Class: Aws::IAM::RolePolicy

Inherits:

Object

• Object
• Aws::IAM::RolePolicy

Extended by:

Deprecations

Defined in:

lib/aws-sdk-iam/role_policy.rb

Defined Under Namespace

Classes: Collection

Read-Only Attributes

• #name ⇒ String (also: #policy_name)
• #policy_document ⇒ String

  The policy document.

• #role_name ⇒ String

Actions

• #delete(options = {}) ⇒ EmptyStructure
• #put(options = {}) ⇒ EmptyStructure

Associations

• #identifiers ⇒ Object deprecated private Deprecated.
• #role ⇒ Role

Instance Method Summary

• #client ⇒ Client
• #data ⇒ Types::GetRolePolicyResponse

  Returns the data for this RolePolicy.

• #data_loaded? ⇒ Boolean

  Returns ‘true` if this resource is loaded.

• #initialize(*args) ⇒ RolePolicy constructor

  A new instance of RolePolicy.

• #load ⇒ self (also: #reload)

  Loads, or reloads #data for the current RolePolicy.

• #wait_until(options = {}) {|resource| ... } ⇒ Resource deprecated Deprecated.

  Use [Aws::IAM::Client] #wait_until instead

Constructor Details

#initialize(role_name, name, options = {}) ⇒ RolePolicy #initialize(options = {}) ⇒ RolePolicy

Returns a new instance of RolePolicy.

Overloads:

• #initialize(role_name, name, options = {}) ⇒ RolePolicy

  Parameters:

  • role_name (String)
  • name (String)

  Options Hash (options):

  • :client (Client)
• #initialize(options = {}) ⇒ RolePolicy

  Options Hash (options):

  • :role_name (required, String)
  • :name (required, String)
  • :client (Client)

# File 'lib/aws-sdk-iam/role_policy.rb', line 24

def initialize(*args)
  options = Hash === args.last ? args.pop.dup : {}
  @role_name = extract_role_name(args, options)
  @name = extract_name(args, options)
  @data = options.delete(:data)
  @client = options.delete(:client) || Client.new(options)
  @waiter_block_warned = false
end

Instance Method Details

#client ⇒ Client

Returns:

• (Client)

# File 'lib/aws-sdk-iam/role_policy.rb', line 60

def client
  @client
end

#data ⇒ Types::GetRolePolicyResponse

Returns the data for this Aws::IAM::RolePolicy. Calls Client#get_role_policy if #data_loaded? is ‘false`.

Returns:

• (Types::GetRolePolicyResponse) —

  Returns the data for this Aws::IAM::RolePolicy. Calls Client#get_role_policy if #data_loaded? is ‘false`.

# File 'lib/aws-sdk-iam/role_policy.rb', line 85

def data
  load unless @data
  @data
end

#data_loaded? ⇒ Boolean

Returns ‘true` if this resource is loaded. Accessing attributes or #data on an unloaded resource will trigger a call to #load.

Returns:

• (Boolean) —

  Returns ‘true` if this resource is loaded. Accessing attributes or #data on an unloaded resource will trigger a call to #load.

# File 'lib/aws-sdk-iam/role_policy.rb', line 93

def data_loaded?
  !!@data
end

#delete(options = {}) ⇒ EmptyStructure

Examples:

Request syntax with placeholder values

role_policy.delete()

Parameters:

• options (Hash) (defaults to: {}) —

  ({})

Returns:

• (EmptyStructure)

# File 'lib/aws-sdk-iam/role_policy.rb', line 203

def delete(options = {})
  options = options.merge(
    role_name: @role_name,
    policy_name: @name
  )
  resp = Aws::Plugins::UserAgent.feature('resource') do
    @client.delete_role_policy(options)
  end
  resp.data
end

#identifiers ⇒ Object

This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.

Deprecated.

# File 'lib/aws-sdk-iam/role_policy.rb', line 267

def identifiers
  {
    role_name: @role_name,
    name: @name
  }
end

#load ⇒ self Also known as: reload

Loads, or reloads #data for the current Aws::IAM::RolePolicy. Returns ‘self` making it possible to chain methods.

role_policy.reload.data

Returns:

• (self)

# File 'lib/aws-sdk-iam/role_policy.rb', line 70

def load
  resp = Aws::Plugins::UserAgent.feature('resource') do
    @client.get_role_policy(
    role_name: @role_name,
    policy_name: @name
  )
  end
  @data = resp.data
  self
end

#name ⇒ String Also known as: policy_name

Returns:

• (String)

# File 'lib/aws-sdk-iam/role_policy.rb', line 41

def name
  @name
end

#policy_document ⇒ String

The policy document.

IAM stores policies in JSON format. However, resources that were created using CloudFormation templates can be formatted in YAML. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.

