Browsing Resources

JITSudo discovers and caches AWS resources so users can browse what’s available for access requests.

Resource Types

Type	Description	Identifier
aws_account	AWS account	12-digit account ID
aws_permission_set	IAM Identity Center permission set	ARN
aws_s3_bucket	S3 bucket	Bucket name
aws_rds_instance	RDS database instance	DB instance ARN
aws_ec2_instance	EC2 compute instance	Instance ID (i-xxxx)

Listing Resources via API

AWS Accounts

curl https://jitsudo.example.com/v1/aws/accounts \
  -H "Authorization: Bearer <jwt>" \
  -H "X-Tenant-ID: <tenant-uuid>"

Permission Sets

curl https://jitsudo.example.com/v1/aws/permission-sets \
  -H "Authorization: Bearer <jwt>" \
  -H "X-Tenant-ID: <tenant-uuid>"

Other Resources

Additional resource types are available at /v1/aws/s3-buckets, /v1/aws/rds-instances, and /v1/aws/ec2-instances.

Resource Sync

Administrators can trigger a bulk sync of AWS resources to update the cache:

# Sync accounts
curl -X PUT https://jitsudo.example.com/v1/aws/accounts \
  -H "X-API-Key: <api-key>" \
  -H "X-Tenant-ID: <tenant-uuid>"

# Sync permission sets
curl -X PUT https://jitsudo.example.com/v1/aws/permission-sets \
  -H "X-API-Key: <api-key>" \
  -H "X-Tenant-ID: <tenant-uuid>"

Resources include flexible JSONB metadata and a ranking field for privilege level ordering.