APIs.io Engineering Platform · Capability

APIs.io Engineering Platform AWS Identity and Access Management — #Action=ListEntitiesForPolicy

APIs.io Engineering Platform AWS Identity and Access Management — #Action=ListEntitiesForPolicy. 2 operations. Lead operation: #Action=ListEntitiesForPolicy. Self-contained Naftiko capability covering one Engineering Platform business surface.

Run with Naftiko Engineering Platform#Action=ListEntitiesForPolicy

What You Can Do

GET
Getlistentitiesforpolicy

Lists all IAM users, groups, and roles that the specified managed policy is attached to.

You can use the optional EntityFilter parameter to limit the results to a particular type of entity (users, groups, or roles). F

/v1/action-listentitiesforpolicy
POST
Postlistentitiesforpolicy

Lists all IAM users, groups, and roles that the specified managed policy is attached to.

You can use the optional EntityFilter parameter to limit the results to a particular type of entity (users, groups, or roles). F

/v1/action-listentitiesforpolicy

MCP Tools

p-lists-all-iam-users-groups

Lists all IAM users, groups, and roles that the specified managed policy is attached to.

You can use the optional EntityFilter parameter to limit the results to a particular type of entity (users, groups, or roles). F

read-only idempotent
p-lists-all-iam-users-groups-2

Lists all IAM users, groups, and roles that the specified managed policy is attached to.

You can use the optional EntityFilter parameter to limit the results to a particular type of entity (users, groups, or roles). F

