Hi Vinay, I do think this multi-account structure can be improved upon by adding tags on resources and giving devs write permissions for those tagged resources.
PRODUCTION
Junior Dev: Read only, write access only when applicable
Senior Dev: More access
DEV / QA
Junior Dev: Write access to resources with the appropriate tags
Senior DevOps Engineer with 8.5+ years of experience. Otherwise an avid artist, reader, cinephile & football fan. Looking forward to connecting with everyone :)
Hi Vinay, I do think this multi-account structure can be improved upon by adding tags on resources and giving devs write permissions for those tagged resources.
PRODUCTION
DEV / QA
Resource: docs.aws.amazon.com/IAM/latest/Use...
The suggestion of using tags & the shared documentation certainly helps, thank you Raphael!