以下是经过精简的权限策略赋予。
{
"statement": [
{
"resource": "",
"effect": "allow",
"action": [
"apigw:Describe",
"apigw:GenerateApiDocument",
"as:Describe*",
"asr:DescribeTaskStatus",
"bpaas:Get*",
"cam:Describe*",
"cam:Get*",
"cam:List*",
"cam:LookupRecentlyLogin",
"cam:Query*",
"cas:Describe*",
"cas:Get*",
"cas:List*",
"ccr:GetUserRepositoryList",
"ccr:pull",
"ccs:Check*",
"ccs:Describe*",
"cdb:Describe*",
"cdn:Describe*",
"cdn:Get*",
"cdn:List*",
"cfs:Describe*",
"cfw:Describe*",
"chdfs:Describe*",
"ci:Describe*",
"ci:GenerateMediaInfo",
"ckafka:Describe*",
"ckafka:Get*",
"ckafka:List*",
"clb:Describe*",
"cloudaudit:Describe*",
"cloudaudit:Get*",
"cloudaudit:List*",
"cloudaudit:LookUpEvents",
"cloudaudit:Lookup*",
"cls:get*",
"cls:list*",
"cls:pullLogs",
"cls:searchLog",
"cmqqueue:Get*",
"cmqqueue:List*",
"cmqtopic:Get*",
"cmqtopic:List*",
"cos:Get*",
"cos:Head*",
"cos:List*",
"cos:OptionsObject",
"cpdp:Get*",
"cr:AccountCheckCode",
"cr:AccountCosToken",
"cr:AccountSendCode",
"cr:AccountStatus",
"cr:AcquireAccountLocation",
"cr:Describe*",
"cr:DownloadReport",
"ctsdb:Describe*",
"cvm:Describe*",
"cvm:Inquiry*",
"cynosdb:Describe*",
"dbbrain:Describe*",
"dcdb:Describe*",
"drm:CreateLicense",
"drm:Describe*",
"dsgc:Describe*",
"dts:Describe*",
"ecdn:Describe*",
"ecdn:List*",
"ecm:Describe*",
"es:Describe*",
"gaap:Check*",
"gaap:Describe*",
"gaap:Get*",
"gaap:Inquiry*",
"gme:Describe*",
"gme:Download*",
"habo:Describe*",
"httpdns:Describe*",
"live:Describe*",
"mariadb:Describe*",
"memcached:Describe*",
"mgobe:Describe*",
"mgobe:Get*",
"mongodb:Describe*",
"monitor:Describe*",
"monitor:Get*",
"organization:Get*",
"organization:List*",
"postgres:Describe*",
"postgres:Inquiry*",
"psa:DescribeArchive",
"redis:Describe*",
"redis:Get*",
"redis:Inquiry*",
"scf:Get*",
"scf:List*",
"sls:Get*",
"sls:List*",
"smpn:DescribeSmpnChp",
"smpn:DescribeSmpnFnr",
"smpn:DescribeSmpnMhm",
"smpn:DescribeSmpnMrl",
"soe:DescribeApp",
"soe:DescribeAppCN",
"soe:DescribeBills",
"soe:DescribeBillsCN",
"soe:DescribeDeveloper",
"soe:DescribeDeveloperCN",
"soe:DescribePackages",
"soe:DescribePackagesCN",
"soe:ExtraOralProcess",
"soe:InitOralProcess",
"soe:Overview",
"soe:OverviewCN",
"soe:Statistics",
"soe:StatisticsCN",
"soe:TransmitOralProcess",
"soe:TransmitOralProcessWithInit",
"sqlserver:Describe*",
"sqlserver:InquiryPrice*",
"ssa:SaDivulgeDataQuery*",
"ssa:SaDivulgeOverviewQuery",
"ssa:SaDivulgeProductConfigQuery",
"ssa:SaDivulgeProductQuery",
"ssa:SaDivulgeScanRuleQuery",
"ssa:SaDivulgeScanWhiteQuery",
"ssa:SaEventPrv*",
"ssa:SaEventPub",
"ssa:SaEventType",
"ssa:SaIntelligenceYdVulScanSlaQuery",
"ssa:SaOverview*",
"ssa:SaScreen*",
"ssa:SaSecVulIntelligenceSendMsgReadConfig",
"ssa:SaSecWeeklyReadConfig",
"ssa:SaSecWeeklyRiskType",
"ssa:SaSecWeeklyTitle",
"ssa:SaServiceMng",
"ssa:SaUserBehaviorReport",
"ssa:SaUserLogoRead",
"ssa:SaVulIntelligenceList",
"ssa:SaVulIntelligenceParticularst",
"ssa:SaVulList",
"ssa:SaVulMng",
"ssa:SaVulType",
"ssl:Describe*",
"ssm:Describe*",
"ssm:Get*",
"ssm:List*",
"taf:DetectAccountActivity",
"taf:DetectFraudDownloadAndActivity",
"taf:DetectFraudExposureAndClick",
"taf:DetectFraudFlow",
"taf:DetectFraudKOL",
"taf:EnhanceTaDegree",
"taf:GetRushData",
"taf:GetServiceList",
"taf:QueryCallCount",
"taf:RecognizeCustomizedAudience",
"taf:RecognizePreciseTargetAudience",
"taf:RecognizeTargetAudience",
"tag:DescribeResourceTagsByResourceIds",
"tag:Get*",
"tbase:Describe*",
"tcaplusdb:Describe*",
"tcd:Describe*",
"tcd:Get*",
"tcd:Query*",
"tcr:Describe*",
"tcr:PullRepository*",
"tcv:Describe*",
"tiw:Describe*",
"tke:Describe*",
"tmt:Describe*",
"tpns:CreatePush",
"tpns:Describe*",
"tpns:Download*",
"vod:Describe*",
"vod:GetTaskInfo",
"vod:GetVideoInfo",
"vod:ReadOldAction",
"vod:SearchMedia",
"vpc:Describe*",
"vpc:Get*",
"vpc:Inquiry*",
"vss:CreateVulsReport",
"vss:Describe*",
"waf:BotGet*",
"waf:BotV2Get*",
"waf:Describe*",
"waf:QueryFlows",
"waf:WAFGetUserInfo",
"waf:WafAntiFakeGetUrl",
"waf:WafAreaBanGetAreas",
"waf:WafClsOverview",
"waf:WafDNSdetectGet*",
"waf:WafDownloadAlerts",
"waf:WafDownloadRecords",
"waf:WafDownloadlogs",
"waf:WafFreqGetRuleList",
"waf:WafGet*",
"waf:WafInterface",
"waf:WafPackagePrice",
"waf:WafSearchLogs",
"wwc:Describe*"
]
}
],
"version": "2.0"
}