Class PermissionsBoundary
Modify the Permissions Boundaries of Users and Roles in a construct tree.
Namespace: Amazon.CDK.AWS.IAM
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public class PermissionsBoundary : DeputyBaseSyntax (vb)
Public Class PermissionsBoundary Inherits DeputyBaseRemarks
var policy = ManagedPolicy.FromAwsManagedPolicyName("ReadOnlyAccess");
PermissionsBoundary.Of(this).Apply(policy);ExampleMetadata: infused
Examples
Project project;
PermissionsBoundary.Of(project).Apply(new UntrustedCodeBoundaryPolicy(this, "Boundary"));Synopsis
Methods
| Apply(IManagedPolicy) | Apply the given policy as Permissions Boundary to all Roles and Users in the scope. |
| Clear() | Remove previously applied Permissions Boundaries. |
| Of(IConstruct) | Access the Permissions Boundaries of a construct tree. |
Methods
Apply(IManagedPolicy)
Apply the given policy as Permissions Boundary to all Roles and Users in the scope.
public virtual void Apply(IManagedPolicy boundaryPolicy)Parameters
- boundaryPolicy IManagedPolicy
Remarks
Will override any Permissions Boundaries configured previously; in case a Permission Boundary is applied in multiple scopes, the Boundary applied closest to the Role wins.
Clear()
Remove previously applied Permissions Boundaries.
public virtual void Clear()Remarks
var policy = ManagedPolicy.FromAwsManagedPolicyName("ReadOnlyAccess");
PermissionsBoundary.Of(this).Apply(policy);ExampleMetadata: infused
Of(IConstruct)
Access the Permissions Boundaries of a construct tree.
public static PermissionsBoundary Of(IConstruct scope)Parameters
- scope IConstruct
Returns
Remarks
var policy = ManagedPolicy.FromAwsManagedPolicyName("ReadOnlyAccess");
PermissionsBoundary.Of(this).Apply(policy);ExampleMetadata: infused