Capability Spec

aws-iam-action-listentitiesforpolicy.yaml Raw ↑ 
naftiko: 1.0.0-alpha2
info:
  label: 'APIs.io Engineering Platform AWS Identity and Access Management — #Action=ListEntitiesForPolicy'
  description: 'APIs.io Engineering Platform AWS Identity and Access Management — #Action=ListEntitiesForPolicy. 2 operations.
    Lead operation: #Action=ListEntitiesForPolicy. Self-contained Naftiko capability covering one Engineering Platform business
    surface.'
  tags:
  - Engineering Platform
  - '#Action=ListEntitiesForPolicy'
  created: '2026-05-19'
  modified: '2026-05-19'
binds:
- namespace: env
  keys:
    ENGINEERING_PLATFORM_API_KEY: ENGINEERING_PLATFORM_API_KEY
capability:
  consumes:
  - type: http
    namespace: aws-iam-action-listentitiesforpolicy
    baseUri: https://iam.amazonaws.com
    description: 'APIs.io Engineering Platform AWS Identity and Access Management — #Action=ListEntitiesForPolicy business
      capability. Self-contained, no shared references.'
    resources:
    - name: '#Action=ListEntitiesForPolicy'
      path: /#Action=ListEntitiesForPolicy
      operations:
      - name: getlistentitiesforpolicy
        method: GET
        description: <p>Lists all IAM users, groups, and roles that the specified managed policy is attached to.</p> <p>You
          can use the optional <code>EntityFilter</code> parameter to limit the results to a particular type of entity (users,
          groups, or roles). F
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: PolicyArn
          in: query
          type: string
          description: <p>The Amazon Resource Name (ARN) of the IAM policy for which you want the versions.</p> <p>For more
            information about ARNs, see <a href="https://docs.aws.amazo
          required: true
        - name: EntityFilter
          in: query
          type: string
          description: <p>The entity type to use for filtering the results.</p> <p>For example, when <code>EntityFilter</code>
            is <code>Role</code>, only the roles that are attached t
        - name: PathPrefix
          in: query
          type: string
          description: <p>The path prefix for filtering the results. This parameter is optional. If it is not included, it
            defaults to a slash (/), listing all entities.</p> <p>This p
        - name: PolicyUsageFilter
          in: query
          type: string
          description: <p>The policy usage method to use for filtering the results.</p> <p>To list only permissions policies,
            set <code>PolicyUsageFilter</code> to <code>Permission
        - name: Marker
          in: query
          type: string
          description: Use this parameter only when paginating results and only after you receive a response indicating that
            the results are truncated. Set it to the value of the <cod
        - name: MaxItems
          in: query
          type: integer
          description: <p>Use this only when paginating results to indicate the maximum number of items you want in the response.
            If additional items exist beyond the maximum you spec
        - name: Action
          in: query
          type: string
          required: true
        - name: Version
          in: query
          type: string
          required: true
      - name: postlistentitiesforpolicy
        method: POST
        description: <p>Lists all IAM users, groups, and roles that the specified managed policy is attached to.</p> <p>You
          can use the optional <code>EntityFilter</code> parameter to limit the results to a particular type of entity (users,
          groups, or roles). F
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: MaxItems
          in: query
          type: string
          description: Pagination limit
        - name: Marker
          in: query
          type: string
          description: Pagination token
        - name: Action
          in: query
          type: string
          required: true
        - name: Version
          in: query
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: false
    authentication:
      type: apikey
      key: Authorization
      value: '{{env.ENGINEERING_PLATFORM_API_KEY}}'
      placement: header
  exposes:
  - type: rest
    namespace: aws-iam-action-listentitiesforpolicy-rest
    port: 8080
    description: 'REST adapter for APIs.io Engineering Platform AWS Identity and Access Management — #Action=ListEntitiesForPolicy.
      One Spectral-compliant resource per consumed operation, prefixed with /v1.'
    resources:
    - path: /v1/action-listentitiesforpolicy
      name: action-listentitiesforpolicy
      description: 'REST surface for #Action=ListEntitiesForPolicy.'
      operations:
      - method: GET
        name: getlistentitiesforpolicy
        description: <p>Lists all IAM users, groups, and roles that the specified managed policy is attached to.</p> <p>You
          can use the optional <code>EntityFilter</code> parameter to limit the results to a particular type of entity (users,
          groups, or roles). F
        call: aws-iam-action-listentitiesforpolicy.getlistentitiesforpolicy
        with:
          PolicyArn: rest.PolicyArn
          EntityFilter: rest.EntityFilter
          PathPrefix: rest.PathPrefix
          PolicyUsageFilter: rest.PolicyUsageFilter
          Marker: rest.Marker
          MaxItems: rest.MaxItems
          Action: rest.Action
          Version: rest.Version
        outputParameters:
        - type: object
          mapping: $.
      - method: POST
        name: postlistentitiesforpolicy
        description: <p>Lists all IAM users, groups, and roles that the specified managed policy is attached to.</p> <p>You
          can use the optional <code>EntityFilter</code> parameter to limit the results to a particular type of entity (users,
          groups, or roles). F
        call: aws-iam-action-listentitiesforpolicy.postlistentitiesforpolicy
        with:
          MaxItems: rest.MaxItems
          Marker: rest.Marker
          Action: rest.Action
          Version: rest.Version
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    namespace: aws-iam-action-listentitiesforpolicy-mcp
    port: 9090
    transport: http
    description: 'MCP adapter for APIs.io Engineering Platform AWS Identity and Access Management — #Action=ListEntitiesForPolicy.
      One tool per consumed operation, routed inline through this capability''s consumes block.'
    tools:
    - name: p-lists-all-iam-users-groups
      description: <p>Lists all IAM users, groups, and roles that the specified managed policy is attached to.</p> <p>You
        can use the optional <code>EntityFilter</code> parameter to limit the results to a particular type of entity (users,
        groups, or roles). F
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: aws-iam-action-listentitiesforpolicy.getlistentitiesforpolicy
      with:
        PolicyArn: tools.PolicyArn
        EntityFilter: tools.EntityFilter
        PathPrefix: tools.PathPrefix
        PolicyUsageFilter: tools.PolicyUsageFilter
        Marker: tools.Marker
        MaxItems: tools.MaxItems
        Action: tools.Action
        Version: tools.Version
      outputParameters:
      - type: object
        mapping: $.
    - name: p-lists-all-iam-users-groups-2
      description: <p>Lists all IAM users, groups, and roles that the specified managed policy is attached to.</p> <p>You
        can use the optional <code>EntityFilter</code> parameter to limit the results to a particular type of entity (users,
        groups, or roles). F
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: aws-iam-action-listentitiesforpolicy.postlistentitiesforpolicy
      with:
        MaxItems: tools.MaxItems
        Marker: tools.Marker
        Action: tools.Action
        Version: tools.Version
        body: tools.body
      outputParameters:
      - type: object
        mapping: $.