The aws-events mod contains resource, control and policy definitions for AWS Events service.

Resource Types

Resource types covered by this mod:

Permissions

Taking a look at permissions and associated grant levels for each permission for Events:

PermissionGrant LevelHelp
events:ActivateEventSourceAdmin
events:CancelReplayAdmin
events:CreateApiDestinationAdmin
events:CreateArchiveAdmin
events:CreateConnectionAdmin
events:CreateEventBusAdmin
events:CreatePartnerEventSourceAdmin
events:DeactivateEventSourceAdmin
events:DeauthorizeConnectionAdmin
events:DeleteApiDestinationAdmin
events:DeleteArchiveAdmin
events:DeleteConnectionAdmin
events:DeleteEventBusAdmin
events:DeletePartnerEventSourceAdmin
events:DeleteRuleAdmin
events:DescribeApiDestinationMetadata
events:DescribeArchiveMetadata
events:DescribeConnectionMetadata
events:DescribeEventBusMetadata
events:DescribeEventSourceMetadata
events:DescribePartnerEventSourceMetadata
events:DescribeReplayMetadata
events:DescribeRuleMetadata
events:DisableRuleOperator
events:EnableRuleOperator
events:InvokeApiDestinationAdmin
events:ListApiDestinationsMetadata
events:ListArchivesMetadata
events:ListConnectionsMetadata
events:ListEventBusesMetadata
events:ListEventSourcesMetadata
events:ListPartnerEventSourceAccountsMetadata
events:ListPartnerEventSourcesMetadata
events:ListReplaysMetadata
events:ListRuleNamesByTargetMetadata
events:ListRulesMetadata
events:ListTagsForResourceMetadata
events:ListTargetsByRuleMetadata
events:PutEventsOperator
events:PutPartnerEventsOperator
events:PutPermissionAdmin
events:PutRuleAdmin
events:PutTargetsAdmin
events:RemovePermissionAdmin
events:RemoveTargetsAdmin
events:StartReplayAdmin
events:TagResourceOperator
events:TestEventPatternMetadata
events:UntagResourceOperator
events:UpdateApiDestinationAdmin
events:UpdateArchiveAdmin
events:UpdateConnectionAdmin
health:DescribeEventAggregatesMetadata
iam:ListRolesMetadata
lambda:ListFunctionsMetadata
logs:DescribeLogGroupsMetadata
organizations:DescribeOrganizationMetadata
schemas:CreateDiscovererAdmin
schemas:CreateRegistryAdmin
schemas:CreateSchemaAdmin
schemas:DeleteDiscovererAdmin
schemas:DeleteRegistryAdmin
schemas:DeleteResourcePolicyAdmin
schemas:DeleteSchemaAdmin
schemas:DeleteSchemaVersionAdmin
schemas:DescribeCodeBindingMetadata
schemas:DescribeDiscovererMetadata
schemas:DescribeRegistryMetadata
schemas:DescribeSchemaMetadata
schemas:ExportSchemaOperator
schemas:GetCodeBindingSourceMetadata
schemas:GetDiscoveredSchemaMetadata
schemas:GetResourcePolicyMetadata
schemas:ListDiscoverersMetadata
schemas:ListRegistriesMetadata
schemas:ListSchemaVersionsMetadata
schemas:ListSchemasMetadata
schemas:ListTagsForResourceMetadata
schemas:PutCodeBindingAdmin
schemas:PutResourcePolicyAdmin
schemas:SearchSchemasOperator
schemas:StartDiscovererAdmin
schemas:StopDiscovererAdmin
schemas:TagResourceOperator
schemas:UntagResourceOperator
schemas:UpdateDiscovererAdmin
schemas:UpdateRegistryAdmin
schemas:UpdateSchemaAdmin
sns:ListTopicsMetadata
sqs:ListQueuesMetadata
ssm:ListDocumentsMetadata

Learn More About Turbot

Version
5.11.0
Released On
Jun 01, 2023
Depends On

Resource Types

Control Types

Policy Types

Release Notes

5.11.0 (2023-06-01)

What's new?

  • Resource's metadata will now also include createdBy details in Turbot CMDB.
  • README.md file is now available for users to check details about the resource types and service permissions that the mod covers.

5.10.0 (2023-03-03)

Resource Types

Added

  • AWS > Events > Event Bus

Control Types

Added

  • AWS > Events > Event Bus > Active
  • AWS > Events > Event Bus > Approved
  • AWS > Events > Event Bus > CMDB
  • AWS > Events > Event Bus > Configured
  • AWS > Events > Event Bus > Discovery
  • AWS > Events > Event Bus > Usage

Policy Types

Added

  • AWS > Events > Event Bus > Active
  • AWS > Events > Event Bus > Active > Age
  • AWS > Events > Event Bus > Active > Last Modified
  • AWS > Events > Event Bus > Approved
  • AWS > Events > Event Bus > Approved > Custom
  • AWS > Events > Event Bus > Approved > Regions
  • AWS > Events > Event Bus > Approved > Usage
  • AWS > Events > Event Bus > CMDB
  • AWS > Events > Event Bus > Configured
  • AWS > Events > Event Bus > Configured > Claim Precedence
  • AWS > Events > Event Bus > Configured > Source
  • AWS > Events > Event Bus > Regions
  • AWS > Events > Event Bus > Usage
  • AWS > Events > Event Bus > Usage > Limit

