DescribePermissions
Describes the permissions for a specified stack.
Required Permissions: To use this action, an IAM user must have a Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information on user permissions, see Managing User Permissions.
Request Syntax
{
"IamUserArn": "string",
"StackId": "string"
}Request Parameters
For information about the parameters that are common to all actions, see Common Parameters.
The request accepts the following data in JSON format.
- IamUserArn
-
The user's IAM ARN. This can also be a federated user's ARN. For more information about IAM ARNs, see Using Identifiers.
Type: String
Required: No
- StackId
-
The stack ID.
Type: String
Required: No
Response Syntax
{
"Permissions": [
{
"AllowSsh": boolean,
"AllowSudo": boolean,
"IamUserArn": "string",
"Level": "string",
"StackId": "string"
}
]
}Response Elements
If the action is successful, the service sends back an HTTP 200 response.
The following data is returned in JSON format by the service.
- Permissions
-
An array of
Permissionobjects that describe the stack permissions.-
If the request object contains only a stack ID, the array contains a
Permissionobject with permissions for each of the stack IAM ARNs. -
If the request object contains only an IAM ARN, the array contains a
Permissionobject with permissions for each of the user's stack IDs. -
If the request contains a stack ID and an IAM ARN, the array contains a single
Permissionobject with permissions for the specified stack and IAM ARN.
Type: Array of Permission objects
-
Errors
For information about the errors that are common to all actions, see Common Errors.
- ResourceNotFoundException
-
Indicates that a resource was not found.
HTTP Status Code: 400
- ValidationException
-
Indicates that a request was not valid.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
