Module: Aws::VerifiedPermissions::Types

Defined in:

gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb

Defined Under Namespace

Classes: AccessDeniedException, ActionIdentifier, AttributeValue, BatchGetPolicyErrorItem, BatchGetPolicyInput, BatchGetPolicyInputItem, BatchGetPolicyOutput, BatchGetPolicyOutputItem, BatchIsAuthorizedInput, BatchIsAuthorizedInputItem, BatchIsAuthorizedOutput, BatchIsAuthorizedOutputItem, BatchIsAuthorizedWithTokenInput, BatchIsAuthorizedWithTokenInputItem, BatchIsAuthorizedWithTokenOutput, BatchIsAuthorizedWithTokenOutputItem, CedarTagValue, CognitoGroupConfiguration, CognitoGroupConfigurationDetail, CognitoGroupConfigurationItem, CognitoUserPoolConfiguration, CognitoUserPoolConfigurationDetail, CognitoUserPoolConfigurationItem, Configuration, ConfigurationDetail, ConfigurationItem, ConflictException, ContextDefinition, CreateIdentitySourceInput, CreateIdentitySourceOutput, CreatePolicyInput, CreatePolicyOutput, CreatePolicyStoreInput, CreatePolicyStoreOutput, CreatePolicyTemplateInput, CreatePolicyTemplateOutput, DeleteIdentitySourceInput, DeleteIdentitySourceOutput, DeletePolicyInput, DeletePolicyOutput, DeletePolicyStoreInput, DeletePolicyStoreOutput, DeletePolicyTemplateInput, DeletePolicyTemplateOutput, DeterminingPolicyItem, EncryptionSettings, EncryptionState, EntitiesDefinition, EntityIdentifier, EntityItem, EntityReference, EvaluationErrorItem, GetIdentitySourceInput, GetIdentitySourceOutput, GetPolicyInput, GetPolicyOutput, GetPolicyStoreInput, GetPolicyStoreOutput, GetPolicyTemplateInput, GetPolicyTemplateOutput, GetSchemaInput, GetSchemaOutput, IdentitySourceDetails, IdentitySourceFilter, IdentitySourceItem, IdentitySourceItemDetails, InternalServerException, InvalidStateException, IsAuthorizedInput, IsAuthorizedOutput, IsAuthorizedWithTokenInput, IsAuthorizedWithTokenOutput, KmsEncryptionSettings, KmsEncryptionState, ListIdentitySourcesInput, ListIdentitySourcesOutput, ListPoliciesInput, ListPoliciesOutput, ListPolicyStoresInput, ListPolicyStoresOutput, ListPolicyTemplatesInput, ListPolicyTemplatesOutput, ListTagsForResourceInput, ListTagsForResourceOutput, OpenIdConnectAccessTokenConfiguration, OpenIdConnectAccessTokenConfigurationDetail, OpenIdConnectAccessTokenConfigurationItem, OpenIdConnectConfiguration, OpenIdConnectConfigurationDetail, OpenIdConnectConfigurationItem, OpenIdConnectGroupConfiguration, OpenIdConnectGroupConfigurationDetail, OpenIdConnectGroupConfigurationItem, OpenIdConnectIdentityTokenConfiguration, OpenIdConnectIdentityTokenConfigurationDetail, OpenIdConnectIdentityTokenConfigurationItem, OpenIdConnectTokenSelection, OpenIdConnectTokenSelectionDetail, OpenIdConnectTokenSelectionItem, PolicyDefinition, PolicyDefinitionDetail, PolicyDefinitionItem, PolicyFilter, PolicyItem, PolicyStoreItem, PolicyTemplateItem, PutSchemaInput, PutSchemaOutput, ResourceConflict, ResourceNotFoundException, SchemaDefinition, ServiceQuotaExceededException, StaticPolicyDefinition, StaticPolicyDefinitionDetail, StaticPolicyDefinitionItem, TagResourceInput, TagResourceOutput, TemplateLinkedPolicyDefinition, TemplateLinkedPolicyDefinitionDetail, TemplateLinkedPolicyDefinitionItem, ThrottlingException, TooManyTagsException, UntagResourceInput, UntagResourceOutput, UpdateCognitoGroupConfiguration, UpdateCognitoUserPoolConfiguration, UpdateConfiguration, UpdateIdentitySourceInput, UpdateIdentitySourceOutput, UpdateOpenIdConnectAccessTokenConfiguration, UpdateOpenIdConnectConfiguration, UpdateOpenIdConnectGroupConfiguration, UpdateOpenIdConnectIdentityTokenConfiguration, UpdateOpenIdConnectTokenSelection, UpdatePolicyDefinition, UpdatePolicyInput, UpdatePolicyOutput, UpdatePolicyStoreInput, UpdatePolicyStoreOutput, UpdatePolicyTemplateInput, UpdatePolicyTemplateOutput, UpdateStaticPolicyDefinition, ValidationException, ValidationExceptionField, ValidationSettings

