aws_cdk.aws_iam

Package Overview

AccountPrincipal

AccountRootPrincipal

AnyPrincipal

A principal representing all identities in all accounts.

Anyone

A principal representing all identities in all accounts.

ArnPrincipal

CanonicalUserPrincipal

A policy prinicipal for canonicalUserIds - useful for S3 bucket policies that use Origin Access identities.

CfnAccessKey

A CloudFormation AWS::IAM::AccessKey.

CfnAccessKeyProps

CfnGroup

A CloudFormation AWS::IAM::Group.

CfnGroupProps

CfnInstanceProfile

A CloudFormation AWS::IAM::InstanceProfile.

CfnInstanceProfileProps

CfnManagedPolicy

A CloudFormation AWS::IAM::ManagedPolicy.

CfnManagedPolicyProps

CfnPolicy

A CloudFormation AWS::IAM::Policy.

CfnPolicyProps

CfnRole

A CloudFormation AWS::IAM::Role.

CfnRoleProps

CfnServiceLinkedRole

A CloudFormation AWS::IAM::ServiceLinkedRole.

CfnServiceLinkedRoleProps

CfnUser

A CloudFormation AWS::IAM::User.

CfnUserProps

CfnUserToGroupAddition

A CloudFormation AWS::IAM::UserToGroupAddition.

CfnUserToGroupAdditionProps

CommonGrantOptions

CompositePrincipal

Effect

An enumeration.

FederatedPrincipal

FromRoleArnOptions

Grant

Result of a grant() operation.

GrantOnPrincipalAndResourceOptions

GrantOnPrincipalOptions

GrantWithResourceOptions

Group

GroupProps

IGrantable

Any object that has an associated principal that a permission can be granted to.

IGroup

IIdentity

A construct that represents an IAM principal, such as a user, group or role.

IManagedPolicy

A managed policy.

IPolicy

IPrincipal

Represents a logical IAM principal.

IResourceWithPolicy

A resource with a resource policy that can be added to.

IRole

A Role object.

IUser

LazyRole

An IAM role that only gets attached to the construct tree once it gets used, not before.

LazyRoleProps

ManagedPolicy

Managed policy.

ManagedPolicyProps

OrganizationPrincipal

A principal that represents an AWS Organization.

Policy

The AWS::IAM::Policy resource associates an IAM policy with IAM users, roles, or groups.

PolicyDocument

A PolicyDocument is a collection of statements.

PolicyDocumentProps

PolicyProps

PolicyStatement

Represents a statement in an IAM policy document.

PolicyStatementProps

PrincipalBase

Base class for policy principals.

PrincipalPolicyFragment

A collection of the fields in a PolicyStatement that can be used to identify a principal.

Role

IAM Role.

RoleProps

ServicePrincipal

An IAM principal that represents an AWS service (i.e. sqs.amazonaws.com).

ServicePrincipalOpts

UnknownPrincipal

A principal for use in resources that need to have a role but it’s unknown.

UnknownPrincipalProps

User

Define a new IAM user.

UserProps