Skip to content

/AWS1/CL_VPSENTITYITEM

Contains information about an entity that can be referenced in a Cedar policy.

This data type is used as one of the fields in the EntitiesDefinition structure.

{ "identifier": { "entityType": "Photo", "entityId": "VacationPhoto94.jpg" }, "attributes": {}, "parents": [ { "entityType": "Album", "entityId": "alice_folder" } ] }

CONSTRUCTOR

IMPORTING

Required arguments:

io_identifier TYPE REF TO /AWS1/CL_VPSENTITYIDENTIFIER /AWS1/CL_VPSENTITYIDENTIFIER

The identifier of the entity.

Optional arguments:

it_attributes TYPE /AWS1/CL_VPSATTRIBUTEVALUE=>TT_ENTITYATTRIBUTES TT_ENTITYATTRIBUTES

A list of attributes for the entity.

it_parents TYPE /AWS1/CL_VPSENTITYIDENTIFIER=>TT_PARENTLIST TT_PARENTLIST

The parent entities in the hierarchy that contains the entity. A principal or resource entity can be defined with at most 99 transitive parents per authorization request.

A transitive parent is an entity in the hierarchy of entities including all direct parents, and parents of parents. For example, a user can be a member of 91 groups if one of those groups is a member of eight groups, for a total of 100: one entity, 91 entity parents, and eight parents of parents.

it_tags TYPE /AWS1/CL_VPSCEDARTAGVALUE=>TT_ENTITYCEDARTAGS TT_ENTITYCEDARTAGS

A list of cedar tags for the entity.

Queryable Attributes

identifier

The identifier of the entity.

Accessible with the following methods

Method Description
GET_IDENTIFIER() Getter for IDENTIFIER

attributes

A list of attributes for the entity.

Accessible with the following methods

Method Description
GET_ATTRIBUTES() Getter for ATTRIBUTES, with configurable default
ASK_ATTRIBUTES() Getter for ATTRIBUTES w/ exceptions if field has no value
HAS_ATTRIBUTES() Determine if ATTRIBUTES has a value

parents

The parent entities in the hierarchy that contains the entity. A principal or resource entity can be defined with at most 99 transitive parents per authorization request.

A transitive parent is an entity in the hierarchy of entities including all direct parents, and parents of parents. For example, a user can be a member of 91 groups if one of those groups is a member of eight groups, for a total of 100: one entity, 91 entity parents, and eight parents of parents.

Accessible with the following methods

Method Description
GET_PARENTS() Getter for PARENTS, with configurable default
ASK_PARENTS() Getter for PARENTS w/ exceptions if field has no value
HAS_PARENTS() Determine if PARENTS has a value

tags

A list of cedar tags for the entity.

Accessible with the following methods

Method Description
GET_TAGS() Getter for TAGS, with configurable default
ASK_TAGS() Getter for TAGS w/ exceptions if field has no value
HAS_TAGS() Determine if TAGS has a value

Public Local Types In This Class

Internal table types, representing arrays and maps of this class, are defined as local types:

TT_ENTITYLIST

TYPES TT_ENTITYLIST TYPE STANDARD TABLE OF REF TO /AWS1/CL_VPSENTITYITEM WITH DEFAULT KEY
.