L1 ConstructAWS::CloudTrail::ResourcePolicy

CfnResourcePolicy

Attaches a resource-based permission policy to a CloudTrail event data store, dashboard, or channel. For more information about resource-based policies, see [CloudTrail resource-based policy examples](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/security_iam_resource-based-policy-examples.html) in the *CloudTrail User Guide* .

Import

import { CfnResourcePolicy } from 'aws-cdk-lib/aws-cloudtrail';

Or use the module namespace:

import * as cloudtrail from 'aws-cdk-lib/aws-cloudtrail';
// cloudtrail.CfnResourcePolicy

Properties

Configuration passed to the constructor as CfnResourcePolicyProps.

resourceArnRequired

string

The Amazon Resource Name (ARN) of the CloudTrail event data store, dashboard, or channel attached to the resource-based policy. Example event data store ARN format: `arn:aws:cloudtrail:us-east-2:123456789012:eventdatastore/EXAMPLE-f852-4e8f-8bd1-bcf6cEXAMPLE` Example dashboard ARN format: `arn:aws:cloudtrail:us-east-1:123456789012:dashboard/exampleDash` Example channel ARN format: `arn:aws:cloudtrail:us-east-2:123456789012:channel/01234567890`

resourcePolicyRequired

any

A JSON-formatted string for an AWS resource-based policy. For example resource-based policies, see [CloudTrail resource-based policy examples](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/security_iam_resource-based-policy-examples.html) in the *CloudTrail User Guide* .

CloudFormation Resource

This L1 construct maps directly to the following CloudFormation resource type.

AWS::CloudTrail::ResourcePolicyView in CloudFormation Explorer

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

LevelL1 (CloudFormation)

Moduleaws-cloudtrail

CFN TypeAWS::CloudTrail::ResourcePolicy

Properties2

Related Constructs

Explore This Service

External Links

CDK API Documentation