/AWS1/CL_ACPPERMISSION¶
Permissions designate which private CA actions can be performed by an Amazon Web Services service or entity. In order for ACM to automatically renew private certificates, you must give the ACM service principal all available permissions (IssueCertificate, GetCertificate, and ListPermissions). Permissions can be assigned with the CreatePermission action, removed with the DeletePermission action, and listed with the ListPermissions action.
CONSTRUCTOR¶
IMPORTING¶
Optional arguments:¶
iv_certificateauthorityarn TYPE /AWS1/ACPARN /AWS1/ACPARN¶
The Amazon Resource Number (ARN) of the private CA from which the permission was issued.
iv_createdat TYPE /AWS1/ACPTSTAMP /AWS1/ACPTSTAMP¶
The time at which the permission was created.
iv_principal TYPE /AWS1/ACPPRINCIPAL /AWS1/ACPPRINCIPAL¶
The Amazon Web Services service or entity that holds the permission. At this time, the only valid principal is
acm.amazonaws.com.
iv_sourceaccount TYPE /AWS1/ACPACCOUNTID /AWS1/ACPACCOUNTID¶
The ID of the account that assigned the permission.
it_actions TYPE /AWS1/CL_ACPACTIONLIST_W=>TT_ACTIONLIST TT_ACTIONLIST¶
The private CA actions that can be performed by the designated Amazon Web Services service.
iv_policy TYPE /AWS1/ACPAWSPOLICY /AWS1/ACPAWSPOLICY¶
The name of the policy that is associated with the permission.
Queryable Attributes¶
CertificateAuthorityArn¶
The Amazon Resource Number (ARN) of the private CA from which the permission was issued.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_CERTIFICATEAUTHORITYARN() |
Getter for CERTIFICATEAUTHORITYARN, with configurable defaul |
ASK_CERTIFICATEAUTHORITYARN() |
Getter for CERTIFICATEAUTHORITYARN w/ exceptions if field ha |
HAS_CERTIFICATEAUTHORITYARN() |
Determine if CERTIFICATEAUTHORITYARN has a value |
CreatedAt¶
The time at which the permission was created.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_CREATEDAT() |
Getter for CREATEDAT, with configurable default |
ASK_CREATEDAT() |
Getter for CREATEDAT w/ exceptions if field has no value |
HAS_CREATEDAT() |
Determine if CREATEDAT has a value |
Principal¶
The Amazon Web Services service or entity that holds the permission. At this time, the only valid principal is
acm.amazonaws.com.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_PRINCIPAL() |
Getter for PRINCIPAL, with configurable default |
ASK_PRINCIPAL() |
Getter for PRINCIPAL w/ exceptions if field has no value |
HAS_PRINCIPAL() |
Determine if PRINCIPAL has a value |
SourceAccount¶
The ID of the account that assigned the permission.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_SOURCEACCOUNT() |
Getter for SOURCEACCOUNT, with configurable default |
ASK_SOURCEACCOUNT() |
Getter for SOURCEACCOUNT w/ exceptions if field has no value |
HAS_SOURCEACCOUNT() |
Determine if SOURCEACCOUNT has a value |
Actions¶
The private CA actions that can be performed by the designated Amazon Web Services service.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_ACTIONS() |
Getter for ACTIONS, with configurable default |
ASK_ACTIONS() |
Getter for ACTIONS w/ exceptions if field has no value |
HAS_ACTIONS() |
Determine if ACTIONS has a value |
Policy¶
The name of the policy that is associated with the permission.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_POLICY() |
Getter for POLICY, with configurable default |
ASK_POLICY() |
Getter for POLICY w/ exceptions if field has no value |
HAS_POLICY() |
Determine if POLICY has a value |
Public Local Types In This Class¶
Internal table types, representing arrays and maps of this class, are defined as local types:
TT_PERMISSIONLIST¶
TYPES TT_PERMISSIONLIST TYPE STANDARD TABLE OF REF TO /AWS1/CL_ACPPERMISSION WITH DEFAULT KEY
.