Returns:

• (String)

# File 'lib/aws-sdk-iam/role_policy.rb', line 53

def policy_document
  data[:policy_document]
end

#put(options = {}) ⇒ EmptyStructure

Examples:

Request syntax with placeholder values

role_policy.put({
  policy_document: "policyDocumentType", # required
})

Parameters:

• options (Hash) (defaults to: {}) —

  ({})

Options Hash (options):

• :policy_document (required, String) —

  The policy document.

  You must provide policies in JSON format in IAM. However, for CloudFormation templates formatted in YAML, you can provide the policy in JSON or YAML format. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.

  The [regex pattern] used to validate this parameter is a string of characters consisting of the following:

  • Any printable ASCII character ranging from the space character (‘u0020`) through the end of the ASCII character range

  • The printable characters in the Basic Latin and Latin-1 Supplement character set (through ‘u00FF`)

  • The special characters tab (‘u0009`), line feed (`u000A`), and carriage return (`u000D`)

  [1]: wikipedia.org/wiki/regex

Returns:

• (EmptyStructure)

# File 'lib/aws-sdk-iam/role_policy.rb', line 244

def put(options = {})
  options = options.merge(
    role_name: @role_name,
    policy_name: @name
  )
  resp = Aws::Plugins::UserAgent.feature('resource') do
    @client.put_role_policy(options)
  end
  resp.data
end

#role ⇒ Role

Returns:

• (Role)

# File 'lib/aws-sdk-iam/role_policy.rb', line 258

def role
  Role.new(
    name: @role_name,
    client: @client
  )
end

#role_name ⇒ String

Returns:

• (String)

# File 'lib/aws-sdk-iam/role_policy.rb', line 36

def role_name
  @role_name
end

#wait_until(options = {}) {|resource| ... } ⇒ Resource

Deprecated.

Use [Aws::IAM::Client] #wait_until instead

Note:

The waiting operation is performed on a copy. The original resource remains unchanged.

Waiter polls an API operation until a resource enters a desired state.

## Basic Usage

Waiter will polls until it is successful, it fails by entering a terminal state, or until a maximum number of attempts are made.

# polls in a loop until condition is true
resource.wait_until(options) {|resource| condition}

## Example

instance.wait_until(max_attempts:10, delay:5) do |instance|
  instance.state.name == 'running'
end

## Configuration

You can configure the maximum number of polling attempts, and the delay (in seconds) between each polling attempt. The waiting condition is set by passing a block to #wait_until:

# poll for ~25 seconds
resource.wait_until(max_attempts:5,delay:5) {|resource|...}

## Callbacks

You can be notified before each polling attempt and before each delay. If you throw ‘:success` or `:failure` from these callbacks, it will terminate the waiter.

started_at = Time.now
# poll for 1 hour, instead of a number of attempts
proc = Proc.new do |attempts, response|
  throw :failure if Time.now - started_at > 3600
end

  # disable max attempts
instance.wait_until(before_wait:proc, max_attempts:nil) {...}

## Handling Errors

When a waiter is successful, it returns the Resource. When a waiter fails, it raises an error.

begin
  resource.wait_until(...)
rescue Aws::Waiters::Errors::WaiterFailed
  # resource did not enter the desired state in time
end

attempts attempt in seconds invoked before each attempt invoked before each wait

Parameters:

• options (Hash) (defaults to: {}) —

  a customizable set of options

Options Hash (options):

• :max_attempts (Integer) — default: 10 —

  Maximum number of

• :delay (Integer) — default: 10 —

  Delay between each

• :before_attempt (Proc) — default: nil —

  Callback

• :before_wait (Proc) — default: nil —

  Callback

Yield Parameters:

• resource (Resource) —

  to be used in the waiting condition.

Returns:

• (Resource) —

  if the waiter was successful

Raises:

• (Aws::Waiters::Errors::FailureStateError) —

  Raised when the waiter terminates because the waiter has entered a state that it will not transition out of, preventing success.

  yet successful.

• (Aws::Waiters::Errors::UnexpectedError) —

  Raised when an error is encountered while polling for a resource that is not expected.

• (NotImplementedError) —

  Raised when the resource does not

# File 'lib/aws-sdk-iam/role_policy.rb', line 177

def wait_until(options = {}, &block)
  self_copy = self.dup
  attempts = 0
  options[:max_attempts] = 10 unless options.key?(:max_attempts)
  options[:delay] ||= 10
  options[:poller] = Proc.new do
    attempts += 1
    if block.call(self_copy)
      [:success, self_copy]
    else
      self_copy.reload unless attempts == options[:max_attempts]
      :retry
    end
  end
  Aws::Plugins::UserAgent.feature('resource') do
    Aws::Waiters::Waiter.new(options).wait({})
  end
end