{"slug":"iam-aws-appsync","cloud":"aws","service":"appsync","title":"AWS AppSync (IAM)","description":"Provides a managed GraphQL service that enables applications to securely access, manipulate, and combine data from multiple sources.","category":"compute","common_permissions":["appsync:GetApi","appsync:ListApis","appsync:GetGraphqlApi","appsync:ListGraphqlApis","appsync:GetDataSource","appsync:ListDataSources","appsync:GetFunction","appsync:ListFunctions"],"least_privilege_example":"{\n  \"Version\": \"2012-10-17\",\n  \"Statement\": [\n    {\n      \"Effect\": \"Allow\",\n      \"Action\": [\n        \"appsync:GetApi\",\n        \"appsync:ListApis\",\n        \"appsync:GetGraphqlApi\",\n        \"appsync:ListGraphqlApis\",\n        \"appsync:GetDataSource\",\n        \"appsync:ListDataSources\",\n        \"appsync:GetFunction\",\n        \"appsync:ListFunctions\"\n      ],\n      \"Resource\": \"*\"\n    }\n  ]\n}","warnings":["Avoid appsync:* — grants full control including creating, updating, and deleting APIs and their resources.","Avoid appsync:DeleteApi — allows deletion of APIs, causing service disruption."],"docs":"https://servicereference.us-east-1.amazonaws.com/v1/appsync/appsync.json","tags":["iam","aws"],"last_verified":"2026-06-14T00:00:00.000Z","next_check":"2026-12-11T00:00:00.000Z","created_at":"2026-06-14T04:49:18.300Z","updated_at":"2026-06-14T04:49:18.300Z"}