本文属于机器翻译版本。若本译文内容与英语原文存在差异,则一律以英文原文为准。
使用 AWS CloudTrail 记录 Amazon Verified Permissions API 调用
Amazon Verifie AWS CloudTrail d Permissions 与一项服务集成,该服务在 “已验证权限” 中记录用户、角色或AWS服务所采取的操作。 CloudTrail 将所有针对已验证权限的 API 调用捕获为事件。捕获的调用包含来自 Verified Permissions 控制台的调用和对 Verified Permissions API 操作的代码调用。如果您创建跟踪,则可以允许将 CloudTrail 事件持续传输到 Amazon S3 存储桶,包括已验证权限的事件。如果您未配置跟踪,您仍然可以在 CloudTrail 控制台的 “事件历史记录” 中查看最新的事件。使用收集的信息 CloudTrail,您可以确定向已验证权限发出的请求、发出请求的 IP 地址、谁发出了请求、何时发出请求以及其他详细信息。
要了解更多信息 CloudTrail,请参阅《AWS CloudTrail用户指南》。
已验证的权限信息位于 CloudTrail
CloudTrail 在您创建账户AWS 账户时已在您的账户上启用。当活动发生在 “已验证权限” 中时,该活动会与其他AWS服务 CloudTrail 事件一起记录在事件历史记录中。您可以在 AWS 账户 中查看、搜索和下载最新事件。有关更多信息,请参阅使用事件历史记录查看 CloudTrail 事件。
要持续记录 AWS 账户中的事件(包括 Verified Permissions 的事件),请创建跟踪记录。跟踪允许 CloudTrail 将日志文件传输到 Amazon S3 存储桶。默认情况下,在使用控制台创建跟踪时,此跟踪应用于所有 AWS 区域。此跟踪记录在 AWS 分区中记录所有区域中的事件,并将日志文件传送至您指定的 Amazon S3 桶。此外,您可以配置其他AWS服务,以进一步分析和处理 CloudTrail 日志中收集的事件数据。有关更多信息,请参阅下列内容:
所有已验证的权限操作均由《Amazon 已验证权限 API 参考指南》记录 CloudTrail 并记录在案。例如,对CreateIdentitySourceDeletePolicy、和ListPolicyStores操作的调用会在 CloudTrail 日志文件中生成条目。
每个事件或日记账条目都包含有关生成请求的人员信息。身份信息有助于您确定以下内容:
-
请求是使用根用户凭证还是 AWS Identity and Access Management(IAM)用户凭证发出的。
-
请求是使用角色还是联合用户的临时安全凭证发出的。
-
请求是否由其它 AWS 服务发出。
有关更多信息,请参阅 CloudTrail userIdentity 元素。
创建跟踪或事件数据存储时,默认情况下不会记录IsAuthorized和IsAuthorizedWithToken之类的数据事件。要记录 CloudTrail 数据事件,必须明确添加要为其收集活动的支持的资源或资源类型。有关更多信息,请参阅《AWS CloudTrail 用户指南》中的数据事件。
了解 Verified Permissions 日志文件条目
跟踪是一种配置,允许将事件作为日志文件传输到您指定的 Amazon S3 存储桶。 CloudTrail 日志文件包含一个或多个日志条目。事件代表来自任何来源的单个请求,包括有关请求的操作、操作的日期和时间、请求参数等的信息。 CloudTrail 日志文件不是公共 API 调用的有序堆栈跟踪,因此它们不会按任何特定的顺序出现。
主题
注意
为了保护数据隐私,已从示例中删除了一些字段。
IsAuthorized
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::123456789012:role/ExampleRole", "accountId": "123456789012", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-11-20T22:55:03Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "IsAuthorized", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-cli/2.11.18 Python/3.11.3 Linux/5.4.241-160.348.amzn2int.x86_64 exe/x86_64.amzn.2 prompt/off command/verifiedpermissions.is-authorized", "requestParameters": { "principal": { "entityType": "PhotoFlash::User", "entityId": "alice" }, "action": { "actionType": "PhotoFlash::Action", "actionId": "ViewPhoto" }, "resource": { "entityType": "PhotoFlash::Photo", "entityId": "VacationPhoto94.jpg" }, "policyStoreId": "PSEXAMPLEabcdefg111111" }, "responseElements": null, "additionalEventData": { "decision": "ALLOW" }, "requestID": "346c4b6a-d12f-46b6-bc06-6c857bd3b28e", "eventID": "8a4fed32-9605-45dd-a09a-5ebbf0715bbc", "readOnly": true, "resources": [ { "accountId": "123456789012", "type": "AWS::VerifiedPermissions::PolicyStore", "ARN": "arn:aws:verifiedpermissions::123456789012:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": false, "recipientAccountId": "123456789012", "eventCategory": "Data" }
BatchIsAuthorized
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::123456789012:role/ExampleRole", "accountId": "123456789012", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-11-20T23:02:33Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "BatchIsAuthorized", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-cli/2.11.18 Python/3.11.3 Linux/5.4.241-160.348.amzn2int.x86_64 exe/x86_64.amzn.2 prompt/off command/verifiedpermissions.is-authorized", "requestParameters": { "requests": [ { "principal": { "entityType": "PhotoFlash::User", "entityId": "alice" }, "action": { "actionType": "PhotoFlash::Action", "actionId": "ViewPhoto" }, "resource": { "entityType": "PhotoFlash::Photo", "entityId": "VacationPhoto94.jpg" } }, { "principal": { "entityType": "PhotoFlash::User", "entityId": "annalisa" }, "action": { "actionType": "PhotoFlash::Action", "actionId": "DeletePhoto" }, "resource": { "entityType": "PhotoFlash::Photo", "entityId": "VacationPhoto94.jpg" } } ], "policyStoreId": "PSEXAMPLEabcdefg111111" }, "responseElements": null, "additionalEventData": { "results": [ { "request": { "principal": { "entityType": "PhotoFlash::User", "entityId": "alice" }, "action": { "actionType": "PhotoFlash::Action", "actionId": "ViewPhoto" }, "resource": { "entityType": "PhotoFlash::Photo", "entityId": "VacationPhoto94.jpg" } }, "decision": "ALLOW" }, { "request": { "principal": { "entityType": "PhotoFlash::User", "entityId": "annalisa" }, "action": { "actionType": "PhotoFlash::Action", "actionId": "DeletePhoto" }, "resource": { "entityType": "PhotoFlash::Photo", "entityId": "VacationPhoto94.jpg" } }, "decision": "DENY" } ] }, "requestID": "a8a5caf3-78bd-4139-924c-7101a8339c3b", "eventID": "7d81232f-f3d1-4102-b9c9-15157c70487b", "readOnly": true, "resources": [ { "accountId": "123456789012", "type": "AWS::VerifiedPermissions::PolicyStore", "ARN": "arn:aws:verifiedpermissions::123456789012:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": false, "recipientAccountId": "123456789012", "eventCategory": "Data" }
CreatePolicyStore
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::123456789012:role/ExampleRole", "accountId": "123456789012", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-22T07:43:33Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "CreatePolicyStore", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "clientToken": "a1b2c3d4-e5f6-a1b2-c3d4-TOKEN1111111", "validationSettings": { "mode": "OFF" } }, "responseElements": { "policyStoreId": "PSEXAMPLEabcdefg111111", "arn": "arn:aws:verifiedpermissions::123456789012:policy-store/PSEXAMPLEabcdefg111111", "createdDate": "2023-05-22T07:43:33.962794Z", "lastUpdatedDate": "2023-05-22T07:43:33.962794Z" }, "requestID": "1dd9360e-e2dc-4554-ab65-b46d2cf45c29", "eventID": "b6edaeee-3584-4b4e-a48e-311de46d7532", "readOnly": false, "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "123456789012", "eventCategory": "Management" }
ListPolicyStores
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::123456789012:role/ExampleRole", "accountId": "123456789012", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-22T07:43:33Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "ListPolicyStores", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "maxResults": 10 }, "responseElements": null, "requestID": "5ef238db-9f87-4f37-ab7b-6cf0ba5df891", "eventID": "b0430fb0-12c3-4cca-8d05-84c37f99c51f", "readOnly": true, "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "123456789012", "eventCategory": "Management" }
DeletePolicyStore
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::123456789012:role/ExampleRole", "accountId": "123456789012", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-22T07:43:32Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "DeletePolicyStore", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "policyStoreId": "PSEXAMPLEabcdefg111111" }, "responseElements": null, "requestID": "1368e8f9-130d-45a5-b96d-99097ca3077f", "eventID": "ac482022-b2f6-4069-879a-dd509123d8d7", "readOnly": false, "resources": [ { "accountId": "123456789012", "type": "AWS::VerifiedPermissions::PolicyStore", "arn": "arn:aws:verifiedpermissions::123456789012:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "123456789012", "eventCategory": "Management" }
PutSchema
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::123456789012:role/ExampleRole", "accountId": "123456789012", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-16T12:58:57Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "PutSchema", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "policyStoreId": "PSEXAMPLEabcdefg111111" }, "responseElements": { "lastUpdatedDate": "2023-05-16T12:58:57.513442Z", "namespaces": "[some_namespace]", "createdDate": "2023-05-16T12:58:57.513442Z", "policyStoreId": "PSEXAMPLEabcdefg111111", }, "requestID": "631fbfa1-a959-4988-b9f8-f1a43ff5df0d", "eventID": "7cd0c677-733f-4602-bc03-248bae581fe5", "readOnly": false, "resources": [ { "accountId": "123456789012", "type": "AWS::VerifiedPermissions::PolicyStore", "ARN": "arn:aws:verifiedpermissions::123456789012:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "123456789012", "eventCategory": "Management" }
GetSchema
