interface CfnPolicyStatementProps

Language	Type name
.NET	Amazon.CDK.aws_entityresolution.CfnPolicyStatementProps
Go	github.com/aws/aws-cdk-go/awscdk/v2/awsentityresolution#CfnPolicyStatementProps
Java	software.amazon.awscdk.services.entityresolution.CfnPolicyStatementProps
Python	aws_cdk.aws_entityresolution.CfnPolicyStatementProps
TypeScript	aws-cdk-lib » aws_entityresolution » CfnPolicyStatementProps

Properties for defining a CfnPolicyStatement.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-entityresolution-policystatement.html

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_entityresolution as entityresolution } from 'aws-cdk-lib';
const cfnPolicyStatementProps: entityresolution.CfnPolicyStatementProps = {
  arn: 'arn',
  statementId: 'statementId',

  // the properties below are optional
  action: ['action'],
  condition: 'condition',
  effect: 'effect',
  principal: ['principal'],
};

Properties

Name	Type	Description
arn	string	The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
statementId	string	A statement identifier that differentiates the statement from others in the same policy.
action?	string[]	The action that the principal can use on the resource.
condition?	string	A set of condition keys that you can use in key policies.
effect?	string	Determines whether the permissions specified in the policy are to be allowed ( Allow ) or denied ( Deny ).
principal?	string[]	The AWS service or AWS account that can access the resource defined as ARN.

---

arn

Type: string

The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-entityresolution-policystatement.html#cfn-entityresolution-policystatement-arn

---

statementId

Type: string

A statement identifier that differentiates the statement from others in the same policy.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-entityresolution-policystatement.html#cfn-entityresolution-policystatement-statementid

---

action?

Type: string[] (optional)

The action that the principal can use on the resource.

For example, entityresolution:GetIdMappingJob , entityresolution:GetMatchingJob .

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-entityresolution-policystatement.html#cfn-entityresolution-policystatement-action

---

condition?

Type: string (optional)

A set of condition keys that you can use in key policies.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-entityresolution-policystatement.html#cfn-entityresolution-policystatement-condition

---

effect?

Type: string (optional)

Determines whether the permissions specified in the policy are to be allowed ( Allow ) or denied ( Deny ).

If you set the value of the effect parameter to Deny for the AddPolicyStatement operation, you must also set the value of the effect parameter in the policy to Deny for the PutPolicy operation.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-entityresolution-policystatement.html#cfn-entityresolution-policystatement-effect

---

principal?

Type: string[] (optional)

The AWS service or AWS account that can access the resource defined as ARN.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-entityresolution-policystatement.html#cfn-entityresolution-policystatement-principal