Class: Aws::IAM::Types::PermissionsBoundaryDecisionDetail
- Inherits:
-
Struct
- Object
- Struct
- Aws::IAM::Types::PermissionsBoundaryDecisionDetail
- Includes:
- Structure
- Defined in:
- lib/aws-sdk-iam/types.rb
Overview
Contains information about the effect that a permissions boundary has on a policy simulation when the boundary is applied to an IAM entity.
Constant Summary collapse
- SENSITIVE =
[]
Instance Attribute Summary collapse
-
#allowed_by_permissions_boundary ⇒ Boolean
Specifies whether an action is allowed by a permissions boundary that is applied to an IAM entity (user or role).
Instance Attribute Details
#allowed_by_permissions_boundary ⇒ Boolean
Specifies whether an action is allowed by a permissions boundary that is applied to an IAM entity (user or role). A value of ‘true` means that the permissions boundary does not deny the action. This means that the policy includes an `Allow` statement that matches the request. In this case, if an identity-based policy also allows the action, the request is allowed. A value of `false` means that either the requested action is not allowed (implicitly denied) or that the action is explicitly denied by the permissions boundary. In both of these cases, the action is not allowed, regardless of the identity-based policy.
7907 7908 7909 7910 7911 |
# File 'lib/aws-sdk-iam/types.rb', line 7907 class PermissionsBoundaryDecisionDetail < Struct.new( :allowed_by_permissions_boundary) SENSITIVE = [] include Aws::Structure end |