|« PreviousNext »|
|Did this page help you? Yes | No | Tell us about it...|
The following figure and table describe the main components that interact to provide access control for your resources.
You, the resource owner.
Your resources (contained within the AWS service; e.g., Amazon SQS queues).
Typically you have one policy per resource, although you could have multiple. The AWS service itself provides an API you use to upload and manage your policies. For information about the content of the policies, see How to Write a Policy.
Requesters and their incoming requests to the AWS service.
The access policy language evaluation code.
This is the set of code within the AWS service that evaluates incoming requests against the applicable policies and determines whether the requester is allowed access to the resource. For information about how the service makes the decision, see Evaluation Logic.
For the typical process of how the components work together, see Using the Access Policy Language.