SignInService / Client / put_resource_permission_statement

put_resource_permission_statement

SignInService.Client.put_resource_permission_statement(**kwargs)

Create a permission statement in the account’s SignIn resource-based policy

See also: AWS API Documentation

Request Syntax

response = client.put_resource_permission_statement(
    sourceVpc='string',
    signinSourceVpce='string',
    consoleSourceVpce='string',
    vpcSourceIp='string',
    sourceIp='string',
    requestedRegion='string',
    excludedPrincipal='string',
    clientToken='string'
)

Parameters:

• sourceVpc (string) – VPC identifier to restrict console access

• signinSourceVpce (string) – SignIn VPC endpoint identifier

• consoleSourceVpce (string) – Console VPC endpoint identifier

• vpcSourceIp (string) – Source IP address within VPC

• sourceIp (string) – Source IP address

• requestedRegion (string) – AWS region where the VPC and VPC endpoint reside Required when sourceVpc or signinSourceVpce/consoleSourceVpce is provided

• excludedPrincipal (string) – Principal to exclude from the permission statement

• clientToken (string) –

  Idempotency token for the request

  This field is autopopulated if not provided.

Return type:

dict

Returns:

Response Syntax

{
    'statementId': 'string'
}

Response Structure

• (dict) –

  Output for PutResourcePermissionStatement operation

  • statementId (string) –

    Unique identifier for the created permission statement

Exceptions

• SignInService.Client.exceptions.TooManyRequestsError

• SignInService.Client.exceptions.ConflictException

• SignInService.Client.exceptions.ServiceQuotaExceededException

• SignInService.Client.exceptions.InternalServerException

• SignInService.Client.exceptions.ValidationException

• SignInService.Client.exceptions.AccessDeniedException