AWS Code Sample
Catalog

asm-resource-policy-grant-only-gsv-to-mateo.json

This resource-based policy demonstrates how to grant access to retrieve only the secret value to an IAM user.

{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Principal": {"AWS": "arn:aws:iam::123456789012:user/mateo" }, "Action": "secretsmanager:GetSecretValue", "Resource": "*" } ] }

Sample Details

Author: AWS

Type: full-example

On this page: