AWS DynamoDB (IAM)

aws database

Amazon DynamoDB is a fully managed NoSQL database service for high-performance applications at any scale.

Common permissions

dynamodb:GetItemdynamodb:PutItemdynamodb:DeleteItemdynamodb:UpdateItemdynamodb:ListTablesdynamodb:DescribeTabledynamodb:CreateTabledynamodb:DeleteTable

Least-privilege example

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "dynamodb:GetItem",
        "dynamodb:PutItem",
        "dynamodb:DeleteItem",
        "dynamodb:UpdateItem",
        "dynamodb:ListTables",
        "dynamodb:DescribeTable",
        "dynamodb:CreateTable",
        "dynamodb:DeleteTable"
      ],
      "Resource": "*"
    }
  ]
}

Warnings

Avoid dynamodb:* — grants full control including deletion of tables and backups.
Avoid dynamodb:PutItem without conditions — can overwrite or create items unexpectedly.

Resources

AWS referenceservicereference.us-east-1.amazonaws.com/v1/dynamodb/dynamodb.json ↗

API

full doc /v1/iam/dynamodb