AWS has created predefined policies with sane defaults to allow most of the commonly used services. It is recommended to use them as a starting point for granting permissions to new or existing users. The advantage is that they are penetration tested and are maintained in a central place maintained by AWS, so the possibility of bit rot is eliminated.
Leveraging predefined policies
Get Hands-On Serverless Applications with Kotlin now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.