{
	"Version": "2012-10-17",
	"Statement": [
		{
			"Sid": "DescribeActions",
			"Effect": "Allow",
			"Action": [
				"elasticfilesystem:DescribeMountTargets",
				"autoscaling:DescribeAutoScalingGroups",
				"autoscaling:DescribeAutoScalingInstances",
				"autoscaling:DescribeLaunchConfigurations",
				"autoscaling:DescribeTags",
				"ec2:DescribeInstances",
				"ec2:DescribeLaunchTemplateVersions",
				"ec2:DescribeTags",
				"autoscaling:DescribeLifecycleHooks",
				"autoscaling:DescribeScalingActivities",
				"ec2:DescribeLaunchTemplates",
				"ec2:DescribeInstanceTypes",
				"ec2:DescribeVpcs",
				"secretsmanager:DescribeSecret",
				"secretsmanager:ListSecrets"
			],
			"Resource": "*"
		},
		{
			"Sid": "AutoscalingCapacity",
			"Effect": "Allow",
			"Action": [
				"autoscaling:SetDesiredCapacity",
				"autoscaling:TerminateInstanceInAutoScalingGroup",
				"autoscaling:CreateAutoScalingGroup",
				"autoscaling:CreateOrUpdateTags",
				"autoscaling:DeleteAutoScalingGroup",
				"autoscaling:DeleteTags",
				"autoscaling:SuspendProcesses",
				"autoscaling:UpdateAutoScalingGroup"
			],
			"Resource": "*"
		},
		{
			"Sid": "EC2Management",
			"Effect": "Allow",
			"Action": [
				"ec2:AssociateIamInstanceProfile",
				"ec2:CreateKeyPair",
				"ec2:CreateLaunchTemplate",
				"ec2:CreateLaunchTemplateVersion",
				"ec2:CreateTags",
				"ec2:DeleteLaunchTemplate",
				"ec2:DeleteTags",
				"ec2:ModifyLaunchTemplate",
				"ec2:RunInstances",
				"ec2:TerminateInstances",
				"iam:PassRole"
			],
			"Resource": "*"
		},
		{
			"Sid": "EFSManagement",
			"Effect": "Allow",
			"Action": [
				"elasticfilesystem:CreateAccessPoint",
				"elasticfilesystem:DeleteAccessPoint"
			],
			"Resource": "*"
		},
		{
			"Sid": "SecretsManagerAccess",
			"Effect": "Allow",
			"Action": [
				"secretsmanager:GetSecretValue",
				"secretsmanager:UpdateSecret"
			],
			"Resource": "*"
		}
	]
}