IMO we have two problems to solve here:
- Which authentication method to use;
- What is the minimum set of permission required for the services we want to use.
As a general rule, I suggest starting small with something simple to make it work and then iterating until we reach an optimal solution.
For problem 1: the most straightforward option is to use the access and secret keys.
If you already have an IAM user, create a new IAM policy with all the permissions listed in the docs and attach the policy to the IAM user.
Now, by using the access key and secret key for the IAM user in the integration settings, you will be able to use all supported services.
For problem 2: unfortunately, the docs do not list the required permissions for each service.
Let me know which integration/service you want to use, and I'll help you find the minimal permission list for your use case.
We can use this work to update the docs for our future selves and other users.