IAM Policy Tester

Test an AWS IAM identity policy against a set of requests detailed answers on how the result was determined.

The underlying library, iam-simulate, supports identity policies, resources policies, service control policies, and permission boundaries. To keep the UI simple, this page only supports a single identity policy and requests from an IAM user with that policy.

This runs 100% in your browser using using iam-data for service information, iam-policy for policy validation and iam-simulate to execute your test cases.

Everything happens in your browser, no policy information is set to any server to evaluate or test policies. Check the network tab in your inspector if you're interested.

If you decide to share the policy, all information will be saved behind an obscure URL that will share the information with anyone who has the URL.

Testing IAM policies takes too long, this evaluates your requests on every keystroke. This gives you the superpower of testing complex policies without deploying to AWS for every test.

Policy Tester:

• Runs without an account completely in your browser
• Can test multiple variations of the same action at once
• Provides detailed explainations of why a policy statement matched a request or not

Thanks for asking! You can do a few things:

• Star iam-simulate or any of our other IAM related repos on GitHub
• Subscribe to our email list in the page footer
• Provide feedback, the best way is to file an issues in the iam-simulate repo
• Share this with your colleagues, friends, and family. A link to this page would make a great gift for your brother in law.
• Send expensive meat. Order anything from Morgan Ranch and tell them it's for David Kerber, they'll know what to do.