Instance Attribute Summary

• #access_token_only ⇒ Types::UpdateOpenIdConnectAccessTokenConfiguration

  The OIDC configuration for processing access tokens.

• #boolean ⇒ Boolean

  A Cedar tag value of [Boolean][1] type.

• #cedar_json ⇒ String

  A JSON string representation of the schema supported by applications that use this policy store.

• #cognito_user_pool_configuration ⇒ Types::UpdateCognitoUserPoolConfiguration

  Contains configuration details of a Amazon Cognito user pool.

• #context_map ⇒ Hash<String,Types::AttributeValue>

  An list of attributes that are needed to successfully evaluate an authorization request.

• #datetime ⇒ String

  A Cedar tag value of [datetime][1] type.

• #decimal ⇒ String

  A Cedar tag value of [decimal][1] type.

• #default ⇒ Types::Unit

  This is the default encryption state.

• #duration ⇒ String

  A Cedar tag value of [duration][1] type.

• #entity_identifier ⇒ Types::EntityIdentifier

  A Cedar tag value of type [EntityIdentifier][1].

• #entity_list ⇒ Array<Types::EntityItem>

  An array of entities that are needed to successfully evaluate an authorization request.

• #identifier ⇒ Types::EntityIdentifier

  The identifier of the entity.

• #identity_token_only ⇒ Types::UpdateOpenIdConnectIdentityTokenConfiguration

  The OIDC configuration for processing identity (ID) tokens.

• #ipaddr ⇒ String

  A Cedar tag value of [ipaddr][1] type.

• #kms_encryption_settings ⇒ Types::KmsEncryptionSettings

  The KMS encryption settings for this policy store to encrypt data with.

• #kms_encryption_state ⇒ Types::KmsEncryptionState

  The KMS encryption settings currently configured for this policy store to encrypt data with.

• #long ⇒ Integer

  A Cedar tag value of [Long][1] type.

• #open_id_connect_configuration ⇒ Types::UpdateOpenIdConnectConfiguration

  Contains configuration details of an OpenID Connect (OIDC) identity provider, or identity source, that Verified Permissions can use to generate entities from authenticated identities.

• #record ⇒ Hash<String,Types::CedarTagValue>

  A Cedar tag value of [Record][1] type.

• #set ⇒ Array<Types::CedarTagValue>

  A Cedar tag value of [Set][1] type.

• #static ⇒ Types::UpdateStaticPolicyDefinition

  Contains details about the updates to be applied to a static policy.

• #string ⇒ String

  A Cedar tag value of [String][1] type.

• #template_linked ⇒ Types::TemplateLinkedPolicyDefinitionItem

  Information about a template-linked policy that was created by instantiating a policy template.

• #unspecified ⇒ Boolean

  Used to indicate that a principal or resource is not specified.

Instance Attribute Details

#access_token_only ⇒ Types::UpdateOpenIdConnectAccessTokenConfiguration

The OIDC configuration for processing access tokens. Contains allowed audience claims, for example https://auth.example.com, and the claim that you want to map to the principal, for example sub.

Returns:

• (Types::UpdateOpenIdConnectAccessTokenConfiguration)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 3578

class OpenIdConnectTokenSelection < Struct.new(
  :access_token_only,
  :identity_token_only,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class AccessTokenOnly < OpenIdConnectTokenSelection; end
  class IdentityTokenOnly < OpenIdConnectTokenSelection; end
  class Unknown < OpenIdConnectTokenSelection; end
end

#boolean ⇒ Boolean

A Cedar tag value of Boolean type.