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::222222222222:role/ExampleRole", "accountId": "222222222222", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-25T01:12:07Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "GetSchema", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "policyStoreId": "PSEXAMPLEabcdefg111111" }, "responseElements": null, "requestID": "a1f4d4cd-6156-480a-a9b8-e85a71dcc7c2", "eventID": "0b3b8e3d-155c-46f3-a303-7e9e8b5f606b", "readOnly": true, "resources": [ { "accountId": "222222222222", "type": "AWS::VerifiedPermissions::PolicyStore", "ARN": "arn:aws:verifiedpermissions::222222222222:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "222222222222", "eventCategory": "Management" }
CreatePolicyTemplate
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::123456789012:role/ExampleRole", "accountId": "123456789012", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-16T13:00:24Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "CreatePolicyTemplate", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "policyStoreId": "PSEXAMPLEabcdefg111111" }, "responseElements": { "lastUpdatedDate": "2023-05-16T13:00:23.444404Z", "createdDate": "2023-05-16T13:00:23.444404Z", "policyTemplateId": "PTEXAMPLEabcdefg111111", "policyStoreId": "PSEXAMPLEabcdefg111111", }, "requestID": "73953bda-af5e-4854-afe2-7660b492a6d0", "eventID": "7425de77-ed84-4f91-a4b9-b669181cc57b", "readOnly": false, "resources": [ { "accountId": "123456789012", "type": "AWS::VerifiedPermissions::PolicyStore", "arn": "arn:aws:verifiedpermissions::123456789012:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "123456789012", "eventCategory": "Management" }
DeletePolicyTemplate
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::222222222222:role/ExampleRole", "accountId": "222222222222", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-25T01:11:48Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "DeletePolicyTemplate", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "policyStoreId": "PSEXAMPLEabcdefg111111", "policyTemplateId": "PTEXAMPLEabcdefg111111" }, "responseElements": null, "requestID": "5ff0f22e-6bbd-4b85-a400-4fb74aa05dc6", "eventID": "c0e0c689-369e-4e95-a9cd-8de113d47ffa", "readOnly": false, "resources": [ { "accountId": "222222222222", "type": "AWS::VerifiedPermissions::PolicyStore", "ARN": "arn:aws:verifiedpermissions::222222222222:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "222222222222", "eventCategory": "Management" }
CreatePolicy
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::123456789012:role/ExampleRole", "accountId": "123456789012", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-22T07:42:30Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "CreatePolicy", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "clientToken": "a1b2c3d4-e5f6-a1b2-c3d4-TOKEN1111111", "policyStoreId": "PSEXAMPLEabcdefg111111" }, "responseElements": { "policyStoreId": "PSEXAMPLEabcdefg111111", "policyId": "SPEXAMPLEabcdefg111111", "policyType": "STATIC", "principal": { "entityType": "PhotoApp::Role", "entityId": "PhotoJudge" }, "resource": { "entityType": "PhotoApp::Application", "entityId": "PhotoApp" }, "lastUpdatedDate": "2023-05-22T07:42:30.70852Z", "createdDate": "2023-05-22T07:42:30.70852Z" }, "requestID": "93ffa151-3841-4960-9af6-30a7f817ef93", "eventID": "30ab405f-3dff-43ff-8af9-f513829e8bde", "readOnly": false, "resources": [ { "accountId": "123456789012", "type": "AWS::VerifiedPermissions::PolicyStore", "arn": "arn:aws:verifiedpermissions::123456789012:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "123456789012", "eventCategory": "Management" }
GetPolicy
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::123456789012:role/ExampleRole", "accountId": "123456789012", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-22T07:43:29Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "GetPolicy", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "policyStoreId": "PSEXAMPLEabcdefg111111", "policyId": "SPEXAMPLEabcdefg111111" }, "responseElements": null, "requestID": "23022a9e-2f5c-4dac-b653-59e6987f2fac", "eventID": "9b4d5037-bafa-4d57-b197-f46af83fc684", "readOnly": true, "resources": [ { "accountId": "123456789012", "type": "AWS::VerifiedPermissions::PolicyStore", "arn": "arn:aws:verifiedpermissions::123456789012:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "123456789012", "eventCategory": "Management" }
