Actions, resources, and condition keys for Amazon Honeycode
Amazon Honeycode (service prefix: honeycode) provides the following
service-specific operations, resources, actions, and condition keys for use in IAM permission
policies.
References:
-
Learn how to configure this service.
-
View a list of the API operations available for this service.
-
Learn how to secure this service and its resources by using IAM permission policies.
-
View the programmatic service authorization reference
for this service.
Topics
Actions defined by Amazon Honeycode
You can specify the following actions in the Action element of an IAM
policy statement. Use policies to grant permissions to perform an operation in AWS. When
you use an action in a policy, you usually allow or deny access to the API operation or CLI
command with the same name. However, in some cases, a single action controls access to more
than one operation. Alternatively, some operations require several different actions.
| Actions | Description | Resource types (*required) | Condition keys | Access level |
|---|---|---|---|---|
Grants permission to create new rows in a table |
Write |
|||
Grants permission to delete rows from a table |
Write |
|||
Grants permission to update rows in a table |
Write |
|||
Grants permission to upsert rows in a table |
Write |
|||
Grants permission to get details about a table data import job |
Read |
|||
Grants permission to load the data from a screen |
Read |
|||
Grants permission to invoke a screen automation |
Write |
|||
Grants permission to list the columns in a table |
List |
|||
Grants permission to list the rows in a table |
List |
|||
Grants permission to list the tables in a workbook |
List |
|||
Grants permission to list all tags for a resource |
Tagging, Write |
|||
Grants permission to query the rows of a table using a filter |
Read |
|||
Grants permission to start a table data import job |
Write |
|||
Grants permission to tag a resource |
Tagging, Write |
|||
Grants permission to untag a resource |
Tagging, Write |
Permission-only actions for Amazon Honeycode
The following actions are defined by Amazon Honeycode but are not directly invocable through any API operation. They can only be used in IAM policy statements to grant or deny permissions.
| Actions | Description | Resource types (*required) | Condition keys | Access level |
|---|---|---|---|---|
Grants permission to approve a team association request for your AWS Account |
Write |
|||
Grants permission to create a new Amazon Honeycode team for your AWS Account |
Write |
|||
Grants permission to create a new tenant within Amazon Honeycode for your AWS Account |
Write |
|||
Grants permission to delete Amazon Honeycode domains for your AWS Account |
Write |
|||
Grants permission to remove groups from an Amazon Honeycode team for your AWS Account |
Write |
|||
Grants permission to get details about Amazon Honeycode teams for your AWS Account |
Read |
|||
Grants permission to list all Amazon Honeycode domains and their verification status for your AWS Account |
List |
|||
Grants permission to list all groups in an Amazon Honeycode team for your AWS Account |
List |
|||
Grants permission to list all pending and approved team associations with your AWS Account |
List |
|||
Grants permission to list all tenants of Amazon Honeycode for your AWS Account |
List |
|||
Grants permission to request verification of the Amazon Honeycode domains for your AWS Account |
Write |
|||
Grants permission to add groups to an Amazon Honeycode team for your AWS Account |
Write |
|||
Grants permission to reject a team association request for your AWS Account |
Write |
|||
Grants permission to restart verification of the Amazon Honeycode domains for your AWS Account |
Write |
|||
Grants permission to update an Amazon Honeycode team for your AWS Account |
Write |
Resource types defined by Amazon Honeycode
The following resource types are defined by this service and can be used in the
Resource element of IAM permission policy statements.
| Resource types | ARN | Condition keys |
|---|---|---|
arn:${Partition}:honeycode:${Region}:${Account}:screen:workbook/${WorkbookId}/app/${AppId}/screen/${ScreenId} |
||
arn:${Partition}:honeycode:${Region}:${Account}:screen-automation:workbook/${WorkbookId}/app/${AppId}/screen/${ScreenId}/automation/${AutomationId} |
||
arn:${Partition}:honeycode:${Region}:${Account}:table:workbook/${WorkbookId}/table/${TableId} |
||
arn:${Partition}:honeycode:${Region}:${Account}:workbook:workbook/${WorkbookId} |
Condition keys for Amazon Honeycode
Amazon Honeycode has no service-specific condition keys that can be used in the
Condition element of policy statements.