Example: {"boolean": false}

Returns:

• (Boolean)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 182

class AttributeValue < Struct.new(
  :boolean,
  :entity_identifier,
  :long,
  :string,
  :set,
  :record,
  :ipaddr,
  :decimal,
  :datetime,
  :duration,
  :unknown)
  SENSITIVE = [:boolean, :long, :string, :ipaddr, :decimal, :datetime, :duration]
  include Aws::Structure
  include Aws::Structure::Union

  class Boolean < AttributeValue; end
  class EntityIdentifier < AttributeValue; end
  class Long < AttributeValue; end
  class String < AttributeValue; end
  class Set < AttributeValue; end
  class Record < AttributeValue; end
  class Ipaddr < AttributeValue; end
  class Decimal < AttributeValue; end
  class Datetime < AttributeValue; end
  class Duration < AttributeValue; end
  class Unknown < AttributeValue; end
end

#cedar_json ⇒ String

A JSON string representation of the schema supported by applications that use this policy store. To delete the schema, run PutSchema with {} for this parameter. For more information, see Policy store schema in the Amazon Verified Permissions User Guide.

Returns:

• (String)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 1225

class ContextDefinition < Struct.new(
  :context_map,
  :cedar_json,
  :unknown)
  SENSITIVE = [:context_map, :cedar_json]
  include Aws::Structure
  include Aws::Structure::Union

  class ContextMap < ContextDefinition; end
  class CedarJson < ContextDefinition; end
  class Unknown < ContextDefinition; end
end

#cognito_user_pool_configuration ⇒ Types::UpdateCognitoUserPoolConfiguration

Contains configuration details of a Amazon Cognito user pool.

Returns:

• (Types::UpdateCognitoUserPoolConfiguration)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 1042

class Configuration < Struct.new(
  :cognito_user_pool_configuration,
  :open_id_connect_configuration,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class CognitoUserPoolConfiguration < Configuration; end
  class OpenIdConnectConfiguration < Configuration; end
  class Unknown < Configuration; end
end

#context_map ⇒ Hash<String,Types::AttributeValue>

An list of attributes that are needed to successfully evaluate an authorization request. Each attribute in this array must include a map of a data type and its value.

Example: "contextMap":{"<KeyName1>":{"boolean":true},"<KeyName2>":{"long":1234}}

Returns:

• (Hash<String,Types::AttributeValue>)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 1225

class ContextDefinition < Struct.new(
  :context_map,
  :cedar_json,
  :unknown)
  SENSITIVE = [:context_map, :cedar_json]
  include Aws::Structure
  include Aws::Structure::Union

  class ContextMap < ContextDefinition; end
  class CedarJson < ContextDefinition; end
  class Unknown < ContextDefinition; end
end

#datetime ⇒ String

A Cedar tag value of datetime type.

Example: {"datetime": "2025-11-04T11:35:00.000+0100"}

Returns:

• (String)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 182

class AttributeValue < Struct.new(
  :boolean,
  :entity_identifier,
  :long,
  :string,
  :set,
  :record,
  :ipaddr,
  :decimal,
  :datetime,
  :duration,
  :unknown)
  SENSITIVE = [:boolean, :long, :string, :ipaddr, :decimal, :datetime, :duration]
  include Aws::Structure
  include Aws::Structure::Union

  class Boolean < AttributeValue; end
  class EntityIdentifier < AttributeValue; end
  class Long < AttributeValue; end
  class String < AttributeValue; end
  class Set < AttributeValue; end
  class Record < AttributeValue; end
  class Ipaddr < AttributeValue; end
  class Decimal < AttributeValue; end
  class Datetime < AttributeValue; end
  class Duration < AttributeValue; end
  class Unknown < AttributeValue; end
end

#decimal ⇒ String

A Cedar tag value of decimal type.

Example: {"decimal": "-2.0"}

Returns:

• (String)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 182

class AttributeValue < Struct.new(
  :boolean,
  :entity_identifier,
  :long,
  :string,
  :set,
  :record,
  :ipaddr,
  :decimal,
  :datetime,
  :duration,
  :unknown)
  SENSITIVE = [:boolean, :long, :string, :ipaddr, :decimal, :datetime, :duration]
  include Aws::Structure
  include Aws::Structure::Union

  class Boolean < AttributeValue; end
  class EntityIdentifier < AttributeValue; end
  class Long < AttributeValue; end
  class String < AttributeValue; end
  class Set < AttributeValue; end
  class Record < AttributeValue; end
  class Ipaddr < AttributeValue; end
  class Decimal < AttributeValue; end
  class Datetime < AttributeValue; end
  class Duration < AttributeValue; end
  class Unknown < AttributeValue; end
end

#default ⇒ Types::Unit

This is the default encryption state. The policy store is encrypted using an Amazon Web Services owned key.

Returns:

• (Types::Unit)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 1757

class EncryptionSettings < Struct.new(
  :kms_encryption_settings,
  :default,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class KmsEncryptionSettings < EncryptionSettings; end
  class Default < EncryptionSettings; end
  class Unknown < EncryptionSettings; end
end

#duration ⇒ String

A Cedar tag value of duration type.

Example: {"duration": "-1d12h"}

Returns:

• (String)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 182

class AttributeValue < Struct.new(
  :boolean,
  :entity_identifier,
  :long,
  :string,
  :set,
  :record,
  :ipaddr,
  :decimal,
  :datetime,
  :duration,
  :unknown)
  SENSITIVE = [:boolean, :long, :string, :ipaddr, :decimal, :datetime, :duration]
  include Aws::Structure
  include Aws::Structure::Union

  class Boolean < AttributeValue; end
  class EntityIdentifier < AttributeValue; end
  class Long < AttributeValue; end
  class String < AttributeValue; end
  class Set < AttributeValue; end
  class Record < AttributeValue; end
  class Ipaddr < AttributeValue; end
  class Decimal < AttributeValue; end
  class Datetime < AttributeValue; end
  class Duration < AttributeValue; end
  class Unknown < AttributeValue; end
end

#entity_identifier ⇒ Types::EntityIdentifier

A Cedar tag value of type EntityIdentifier.

Example: {"entityIdentifier": { "entityId": "alice", "entityType": "User"} }

Returns:

• (Types::EntityIdentifier)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 182

class AttributeValue < Struct.new(
  :boolean,
  :entity_identifier,
  :long,
  :string,
  :set,
  :record,
  :ipaddr,
  :decimal,
  :datetime,
  :duration,
  :unknown)
  SENSITIVE = [:boolean, :long, :string, :ipaddr, :decimal, :datetime, :duration]
  include Aws::Structure
  include Aws::Structure::Union

  class Boolean < AttributeValue; end
  class EntityIdentifier < AttributeValue; end
  class Long < AttributeValue; end
  class String < AttributeValue; end
  class Set < AttributeValue; end
  class Record < AttributeValue; end
  class Ipaddr < AttributeValue; end
  class Decimal < AttributeValue; end
  class Datetime < AttributeValue; end
  class Duration < AttributeValue; end
  class Unknown < AttributeValue; end
end

#entity_list ⇒ Array<Types::EntityItem>

An array of entities that are needed to successfully evaluate an authorization request. Each entity in this array must include an identifier for the entity, the attributes of the entity, and a list of any parent entities.

If you include multiple entities with the same identifier, only the last one is processed in the request.

Returns:

• (Array<Types::EntityItem>)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 1844

class EntitiesDefinition < Struct.new(
  :entity_list,
  :cedar_json,
  :unknown)
  SENSITIVE = [:cedar_json]
  include Aws::Structure
  include Aws::Structure::Union

  class EntityList < EntitiesDefinition; end
  class CedarJson < EntitiesDefinition; end
  class Unknown < EntitiesDefinition; end
end

#identifier ⇒ Types::EntityIdentifier

The identifier of the entity. It can consist of either an EntityType and EntityId, a principal, or a resource.

Returns:

• (Types::EntityIdentifier)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 1968

class EntityReference < Struct.new(
  :unspecified,
  :identifier,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Unspecified < EntityReference; end
  class Identifier < EntityReference; end
  class Unknown < EntityReference; end
end

#identity_token_only ⇒ Types::UpdateOpenIdConnectIdentityTokenConfiguration

The OIDC configuration for processing identity (ID) tokens. Contains allowed client ID claims, for example 1example23456789, and the claim that you want to map to the principal, for example sub.

