"
10094
CloudLogsRole:
10195
Type: "AWS::IAM::Role"
10296
Properties:
@@ -219,9 +213,3 @@ Resources:
219213
- Effect: "Allow"
220214
Action: "account:GetContactInformation"
221215
Resource: "*"
222-
- Effect: "Allow"
223-
Action: "bedrock:ListAgents"
224-
Resource: "*"
225-
- Effect: "Allow"
226-
Action: "bedrock:ListKnowledgeBases"
227-
Resource: "*"

templates_cspm_eventbridge/FullInstall.yaml

Lines changed: 0 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -122,12 +122,6 @@ Resources:
122122
- Effect: "Allow"
123123
Action: "account:GetContactInformation"
124124
Resource: "*"
125-
- Effect: "Allow"
126-
Action: "bedrock:ListAgents"
127-
Resource: "*"
128-
- Effect: "Allow"
129-
Action: "bedrock:ListKnowledgeBases"
130-
Resource: "*"
131125
EventBridgeRole:
132126
Type: AWS::IAM::Role
133127
Properties:

templates_cspm_eventbridge/OrgFullInstall.yaml

Lines changed: 0 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -169,12 +169,6 @@ Resources:
169169
- Effect: "Allow"
170170
Action: "account:GetContactInformation"
171171
Resource: "*"
172-
- Effect: "Allow"
173-
Action: "bedrock:ListAgents"
174-
Resource: "*"
175-
- Effect: "Allow"
176-
Action: "bedrock:ListKnowledgeBases"
177-
Resource: "*"
178172
EventBridgeRole:
179173
Type: AWS::IAM::Role
180174
Properties:
@@ -300,12 +294,6 @@ Resources:
300294
- Effect: "Allow"
301295
Action: "account:GetContactInformation"
302296
Resource: "*"
303-
- Effect: "Allow"
304-
Action: "bedrock:ListAgents"
305-
Resource: "*"
306-
- Effect: "Allow"
307-
Action: "bedrock:ListKnowledgeBases"
308-
Resource: "*"
309297
EventBridgeRole:
310298
Type: AWS::IAM::Role
311299
Properties:

0 commit comments

Comments
 (0)