CreateIdentitySource
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::333333333333:role/ExampleRole", "accountId": "333333333333", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-19T01:27:44Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "CreateIdentitySource", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "clientToken": "a1b2c3d4-e5f6-a1b2-c3d4-TOKEN1111111", "configuration": { "cognitoUserPoolConfiguration": { "userPoolArn": "arn:aws:cognito-idp:000011112222:us-east-1:userpool/us-east-1_aaaaaaaaaa" } }, "policyStoreId": "PSEXAMPLEabcdefg111111", "principalEntityType": "User" }, "responseElements": { "createdDate": "2023-07-14T15:05:01.599534Z", "identitySourceId": "ISEXAMPLEabcdefg111111", "lastUpdatedDate": "2023-07-14T15:05:01.599534Z", "policyStoreId": "PSEXAMPLEabcdefg111111" }, "requestID": "afcc1e67-d5a4-4a9b-a74c-cdc2f719391c", "eventID": "f13a41dc-4496-4517-aeb8-a389eb379860", "readOnly": false, "resources": [ { "accountId": "333333333333", "type": "AWS::VerifiedPermissions::PolicyStore", "arn": "arn:aws:verifiedpermissions::333333333333:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "333333333333", "eventCategory": "Management" }
GetIdentitySource
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::333333333333:role/ExampleRole", "accountId": "333333333333", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-24T19:55:31Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "GetIdentitySource", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "identitySourceId": "ISEXAMPLEabcdefg111111", "policyStoreId": "PSEXAMPLEabcdefg111111" }, "responseElements": null, "requestID": "7a6ecf79-c489-4516-bb57-9ded970279c9", "eventID": "fa158e6c-f705-4a15-a731-2cdb4bd9a427", "readOnly": true, "resources": [ { "accountId": "333333333333", "type": "AWS::VerifiedPermissions::PolicyStore", "arn": "arn:aws:verifiedpermissions::333333333333:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "333333333333", "eventCategory": "Management" }
ListIdentitySources
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::333333333333:role/ExampleRole", "accountId": "333333333333", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-24T20:05:32Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "ListIdentitySources", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "policyStoreId": "PSEXAMPLEabcdefg111111" }, "responseElements": null, "requestID": "95d2a7bc-7e9a-4efe-918e-97e558aacaf7", "eventID": "d3dc53f6-1432-40c8-9d1d-b9eeb75c6193", "readOnly": true, "resources": [ { "accountId": "333333333333", "type": "AWS::VerifiedPermissions::PolicyStore", "arn": "arn:aws:verifiedpermissions::333333333333:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "333333333333", "eventCategory": "Management" }
DeleteIdentitySource
{ "eventVersion": "1.08", "userIdentity": { "type": "AssumedRole", "principalId": "EXAMPLE_PRINCIPAL_ID", "arn": "arn:aws:iam::333333333333:role/ExampleRole", "accountId": "333333333333", "accessKeyId": "AKIAIOSFODNN7EXAMPLE" }, "eventTime": "2023-05-24T19:55:32Z", "eventSource": "verifiedpermissions.amazonaws.com", "eventName": "DeleteIdentitySource", "awsRegion": "us-west-2", "sourceIPAddress": "203.0.113.0", "userAgent": "aws-sdk-rust/0.55.2 os/linux lang/rust/1.69.0", "requestParameters": { "identitySourceId": "ISEXAMPLEabcdefg111111", "policyStoreId": "PSEXAMPLEabcdefg111111" }, "responseElements": null, "requestID": "d554d964-0957-4834-a421-c417bd293086", "eventID": "fe4d867c-88ee-4e5d-8d30-2fbc208c9260", "readOnly": false, "resources": [ { "accountId": "333333333333", "type": "AWS::VerifiedPermissions::PolicyStore", "arn": "arn:aws:verifiedpermissions::333333333333:policy-store/PSEXAMPLEabcdefg111111" } ], "eventType": "AwsApiCall", "managementEvent": true, "recipientAccountId": "333333333333", "eventCategory": "Management" }