Returns:

• (Types::UpdateOpenIdConnectIdentityTokenConfiguration)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 3578

class OpenIdConnectTokenSelection < Struct.new(
  :access_token_only,
  :identity_token_only,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class AccessTokenOnly < OpenIdConnectTokenSelection; end
  class IdentityTokenOnly < OpenIdConnectTokenSelection; end
  class Unknown < OpenIdConnectTokenSelection; end
end

#ipaddr ⇒ String

A Cedar tag value of ipaddr type.

Example: {"ip": "10.50.0.0/24"}

Returns:

• (String)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 182

class AttributeValue < Struct.new(
  :boolean,
  :entity_identifier,
  :long,
  :string,
  :set,
  :record,
  :ipaddr,
  :decimal,
  :datetime,
  :duration,
  :unknown)
  SENSITIVE = [:boolean, :long, :string, :ipaddr, :decimal, :datetime, :duration]
  include Aws::Structure
  include Aws::Structure::Union

  class Boolean < AttributeValue; end
  class EntityIdentifier < AttributeValue; end
  class Long < AttributeValue; end
  class String < AttributeValue; end
  class Set < AttributeValue; end
  class Record < AttributeValue; end
  class Ipaddr < AttributeValue; end
  class Decimal < AttributeValue; end
  class Datetime < AttributeValue; end
  class Duration < AttributeValue; end
  class Unknown < AttributeValue; end
end

#kms_encryption_settings ⇒ Types::KmsEncryptionSettings

The KMS encryption settings for this policy store to encrypt data with. It will contain the customer-managed KMS key, and a user-defined encryption context.

Returns:

• (Types::KmsEncryptionSettings)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 1757

class EncryptionSettings < Struct.new(
  :kms_encryption_settings,
  :default,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class KmsEncryptionSettings < EncryptionSettings; end
  class Default < EncryptionSettings; end
  class Unknown < EncryptionSettings; end
end

#kms_encryption_state ⇒ Types::KmsEncryptionState

The KMS encryption settings currently configured for this policy store to encrypt data with. It contains the customer-managed KMS key, and a user-defined encryption context.

Returns:

• (Types::KmsEncryptionState)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 1795

class EncryptionState < Struct.new(
  :kms_encryption_state,
  :default,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class KmsEncryptionState < EncryptionState; end
  class Default < EncryptionState; end
  class Unknown < EncryptionState; end
end

#long ⇒ Integer

A Cedar tag value of Long type.

Example: {"long": 0}

Returns:

• (Integer)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 182

class AttributeValue < Struct.new(
  :boolean,
  :entity_identifier,
  :long,
  :string,
  :set,
  :record,
  :ipaddr,
  :decimal,
  :datetime,
  :duration,
  :unknown)
  SENSITIVE = [:boolean, :long, :string, :ipaddr, :decimal, :datetime, :duration]
  include Aws::Structure
  include Aws::Structure::Union

  class Boolean < AttributeValue; end
  class EntityIdentifier < AttributeValue; end
  class Long < AttributeValue; end
  class String < AttributeValue; end
  class Set < AttributeValue; end
  class Record < AttributeValue; end
  class Ipaddr < AttributeValue; end
  class Decimal < AttributeValue; end
  class Datetime < AttributeValue; end
  class Duration < AttributeValue; end
  class Unknown < AttributeValue; end
end

#open_id_connect_configuration ⇒ Types::UpdateOpenIdConnectConfiguration

Contains configuration details of an OpenID Connect (OIDC) identity provider, or identity source, that Verified Permissions can use to generate entities from authenticated identities. It specifies the issuer URL, token type that you want to use, and policy store entity details.

Returns:

• (Types::UpdateOpenIdConnectConfiguration)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 1042

class Configuration < Struct.new(
  :cognito_user_pool_configuration,
  :open_id_connect_configuration,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class CognitoUserPoolConfiguration < Configuration; end
  class OpenIdConnectConfiguration < Configuration; end
  class Unknown < Configuration; end
end

#record ⇒ Hash<String,Types::CedarTagValue>

A Cedar tag value of Record type.

