Open acouch opened 11 months ago
Need to finish list here: https://app.gitbook.com/o/cFcvhi6d0nlLyH2VzVgn/s/v1V0jIH7mb7Yb3jlNrgk/~/changes/60/engineering/security/draft-access-control-list and send back to @jldroid19
I can help with creating a list of AWS services that should be in scope for each role
Here's a good starter list of services that the developer
role should have access to:
except the blanket IAM permission
Summary
In order to implement #798 , we need to create user groups for appropriate access control in the Simpler AWS accounts. This task is to determine what those group(s) should be (admin, engineer, infra engineer?) and determine the correct level of access for each group.
This task will likely be broken off into a sub-task or separate task to implement the new group and ensure that Simpler AWS users are assigned properly.
Tasks
Acceptance criteria