AWS Step Functions
For a state machine that calls StartExecution
for a single nested
workflow execution, use an IAM policy that limits permissions to that state machine.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"states:StartExecution"
],
"Resource": [
"arn:aws:states:[[region]]
:[[accountId]]
:stateMachine:[[stateMachineName]]
"
]
}
]
}
For more information, see the following:
For more information about nested workflow executions, see Start Workflow Executions from a Task State.