Example: {"record": { "keyName": {} } }

Returns:

• (Hash<String,Types::CedarTagValue>)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 182

class AttributeValue < Struct.new(
  :boolean,
  :entity_identifier,
  :long,
  :string,
  :set,
  :record,
  :ipaddr,
  :decimal,
  :datetime,
  :duration,
  :unknown)
  SENSITIVE = [:boolean, :long, :string, :ipaddr, :decimal, :datetime, :duration]
  include Aws::Structure
  include Aws::Structure::Union

  class Boolean < AttributeValue; end
  class EntityIdentifier < AttributeValue; end
  class Long < AttributeValue; end
  class String < AttributeValue; end
  class Set < AttributeValue; end
  class Record < AttributeValue; end
  class Ipaddr < AttributeValue; end
  class Decimal < AttributeValue; end
  class Datetime < AttributeValue; end
  class Duration < AttributeValue; end
  class Unknown < AttributeValue; end
end

#set ⇒ Array<Types::CedarTagValue>

A Cedar tag value of Set type.

Example: {"set": [ { "string": "abc" } ] }

Returns:

• (Array<Types::CedarTagValue>)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 182

class AttributeValue < Struct.new(
  :boolean,
  :entity_identifier,
  :long,
  :string,
  :set,
  :record,
  :ipaddr,
  :decimal,
  :datetime,
  :duration,
  :unknown)
  SENSITIVE = [:boolean, :long, :string, :ipaddr, :decimal, :datetime, :duration]
  include Aws::Structure
  include Aws::Structure::Union

  class Boolean < AttributeValue; end
  class EntityIdentifier < AttributeValue; end
  class Long < AttributeValue; end
  class String < AttributeValue; end
  class Set < AttributeValue; end
  class Record < AttributeValue; end
  class Ipaddr < AttributeValue; end
  class Decimal < AttributeValue; end
  class Datetime < AttributeValue; end
  class Duration < AttributeValue; end
  class Unknown < AttributeValue; end
end

#static ⇒ Types::UpdateStaticPolicyDefinition

Contains details about the updates to be applied to a static policy.

Returns:

• (Types::UpdateStaticPolicyDefinition)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 3706

class PolicyDefinition < Struct.new(
  :static,
  :template_linked,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Static < PolicyDefinition; end
  class TemplateLinked < PolicyDefinition; end
  class Unknown < PolicyDefinition; end
end

#string ⇒ String

A Cedar tag value of String type.

Example: {"string": "abc"}

Returns:

• (String)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 182

class AttributeValue < Struct.new(
  :boolean,
  :entity_identifier,
  :long,
  :string,
  :set,
  :record,
  :ipaddr,
  :decimal,
  :datetime,
  :duration,
  :unknown)
  SENSITIVE = [:boolean, :long, :string, :ipaddr, :decimal, :datetime, :duration]
  include Aws::Structure
  include Aws::Structure::Union

  class Boolean < AttributeValue; end
  class EntityIdentifier < AttributeValue; end
  class Long < AttributeValue; end
  class String < AttributeValue; end
  class Set < AttributeValue; end
  class Record < AttributeValue; end
  class Ipaddr < AttributeValue; end
  class Decimal < AttributeValue; end
  class Datetime < AttributeValue; end
  class Duration < AttributeValue; end
  class Unknown < AttributeValue; end
end

#template_linked ⇒ Types::TemplateLinkedPolicyDefinitionItem

Information about a template-linked policy that was created by instantiating a policy template.

Returns:

• (Types::TemplateLinkedPolicyDefinitionItem)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 3706

class PolicyDefinition < Struct.new(
  :static,
  :template_linked,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Static < PolicyDefinition; end
  class TemplateLinked < PolicyDefinition; end
  class Unknown < PolicyDefinition; end
end

#unspecified ⇒ Boolean

Used to indicate that a principal or resource is not specified. This can be used to search for policies that are not associated with a specific principal or resource.

Returns:

• (Boolean)

# File 'gems/aws-sdk-verifiedpermissions/lib/aws-sdk-verifiedpermissions/types.rb', line 1968

class EntityReference < Struct.new(
  :unspecified,
  :identifier,
  :unknown)
  SENSITIVE = []
  include Aws::Structure
  include Aws::Structure::Union

  class Unspecified < EntityReference; end
  class Identifier < EntityReference; end
  class Unknown < EntityReference; end
end