Resource-based policy examples for AWS Elemental MediaTailor

To learn how to attach a resource-based policy to a channel, see Creating channels.

Topics

Anonymous access
Cross-account access

Anonymous access

Consider the following Allow policy. With this policy in effect, MediaTailor allows anonymous access to the mediatailor:GetManifest action on the channel resource in the policy. This occurs where region is the AWS Region, accountID is your AWS account ID, and channelName is the name of the channel resource.


{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "AllowAnonymous",
      "Effect": "Allow",
      "Principal": "*",
      "Action": "mediatailor:GetManifest",
      "Resource": "arn:aws:mediatailor:region:accountID:channel/channelName"
    }
  ]
}

Cross-account access

Consider the following Allow policy. With this policy in effect, MediaTailor allows the mediatailor:GetManifest action on the channel resource in the policy, across accounts. This occurs where region is the AWS Region, accountID is your AWS account ID, and channelName is the name of the channel resource.


{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "AllowCrossAccountAccess",
      "Effect": "Allow",
      "Principal": {"AWS":  "arn:aws:iam::111111111111:root"},
      "Action": "mediatailor:GetManifest",
      "Resource": "arn:aws:mediatailor:region:accountID:channel/channelName"
    }
  ]
}

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Identity-based policy examples

AWS managed policies