We recommend new projects start with resources from the AWS provider.
aws-native.entityresolution.PolicyStatement
Explore with Pulumi AI
We recommend new projects start with resources from the AWS provider.
Policy Statement defined in AWS Entity Resolution Service
Create PolicyStatement Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new PolicyStatement(name: string, args: PolicyStatementArgs, opts?: CustomResourceOptions);
@overload
def PolicyStatement(resource_name: str,
args: PolicyStatementArgs,
opts: Optional[ResourceOptions] = None)
@overload
def PolicyStatement(resource_name: str,
opts: Optional[ResourceOptions] = None,
arn: Optional[str] = None,
statement_id: Optional[str] = None,
action: Optional[Sequence[str]] = None,
condition: Optional[str] = None,
effect: Optional[PolicyStatementStatementEffect] = None,
principal: Optional[Sequence[str]] = None)
func NewPolicyStatement(ctx *Context, name string, args PolicyStatementArgs, opts ...ResourceOption) (*PolicyStatement, error)
public PolicyStatement(string name, PolicyStatementArgs args, CustomResourceOptions? opts = null)
public PolicyStatement(String name, PolicyStatementArgs args)
public PolicyStatement(String name, PolicyStatementArgs args, CustomResourceOptions options)
type: aws-native:entityresolution:PolicyStatement
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args PolicyStatementArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args PolicyStatementArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args PolicyStatementArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args PolicyStatementArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args PolicyStatementArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
PolicyStatement Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The PolicyStatement resource accepts the following input properties:
- Arn string
- The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- Statement
Id string - A statement identifier that differentiates the statement from others in the same policy.
- Action List<string>
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob
,entityresolution:GetMatchingJob
.- Condition string
- A set of condition keys that you can use in key policies.
- Effect
Pulumi.
Aws Native. Entity Resolution. Policy Statement Statement Effect Determines whether the permissions specified in the policy are to be allowed (
Allow
) or denied (Deny
).If you set the value of the
effect
parameter toDeny
for theAddPolicyStatement
operation, you must also set the value of theeffect
parameter in thepolicy
toDeny
for thePutPolicy
operation.- Principal List<string>
- The AWS service or AWS account that can access the resource defined as ARN.
- Arn string
- The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- Statement
Id string - A statement identifier that differentiates the statement from others in the same policy.
- Action []string
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob
,entityresolution:GetMatchingJob
.- Condition string
- A set of condition keys that you can use in key policies.
- Effect
Policy
Statement Statement Effect Determines whether the permissions specified in the policy are to be allowed (
Allow
) or denied (Deny
).If you set the value of the
effect
parameter toDeny
for theAddPolicyStatement
operation, you must also set the value of theeffect
parameter in thepolicy
toDeny
for thePutPolicy
operation.- Principal []string
- The AWS service or AWS account that can access the resource defined as ARN.
- arn String
- The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- statement
Id String - A statement identifier that differentiates the statement from others in the same policy.
- action List<String>
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob
,entityresolution:GetMatchingJob
.- condition String
- A set of condition keys that you can use in key policies.
- effect
Policy
Statement Statement Effect Determines whether the permissions specified in the policy are to be allowed (
Allow
) or denied (Deny
).If you set the value of the
effect
parameter toDeny
for theAddPolicyStatement
operation, you must also set the value of theeffect
parameter in thepolicy
toDeny
for thePutPolicy
operation.- principal List<String>
- The AWS service or AWS account that can access the resource defined as ARN.
- arn string
- The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- statement
Id string - A statement identifier that differentiates the statement from others in the same policy.
- action string[]
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob
,entityresolution:GetMatchingJob
.- condition string
- A set of condition keys that you can use in key policies.
- effect
Policy
Statement Statement Effect Determines whether the permissions specified in the policy are to be allowed (
Allow
) or denied (Deny
).If you set the value of the
effect
parameter toDeny
for theAddPolicyStatement
operation, you must also set the value of theeffect
parameter in thepolicy
toDeny
for thePutPolicy
operation.- principal string[]
- The AWS service or AWS account that can access the resource defined as ARN.
- arn str
- The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- statement_
id str - A statement identifier that differentiates the statement from others in the same policy.
- action Sequence[str]
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob
,entityresolution:GetMatchingJob
.- condition str
- A set of condition keys that you can use in key policies.
- effect
Policy
Statement Statement Effect Determines whether the permissions specified in the policy are to be allowed (
Allow
) or denied (Deny
).If you set the value of the
effect
parameter toDeny
for theAddPolicyStatement
operation, you must also set the value of theeffect
parameter in thepolicy
toDeny
for thePutPolicy
operation.- principal Sequence[str]
- The AWS service or AWS account that can access the resource defined as ARN.
- arn String
- The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- statement
Id String - A statement identifier that differentiates the statement from others in the same policy.
- action List<String>
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob
,entityresolution:GetMatchingJob
.- condition String
- A set of condition keys that you can use in key policies.
- effect "Allow" | "Deny"
Determines whether the permissions specified in the policy are to be allowed (
Allow
) or denied (Deny
).If you set the value of the
effect
parameter toDeny
for theAddPolicyStatement
operation, you must also set the value of theeffect
parameter in thepolicy
toDeny
for thePutPolicy
operation.- principal List<String>
- The AWS service or AWS account that can access the resource defined as ARN.
Outputs
All input properties are implicitly available as output properties. Additionally, the PolicyStatement resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Supporting Types
PolicyStatementStatementEffect, PolicyStatementStatementEffectArgs
- Allow
- Allow
- Deny
- Deny
- Policy
Statement Statement Effect Allow - Allow
- Policy
Statement Statement Effect Deny - Deny
- Allow
- Allow
- Deny
- Deny
- Allow
- Allow
- Deny
- Deny
- ALLOW
- Allow
- DENY
- Deny
- "Allow"
- Allow
- "Deny"
- Deny
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
We recommend new projects start with resources from the AWS provider.