Code Signing for AWS IoT
Developer Guide

Inline Policies

Inline policies are policies that an administrator creates and manages and embeds directly into a single principal (user, group, or role). The following policy examples show how to grant permissions to perform ACM actions. For more information about attaching inline policies, see Working with Inline Policies in the IAM User Guide. You can use the AWS Management Console, the AWS Command Line Interface (AWS CLI), or the IAM API to create and embed inline policies.

Start a Signing Job

The following policy allows a principal to start a code signing job. For more information, see StartSigningJob.

{ "Version": "2012-10-17", "Statement": [{ "Effect": "Allow", "Action": "signer:StartSigningJob", "Resource": "*" }] }

Describe a Signing Job.

The following policy allows a principal to describe a code signing job. For more information, see DescribeSigningJob.

{ "Version": "2012-10-17", "Statement": { "Effect": "Allow", "Action": "signer:DescribeSigningJob", "Resource": "*" } }

List Signing Jobs

The following policy allows a principal to list information about all code signing jobs. For more information, see ListSigningJobs.

{ "Version": "2012-10-17", "Statement": { "Effect": "Allow", "Action": "signer:ListSigningJobs", "Resource": "*" } }

Full Access

The following policy allows a principal to perform any code signing action.

{ "Version": "2012-10-17", "Statement": [{ "Effect": "Allow", "Action": "signer:*", "Resource": "*" }] }