ExternalAccessDetails - IAM Access Analyzer

ExternalAccessDetails

Contains information about an external access finding.

Contents

condition

The condition in the analyzed policy statement that resulted in an external access finding.

Type: String to string map

Required: Yes

action

The action in the analyzed policy statement that an external principal has permission to use.

Type: Array of strings

Required: No

isPublic

Specifies whether the external access finding is public.

Type: Boolean

Required: No

principal

The external principal that has access to a resource within the zone of trust.

Type: String to string map

Required: No

resourceControlPolicyRestriction

The type of restriction applied to the finding by the resource owner with an Organizations resource control policy (RCP).

Type: String

Valid Values: APPLICABLE | FAILED_TO_EVALUATE_RCP | NOT_APPLICABLE

Required: No

sources

The sources of the external access finding. This indicates how the access that generated the finding is granted. It is populated for Amazon S3 bucket findings.

Type: Array of FindingSource objects

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: