pulumi-aws-native-kotlin/com.pulumi.awsnative.lambda.kotlin/PermissionArgs

PermissionArgs

data class PermissionArgs(val action: Output<String>? = null, val eventSourceToken: Output<String>? = null, val functionName: Output<String>? = null, val functionUrlAuthType: Output<PermissionFunctionUrlAuthType>? = null, val principal: Output<String>? = null, val principalOrgId: Output<String>? = null, val sourceAccount: Output<String>? = null, val sourceArn: Output<String>? = null) : ConvertibleToJava<PermissionArgs>

Resource Type definition for AWS::Lambda::Permission

Constructors

Link copied to clipboard
fun PermissionArgs(action: Output<String>? = null, eventSourceToken: Output<String>? = null, functionName: Output<String>? = null, functionUrlAuthType: Output<PermissionFunctionUrlAuthType>? = null, principal: Output<String>? = null, principalOrgId: Output<String>? = null, sourceAccount: Output<String>? = null, sourceArn: Output<String>? = null)

Functions

Link copied to clipboard
open override fun toJava(): PermissionArgs

Properties

Link copied to clipboard
val action: Output<String>? = null

The action that the principal can use on the function.

Link copied to clipboard
val eventSourceToken: Output<String>? = null

For Alexa Smart Home functions, a token that must be supplied by the invoker.

Link copied to clipboard
val functionName: Output<String>? = null

The name of the Lambda function, version, or alias.

Link copied to clipboard
val functionUrlAuthType: Output<PermissionFunctionUrlAuthType>? = null

The type of authentication that your function URL uses. Set to AWS_IAM if you want to restrict access to authenticated users only. Set to NONE if you want to bypass IAM authentication to create a public endpoint.

Link copied to clipboard
val principal: Output<String>? = null

The AWS service or account that invokes the function. If you specify a service, use SourceArn or SourceAccount to limit who can invoke the function through that service.

Link copied to clipboard
val principalOrgId: Output<String>? = null

The identifier for your organization in AWS Organizations. Use this to grant permissions to all the AWS accounts under this organization.

Link copied to clipboard
val sourceAccount: Output<String>? = null

For Amazon S3, the ID of the account that owns the resource. Use this together with SourceArn to ensure that the resource is owned by the specified account. It is possible for an Amazon S3 bucket to be deleted by its owner and recreated by another account.

Link copied to clipboard
val sourceArn: Output<String>? = null

For AWS services, the ARN of the AWS resource that invokes the function. For example, an Amazon S3 bucket or Amazon SNS topic.