CfnPolicyGrantProps

class aws_cdk.aws_datazone.CfnPolicyGrantProps(*, domain_identifier, entity_identifier, entity_type, policy_type, detail=None, principal=None)

Bases: object

Properties for defining a CfnPolicyGrant.

Parameters:

• domain_identifier (str) – The ID of the domain where you want to add a policy grant.

• entity_identifier (str) – The ID of the entity (resource) to which you want to add a policy grant.

• entity_type (str) – The type of entity (resource) to which the grant is added.

• policy_type (str) – The type of policy that you want to grant.

• detail (Union[IResolvable, PolicyGrantDetailProperty, Dict[str, Any], None]) – The details of the policy grant member.

• principal (Union[IResolvable, PolicyGrantPrincipalProperty, Dict[str, Any], None]) – The principal of the policy grant member.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-datazone-policygrant.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk import aws_datazone as datazone

# all_domain_units_grant_filter: Any
# all_users_grant_filter: Any
# create_environment: Any
# create_environment_from_blueprint: Any
# delegate_create_environment_profile: Any

cfn_policy_grant_props = datazone.CfnPolicyGrantProps(
    domain_identifier="domainIdentifier",
    entity_identifier="entityIdentifier",
    entity_type="entityType",
    policy_type="policyType",

    # the properties below are optional
    detail=datazone.CfnPolicyGrant.PolicyGrantDetailProperty(
        add_to_project_member_pool=datazone.CfnPolicyGrant.AddToProjectMemberPoolPolicyGrantDetailProperty(
            include_child_domain_units=False
        ),
        create_asset_type=datazone.CfnPolicyGrant.CreateAssetTypePolicyGrantDetailProperty(
            include_child_domain_units=False
        ),
        create_domain_unit=datazone.CfnPolicyGrant.CreateDomainUnitPolicyGrantDetailProperty(
            include_child_domain_units=False
        ),
        create_environment=create_environment,
        create_environment_from_blueprint=create_environment_from_blueprint,
        create_environment_profile=datazone.CfnPolicyGrant.CreateEnvironmentProfilePolicyGrantDetailProperty(
            domain_unit_id="domainUnitId"
        ),
        create_form_type=datazone.CfnPolicyGrant.CreateFormTypePolicyGrantDetailProperty(
            include_child_domain_units=False
        ),
        create_glossary=datazone.CfnPolicyGrant.CreateGlossaryPolicyGrantDetailProperty(
            include_child_domain_units=False
        ),
        create_project=datazone.CfnPolicyGrant.CreateProjectPolicyGrantDetailProperty(
            include_child_domain_units=False
        ),
        create_project_from_project_profile=datazone.CfnPolicyGrant.CreateProjectFromProjectProfilePolicyGrantDetailProperty(
            include_child_domain_units=False,
            project_profiles=["projectProfiles"]
        ),
        delegate_create_environment_profile=delegate_create_environment_profile,
        override_domain_unit_owners=datazone.CfnPolicyGrant.OverrideDomainUnitOwnersPolicyGrantDetailProperty(
            include_child_domain_units=False
        ),
        override_project_owners=datazone.CfnPolicyGrant.OverrideProjectOwnersPolicyGrantDetailProperty(
            include_child_domain_units=False
        )
    ),
    principal=datazone.CfnPolicyGrant.PolicyGrantPrincipalProperty(
        domain_unit=datazone.CfnPolicyGrant.DomainUnitPolicyGrantPrincipalProperty(
            domain_unit_designation="domainUnitDesignation",
            domain_unit_grant_filter=datazone.CfnPolicyGrant.DomainUnitGrantFilterProperty(
                all_domain_units_grant_filter=all_domain_units_grant_filter
            ),
            domain_unit_identifier="domainUnitIdentifier"
        ),
        group=datazone.CfnPolicyGrant.GroupPolicyGrantPrincipalProperty(
            group_identifier="groupIdentifier"
        ),
        project=datazone.CfnPolicyGrant.ProjectPolicyGrantPrincipalProperty(
            project_designation="projectDesignation",
            project_grant_filter=datazone.CfnPolicyGrant.ProjectGrantFilterProperty(
                domain_unit_filter=datazone.CfnPolicyGrant.DomainUnitFilterForProjectProperty(
                    domain_unit="domainUnit",

                    # the properties below are optional
                    include_child_domain_units=False
                )
            ),
            project_identifier="projectIdentifier"
        ),
        user=datazone.CfnPolicyGrant.UserPolicyGrantPrincipalProperty(
            all_users_grant_filter=all_users_grant_filter,
            user_identifier="userIdentifier"
        )
    )
)

Attributes

detail

The details of the policy grant member.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-datazone-policygrant.html#cfn-datazone-policygrant-detail

domain_identifier

The ID of the domain where you want to add a policy grant.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-datazone-policygrant.html#cfn-datazone-policygrant-domainidentifier

entity_identifier

The ID of the entity (resource) to which you want to add a policy grant.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-datazone-policygrant.html#cfn-datazone-policygrant-entityidentifier

entity_type

The type of entity (resource) to which the grant is added.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-datazone-policygrant.html#cfn-datazone-policygrant-entitytype

policy_type

The type of policy that you want to grant.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-datazone-policygrant.html#cfn-datazone-policygrant-policytype

principal

The principal of the policy grant member.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-datazone-policygrant.html#cfn-datazone-policygrant-principal