1. Packages
  2. AWS Cloud Control
  3. API Docs
  4. entityresolution
  5. PolicyStatement

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.9.0 published on Monday, Nov 18, 2024 by Pulumi

aws-native.entityresolution.PolicyStatement

Explore with Pulumi AI

aws-native logo

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.9.0 published on Monday, Nov 18, 2024 by Pulumi

    Policy Statement defined in AWS Entity Resolution Service

    Create PolicyStatement Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new PolicyStatement(name: string, args: PolicyStatementArgs, opts?: CustomResourceOptions);
    @overload
    def PolicyStatement(resource_name: str,
                        args: PolicyStatementArgs,
                        opts: Optional[ResourceOptions] = None)
    
    @overload
    def PolicyStatement(resource_name: str,
                        opts: Optional[ResourceOptions] = None,
                        arn: Optional[str] = None,
                        statement_id: Optional[str] = None,
                        action: Optional[Sequence[str]] = None,
                        condition: Optional[str] = None,
                        effect: Optional[PolicyStatementStatementEffect] = None,
                        principal: Optional[Sequence[str]] = None)
    func NewPolicyStatement(ctx *Context, name string, args PolicyStatementArgs, opts ...ResourceOption) (*PolicyStatement, error)
    public PolicyStatement(string name, PolicyStatementArgs args, CustomResourceOptions? opts = null)
    public PolicyStatement(String name, PolicyStatementArgs args)
    public PolicyStatement(String name, PolicyStatementArgs args, CustomResourceOptions options)
    
    type: aws-native:entityresolution:PolicyStatement
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args PolicyStatementArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args PolicyStatementArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args PolicyStatementArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args PolicyStatementArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args PolicyStatementArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    PolicyStatement Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The PolicyStatement resource accepts the following input properties:

    Arn string
    The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
    StatementId string
    A statement identifier that differentiates the statement from others in the same policy.
    Action List<string>

    The action that the principal can use on the resource.

    For example, entityresolution:GetIdMappingJob , entityresolution:GetMatchingJob .

    Condition string
    A set of condition keys that you can use in key policies.
    Effect Pulumi.AwsNative.EntityResolution.PolicyStatementStatementEffect

    Determines whether the permissions specified in the policy are to be allowed ( Allow ) or denied ( Deny ).

    If you set the value of the effect parameter to Deny for the AddPolicyStatement operation, you must also set the value of the effect parameter in the policy to Deny for the PutPolicy operation.

    Principal List<string>
    The AWS service or AWS account that can access the resource defined as ARN.
    Arn string
    The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
    StatementId string
    A statement identifier that differentiates the statement from others in the same policy.
    Action []string

    The action that the principal can use on the resource.

    For example, entityresolution:GetIdMappingJob , entityresolution:GetMatchingJob .

    Condition string
    A set of condition keys that you can use in key policies.
    Effect PolicyStatementStatementEffect

    Determines whether the permissions specified in the policy are to be allowed ( Allow ) or denied ( Deny ).

    If you set the value of the effect parameter to Deny for the AddPolicyStatement operation, you must also set the value of the effect parameter in the policy to Deny for the PutPolicy operation.

    Principal []string
    The AWS service or AWS account that can access the resource defined as ARN.
    arn String
    The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
    statementId String
    A statement identifier that differentiates the statement from others in the same policy.
    action List<String>

    The action that the principal can use on the resource.

    For example, entityresolution:GetIdMappingJob , entityresolution:GetMatchingJob .

    condition String
    A set of condition keys that you can use in key policies.
    effect PolicyStatementStatementEffect

    Determines whether the permissions specified in the policy are to be allowed ( Allow ) or denied ( Deny ).

    If you set the value of the effect parameter to Deny for the AddPolicyStatement operation, you must also set the value of the effect parameter in the policy to Deny for the PutPolicy operation.

    principal List<String>
    The AWS service or AWS account that can access the resource defined as ARN.
    arn string
    The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
    statementId string
    A statement identifier that differentiates the statement from others in the same policy.
    action string[]

    The action that the principal can use on the resource.

    For example, entityresolution:GetIdMappingJob , entityresolution:GetMatchingJob .

    condition string
    A set of condition keys that you can use in key policies.
    effect PolicyStatementStatementEffect

    Determines whether the permissions specified in the policy are to be allowed ( Allow ) or denied ( Deny ).

    If you set the value of the effect parameter to Deny for the AddPolicyStatement operation, you must also set the value of the effect parameter in the policy to Deny for the PutPolicy operation.

    principal string[]
    The AWS service or AWS account that can access the resource defined as ARN.
    arn str
    The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
    statement_id str
    A statement identifier that differentiates the statement from others in the same policy.
    action Sequence[str]

    The action that the principal can use on the resource.

    For example, entityresolution:GetIdMappingJob , entityresolution:GetMatchingJob .

    condition str
    A set of condition keys that you can use in key policies.
    effect PolicyStatementStatementEffect

    Determines whether the permissions specified in the policy are to be allowed ( Allow ) or denied ( Deny ).

    If you set the value of the effect parameter to Deny for the AddPolicyStatement operation, you must also set the value of the effect parameter in the policy to Deny for the PutPolicy operation.

    principal Sequence[str]
    The AWS service or AWS account that can access the resource defined as ARN.
    arn String
    The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
    statementId String
    A statement identifier that differentiates the statement from others in the same policy.
    action List<String>

    The action that the principal can use on the resource.

    For example, entityresolution:GetIdMappingJob , entityresolution:GetMatchingJob .

    condition String
    A set of condition keys that you can use in key policies.
    effect "Allow" | "Deny"

    Determines whether the permissions specified in the policy are to be allowed ( Allow ) or denied ( Deny ).

    If you set the value of the effect parameter to Deny for the AddPolicyStatement operation, you must also set the value of the effect parameter in the policy to Deny for the PutPolicy operation.

    principal List<String>
    The AWS service or AWS account that can access the resource defined as ARN.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the PolicyStatement resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Supporting Types

    PolicyStatementStatementEffect, PolicyStatementStatementEffectArgs

    Allow
    Allow
    Deny
    Deny
    PolicyStatementStatementEffectAllow
    Allow
    PolicyStatementStatementEffectDeny
    Deny
    Allow
    Allow
    Deny
    Deny
    Allow
    Allow
    Deny
    Deny
    ALLOW
    Allow
    DENY
    Deny
    "Allow"
    Allow
    "Deny"
    Deny

    Package Details

    Repository
    AWS Native pulumi/pulumi-aws-native
    License
    Apache-2.0
    aws-native logo

    We recommend new projects start with resources from the AWS provider.

    AWS Cloud Control v1.9.0 published on Monday, Nov 18, 2024 by Pulumi