Action Types

Added

  • AWS > Events > Event Bus > Delete
  • AWS > Events > Event Bus > Delete from AWS
  • AWS > Events > Event Bus > Router
  • AWS > Events > Event Bus > Skip alarm for Active control
  • AWS > Events > Event Bus > Skip alarm for Active control [90 days]
  • AWS > Events > Event Bus > Skip alarm for Approved control
  • AWS > Events > Event Bus > Skip alarm for Approved control [90 days]

5.9.1 (2022-09-12)

Bug fixes

  • We’ve made a few GraphQL query improvements in the router action and they will now be lighter and more reliable. You won’t notice any difference but things will now run quicker and smoother than before.

5.9.0 (2022-04-01)

What's new?

  • AWS/Events/Admin, AWS/Events/Metadata and AWS/Events/Operator now includes schemas:* permissions.

5.8.1 (2022-03-22)

Bug fixes

  • The AWS > Events > Target > Discovery control would incorrectly remain in an OK state even when the AWS > Events > Target > CMDB policy was set to Enforce: Disabled. This is fixed and the control will now move to a skipped State.

5.8.0 (2022-02-16)

What's new?

  • Users can now create their own custom checks against resource attributes in the Approved control using the Approved > Custom policy. These custom checks would be a part of the evaluation of the Approved control. Custom messages can also be added which are then displayed in the control details table. See Custom Checks for more information.

Bug fixes

  • We've improved the process of deleting resources from Turbot if their CMDB policy was set to Enforce: Disabled. The CMDB controls will now not look to resolve credentials via Turbot's IAM role while deleting resources from Turbot. This will allow the CMDB controls to process resource deletions from Turbot more reliably than before.

Policy Types

Added

  • AWS > Events > Rule > Approved > Custom
  • AWS > Events > Target > Approved > Custom

5.7.0 (2022-01-13)

Control Types

Added

  • AWS > Events > Rule > Tags

Policy Types

Added

  • AWS > Events > Rule > Tags
  • AWS > Events > Rule > Tags > Template
  • AWS > Events > Tags Template [Default]

Action Types

Added

  • AWS > Events > Rule > Update Tags

5.6.0 (2022-01-06)

What's new?

  • AWS/Events/Admin AWS/Events/Metadata now include permissions for Replay, Api Destination, Archive and Connection.

5.5.1 (2021-08-27)

Bug fixes

  • We've made a few improvements in the GraphQL queries for various router actions. You won't notice any difference, but things should run lighter and quicker than before.

5.5.0 (2021-06-24)

What's new?

  • AWS/Events/Admin now includes event source, partner event source, and event bus permissions.

    AWS/Events/Operator now includes put partner events permissions.

5.4.4 (2021-05-05)

Bug fixes

  • We've updated the AWS > Events > Rule > Discovery control to sort the EventPattern.source and EventPattern.detail.eventName properties in the same way the AWS > Events > Rule > CMDB control sorts them to ensure rules' CMDB data remains consistent.

5.4.3 (2021-03-05)

What's new?

  • Users now can cleanup resources and stop tracking changes in the AWS > Events > Target resource type by setting the AWS > Events > Target > CMDB policy to Enforce: Disabled.

5.4.2 (2020-12-07)

Bug fixes

  • We've optimized the GraphQL queries for various controls when they're in the tbd and skipped states. You won't notice any difference but they should run a lot lighter now.

5.4.1 (2020-12-04)

Bug fixes

  • We've updated various resources' Discovery and CMDB controls to ensure array properties are consistently sorted in the CMDB.

5.4.0 (2020-10-07)

What's new?

  • We've renamed the service's default regions policy from Regions [Default] to Regions to be consistent with our other regions policies.

Policy Types

Renamed

  • AWS > Events > Regions [Default] to AWS > Events > Regions

5.3.1 (2020-09-15)

Bug fixes

  • While formatting the EventPattern field of rule resources, the corresponding CMDB control would throw errors. This issue has been fixed and now we efficiently format data without errors.

5.3.0 (2020-09-04)

What's new?

  • Discovery controls now have their own control category, CMDB > Discovery, to allow for easier filtering separately from other CMDB controls.

5.2.1 (2020-08-12)

Bug fixes

  • The EventPattern field for rule resources is now properly and consistently formatted.

5.2.0 (2020-07-31)

What's new?

  • AWS/Events/Admin now includes permissions which can be used for either allowing or denying specified AWS account to put events to the specified event bus.

5.1.2 (2020-07-06)

Bug fixes

  • Updated various resource configurations to provide better compatibility with AWS China regions.

Policy Types

Renamed

  • AWS > Events > Rule > Configured > Precedence to AWS > Events > Rule > Configured > Claim Precedence
  • AWS > Events > Target > Configured > Precedence to AWS > Events > Target > Configured > Claim Precedence