pulumi-aws-kotlin/com.pulumi.aws.iam.kotlin.outputs/GetPrincipalPolicySimulationResult

GetPrincipalPolicySimulationResult

data class GetPrincipalPolicySimulationResult(val actionName: String, val allowed: Boolean, val decision: String, val decisionDetails: Map<String, String>, val matchedStatements: List<GetPrincipalPolicySimulationResultMatchedStatement>, val missingContextKeys: List<String>, val resourceArn: String)

Constructors

Link copied to clipboard
constructor(actionName: String, allowed: Boolean, decision: String, decisionDetails: Map<String, String>, matchedStatements: List<GetPrincipalPolicySimulationResultMatchedStatement>, missingContextKeys: List<String>, resourceArn: String)

Types

Link copied to clipboard
object Companion

Properties

Link copied to clipboard
val actionName: String

The name of the single IAM action used for this particular request.

Link copied to clipboard
val allowed: Boolean

true if decision is "allowed", and false otherwise.

Link copied to clipboard
val decision: String

The raw decision determined from all of the policies in scope; either "allowed", "explicitDeny", or "implicitDeny".

Link copied to clipboard
val decisionDetails: Map<String, String>

A map of arbitrary metadata entries returned by the policy simulator for this request.

Link copied to clipboard
val matchedStatements: List<GetPrincipalPolicySimulationResultMatchedStatement>

A nested set of objects describing which policies contained statements that were relevant to this simulation request. Each object has attributes source_policy_id and source_policy_type to identify one of the policies.

Link copied to clipboard
val missingContextKeys: List<String>

A set of context keys (or condition keys) that were needed by some of the policies contributing to this result but not specified using a context block in the configuration. Missing or incorrect context keys will typically cause a simulated request to be disallowed.

Link copied to clipboard
val resourceArn: String

ARN of the resource that was used for this particular request. When you specify multiple actions and multiple resource ARNs, that causes a separate policy request for each combination of unique action and resource.