L1 ConstructAWS::Kinesis::ResourcePolicy

CfnResourcePolicy

Attaches a resource-based policy to a data stream or registered consumer. If you are using an identity other than the root user of the AWS account that owns the resource, the calling identity must have the `PutResourcePolicy` permissions on the specified Kinesis Data Streams resource and belong to the owner's account in order to use this operation. If you don't have `PutResourcePolicy` permissions, Amazon Kinesis Data Streams returns a `403 Access Denied error` . If you receive a `ResourceNotFoundException` , check to see if you passed a valid stream or consumer resource. Request patterns can be one of the following: - Data stream pattern: `arn:aws.*:kinesis:.*:\d{12}:.*stream/\S+` - Consumer pattern: `^(arn):aws.*:kinesis:.*:\d{12}:.*stream\/[a-zA-Z0-9_.-]+\/consumer\/[a-zA-Z0-9_.-]+:[0-9]+` For more information, see [Controlling Access to Amazon Kinesis Data Streams Resources Using IAM](https://docs.aws.amazon.com/streams/latest/dev/controlling-access.html) .

Import

import { CfnResourcePolicy } from 'aws-cdk-lib/aws-kinesis';

Or use the module namespace:

import * as kinesis from 'aws-cdk-lib/aws-kinesis';
// kinesis.CfnResourcePolicy

Properties

Configuration passed to the constructor as CfnResourcePolicyProps.

resourceArnRequired

string | IStreamRef | IStreamConsumerRef

Returns the Amazon Resource Name (ARN) of the resource-based policy.

resourcePolicyRequired

any

This is the description for the resource policy.

CloudFormation Resource

This L1 construct maps directly to the following CloudFormation resource type.

AWS::Kinesis::ResourcePolicyView in CloudFormation Explorer

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

LevelL1 (CloudFormation)

Moduleaws-kinesis

CFN TypeAWS::Kinesis::ResourcePolicy

Properties2

Related Constructs

Explore This Service

External Links

CDK API Documentation