public static interface IIdentity.Jsii$Default extends IIdentity, IResource.Jsii$Default, IPrincipal.Jsii$Default
IIdentity
.IIdentity.Jsii$Default, IIdentity.Jsii$Proxy
Modifier and Type | Method and Description |
---|---|
default void |
addManagedPolicy(IManagedPolicy policy)
Attaches a managed policy to this principal.
|
default java.lang.Boolean |
addToPolicy(PolicyStatement statement)
Deprecated.
Use `addToPrincipalPolicy` instead.
|
default AddToPrincipalPolicyResult |
addToPrincipalPolicy(PolicyStatement statement)
Add to the policy of this principal.
|
default void |
applyRemovalPolicy(RemovalPolicy policy)
Apply the given removal policy to this resource.
|
default void |
attachInlinePolicy(Policy policy)
Attaches an inline policy to this principal.
|
default java.lang.String |
getAssumeRoleAction()
When this Principal is used in an AssumeRole policy, the action to use.
|
default ResourceEnvironment |
getEnv()
The environment this resource belongs to.
|
default IPrincipal |
getGrantPrincipal()
The principal to grant permissions to.
|
default ConstructNode |
getNode()
The construct tree node for this construct.
|
default PrincipalPolicyFragment |
getPolicyFragment()
Return the policy fragment that identifies this principal in a Policy.
|
default java.lang.String |
getPrincipalAccount()
The AWS account ID of this principal.
|
default Stack |
getStack()
The stack in which this resource is defined.
|
default IPrincipal getGrantPrincipal()
getGrantPrincipal
in interface IGrantable
getGrantPrincipal
in interface IGrantable.Jsii$Default
getGrantPrincipal
in interface IPrincipal.Jsii$Default
default java.lang.String getAssumeRoleAction()
getAssumeRoleAction
in interface IPrincipal
getAssumeRoleAction
in interface IPrincipal.Jsii$Default
default PrincipalPolicyFragment getPolicyFragment()
getPolicyFragment
in interface IPrincipal
getPolicyFragment
in interface IPrincipal.Jsii$Default
default java.lang.String getPrincipalAccount()
Can be undefined when the account is not known (for example, for service principals). Can be a Token - in that case, it's assumed to be AWS::AccountId.
getPrincipalAccount
in interface IPrincipal
getPrincipalAccount
in interface IPrincipal.Jsii$Default
default ConstructNode getNode()
getNode
in interface IConstruct
getNode
in interface IConstruct.Jsii$Default
getNode
in interface IResource.Jsii$Default
default ResourceEnvironment getEnv()
For resources that are created and managed by the CDK (generally, those created by creating new class instances like Role, Bucket, etc.), this is always the same as the environment of the stack they belong to; however, for imported resources (those obtained from static methods like fromRoleArn, fromBucketName, etc.), that might be different than the stack they were imported into.
getEnv
in interface IResource
getEnv
in interface IResource.Jsii$Default
default Stack getStack()
getStack
in interface IResource
getStack
in interface IResource.Jsii$Default
@Deprecated default java.lang.Boolean addToPolicy(PolicyStatement statement)
addToPolicy
in interface IPrincipal
addToPolicy
in interface IPrincipal.Jsii$Default
statement
- This parameter is required.default AddToPrincipalPolicyResult addToPrincipalPolicy(PolicyStatement statement)
addToPrincipalPolicy
in interface IPrincipal
addToPrincipalPolicy
in interface IPrincipal.Jsii$Default
statement
- This parameter is required.default void applyRemovalPolicy(RemovalPolicy policy)
The Removal Policy controls what happens to this resource when it stops being managed by CloudFormation, either because you've removed it from the CDK application or because you've made a change that requires the resource to be replaced.
The resource can be deleted (RemovalPolicy.DESTROY
), or left in your AWS
account for data recovery and cleanup later (RemovalPolicy.RETAIN
).
applyRemovalPolicy
in interface IResource
applyRemovalPolicy
in interface IResource.Jsii$Default
policy
- This parameter is required.default void addManagedPolicy(IManagedPolicy policy)
addManagedPolicy
in interface IIdentity
policy
- The managed policy. This parameter is required.default void attachInlinePolicy(Policy policy)
This is the same as calling policy.addToXxx(principal)
.
attachInlinePolicy
in interface IIdentity
policy
- The policy resource to attach to this principal [disable-awslint:ref-via-interface]. This parameter is required.