41 lines
810 B
JSON
41 lines
810 B
JSON
|
{
|
||
|
"Version": "2012-10-17",
|
||
|
"Statement": [
|
||
|
{
|
||
|
"Sid": "DenyAllAwsResourcesOutsideAccountExceptSNS",
|
||
|
"Effect": "Deny",
|
||
|
"NotAction": [
|
||
|
"sns:*"
|
||
|
],
|
||
|
"Resource": "*",
|
||
|
"Condition": {
|
||
|
"StringNotEquals": {
|
||
|
"aws:ResourceAccount": [
|
||
|
"111122223333"
|
||
|
]
|
||
|
}
|
||
|
}
|
||
|
},
|
||
|
{
|
||
|
"Sid": "DenyAllSNSResourcesOutsideAccountExceptCloudFormation",
|
||
|
"Effect": "Deny",
|
||
|
"Action": [
|
||
|
"sns:*"
|
||
|
],
|
||
|
"Resource": "*",
|
||
|
"Condition": {
|
||
|
"StringNotEquals": {
|
||
|
"aws:ResourceAccount": [
|
||
|
"111122223333"
|
||
|
]
|
||
|
},
|
||
|
"ForAllValues:StringNotEquals": {
|
||
|
"aws:CalledVia": [
|
||
|
"cloudformation.amazonaws.com"
|
||
|
]
|
||
|
}
|
||
|
}
|
||
|
}
|
||
|
]
|
||
|
}
|