| Safe Haskell | None |
|---|---|
| Language | Haskell2010 |
Stratosphere.Resources.Policy
Description
The AWS::IAM::Policy resource associates an IAM policy with IAM users, roles, or groups. For more information about IAM policies, see Overview of IAM Policies in the IAM User Guide guide.
- data Policy = Policy {
- _policyGroups :: Maybe [Val Text]
- _policyPolicyDocument :: Object
- _policyPolicyName :: Val Text
- _policyRoles :: Maybe [Val Text]
- _policyUsers :: Maybe [Val Text]
- policy :: Object -> Val Text -> Policy
- pGroups :: Lens' Policy (Maybe [Val Text])
- pPolicyDocument :: Lens' Policy Object
- pPolicyName :: Lens' Policy (Val Text)
- pRoles :: Lens' Policy (Maybe [Val Text])
- pUsers :: Lens' Policy (Maybe [Val Text])
Documentation
Full data type definition for Policy. See policy for a more convenient
constructor.
Constructors
| Policy | |
Fields
| |
Constructor for Policy containing required fields as arguments.
pGroups :: Lens' Policy (Maybe [Val Text]) Source
The names of groups to which you want to add the policy.
pPolicyDocument :: Lens' Policy Object Source
A policy document that contains permissions to add to the specified users or groups.
pPolicyName :: Lens' Policy (Val Text) Source
The name of the policy. If you specify multiple policies for an entity, specify unique names. For example, if you specify a list of policies for an IAM role, each policy must have a unique name.
pRoles :: Lens' Policy (Maybe [Val Text]) Source
The names of AWS::IAM::Roles to attach to this policy. Note If a policy has a Ref to a role and if a resource (such as AWS::ECS::Service) also has a Ref to the same role, add a DependsOn attribute to the resource so that the resource depends on the policy. This dependency ensures that the role's policy is available throughout the resource's lifecycle. For example, when you delete a stack with an AWS::ECS::Service resource, the DependsOn attribute ensures that the AWS::ECS::Service resource can complete its deletion before its role's policy is deleted.