ResourceSharePermissionDetail

Information about a AWS RAM managed permission.

Contents

Note

In the following list, the required parameters are described first.

arn

The Amazon Resource Name (ARN) of this AWS RAM managed permission.

Type: String

Required: No

creationTime

The date and time when the permission was created.

Type: Timestamp

Required: No

defaultVersion

Specifies whether the version of the permission represented in this response is the default version for this permission.

Type: Boolean

Required: No

featureSet

Indicates what features are available for this resource share. This parameter can have one of the following values:

• STANDARD – A resource share that supports all functionality. These resource shares are visible to all principals you share the resource share with. You can modify these resource shares in AWS RAM using the console or APIs. This resource share might have been created by AWS RAM, or it might have been CREATED_FROM_POLICY and then promoted.

• CREATED_FROM_POLICY – The customer manually shared a resource by attaching a resource-based policy. That policy did not match any existing managed permissions, so AWS RAM created this customer managed permission automatically on the customer's behalf based on the attached policy document. This type of resource share is visible only to the AWS account that created it. You can't modify it in AWS RAM unless you promote it. For more information, see PromoteResourceShareCreatedFromPolicy.

• PROMOTING_TO_STANDARD – This resource share was originally CREATED_FROM_POLICY, but the customer ran the PromoteResourceShareCreatedFromPolicy and that operation is still in progress. This value changes to STANDARD when complete.

Type: String

Valid Values: CREATED_FROM_POLICY | PROMOTING_TO_STANDARD | STANDARD

Required: No

isResourceTypeDefault

Specifies whether the version of the permission represented in this response is the default version for all resources of this resource type.

Type: Boolean

Required: No

lastUpdatedTime

The date and time when the permission was last updated.

Type: Timestamp

Required: No

name

The name of this permission.

Type: String

Required: No

permission

The permission's effect and actions in JSON format. The effect indicates whether the specified actions are allowed or denied. The actions list the operations to which the principal is granted or denied access.

Type: String

Required: No

permissionType

The type of managed permission. This can be one of the following values:

• AWS_MANAGED – AWS created and manages this managed permission. You can associate it with your resource shares, but you can't modify it.

• CUSTOMER_MANAGED – You, or another principal in your account created this managed permission. You can associate it with your resource shares and create new versions that have different permissions.

Type: String

Valid Values: CUSTOMER_MANAGED | AWS_MANAGED

Required: No

resourceType

The resource type to which this permission applies.

Type: String

Required: No

status

The current status of the association between the permission and the resource share. The following are the possible values:

• ATTACHABLE – This permission or version can be associated with resource shares.

• UNATTACHABLE – This permission or version can't currently be associated with resource shares.

• DELETING – This permission or version is in the process of being deleted.

• DELETED – This permission or version is deleted.

Type: String

Valid Values: ATTACHABLE | UNATTACHABLE | DELETING | DELETED

Required: No

tags

The tag key and value pairs attached to the resource share.

Type: Array of Tag objects

Required: No

version

The version of the permission described in this response.

Type: String

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following:

• AWS SDK for C++

• AWS SDK for Java V2

• AWS SDK for Ruby V3