Carve out s3 express handling for now

Author: iann0036

iamlivecore/logger.go

@@ -671,6 +671,11 @@ func getStatementsForProxyCall(call Entry) (statements []Statement) {
 	for iamMapMethodName, iamMapMethods := range iamMap.SDKMethodIAMMappings {
 		if strings.ToLower(iamMapMethodName) == lowerPriv {
 			for mappedPrivIndex, mappedPriv := range iamMapMethods {
+				// special override for S3 express
+				if strings.HasPrefix(mappedPriv.Action, "s3express:") && len(iamMapMethods) > 1 {
+					continue
+				}
+
 				resources := []string{}
 
 				// arn_override

iamlivecore/map.json

@@ -462,7 +462,17 @@
                     "BucketName": {
                         "template": "${Bucket}"
                     }
-                }
+                },
+                "notice": "Only applicable when the bucket name does not end with --x-s3"
+            }, 
+            {
+                "action": "s3express:PutEncryptionConfiguration",
+                "resource_mappings": {
+                    "BucketName": {
+                        "template": "${Bucket}"
+                    }
+                },
+                "notice": "Only applicable when the bucket name ends with --x-s3"
             }
         ],
         "S3.DeleteBucketInventoryConfiguration": [
@@ -578,7 +588,17 @@
                     "BucketName": {
                         "template": "${Bucket}"
                     }
-                }
+                },
+                "notice": "Only applicable when the bucket name does not end with --x-s3"
+            },
+            {
+                "action": "s3express:GetEncryptionConfiguration",
+                "resource_mappings": {
+                    "BucketName": {
+                        "template": "${Bucket}"
+                    }
+                },
+                "notice": "Only applicable when the bucket name ends with --x-s3"
             }
         ],
         "S3.GetBucketInventoryConfiguration": [
@@ -608,7 +628,17 @@
                     "BucketName": {
                         "template": "${Bucket}"
                     }
-                }
+                },
+                "notice": "Only applicable when the bucket name does not end with --x-s3"
+            },
+            {
+                "action": "s3express:GetLifecycleConfiguration",
+                "resource_mappings": {
+                    "BucketName": {
+                        "template": "${Bucket}"
+                    }
+                },
+                "notice": "Only applicable when the bucket name ends with --x-s3"
             }
         ],
         "S3.GetBucketMetricsConfiguration": [
@@ -728,7 +758,17 @@
                     "BucketName": {
                         "template": "${Bucket}"
                     }
-                }
+                },
+                "notice": "Only applicable when the bucket name does not end with --x-s3"
+            },
+            {
+                "action": "s3express:PutEncryptionConfiguration",
+                "resource_mappings": {
+                    "BucketName": {
+                        "template": "${Bucket}"
+                    }
+                },
+                "notice": "Only applicable when the bucket name ends with --x-s3"
             }
         ],
         "S3.PutBucketInventoryConfiguration": [
@@ -758,7 +798,17 @@
                     "BucketName": {
                         "template": "${Bucket}"
                     }
-                }
+                },
+                "notice": "Only applicable when the bucket name does not end with --x-s3"
+            },
+            {
+                "action": "s3express:PutLifecycleConfiguration",
+                "resource_mappings": {
+                    "BucketName": {
+                        "template": "${Bucket}"
+                    }
+                },
+                "notice": "Only applicable when the bucket name ends with --x-s3"
             }
         ],
         "S3.PutBucketMetricsConfiguration": [
@@ -36851,6 +36901,26 @@
         "S3.CreateBucket": [
             {
                 "action": "s3:CreateBucket",
+                "resource_mappings": {
+                    "BucketName": {
+                        "template": "${Bucket}"
+                    }
+                },
+                "notice": "Only applicable when the bucket name does not end with --x-s3"
+            },
+            {
+                "action": "s3express:CreateBucket",
+                "resource_mappings": {
+                    "BucketName": {
+                        "template": "${Bucket}"
+                    }
+                },
+                "notice": "Only applicable when the bucket name ends with --x-s3"
+            }
+        ],
+        "S3.CreateSession": [
+            {
+                "action": "s3express:CreateSession",
                 "resource_mappings": {
                     "BucketName": {
                         "template": "${Bucket}"
@@ -36865,7 +36935,17 @@
                     "BucketName": {
                         "template": "${Bucket}"
                     }
-                }
+                },
+                "notice": "Only applicable when the bucket name does not end with --x-s3"
+            },
+            {
+                "action": "s3express:DeleteBucket",
+                "resource_mappings": {
+                    "BucketName": {
+                        "template": "${Bucket}"
+                    }
+                },
+                "notice": "Only applicable when the bucket name ends with --x-s3"
             }
         ],
         "S3.DeleteBucketOwnershipControls": [
@@ -36885,7 +36965,17 @@
                     "BucketName": {
                         "template": "${Bucket}"
                     }
-                }
+                },
+                "notice": "Only applicable when the bucket name does not end with --x-s3"
+            },
+            {
+                "action": "s3express:DeleteBucketPolicy",
+                "resource_mappings": {
+                    "BucketName": {
+                        "template": "${Bucket}"
+                    }
+                },
+                "notice": "Only applicable when the bucket name ends with --x-s3"
             }
         ],
         "S3.DeleteBucketWebsite": [
@@ -36981,7 +37071,17 @@
                     "BucketName": {
                         "template": "${Bucket}"
                     }
-                }
+                },
+                "notice": "Only applicable when the bucket name does not end with --x-s3"
+            },
+            {
+                "action": "s3express:GetBucketPolicy",
+                "resource_mappings": {
+                    "BucketName": {
+                        "template": "${Bucket}"
+                    }
+                },
+                "notice": "Only applicable when the bucket name ends with --x-s3"
             }
         ],
         "S3.GetBucketPolicyStatus": [
@@ -37165,7 +37265,17 @@
                     "BucketName": {
                         "template": "${Bucket}"
                     }
-                }
+                },
+                "notice": "Only applicable when the bucket name does not end with --x-s3"
+            },
+            {
+                "action": "s3express:PutBucketPolicy",
+                "resource_mappings": {
+                    "BucketName": {
+                        "template": "${Bucket}"
+                    }
+                },
+                "notice": "Only applicable when the bucket name ends with --x-s3"
             }
         ],
         "S3.PutBucketRequestPayment": [
@@ -168338,7 +168448,7 @@
         ],
         "S3.ListDirectoryBuckets": [
             {
-                "action": "s3:ListAllMyBuckets",
+                "action": "s3express:ListAllMyDirectoryBuckets",
                 "undocumented": true,
                 "resource_mappings": {}
             }