L1 ConstructAWS::VerifiedPermissions::PolicyTemplate

CfnPolicyTemplate

Creates a policy template. A template can use placeholders for the principal and resource. A template must be instantiated into a policy by associating it with specific principals and resources to use for the placeholders. That instantiated policy can then be considered in authorization decisions. The instantiated policy works identically to any other policy, except that it is dynamically linked to the template. If the template changes, then any policies that are linked to that template are immediately updated as well.

Import

import { CfnPolicyTemplate } from 'aws-cdk-lib/aws-verifiedpermissions';

Or use the module namespace:

import * as verifiedpermissions from 'aws-cdk-lib/aws-verifiedpermissions';
// verifiedpermissions.CfnPolicyTemplate

Properties

Configuration passed to the constructor as CfnPolicyTemplateProps.

policyStoreIdRequired

string

The unique identifier of the policy store that contains the template.

statementRequired

string

Specifies the content that you want to use for the new policy template, written in the Cedar policy language.

descriptionOptional

string

The description to attach to the new or updated policy template.

CloudFormation Resource

This L1 construct maps directly to the following CloudFormation resource type.

AWS::VerifiedPermissions::PolicyTemplateView in CloudFormation Explorer

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

LevelL1 (CloudFormation)

Moduleaws-verifiedpermissions

CFN TypeAWS::VerifiedPermissions::PolicyTemplate

Properties3

Related Constructs

Explore This Service

External Links

CDK API Documentation