Skip to content

/AWS1/CL_CFSCUSTOMPOLICYDETS

Provides the runtime system, policy definition, and whether debug logging enabled. You can specify the following CustomPolicyDetails parameter values only for Config Custom Policy rules.

CONSTRUCTOR

IMPORTING

Required arguments:

iv_policyruntime TYPE /AWS1/CFSPOLICYRUNTIME /AWS1/CFSPOLICYRUNTIME

The runtime system for your Config Custom Policy rule. Guard is a policy-as-code language that allows you to write policies that are enforced by Config Custom Policy rules. For more information about Guard, see the Guard GitHub Repository.

iv_policytext TYPE /AWS1/CFSPOLICYTEXT /AWS1/CFSPOLICYTEXT

The policy definition containing the logic for your Config Custom Policy rule.

Optional arguments:

iv_enabledebuglogdelivery TYPE /AWS1/CFSBOOLEAN /AWS1/CFSBOOLEAN

The boolean expression for enabling debug logging for your Config Custom Policy rule. The default value is false.

Queryable Attributes

PolicyRuntime

The runtime system for your Config Custom Policy rule. Guard is a policy-as-code language that allows you to write policies that are enforced by Config Custom Policy rules. For more information about Guard, see the Guard GitHub Repository.

Accessible with the following methods

Method Description
GET_POLICYRUNTIME() Getter for POLICYRUNTIME, with configurable default
ASK_POLICYRUNTIME() Getter for POLICYRUNTIME w/ exceptions if field has no value
HAS_POLICYRUNTIME() Determine if POLICYRUNTIME has a value

PolicyText

The policy definition containing the logic for your Config Custom Policy rule.

Accessible with the following methods

Method Description
GET_POLICYTEXT() Getter for POLICYTEXT, with configurable default
ASK_POLICYTEXT() Getter for POLICYTEXT w/ exceptions if field has no value
HAS_POLICYTEXT() Determine if POLICYTEXT has a value

EnableDebugLogDelivery

The boolean expression for enabling debug logging for your Config Custom Policy rule. The default value is false.

Accessible with the following methods

Method Description
GET_ENABLEDEBUGLOGDELIVERY() Getter for ENABLEDEBUGLOGDELIVERY