Sink
Resource for managing an AWS CloudWatch Observability Access Manager Sink Policy.
Example Usage
Basic Usage
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.oam.Sink;
import com.pulumi.aws.oam.SinkPolicy;
import com.pulumi.aws.oam.SinkPolicyArgs;
import static com.pulumi.codegen.internal.Serialization.*;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var exampleSink = new Sink("exampleSink");
var exampleSinkPolicy = new SinkPolicy("exampleSinkPolicy", SinkPolicyArgs.builder()
.sinkIdentifier(exampleSink.id())
.policy(serializeJson(
jsonObject(
jsonProperty("Version", "2012-10-17"),
jsonProperty("Statement", jsonArray(jsonObject(
jsonProperty("Action", jsonArray(
"oam:CreateLink",
"oam:UpdateLink"
)),
jsonProperty("Effect", "Allow"),
jsonProperty("Resource", "*"),
jsonProperty("Principal", jsonObject(
jsonProperty("AWS", jsonArray(
"1111111111111",
"222222222222"
))
)),
jsonProperty("Condition", jsonObject(
jsonProperty("ForAllValues:StringEquals", jsonObject(
jsonProperty("oam:ResourceTypes", jsonArray(
"AWS::CloudWatch::Metric",
"AWS::Logs::LogGroup"
))
))
))
)))
)))
.build());
}
}Content copied to clipboard
Import
CloudWatch Observability Access Manager Sink Policy can be imported using the sink_identifier, e.g.,
$ pulumi import aws:oam/sinkPolicy:SinkPolicy example arn:aws:oam:us-west-2:123456789012:sink/sink-idContent copied to clipboard