bedrockagentcorecontrol/aws.sdk.kotlin.services.bedrockagentcorecontrol.model/PolicyDefinition

PolicyDefinition

Represents the definition structure for policies within the AgentCore Policy system. This structure encapsulates different policy formats and languages that can be used to define access control rules.

Inheritors

Cedar

SdkUnknown

Types

Cedar

data class Cedar(val value: CedarPolicy) : PolicyDefinition

The Cedar policy definition within the policy definition structure. This contains the Cedar policy statement that defines the authorization logic using Cedar's human-readable, analyzable policy language. Cedar policies specify principals (who can access), actions (what operations are allowed), resources (what can be accessed), and optional conditions for fine-grained control. Cedar provides a formal policy language designed for authorization with deterministic evaluation, making policies testable, reviewable, and auditable. All Cedar policies follow a default-deny model where actions are denied unless explicitly permitted, and forbid policies always override permit policies.

SdkUnknown

object SdkUnknown : PolicyDefinition

Functions

asCedar

fun asCedar(): CedarPolicy

Casts this PolicyDefinition as a Cedar and retrieves its aws.sdk.kotlin.services.bedrockagentcorecontrol.model.CedarPolicy value. Throws an exception if the PolicyDefinition is not a Cedar.

asCedarOrNull

fun asCedarOrNull(): CedarPolicy?

Casts this PolicyDefinition as a Cedar and retrieves its aws.sdk.kotlin.services.bedrockagentcorecontrol.model.CedarPolicy value. Returns null if the PolicyDefinition is not a Cedar.