Class: Aws::DynamoDB::Types::PutResourcePolicyInput

Inherits:

Struct

• Object
• Struct
• Aws::DynamoDB::Types::PutResourcePolicyInput

Includes:

Structure

Defined in:

lib/aws-sdk-dynamodb/types.rb

Overview

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #confirm_remove_self_resource_access ⇒ Boolean

  Set this parameter to ‘true` to confirm that you want to remove your permissions to change the policy of this resource in the future.

• #expected_revision_id ⇒ String

  A string value that you can use to conditionally update your policy.

• #policy ⇒ String

  An Amazon Web Services resource-based policy document in JSON format.

• #resource_arn ⇒ String

  The Amazon Resource Name (ARN) of the DynamoDB resource to which the policy will be attached.

Instance Attribute Details

#confirm_remove_self_resource_access ⇒ Boolean

Set this parameter to ‘true` to confirm that you want to remove your permissions to change the policy of this resource in the future.

Returns:

• (Boolean)

# File 'lib/aws-sdk-dynamodb/types.rb', line 6523

class PutResourcePolicyInput < Struct.new(
  :resource_arn,
  :policy,
  :expected_revision_id,
  :confirm_remove_self_resource_access)
  SENSITIVE = []
  include Aws::Structure
end

#expected_revision_id ⇒ String

A string value that you can use to conditionally update your policy. You can provide the revision ID of your existing policy to make mutating requests against that policy.

<note markdown=“1”> When you provide an expected revision ID, if the revision ID of the existing policy on the resource doesn’t match or if there’s no policy attached to the resource, your request will be rejected with a ‘PolicyNotFoundException`.

</note>

To conditionally attach a policy when no policy exists for the resource, specify ‘NO_POLICY` for the revision ID.

Returns:

• (String)

# File 'lib/aws-sdk-dynamodb/types.rb', line 6523

class PutResourcePolicyInput < Struct.new(
  :resource_arn,
  :policy,
  :expected_revision_id,
  :confirm_remove_self_resource_access)
  SENSITIVE = []
  include Aws::Structure
end

#policy ⇒ String

An Amazon Web Services resource-based policy document in JSON format.

• The maximum size supported for a resource-based policy document is 20 KB. DynamoDB counts whitespaces when calculating the size of a policy against this limit.

• Within a resource-based policy, if the action for a DynamoDB service-linked role (SLR) to replicate data for a global table is denied, adding or deleting a replica will fail with an error.

For a full list of all considerations that apply while attaching a resource-based policy, see [Resource-based policy considerations].

[1]: docs.aws.amazon.com/amazondynamodb/latest/developerguide/rbac-considerations.html

Returns:

• (String)

# File 'lib/aws-sdk-dynamodb/types.rb', line 6523

class PutResourcePolicyInput < Struct.new(
  :resource_arn,
  :policy,
  :expected_revision_id,
  :confirm_remove_self_resource_access)
  SENSITIVE = []
  include Aws::Structure
end

#resource_arn ⇒ String

The Amazon Resource Name (ARN) of the DynamoDB resource to which the policy will be attached. The resources you can specify include tables and streams.

You can control index permissions using the base table’s policy. To specify the same permission level for your table and its indexes, you can provide both the table and index Amazon Resource Name (ARN)s in the ‘Resource` field of a given `Statement` in your policy document. Alternatively, to specify different permissions for your table, indexes, or both, you can define multiple `Statement` fields in your policy document.

Returns:

• (String)

# File 'lib/aws-sdk-dynamodb/types.rb', line 6523

class PutResourcePolicyInput < Struct.new(
  :resource_arn,
  :policy,
  :expected_revision_id,
  :confirm_remove_self_resource_access)
  SENSITIVE = []
  include Aws::Structure
end