Skip to content

Commit

Permalink
Merge pull request #126 from JahedZ/main
Browse files Browse the repository at this point in the history 
Add missing permissions to the Pivot role, that block Dataset and MLStudio features under specific conditions.
  • Loading branch information
@dlpzx
dlpzx authored Sep 6, 2022
2 parents 19ca19f + 6b7bdab commit 7cfac4f
Showing 1 changed file with 3 additions and 1 deletion.
4 changes: 3 additions & 1 deletion deploy/pivot_role/pivotRole.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -331,6 +331,7 @@ Resources:
- 'sagemaker:ListNotebookInstances'
- 'sagemaker:ListDomains'
- 'sagemaker:ListApps'
- 'sagemaker:DeleteApp'
Resource: '*'
- Effect: Allow
Action:
Expand Down Expand Up @@ -513,6 +514,7 @@ Resources:
- 'lakeformation:GetTableObjects'
- 'lakeformation:UpdateTableObjects'
- 'lakeformation:DeleteObjectsOnCancel'
- 'lakeformation:DescribeResource'
Resource: '*'
- Sid: Compute
Effect: Allow
Expand Down Expand Up @@ -659,4 +661,4 @@ Outputs:
Description: Platform Pivot Role
Value: PivotRole
Export:
Name: !Sub '${AWS::StackName}-PivotRole'
Name: !Sub '${AWS::StackName}-PivotRole'

0 comments on commit 7cfac4f

Please sign in to comment.