pulumi-aws-kotlin/com.pulumi.aws.ec2.kotlin/VpcEndpointPolicyArgs

VpcEndpointPolicyArgs

data class VpcEndpointPolicyArgs(val policy: Output<String>? = null, val vpcEndpointId: Output<String>? = null) : ConvertibleToJava<VpcEndpointPolicyArgs>

Provides a VPC Endpoint Policy resource.

Example Usage

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.ec2.Ec2Functions;
import com.pulumi.aws.ec2.inputs.GetVpcEndpointServiceArgs;
import com.pulumi.aws.ec2.Vpc;
import com.pulumi.aws.ec2.VpcArgs;
import com.pulumi.aws.ec2.VpcEndpoint;
import com.pulumi.aws.ec2.VpcEndpointArgs;
import com.pulumi.aws.ec2.VpcEndpointPolicy;
import com.pulumi.aws.ec2.VpcEndpointPolicyArgs;
import static com.pulumi.codegen.internal.Serialization.*;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        final var exampleVpcEndpointService = Ec2Functions.getVpcEndpointService(GetVpcEndpointServiceArgs.builder()
            .service("dynamodb")
            .build());
        var exampleVpc = new Vpc("exampleVpc", VpcArgs.builder()
            .cidrBlock("10.0.0.0/16")
            .build());
        var exampleVpcEndpoint = new VpcEndpoint("exampleVpcEndpoint", VpcEndpointArgs.builder()
            .serviceName(exampleVpcEndpointService.applyValue(getVpcEndpointServiceResult -> getVpcEndpointServiceResult.serviceName()))
            .vpcId(exampleVpc.id())
            .build());
        var exampleVpcEndpointPolicy = new VpcEndpointPolicy("exampleVpcEndpointPolicy", VpcEndpointPolicyArgs.builder()
            .vpcEndpointId(exampleVpcEndpoint.id())
            .policy(serializeJson(
                jsonObject(
                    jsonProperty("Version", "2012-10-17"),
                    jsonProperty("Statement", jsonArray(jsonObject(
                        jsonProperty("Sid", "AllowAll"),
                        jsonProperty("Effect", "Allow"),
                        jsonProperty("Principal", jsonObject(
                            jsonProperty("AWS", "*")
                        )),
                        jsonProperty("Action", jsonArray("dynamodb:*")),
                        jsonProperty("Resource", "*")
                    )))
                )))
            .build());
    }
}
Content copied to clipboard

Import

VPC Endpoint Policies can be imported using the id, e.g.

$ pulumi import aws:ec2/vpcEndpointPolicy:VpcEndpointPolicy example vpce-3ecf2a57
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(policy: Output<String>? = null, vpcEndpointId: Output<String>? = null)

Properties

Link copied to clipboard
val policy: Output<String>? = null

A policy to attach to the endpoint that controls access to the service. Defaults to full access. All Gateway and some Interface endpoints support policies - see the relevant AWS documentation for more details.

Link copied to clipboard
val vpcEndpointId: Output<String>? = null

The VPC Endpoint ID.

Functions

Link copied to clipboard
open override fun toJava(): VpcEndpointPolicyArgs