/AWS1/CL_BDOPOLICYGENERATION¶
Represents a policy generation request within the AgentCore Policy system. Tracks the AI-powered conversion of natural language descriptions into Cedar policy statements, enabling users to author policies by describing authorization requirements in plain English. The generation process analyzes the natural language input along with the Gateway's tool context and Cedar schema to produce one or more validated policy options. Each generation request tracks the status of the conversion process and maintains findings about the generated policies, including validation results and potential issues. Generated policy assets remain available for one week after successful generation, allowing time to review and create policies from the generated options.
CONSTRUCTOR¶
IMPORTING¶
Required arguments:¶
iv_policyengineid TYPE /AWS1/BDORESOURCEID /AWS1/BDORESOURCEID¶
The identifier of the policy engine associated with this generation request.
iv_policygenerationid TYPE /AWS1/BDORESOURCEID /AWS1/BDORESOURCEID¶
The unique identifier for this policy generation request.
iv_name TYPE /AWS1/BDOPOLICYGENERATIONNAME /AWS1/BDOPOLICYGENERATIONNAME¶
The customer-assigned name for this policy generation request.
iv_policygenerationarn TYPE /AWS1/BDOPOLICYGENERATIONARN /AWS1/BDOPOLICYGENERATIONARN¶
The ARN of this policy generation request.
io_resource TYPE REF TO /AWS1/CL_BDORESOURCE /AWS1/CL_BDORESOURCE¶
The resource information associated with this policy generation.
iv_createdat TYPE /AWS1/BDODATETIMESTAMP /AWS1/BDODATETIMESTAMP¶
The timestamp when this policy generation request was created.
iv_updatedat TYPE /AWS1/BDODATETIMESTAMP /AWS1/BDODATETIMESTAMP¶
The timestamp when this policy generation was last updated.
iv_status TYPE /AWS1/BDOPOLICYGENERSTATUS /AWS1/BDOPOLICYGENERSTATUS¶
The current status of this policy generation request.
it_statusreasons TYPE /AWS1/CL_BDOPLYSTATUSREASONS_W=>TT_POLICYSTATUSREASONS TT_POLICYSTATUSREASONS¶
Additional information about the generation status.
Optional arguments:¶
iv_findings TYPE /AWS1/BDOSTRING00 /AWS1/BDOSTRING00¶
Findings and insights from this policy generation process.
Queryable Attributes¶
policyEngineId¶
The identifier of the policy engine associated with this generation request.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_POLICYENGINEID() |
Getter for POLICYENGINEID, with configurable default |
ASK_POLICYENGINEID() |
Getter for POLICYENGINEID w/ exceptions if field has no valu |
HAS_POLICYENGINEID() |
Determine if POLICYENGINEID has a value |
policyGenerationId¶
The unique identifier for this policy generation request.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_POLICYGENERATIONID() |
Getter for POLICYGENERATIONID, with configurable default |
ASK_POLICYGENERATIONID() |
Getter for POLICYGENERATIONID w/ exceptions if field has no |
HAS_POLICYGENERATIONID() |
Determine if POLICYGENERATIONID has a value |
name¶
The customer-assigned name for this policy generation request.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_NAME() |
Getter for NAME, with configurable default |
ASK_NAME() |
Getter for NAME w/ exceptions if field has no value |
HAS_NAME() |
Determine if NAME has a value |
policyGenerationArn¶
The ARN of this policy generation request.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_POLICYGENERATIONARN() |
Getter for POLICYGENERATIONARN, with configurable default |
ASK_POLICYGENERATIONARN() |
Getter for POLICYGENERATIONARN w/ exceptions if field has no |
HAS_POLICYGENERATIONARN() |
Determine if POLICYGENERATIONARN has a value |
resource¶
The resource information associated with this policy generation.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_RESOURCE() |
Getter for RESOURCE |
createdAt¶
The timestamp when this policy generation request was created.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_CREATEDAT() |
Getter for CREATEDAT, with configurable default |
ASK_CREATEDAT() |
Getter for CREATEDAT w/ exceptions if field has no value |
HAS_CREATEDAT() |
Determine if CREATEDAT has a value |
updatedAt¶
The timestamp when this policy generation was last updated.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_UPDATEDAT() |
Getter for UPDATEDAT, with configurable default |
ASK_UPDATEDAT() |
Getter for UPDATEDAT w/ exceptions if field has no value |
HAS_UPDATEDAT() |
Determine if UPDATEDAT has a value |
status¶
The current status of this policy generation request.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_STATUS() |
Getter for STATUS, with configurable default |
ASK_STATUS() |
Getter for STATUS w/ exceptions if field has no value |
HAS_STATUS() |
Determine if STATUS has a value |
statusReasons¶
Additional information about the generation status.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_STATUSREASONS() |
Getter for STATUSREASONS, with configurable default |
ASK_STATUSREASONS() |
Getter for STATUSREASONS w/ exceptions if field has no value |
HAS_STATUSREASONS() |
Determine if STATUSREASONS has a value |
findings¶
Findings and insights from this policy generation process.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_FINDINGS() |
Getter for FINDINGS, with configurable default |
ASK_FINDINGS() |
Getter for FINDINGS w/ exceptions if field has no value |
HAS_FINDINGS() |
Determine if FINDINGS has a value |
Public Local Types In This Class¶
Internal table types, representing arrays and maps of this class, are defined as local types:
TT_POLICYGENERATIONS¶
TYPES TT_POLICYGENERATIONS TYPE STANDARD TABLE OF REF TO /AWS1/CL_BDOPOLICYGENERATION WITH DEFAULT KEY
.