Open
Description
Feature Description
The docs for Bedrock currently state that the user account needs the AmazonBedrockFullAccess policy attached to it:
I can understand why this might be recommended for simplicity, but in the interest of least-privilege permissions it provides much more access than what might actually be needed. A simple policy allowing streaming only from a single model looks like:
{
"Version": "2012-10-17",
"Statement": [
{
"Action": "bedrock:InvokeModelWithResponseStream",
"Resource": "arn:aws:bedrock:us-east-1::foundation-model/anthropic.claude-3-5-sonnet-20240620-v1:0",
"Effect": "Allow"
}
]
}
Rather than providing policy examples to cover different uses/models/etc, maybe a link out to the Bedrock IAM docs and a recommendation to create a more restricted policy as needed?
Use Case
No response
Additional context
No response