pulumi-aws-kotlin/com.pulumi.aws.xray.kotlin/ResourcePolicyArgs

ResourcePolicyArgs

data class ResourcePolicyArgs(val bypassPolicyLockoutCheck: Output<Boolean>? = null, val policyDocument: Output<String>? = null, val policyName: Output<String>? = null, val policyRevisionId: Output<String>? = null) : ConvertibleToJava<ResourcePolicyArgs>

Resource for managing an AWS X-Ray Resource Policy.

Example Usage

Basic Usage

import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const test = new aws.xray.ResourcePolicy("test", {
    policyName: "test",
    policyDocument: "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Sid\":\"AllowXRayAccess\",\"Effect\":\"Allow\",\"Principal\":{\"AWS\":\"*\"},\"Action\":[\"xray:*\",\"xray:PutResourcePolicy\"],\"Resource\":\"*\"}]}",
    bypassPolicyLockoutCheck: true,
});
Content copied to clipboard
import pulumi
import pulumi_aws as aws
test = aws.xray.ResourcePolicy("test",
    policy_name="test",
    policy_document="{\"Version\":\"2012-10-17\",\"Statement\":[{\"Sid\":\"AllowXRayAccess\",\"Effect\":\"Allow\",\"Principal\":{\"AWS\":\"*\"},\"Action\":[\"xray:*\",\"xray:PutResourcePolicy\"],\"Resource\":\"*\"}]}",
    bypass_policy_lockout_check=True)
Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
    var test = new Aws.Xray.ResourcePolicy("test", new()
    {
        PolicyName = "test",
        PolicyDocument = "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Sid\":\"AllowXRayAccess\",\"Effect\":\"Allow\",\"Principal\":{\"AWS\":\"*\"},\"Action\":[\"xray:*\",\"xray:PutResourcePolicy\"],\"Resource\":\"*\"}]}",
        BypassPolicyLockoutCheck = true,
    });
});
Content copied to clipboard
package main
import (
	"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/xray"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := xray.NewResourcePolicy(ctx, "test", &xray.ResourcePolicyArgs{
			PolicyName:               pulumi.String("test"),
			PolicyDocument:           pulumi.String("{\"Version\":\"2012-10-17\",\"Statement\":[{\"Sid\":\"AllowXRayAccess\",\"Effect\":\"Allow\",\"Principal\":{\"AWS\":\"*\"},\"Action\":[\"xray:*\",\"xray:PutResourcePolicy\"],\"Resource\":\"*\"}]}"),
			BypassPolicyLockoutCheck: pulumi.Bool(true),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.xray.ResourcePolicy;
import com.pulumi.aws.xray.ResourcePolicyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var test = new ResourcePolicy("test", ResourcePolicyArgs.builder()
            .policyName("test")
            .policyDocument("{\"Version\":\"2012-10-17\",\"Statement\":[{\"Sid\":\"AllowXRayAccess\",\"Effect\":\"Allow\",\"Principal\":{\"AWS\":\"*\"},\"Action\":[\"xray:*\",\"xray:PutResourcePolicy\"],\"Resource\":\"*\"}]}")
            .bypassPolicyLockoutCheck(true)
            .build());
    }
}
Content copied to clipboard
resources:
  test:
    type: aws:xray:ResourcePolicy
    properties:
      policyName: test
      policyDocument: '{"Version":"2012-10-17","Statement":[{"Sid":"AllowXRayAccess","Effect":"Allow","Principal":{"AWS":"*"},"Action":["xray:*","xray:PutResourcePolicy"],"Resource":"*"}]}'
      bypassPolicyLockoutCheck: true
Content copied to clipboard

Import

Using pulumi import, import X-Ray Resource Policy using the policy_name. For example:

$ pulumi import aws:xray/resourcePolicy:ResourcePolicy example resource_policy-name
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(bypassPolicyLockoutCheck: Output<Boolean>? = null, policyDocument: Output<String>? = null, policyName: Output<String>? = null, policyRevisionId: Output<String>? = null)

Properties

Link copied to clipboard
val bypassPolicyLockoutCheck: Output<Boolean>? = null

Flag to indicate whether to bypass the resource policy lockout safety check. Setting this value to true increases the risk that the policy becomes unmanageable. Do not set this value to true indiscriminately. Use this parameter only when you include a policy in the request and you intend to prevent the principal that is making the request from making a subsequent PutResourcePolicy request. The default value is false.

Link copied to clipboard
val policyDocument: Output<String>? = null

JSON string of the resource policy or resource policy document, which can be up to 5kb in size. The following arguments are optional:

Link copied to clipboard
val policyName: Output<String>? = null

name of the resource policy. Must be unique within a specific Amazon Web Services account.

Link copied to clipboard
val policyRevisionId: Output<String>? = null

Specifies a specific policy revision, to ensure an atomic create operation. By default the resource policy is created if it does not exist, or updated with an incremented revision id. The revision id is unique to each policy in the account. If the policy revision id does not match the latest revision id, the operation will fail with an InvalidPolicyRevisionIdException exception. You can also provide a PolicyRevisionId of 0. In this case, the operation will fail with an InvalidPolicyRevisionIdException exception if a resource policy with the same name already exists.

Functions

Link copied to clipboard
open override fun toJava(): ResourcePolicyArgs