Amazon Cloud Directory API 权限:API 权限:操作、资源和条件参考 - Amazon Cloud Directory

本文属于机器翻译版本。若本译文内容与英语原文存在差异,则一律以英文原文为准。

Amazon Cloud Directory API 权限:API 权限:操作、资源和条件参考

在设置访问控制和编写您可挂载到 IAM 身份的权限策略 (基于身份的策略) 时,可以使用下表作为参考。该表列出的每个 Amazon Cloud Directory API 操作、您可授予操作执行权限的对应操作以及您可为其授予权限的 AWS 资源。您在策略的 Action 字段中指定操作,并在策略的 Resource 字段中指定资源值。

您可以在 Amazon Cloud Directory 策略中使用 AWS 范围的条件键来表达条件。有关 AWS 范围内的键的完整列表,请参阅可用的全局条件键中的IAM 用户指南

注意

要指定操作,请在 API 操作名称之前使用 clouddirectory: 前缀 (例如,clouddirectory:CreateDirectory)。

Amazon Cloud Directory API 和所需操作权限
Amazon Cloud Directory API 操作 所需权限(API 操作) 资源
AddFacetToObject

clouddirectory:AddFacetToObject

 *
ApplySchema clouddirectory:ApplySchema *
AttachObject clouddirectory:AttachObject *

AttachPolicy

clouddirectory:AttachPolicy

*

AttachToIndex

clouddirectory:AttachToIndex

*

AttachTypedLink

clouddirectory:AttachTypedLink

*

BatchRead

clouddirectory:BatchRead

*

BatchWrite

clouddirectory:BatchWrite

*

CreateDirectory

clouddirectory:CreateDirectory

*

CreateFacet

clouddirectory:CreateFacet

*

CreateIndex

clouddirectory:CreateIndex

*

CreateObject

clouddirectory:CreateObject

*

CreateSchema

clouddirectory:CreateSchema

*

CreateTypedLinkFacet

clouddirectory:CreateTypedLinkFacet

*

DeleteDirectory

clouddirectory:DeleteDirectory

*

DeleteFacet

clouddirectory:DeleteFacet

*

DeleteObject

clouddirectory:DeleteObject

*

DeleteSchema

clouddirectory:DeleteSchema

*

DeleteTypedLinkFacet

clouddirectory:DeleteTypedLinkFacet

*

DetachFromIndex

clouddirectory:DetachFromIndex

*

DetachObject

clouddirectory:DetachObject

*

DetachPolicy

clouddirectory:DetachPolicy

*

DetachedTypedLink

clouddirectory:DetachTypedLink

*

DisableDirectory

clouddirectory:DisableDirectory

*

EnableDirectory

clouddirectory:EnableDirectory

*

GetAppliedSchemaVersion

clouddirectory:GetAppliedSchemaVersion

*

GetDirectory

clouddirectory:GetDirectory

*

GetFacet

clouddirectory:GetFacet

*

GetObjectAttributes

clouddirectory:GetObjectAttributes

*

GetObjectInformation

clouddirectory:GetObjectInformation

*

GetSchemaAsJson

clouddirectory:GetSchemaAsJson

*

GetTypedLinkFacetInformation

clouddirectory:GetTypedLinkFacetInformation

*

ListAppliedSchemaArns

clouddirectory:ListAppliedSchemaArns

*

ListAttachedIndices

clouddirectory:ListAttachedIndices

*

ListDevelopmentSchemaArns

clouddirectory:ListDevelopmentSchemaArns

*

ListDirectories

clouddirectory:ListDirectories

*

ListFacetAttributes

clouddirectory:ListFacetAttributes

*

ListFacetNames

clouddirectory:ListFacetNames

*

ListIncomingTypedLinks

clouddirectory:ListIncomingTypedLinks

*

ListIndex

clouddirectory:ListIndex

*

ListObjectAttributes

clouddirectory:ListObjectAttributes

*

ListObjectChildren

clouddirectory:ListObjectChildren

*

ListObjectParentPaths

clouddirectory:ListObjectParentPaths

*

ListObjectParents

clouddirectory:ListObjectParents

*

ListObjectPolicies

clouddirectory:ListObjectPolicies

*

ListOutgoingTypedLinks

clouddirectory:ListOutgoingTypedLinks

*

ListPolicyAttachments

clouddirectory:ListPolicyAttachments

*

ListPublishedSchemaArns

clouddirectory:ListPublishedSchemaArns

*

ListTagsForResource

clouddirectory:ListTagsForResource

*

ListTypedLinkFacetAttributes

clouddirectory:ListTypedLinkFacetAttributes

*

ListTypedLinkFacetNames

clouddirectory:ListTypedLinkFacetNames

*

LookupPolicy

clouddirectory:LookupPolicy

*

PublishSchema

clouddirectory:PublishSchema

*

PutSchemaFromJson

clouddirectory:PutSchemaFromJson

*

RemoveFacetFromObject

clouddirectory:RemoveFacetFromObject

*

TagResource

clouddirectory:TagResource

*

UntagResource

clouddirectory:UntagResource

*

UpdateFacet

clouddirectory:UpdateFacet

*

UpdateObjectAttributes

clouddirectory:UpdateObjectAttributes

*

UpdateSchema

clouddirectory:UpdateSchema

*

UpdateTypedLinkFacet

clouddirectory:UpdateTypedLinkFacet

*

UpgradeAppliedSchema

clouddirectory:UpgradeAppliedSchema

*

UpgradePublishedSchema

clouddirectory:UpgradePublishedSchema

*