Skip to content

/AWS1/CL_SHBUNUSEDPERMSRECSTEP

Contains information about the action to take for a policy in an unused permissions finding.

CONSTRUCTOR

IMPORTING

Optional arguments:

iv_recommendedaction TYPE /AWS1/SHBNONEMPTYSTRING /AWS1/SHBNONEMPTYSTRING

A recommendation of whether to create or detach a policy for an unused permissions finding.

iv_existingpolicy TYPE /AWS1/SHBNONEMPTYSTRING /AWS1/SHBNONEMPTYSTRING

The contents of the existing policy identified by ExistingPolicyId which needs to be replaced, when the RecommendedAction is CREATE_POLICY.

iv_existingpolicyid TYPE /AWS1/SHBNONEMPTYSTRING /AWS1/SHBNONEMPTYSTRING

The ID of an existing policy to be replaced or detached.

iv_policyupdatedat TYPE /AWS1/SHBTIMESTAMP /AWS1/SHBTIMESTAMP

The time at which the existing policy for the unused permissions finding was last updated.

iv_recommendedpolicy TYPE /AWS1/SHBNONEMPTYSTRING /AWS1/SHBNONEMPTYSTRING

The contents of the least-privileged recommended replacement for ExistingPolicyId, when the RecommendedAction is CREATE_POLICY.

Queryable Attributes

RecommendedAction

A recommendation of whether to create or detach a policy for an unused permissions finding.

Accessible with the following methods

Method Description
GET_RECOMMENDEDACTION() Getter for RECOMMENDEDACTION, with configurable default
ASK_RECOMMENDEDACTION() Getter for RECOMMENDEDACTION w/ exceptions if field has no v
HAS_RECOMMENDEDACTION() Determine if RECOMMENDEDACTION has a value

ExistingPolicy

The contents of the existing policy identified by ExistingPolicyId which needs to be replaced, when the RecommendedAction is CREATE_POLICY.

Accessible with the following methods

Method Description
GET_EXISTINGPOLICY() Getter for EXISTINGPOLICY, with configurable default
ASK_EXISTINGPOLICY() Getter for EXISTINGPOLICY w/ exceptions if field has no valu
HAS_EXISTINGPOLICY() Determine if EXISTINGPOLICY has a value

ExistingPolicyId

The ID of an existing policy to be replaced or detached.

Accessible with the following methods

Method Description
GET_EXISTINGPOLICYID() Getter for EXISTINGPOLICYID, with configurable default
ASK_EXISTINGPOLICYID() Getter for EXISTINGPOLICYID w/ exceptions if field has no va
HAS_EXISTINGPOLICYID() Determine if EXISTINGPOLICYID has a value

PolicyUpdatedAt

The time at which the existing policy for the unused permissions finding was last updated.

Accessible with the following methods

Method Description
GET_POLICYUPDATEDAT() Getter for POLICYUPDATEDAT, with configurable default
ASK_POLICYUPDATEDAT() Getter for POLICYUPDATEDAT w/ exceptions if field has no val
HAS_POLICYUPDATEDAT() Determine if POLICYUPDATEDAT has a value

RecommendedPolicy

The contents of the least-privileged recommended replacement for ExistingPolicyId, when the RecommendedAction is CREATE_POLICY.

Accessible with the following methods

Method Description
GET_RECOMMENDEDPOLICY() Getter for RECOMMENDEDPOLICY, with configurable default
ASK_RECOMMENDEDPOLICY() Getter for RECOMMENDEDPOLICY w/ exceptions if field has no v
HAS_RECOMMENDEDPOLICY() Determine if RECOMMENDEDPOLICY has a value