A principal is an AWS account which is being allowed or denied access to a
resource through an access control policy. The principal is a property of the
Statement object, not directly the Policy object.
The principal is A in the statement "A has permission to do B to C where D applies."
In an access control policy statement, you can set the principal to all authenticated AWS users through the AllUsers member. This is useful when you don't want to restrict access based on the identity of the requester, but instead on other identifying characteristics such as the requester's IP address.

C# |
public class Principal

All Members | Constructors | Methods | Properties | Fields | |
Icon | Member | Description |
---|---|---|
![]() | Principal(String) |
Constructs a new principal with the specified AWS account ID.
|
![]() | Principal(String, String) |
Constructs a new principal with the specified provider and id
|
![]() ![]() | AllUsers |
Principal instance that includes all users, including anonymous users.
This is useful when you don't want to restrict access based on the identity of the requester, but instead on other identifying characteristics such as the requester's IP address. |
![]() ![]() | AWS_PROVIDER |
The default Principal provider for AWS accounts.
|
![]() ![]() | CANONICAL_USER_PROVIDER |
Principal provider for Canonical User IDs.
|
![]() | Equals(Object) | (Inherited from Object.) |
![]() | GetHashCode()()()() | Serves as a hash function for a particular type. (Inherited from Object.) |
![]() | GetType()()()() | Gets the type of the current instance. (Inherited from Object.) |
![]() | Id |
Gets the unique ID for this principal.
|
![]() | Provider |
Gets and sets the provider for this principal, which indicates in what group of
users this principal resides.
|
![]() | ToString()()()() | Returns a string that represents the current object. (Inherited from Object.) |

Object | |
![]() | Principal |