A list of key-value pairs that must be present in the encryption context of certain subsequent operations that the grant allows.
The date and time when the grant was created.
The unique identifier for the grant.
The identity that gets the permissions in the grant.
GranteePrincipal field in the
ListGrants response usually contains the
user or role designated as the grantee principal in the grant. However, when the grantee
principal in the grant is an Amazon Web Services service, the
GranteePrincipal field contains
principal, which might represent several different grantee principals.
The Amazon Web Services account under which the grant was issued.
The unique identifier for the KMS key to which the grant applies.
The friendly name that identifies the grant. If a name was provided in the CreateGrant request, that name is returned. Otherwise this value is null.
The list of operations permitted by the grant.
The principal that can retire the grant.
Contains information about a grant.