Docs Home
We recommend new projects start with resources from the AWS provider.
aws-native.entityresolution.PolicyStatement
Explore with Pulumi AI
We recommend new projects start with resources from the AWS provider.
Policy Statement defined in AWS Entity Resolution Service
Create PolicyStatement Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new PolicyStatement(name: string, args: PolicyStatementArgs, opts?: CustomResourceOptions);@overload
def PolicyStatement(resource_name: str,
args: PolicyStatementArgs,
opts: Optional[ResourceOptions] = None)
@overload
def PolicyStatement(resource_name: str,
opts: Optional[ResourceOptions] = None,
arn: Optional[str] = None,
statement_id: Optional[str] = None,
action: Optional[Sequence[str]] = None,
condition: Optional[str] = None,
effect: Optional[PolicyStatementStatementEffect] = None,
principal: Optional[Sequence[str]] = None)func NewPolicyStatement(ctx *Context, name string, args PolicyStatementArgs, opts ...ResourceOption) (*PolicyStatement, error)public PolicyStatement(string name, PolicyStatementArgs args, CustomResourceOptions? opts = null)public PolicyStatement(String name, PolicyStatementArgs args)
public PolicyStatement(String name, PolicyStatementArgs args, CustomResourceOptions options)
type: aws-native:entityresolution:PolicyStatement
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name
This property is required. string - The unique name of the resource.
- args
This property is required. PolicyStatementArgs - The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name
This property is required. str - The unique name of the resource.
- args
This property is required. PolicyStatementArgs - The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name
This property is required. string - The unique name of the resource.
- args
This property is required. PolicyStatementArgs - The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name
This property is required. string - The unique name of the resource.
- args
This property is required. PolicyStatementArgs - The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name
This property is required. String - The unique name of the resource.
- args
This property is required. PolicyStatementArgs - The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
PolicyStatement Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The PolicyStatement resource accepts the following input properties:
- Arn
This property is required. string - The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- Statement
Id This property is required. string - A statement identifier that differentiates the statement from others in the same policy.
- Action List<string>
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob,entityresolution:GetMatchingJob.- Condition string
- A set of condition keys that you can use in key policies.
- Effect
Pulumi.
Aws Native. Entity Resolution. Policy Statement Statement Effect Determines whether the permissions specified in the policy are to be allowed (
Allow) or denied (Deny).If you set the value of the
effectparameter toDenyfor theAddPolicyStatementoperation, you must also set the value of theeffectparameter in thepolicytoDenyfor thePutPolicyoperation.- Principal List<string>
- The AWS service or AWS account that can access the resource defined as ARN.
- Arn
This property is required. string - The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- Statement
Id This property is required. string - A statement identifier that differentiates the statement from others in the same policy.
- Action []string
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob,entityresolution:GetMatchingJob.- Condition string
- A set of condition keys that you can use in key policies.
- Effect
Policy
Statement Statement Effect Determines whether the permissions specified in the policy are to be allowed (
Allow) or denied (Deny).If you set the value of the
effectparameter toDenyfor theAddPolicyStatementoperation, you must also set the value of theeffectparameter in thepolicytoDenyfor thePutPolicyoperation.- Principal []string
- The AWS service or AWS account that can access the resource defined as ARN.
- arn
This property is required. String - The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- statement
Id This property is required. String - A statement identifier that differentiates the statement from others in the same policy.
- action List<String>
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob,entityresolution:GetMatchingJob.- condition String
- A set of condition keys that you can use in key policies.
- effect
Policy
Statement Statement Effect Determines whether the permissions specified in the policy are to be allowed (
Allow) or denied (Deny).If you set the value of the
effectparameter toDenyfor theAddPolicyStatementoperation, you must also set the value of theeffectparameter in thepolicytoDenyfor thePutPolicyoperation.- principal List<String>
- The AWS service or AWS account that can access the resource defined as ARN.
- arn
This property is required. string - The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- statement
Id This property is required. string - A statement identifier that differentiates the statement from others in the same policy.
- action string[]
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob,entityresolution:GetMatchingJob.- condition string
- A set of condition keys that you can use in key policies.
- effect
Policy
Statement Statement Effect Determines whether the permissions specified in the policy are to be allowed (
Allow) or denied (Deny).If you set the value of the
effectparameter toDenyfor theAddPolicyStatementoperation, you must also set the value of theeffectparameter in thepolicytoDenyfor thePutPolicyoperation.- principal string[]
- The AWS service or AWS account that can access the resource defined as ARN.
- arn
This property is required. str - The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- statement_
id This property is required. str - A statement identifier that differentiates the statement from others in the same policy.
- action Sequence[str]
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob,entityresolution:GetMatchingJob.- condition str
- A set of condition keys that you can use in key policies.
- effect
Policy
Statement Statement Effect Determines whether the permissions specified in the policy are to be allowed (
Allow) or denied (Deny).If you set the value of the
effectparameter toDenyfor theAddPolicyStatementoperation, you must also set the value of theeffectparameter in thepolicytoDenyfor thePutPolicyoperation.- principal Sequence[str]
- The AWS service or AWS account that can access the resource defined as ARN.
- arn
This property is required. String - The Amazon Resource Name (ARN) of the resource that will be accessed by the principal.
- statement
Id This property is required. String - A statement identifier that differentiates the statement from others in the same policy.
- action List<String>
The action that the principal can use on the resource.
For example,
entityresolution:GetIdMappingJob,entityresolution:GetMatchingJob.- condition String
- A set of condition keys that you can use in key policies.
- effect "Allow" | "Deny"
Determines whether the permissions specified in the policy are to be allowed (
Allow) or denied (Deny).If you set the value of the
effectparameter toDenyfor theAddPolicyStatementoperation, you must also set the value of theeffectparameter in thepolicytoDenyfor thePutPolicyoperation.- principal List<String>
- The AWS service or AWS account that can access the resource defined as ARN.
Outputs
All input properties are implicitly available as output properties. Additionally, the PolicyStatement resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Supporting Types
PolicyStatementStatementEffect, PolicyStatementStatementEffectArgs
- Allow
- Allow
- Deny
- Deny
- Policy
Statement Statement Effect Allow - Allow
- Policy
Statement Statement Effect Deny - Deny
- Allow
- Allow
- Deny
- Deny
- Allow
- Allow
- Deny
- Deny
- ALLOW
- Allow
- DENY
- Deny
- "Allow"
- Allow
- "Deny"
- Deny
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
We recommend new projects start with resources from the AWS provider.