You are viewing documentation for version 2 of the AWS SDK for Ruby. Version 3 documentation can be found here.
Class: Aws::IAM::Types::PermissionsBoundaryDecisionDetail
- Inherits:
-
Struct
- Object
- Struct
- Aws::IAM::Types::PermissionsBoundaryDecisionDetail
- Defined in:
- (unknown)
Overview
Contains information about the effect that a permissions boundary has on a policy simulation when the boundary is applied to an IAM entity.
Returned by:
Instance Attribute Summary collapse
-
#allowed_by_permissions_boundary ⇒ Boolean
Specifies whether an action is allowed by a permissions boundary that is applied to an IAM entity (user or role).
Instance Attribute Details
#allowed_by_permissions_boundary ⇒ Boolean
Specifies whether an action is allowed by a permissions boundary that is
applied to an IAM entity (user or role). A value of true
means that
the permissions boundary does not deny the action. This means that the
policy includes an Allow
statement that matches the request. In this
case, if an identity-based policy also allows the action, the request is
allowed. A value of false
means that either the requested action is
not allowed (implicitly denied) or that the action is explicitly denied
by the permissions boundary. In both of these cases, the action is not
allowed, regardless of the identity-based policy.