Amazon Verified Permissions policy stores - Amazon Verified Permissions

Amazon Verified Permissions policy stores

A policy store is a container for policies and policy templates. Each policy store contains a schema that is used to validate policies added to the policy store. We recommend creating one policy store per application, or one policy store per tenant for multi-tenant applications. You must specify a policy store when making an authorization request.

We recommend using namespaces to Cedar entities in your policy stores to prevent ambiguity. A namespace is a string prefix for a type, separated by a pair of colons (::) as a delimiter. Verified Permissions supports one namespace per policy store. For more information, see Namespaces in the Cedar policy language Reference Guide.