{{principal.icon}}{{principal.name}}

Service	Days since last use	Privilege Source {% for service in principal.services %}
{{service.name}}	{{service.last_use}}	{{service.source}} {% endfor %}

{% if principal.groups|length > 0 %} Groups:

{% for group in principal.groups %}
• {{group.name}} {% endfor %}

{% endif %} {% if principal.managed_policies|length > 0 %}

Managed policies

{% for policy in principal.managed_policies %}
• {{policy.name}} {% endfor %}

{% endif %} {% if principal.inline_policies|length > 0 %}

Inline policies

{% for policy in principal.inline_policies %}

{{policy.name}}

{{policy.document}}

{% endfor %} {% endif %} {% if principal.assume_role is defined %}

AssumeRolePolicyDocument

{{principal.assume_role}}

{% endif %}

{{group.name}}

{% if group.members|length > 0 %}

Members

{% for member in group.members %}
• {{member.name}} {% endfor %}

{% else %} WARNING: No members, this group can be removed {% endif %} {% if group.managed_policies|length > 0 %}

Managed policies

{% for policy in group.managed_policies %}
• {{policy.name}} {% endfor %}

{% endif %} {% if group.inline_policies|length > 0 %}

Inline policies

{% for policy in group.inline_policies %}

{{policy.name}}

{{policy.document}}

{% endfor %} {% endif %} {% if group.managed_policies|length == 0 and group.inline_policies|length == 0 %} WARNING: This policy does nothing and can be removed (assuming no boundary policies). {% endif %}

{{policy.name}}

{{policy.managed}} {% if policy.attachments|length > 0 %}

Attachments

{% for attachment in policy.attachments %}
• {{attachment.name}} {% endfor %}
{% else %} WARNING: This policy is not attached to anything and can be removed. {% endif %}

Policy document

{{policy.document}}