Policy
data class PolicyArgs(val definition: Output<PolicyDefinitionArgs>? = null, val policyStoreId: Output<String>? = null) : ConvertibleToJava<PolicyArgs>
Resource for managing an AWS Verified Permissions Policy.
Example Usage
Basic Usage
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const test = new aws.verifiedpermissions.Policy("test", {
policyStoreId: testAwsVerifiedpermissionsPolicyStore.id,
definition: {
static: {
statement: "permit (principal, action == Action::\"view\", resource in Album:: \"test_album\");",
},
},
});Content copied to clipboard
import pulumi
import pulumi_aws as aws
test = aws.verifiedpermissions.Policy("test",
policy_store_id=test_aws_verifiedpermissions_policy_store["id"],
definition={
"static": {
"statement": "permit (principal, action == Action::\"view\", resource in Album:: \"test_album\");",
},
})Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var test = new Aws.VerifiedPermissions.Policy("test", new()
{
PolicyStoreId = testAwsVerifiedpermissionsPolicyStore.Id,
Definition = new Aws.VerifiedPermissions.Inputs.PolicyDefinitionArgs
{
Static = new Aws.VerifiedPermissions.Inputs.PolicyDefinitionStaticArgs
{
Statement = "permit (principal, action == Action::\"view\", resource in Album:: \"test_album\");",
},
},
});
});Content copied to clipboard
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/verifiedpermissions"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := verifiedpermissions.NewPolicy(ctx, "test", &verifiedpermissions.PolicyArgs{
PolicyStoreId: pulumi.Any(testAwsVerifiedpermissionsPolicyStore.Id),
Definition: &verifiedpermissions.PolicyDefinitionArgs{
Static: &verifiedpermissions.PolicyDefinitionStaticArgs{
Statement: pulumi.String("permit (principal, action == Action::\"view\", resource in Album:: \"test_album\");"),
},
},
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.verifiedpermissions.Policy;
import com.pulumi.aws.verifiedpermissions.PolicyArgs;
import com.pulumi.aws.verifiedpermissions.inputs.PolicyDefinitionArgs;
import com.pulumi.aws.verifiedpermissions.inputs.PolicyDefinitionStaticArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var test = new Policy("test", PolicyArgs.builder()
.policyStoreId(testAwsVerifiedpermissionsPolicyStore.id())
.definition(PolicyDefinitionArgs.builder()
.static_(PolicyDefinitionStaticArgs.builder()
.statement("permit (principal, action == Action::\"view\", resource in Album:: \"test_album\");")
.build())
.build())
.build());
}
}Content copied to clipboard
resources:
test:
type: aws:verifiedpermissions:Policy
properties:
policyStoreId: ${testAwsVerifiedpermissionsPolicyStore.id}
definition:
static:
statement: 'permit (principal, action == Action::"view", resource in Album:: "test_album");'Content copied to clipboard
Import
Using pulumi import, import Verified Permissions Policy using the policy_id,policy_store_id. For example:
$ pulumi import aws:verifiedpermissions/policy:Policy example policy-id-12345678,policy-store-id-12345678Content copied to clipboard
Constructors
Link copied to clipboard
constructor(definition: Output<PolicyDefinitionArgs>? = null, policyStoreId: Output<String>? = null)