import { AccessLevelList } from '../../shared/access-level'; import { PolicyStatement, Operator } from '../../shared'; import { aws_iam as iam } from "aws-cdk-lib"; /** * Statement provider for service [codeartifact](https://docs.aws.amazon.com/service-authorization/latest/reference/list_awscodeartifact.html). * * @param sid [SID](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_sid.html) of the statement */ export declare class Codeartifact extends PolicyStatement { servicePrefix: string; /** * Grants permission to add an external connection to a repository * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_AssociateExternalConnection.html */ toAssociateExternalConnection(): this; /** * Grants permission to associate an existing repository as an upstream repository to another repository * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/ug/repos-upstream.html */ toAssociateWithDownstreamRepository(): this; /** * Grants permission to copy package versions from one repository to another repository in the same domain * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_CopyPackageVersions.html */ toCopyPackageVersions(): this; /** * Grants permission to create a new domain * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_CreateDomain.html */ toCreateDomain(): this; /** * Grants permission to create a package group * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_CreatePackageGroup.html */ toCreatePackageGroup(): this; /** * Grants permission to create a new repository * * Access Level: Write * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_CreateRepository.html */ toCreateRepository(): this; /** * Grants permission to delete a domain * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DeleteDomain.html */ toDeleteDomain(): this; /** * Grants permission to delete the resource policy set on a domain * * Access Level: Permissions management * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DeleteDomainPermissionsPolicy.html */ toDeleteDomainPermissionsPolicy(): this; /** * Grants permission to delete a package * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DeletePackage.html */ toDeletePackage(): this; /** * Grants permission to delete a package group * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DeletePackageGroup.html */ toDeletePackageGroup(): this; /** * Grants permission to delete package versions * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DeletePackageVersions.html */ toDeletePackageVersions(): this; /** * Grants permission to delete a repository * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DeleteRepository.html */ toDeleteRepository(): this; /** * Grants permission to delete the resource policy set on a repository * * Access Level: Permissions management * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DeleteRepositoryPermissionsPolicy.html */ toDeleteRepositoryPermissionsPolicy(): this; /** * Grants permission to return information about a domain * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DescribeDomain.html */ toDescribeDomain(): this; /** * Grants permission to retrieve information about a package * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DescribePackage.html */ toDescribePackage(): this; /** * Grants permission to return detailed information about a package group * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DescribePackageGroup.html */ toDescribePackageGroup(): this; /** * Grants permission to return information about a package version * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DescribePackageVersion.html */ toDescribePackageVersion(): this; /** * Grants permission to return detailed information about a repository * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DescribeRepository.html */ toDescribeRepository(): this; /** * Grants permission to disassociate an external connection from a repository * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DisassociateExternalConnection.html */ toDisassociateExternalConnection(): this; /** * Grants permission to set the status of package versions to Disposed and delete their assets * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_DisposePackageVersions.html */ toDisposePackageVersions(): this; /** * Grants permission to return a package's associated package group * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_GetAssociatedPackageGroup.html */ toGetAssociatedPackageGroup(): this; /** * Grants permission to generate a temporary authentication token for accessing repositories in a domain * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_GetAuthorizationToken.html */ toGetAuthorizationToken(): this; /** * Grants permission to return a domain's resource policy * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_GetDomainPermissionsPolicy.html */ toGetDomainPermissionsPolicy(): this; /** * Grants permission to return an asset (or file) that is part of a package version * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_GetPackageVersionAsset.html */ toGetPackageVersionAsset(): this; /** * Grants permission to return a package version's readme file * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_GetPackageVersionReadme.html */ toGetPackageVersionReadme(): this; /** * Grants permission to return an endpoint for a repository * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_GetRepositoryEndpoint.html */ toGetRepositoryEndpoint(): this; /** * Grants permission to return a repository's resource policy * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_GetRepositoryPermissionsPolicy.html */ toGetRepositoryPermissionsPolicy(): this; /** * Grants permission to list the allowed repositories for a package group * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListRepositoriesInDomain.html */ toListAllowedRepositoriesForGroup(): this; /** * Grants permission to list the packages associated to a package group * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListAssociatedPackages.html */ toListAssociatedPackages(): this; /** * Grants permission to list the domains in the current user's AWS account * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListDomains.html */ toListDomains(): this; /** * Grants permission to list the package groups in a domain * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListPackageGroups.html */ toListPackageGroups(): this; /** * Grants permission to list a package version's assets * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListPackageVersionAssets.html */ toListPackageVersionAssets(): this; /** * Grants permission to list the direct dependencies of a package version * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListPackageVersionDependencies.html */ toListPackageVersionDependencies(): this; /** * Grants permission to list a package's versions * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListPackageVersions.html */ toListPackageVersions(): this; /** * Grants permission to list the packages in a repository * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListPackages.html */ toListPackages(): this; /** * Grants permission to list the repositories administered by the calling account * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListRepositories.html */ toListRepositories(): this; /** * Grants permission to list the repositories in a domain * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListRepositoriesInDomain.html */ toListRepositoriesInDomain(): this; /** * Grants permission to list the sub package groups for a parent package group * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListSubPackageGroups.html */ toListSubPackageGroups(): this; /** * Grants permission to list tags for a CodeArtifact resource * * Access Level: List * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_ListTagsForResource.html */ toListTagsForResource(): this; /** * Grants permission to publish assets and metadata to a repository endpoint * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/ug/repo-policies.html */ toPublishPackageVersion(): this; /** * Grants permission to attach a resource policy to a domain * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_PutDomainPermissionsPolicy.html */ toPutDomainPermissionsPolicy(): this; /** * Grants permission to add, modify or remove package metadata using a repository endpoint * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/ug/repo-policies.html */ toPutPackageMetadata(): this; /** * Grants permission to set origin configuration for a package * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_PutPackageOriginConfiguration.html */ toPutPackageOriginConfiguration(): this; /** * Grants permission to attach a resource policy to a repository * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_PutRepositoryPermissionsPolicy.html */ toPutRepositoryPermissionsPolicy(): this; /** * Grants permission to return package assets and metadata from a repository endpoint * * Access Level: Read * * https://docs.aws.amazon.com/codeartifact/latest/ug/repo-policies.html */ toReadFromRepository(): this; /** * Grants permission to tag a CodeArtifact resource * * Access Level: Tagging * * Possible conditions: * - .ifAwsRequestTag() * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_TagResource.html */ toTagResource(): this; /** * Grants permission to remove a tag from a CodeArtifact resource * * Access Level: Tagging * * Possible conditions: * - .ifAwsTagKeys() * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_UntagResource.html */ toUntagResource(): this; /** * Grants permission to modify the properties of a package group * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_UpdatePackageGroup.html */ toUpdatePackageGroup(): this; /** * Grants permission to modify the package origin configuration of a package group * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_UpdatePackageGroupOriginConfiguration.html */ toUpdatePackageGroupOriginConfiguration(): this; /** * Grants permission to modify the status of one or more versions of a package * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_UpdatePackageVersionsStatus.html */ toUpdatePackageVersionsStatus(): this; /** * Grants permission to modify the properties of a repository * * Access Level: Write * * https://docs.aws.amazon.com/codeartifact/latest/APIReference/API_UpdateRepository.html */ toUpdateRepository(): this; protected accessLevelList: AccessLevelList; /** * Adds a resource of type domain to the statement * * https://docs.aws.amazon.com/codeartifact/latest/ug/domains.html * * @param domainName - Identifier for the domainName. * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region. * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. * * Possible conditions: * - .ifAwsResourceTag() */ onDomain(domainName: string, account?: string, region?: string, partition?: string): this; /** * Adds a resource of type repository to the statement * * https://docs.aws.amazon.com/codeartifact/latest/ug/repos.html * * @param domainName - Identifier for the domainName. * @param repositoryName - Identifier for the repositoryName. * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region. * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. * * Possible conditions: * - .ifAwsResourceTag() */ onRepository(domainName: string, repositoryName: string, account?: string, region?: string, partition?: string): this; /** * Adds a resource of type package-group to the statement * * https://docs.aws.amazon.com/codeartifact/latest/ug/package-groups.html * * @param domainName - Identifier for the domainName. * @param encodedPackageGroupPattern - Identifier for the encodedPackageGroupPattern. * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region. * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. * * Possible conditions: * - .ifAwsResourceTag() */ onPackageGroup(domainName: string, encodedPackageGroupPattern: string, account?: string, region?: string, partition?: string): this; /** * Adds a resource of type package to the statement * * https://docs.aws.amazon.com/codeartifact/latest/ug/packages.html * * @param domainName - Identifier for the domainName. * @param repositoryName - Identifier for the repositoryName. * @param packageFormat - Identifier for the packageFormat. * @param packageNamespace - Identifier for the packageNamespace. * @param packageName - Identifier for the packageName. * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account. * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region. * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition. */ onPackage(domainName: string, repositoryName: string, packageFormat: string, packageNamespace: string, packageName: string, account?: string, region?: string, partition?: string): this; /** * Filters access by the presence of tag key-value pairs in the request * * https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#condition-keys-requesttag * * Applies to actions: * - .toCreateDomain() * - .toCreatePackageGroup() * - .toCreateRepository() * - .toTagResource() * * @param tagKey The tag key to check * @param value The value(s) to check * @param operator Works with [string operators](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition_operators.html#Conditions_String). **Default:** `StringLike` */ ifAwsRequestTag(tagKey: string, value: string | string[], operator?: Operator | string): this; /** * Filters access by tag key-value pairs attached to the resource * * https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#condition-keys-resourcetag * * Applies to resource types: * - domain * - repository * - package-group * * @param tagKey The tag key to check * @param value The value(s) to check * @param operator Works with [string operators](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition_operators.html#Conditions_String). **Default:** `StringLike` */ ifAwsResourceTag(tagKey: string, value: string | string[], operator?: Operator | string): this; /** * Filters access by the presence of tag keys in the request * * https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#condition-keys-tagkeys * * Applies to actions: * - .toCreateDomain() * - .toCreatePackageGroup() * - .toCreateRepository() * - .toTagResource() * - .toUntagResource() * * @param value The value(s) to check * @param operator Works with [string operators](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition_operators.html#Conditions_String). **Default:** `StringLike` */ ifAwsTagKeys(value: string | string[], operator?: Operator | string): this; /** * Statement provider for service [codeartifact](https://docs.aws.amazon.com/service-authorization/latest/reference/list_awscodeartifact.html). * */ constructor(props?: iam.PolicyStatementProps); }