apigateway

49 actions in the apigateway service. Select an action to see its access level, resource ARNs, condition keys, and a copy-paste IAM policy.

apigateway:AddCertificateToDomain

Permissions management

Grants permission to add certificates for mutual TLS authentication to a domain name. This is an additional authorization control for managing the DomainName resource due to the sensitive nature of mTLS

apigateway:CreateAccessAssociation

Permissions management

Grants permission to create an access association from an access association source to a custom domain name for private APIs

apigateway:CreatePortal

Write

Grants permission to create a Portal

apigateway:CreatePortalProduct

Write

Grants permission to create a Portal Product

apigateway:CreateProductPage

Write

Grants permission to create a Product Page

apigateway:CreateProductRestEndpointPage

Write

Grants permission to create a Product REST Endpoint Page

apigateway:CreateRoutingRule

Write

Grants permission to create a routing rule

apigateway:DELETE

Write

Grants permission to delete a particular resource

apigateway:DELETE

Write

Grants permission to delete a particular resource

apigateway:DeletePortal

Write

Grants permission to delete a Portal

apigateway:DeletePortalProduct

Write

Grants permission to delete a Portal Product

apigateway:DeletePortalProductSharingPolicy

Permissions management

Grants permission to delete a Portal Product Sharing Policy

apigateway:DeleteProductPage

Write

Grants permission to delete a Product Page

apigateway:DeleteProductRestEndpointPage

Write

Grants permission to delete a Product REST Endpoint Page

apigateway:DeleteRoutingRule

Write

Grants permission to delete a routing rule

apigateway:DisablePortal

Write

Grants permission to disable a Portal

apigateway:GET

Read

Grants permission to read a particular resource

apigateway:GET

Read

Grants permission to read a particular resource

apigateway:GetPortal

Read

Grants permission to read a Portal

apigateway:GetPortalProduct

Read

Grants permission to read a Portal Product

apigateway:GetPortalProductSharingPolicy

Read

Grants permission to read a Portal Product Sharing Policy

apigateway:GetProductPage

Read

Grants permission to read a Product Page

apigateway:GetProductRestEndpointPage

Read

Grants permission to read a Product REST Endpoint Page

apigateway:GetRoutingRule

Read

Grants permission to read a routing rule

apigateway:ListPortalProducts

List

Grants permission to list Portal Products

apigateway:ListPortals

List

Grants permission to list Portals

apigateway:ListProductPages

List

Grants permission to list Product Pages

apigateway:ListProductRestEndpointPages

List

Grants permission to list Product REST Endpoint Pages

apigateway:ListRoutingRules

List

Grants permission to list routing rules under a domain name

apigateway:PATCH

Write

Grants permission to update a particular resource

apigateway:PATCH

Write

Grants permission to update a particular resource

apigateway:POST

Write

Grants permission to create a particular resource

apigateway:POST

Write

Grants permission to create a particular resource

apigateway:PreviewPortal

Write

Grants permission to preview a Portal

apigateway:PublishPortal

Write

Grants permission to publish a Portal

apigateway:PUT

Write

Grants permission to update a particular resource

apigateway:PUT

Write

Grants permission to update a particular resource

apigateway:PutPortalProductSharingPolicy

Permissions management

Grants permission to put a Portal Product Sharing Policy

apigateway:RejectAccessAssociation

Permissions management

Grants permission to reject an existing access association owned by another account to a custom domain name for private APIs

apigateway:RemoveCertificateFromDomain

Permissions management

Grants permission to remove certificates for mutual TLS authentication from a domain name. This is an additional authorization control for managing the DomainName resource due to the sensitive nature of mTLS

apigateway:SetWebACL

Permissions management

Grants permission to set a WAF access control list (ACL). This is an additional authorization control for managing the Stage resource due to the sensitive nature of WebAcl's

apigateway:UpdateDomainNameManagementPolicy

Permissions management

Grants permission to update the management policy of a custom domain name for private APIs

apigateway:UpdateDomainNamePolicy

Permissions management

Grants permission to update the invoke policy of a custom domain name for private APIs

apigateway:UpdatePortal

Write

Grants permission to update a Portal

apigateway:UpdatePortalProduct

Write

Grants permission to update a Portal Product

apigateway:UpdateProductPage

Write

Grants permission to update a Product Page

apigateway:UpdateProductRestEndpointPage

Write

Grants permission to update a Product REST Endpoint Page

apigateway:UpdateRestApiPolicy

Permissions management

Grants permission to manage the IAM resource policy for an API. This is an additional authorization control for managing an API due to the sensitive nature of the resource policy

apigateway:UpdateRoutingRule

Write

Grants permission to update a routing rule using the PutRoutingRule API