/AWS1/CL_VPS=>UPDATEPOLICYTEMPLATE()
¶
About UpdatePolicyTemplate¶
Updates the specified policy template. You can update only the description and the some elements of the policyBody.
Changes you make to the policy template content are immediately (within the constraints of eventual consistency) reflected in authorization decisions that involve all template-linked policies instantiated from this template.
Verified Permissions is eventually consistent . It can take a few seconds for a new or changed element to propagate through the service and be visible in the results of other Verified Permissions operations.
Method Signature¶
IMPORTING¶
Required arguments:¶
IV_POLICYSTOREID
TYPE /AWS1/VPSPOLICYSTOREID
/AWS1/VPSPOLICYSTOREID
¶
Specifies the ID of the policy store that contains the policy template that you want to update.
IV_POLICYTEMPLATEID
TYPE /AWS1/VPSPOLICYTEMPLATEID
/AWS1/VPSPOLICYTEMPLATEID
¶
Specifies the ID of the policy template that you want to update.
IV_STATEMENT
TYPE /AWS1/VPSPOLICYSTATEMENT
/AWS1/VPSPOLICYSTATEMENT
¶
Specifies new statement content written in Cedar policy language to replace the current body of the policy template.
You can change only the following elements of the policy body:
The
action
referenced by the policy template.Any conditional clauses, such as
when
orunless
clauses.You can't change the following elements:
The effect (
permit
orforbid
) of the policy template.The
principal
referenced by the policy template.The
resource
referenced by the policy template.
Optional arguments:¶
IV_DESCRIPTION
TYPE /AWS1/VPSPOLICYTEMPLATEDESC
/AWS1/VPSPOLICYTEMPLATEDESC
¶
Specifies a new description to apply to the policy template.