rename management infrastructure role

[awsible] / roles / aws-management-infrastructure / files / base-policy.json

diff --git a/roles/aws-management-infrastructure/files/base-policy.json b/roles/aws-management-infrastructure/files/base-policy.json
new file mode 100644 (file)
index 0000000..4b193ad
--- /dev/null
+++ b/roles/aws-management-infrastructure/files/base-policy.json
@@ -0,0 +1,24 @@
+{
+       "Version": "2012-10-17",
+       "Statement": [
+               {
+                       "Sid": "Stmt1405357963000",
+                       "Effect": "Allow",
+                       "Action": [
+                               "autoscaling:Describe*",
+                               "cloudwatch:ListMetrics",
+                               "cloudwatch:GetMetricStatistics",
+                               "cloudwatch:Describe*",
+                               "ec2:CreateTags",
+                               "ec2:DeleteTags",
+                               "ec2:Describe*",
+                               "elasticloadbalancing:Describe*",
+                               "logs:DescribeLogStreams",
+                               "logs:PutLogEvents"
+                       ],
+                       "Resource": [
+                               "*"
+                       ]
+               }
+       ]
+}