Resource
data class ResourcePolicyArgs(val enableHybrid: Output<String>? = null, val policy: Output<String>? = null) : ConvertibleToJava<ResourcePolicyArgs>
Provides a Glue resource policy. Only one can exist per region.
Example Usage
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.AwsFunctions;
import com.pulumi.aws.inputs.GetRegionArgs;
import com.pulumi.aws.iam.IamFunctions;
import com.pulumi.aws.iam.inputs.GetPolicyDocumentArgs;
import com.pulumi.aws.glue.ResourcePolicy;
import com.pulumi.aws.glue.ResourcePolicyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var currentCallerIdentity = AwsFunctions.getCallerIdentity();
final var currentPartition = AwsFunctions.getPartition();
final var currentRegion = AwsFunctions.getRegion();
final var glue-example-policy = IamFunctions.getPolicyDocument(GetPolicyDocumentArgs.builder()
.statements(GetPolicyDocumentStatementArgs.builder()
.actions("glue:CreateTable")
.resources(String.format("arn:%s:glue:%s:%s:*", currentPartition.applyValue(getPartitionResult -> getPartitionResult.partition()),currentRegion.applyValue(getRegionResult -> getRegionResult.name()),currentCallerIdentity.applyValue(getCallerIdentityResult -> getCallerIdentityResult.accountId())))
.principals(GetPolicyDocumentStatementPrincipalArgs.builder()
.identifiers("*")
.type("AWS")
.build())
.build())
.build());
var example = new ResourcePolicy("example", ResourcePolicyArgs.builder()
.policy(glue_example_policy.json())
.build());
}
}Content copied to clipboard
Import
Glue Resource Policy can be imported using the account ID
$ pulumi import aws:glue/resourcePolicy:ResourcePolicy Test 12356789012Content copied to clipboard