Skip to content

/AWS1/CL_VPS=>UPDATEPOLICYTEMPLATE()

About UpdatePolicyTemplate

Updates the specified policy template. You can update only the description and the some elements of the policyBody.

Changes you make to the policy template content are immediately (within the constraints of eventual consistency) reflected in authorization decisions that involve all template-linked policies instantiated from this template.

Verified Permissions is eventually consistent . It can take a few seconds for a new or changed element to propagate through the service and be visible in the results of other Verified Permissions operations.

Method Signature

IMPORTING

Required arguments:

IV_POLICYSTOREID TYPE /AWS1/VPSPOLICYSTOREID /AWS1/VPSPOLICYSTOREID

Specifies the ID of the policy store that contains the policy template that you want to update.

IV_POLICYTEMPLATEID TYPE /AWS1/VPSPOLICYTEMPLATEID /AWS1/VPSPOLICYTEMPLATEID

Specifies the ID of the policy template that you want to update.

IV_STATEMENT TYPE /AWS1/VPSPOLICYSTATEMENT /AWS1/VPSPOLICYSTATEMENT

Specifies new statement content written in Cedar policy language to replace the current body of the policy template.

You can change only the following elements of the policy body:

  • The action referenced by the policy template.

  • Any conditional clauses, such as when or unless clauses.

You can't change the following elements:

  • The effect (permit or forbid) of the policy template.

  • The principal referenced by the policy template.

  • The resource referenced by the policy template.

Optional arguments:

IV_DESCRIPTION TYPE /AWS1/VPSPOLICYTEMPLATEDESC /AWS1/VPSPOLICYTEMPLATEDESC

Specifies a new description to apply to the policy template.

RETURNING

OO_OUTPUT TYPE REF TO /AWS1/CL_VPSUPDPLYTMPLOUTPUT /AWS1/CL_VPSUPDPLYTMPLOUTPUT