AWS::Signer::ProfilePermission - AWS CloudFormation

AWS::Signer::ProfilePermission

Adds cross-account permissions to a signing profile.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "Type" : "AWS::Signer::ProfilePermission", "Properties" : { "Action" : String, "Principal" : String, "ProfileName" : String, "ProfileVersion" : String, "StatementId" : String } }

YAML

Type: AWS::Signer::ProfilePermission Properties: Action: String Principal: String ProfileName: String ProfileVersion: String StatementId: String

Properties

Action

The AWS Signer action permitted as part of cross-account permissions.

Required: Yes

Type: String

Update requires: Replacement

Principal

The AWS principal receiving cross-account permissions. This may be an IAM role or another AWS account ID.

Required: Yes

Type: String

Update requires: Replacement

ProfileName

The human-readable name of the signing profile.

Required: Yes

Type: String

Pattern: ^[0-9a-zA-Z_]{2,64}$

Update requires: Replacement

ProfileVersion

The version of the signing profile.

Required: No

Type: String

Pattern: ^[0-9a-zA-Z]{10}$

Update requires: Replacement

StatementId

A unique identifier for the cross-account permission statement.

Required: Yes

Type: String

Update requires: Replacement

Return values

Ref

The StatementId and ProfileName in the form StatementId|ProfileName