@Generated(value="jsii-pacmak/1.60.0 (build ebcefe6)",
date="2022-06-22T23:27:50.760Z")
public interface ManagedPolicyProps
Example:
Map<String, Object> policyDocument = Map.of( "Version", "2012-10-17", "Statement", List.of(Map.of( "Sid", "FirstStatement", "Effect", "Allow", "Action", List.of("iam:ChangePassword"), "Resource", "*"), Map.of( "Sid", "SecondStatement", "Effect", "Allow", "Action", "s3:ListAllMyBuckets", "Resource", "*"), Map.of( "Sid", "ThirdStatement", "Effect", "Allow", "Action", List.of("s3:List*", "s3:Get*"), "Resource", List.of("arn:aws:s3:::confidential-data", "arn:aws:s3:::confidential-data/*"), "Condition", Map.of("Bool", Map.of("aws:MultiFactorAuthPresent", "true"))))); PolicyDocument customPolicyDocument = PolicyDocument.fromJson(policyDocument); // You can pass this document as an initial document to a ManagedPolicy // or inline Policy. ManagedPolicy newManagedPolicy = ManagedPolicy.Builder.create(this, "MyNewManagedPolicy") .document(customPolicyDocument) .build(); Policy newPolicy = Policy.Builder.create(this, "MyNewPolicy") .document(customPolicyDocument) .build();
Modifier and Type | Interface and Description |
---|---|
static class |
ManagedPolicyProps.Builder
A builder for
ManagedPolicyProps |
static class |
ManagedPolicyProps.Jsii$Proxy
An implementation for
ManagedPolicyProps |
Modifier and Type | Method and Description |
---|---|
static ManagedPolicyProps.Builder |
builder() |
default java.lang.String |
getDescription()
A description of the managed policy.
|
default PolicyDocument |
getDocument()
Initial PolicyDocument to use for this ManagedPolicy.
|
default java.util.List<IGroup> |
getGroups()
Groups to attach this policy to.
|
default java.lang.String |
getManagedPolicyName()
The name of the managed policy.
|
default java.lang.String |
getPath()
The path for the policy.
|
default java.util.List<IRole> |
getRoles()
Roles to attach this policy to.
|
default java.util.List<PolicyStatement> |
getStatements()
Initial set of permissions to add to this policy document.
|
default java.util.List<IUser> |
getUsers()
Users to attach this policy to.
|
default java.lang.String getDescription()
Typically used to store information about the permissions defined in the policy. For example, "Grants access to production DynamoDB tables." The policy description is immutable. After a value is assigned, it cannot be changed.
Default: - empty
default PolicyDocument getDocument()
If omited, any
PolicyStatement
provided in the statements
property will be applied
against the empty default PolicyDocument
.
Default: - An empty policy.
default java.util.List<IGroup> getGroups()
You can also use attachToGroup(group)
to attach this policy to a group.
Default: - No groups.
default java.lang.String getManagedPolicyName()
If you specify multiple policies for an entity, specify unique names. For example, if you specify a list of policies for an IAM role, each policy must have a unique name.
Default: - A name is automatically generated.
default java.lang.String getPath()
This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (!) through the DEL character (), including most punctuation characters, digits, and upper and lowercased letters.
For more information about paths, see IAM Identifiers in the IAM User Guide.
Default: - "/"
default java.util.List<IRole> getRoles()
You can also use attachToRole(role)
to attach this policy to a role.
Default: - No roles.
default java.util.List<PolicyStatement> getStatements()
You can also use addPermission(statement)
to add permissions later.
Default: - No statements.
default java.util.List<IUser> getUsers()
You can also use attachToUser(user)
to attach this policy to a user.
Default: - No users.
static ManagedPolicyProps.Builder builder()
ManagedPolicyProps.Builder
of ManagedPolicyProps