public static interface EvaluationResult.Builder extends CopyableBuilder<EvaluationResult.Builder,EvaluationResult>
Modifier and Type | Method and Description |
---|---|
EvaluationResult.Builder |
evalActionName(String evalActionName)
The name of the API action tested on the indicated resource.
|
EvaluationResult.Builder |
evalDecision(PolicyEvaluationDecisionType evalDecision)
The result of the simulation.
|
EvaluationResult.Builder |
evalDecision(String evalDecision)
The result of the simulation.
|
EvaluationResult.Builder |
evalDecisionDetails(Map<String,PolicyEvaluationDecisionType> evalDecisionDetails)
Additional details about the results of the evaluation decision.
|
EvaluationResult.Builder |
evalDecisionDetailsWithStrings(Map<String,String> evalDecisionDetails)
Additional details about the results of the evaluation decision.
|
EvaluationResult.Builder |
evalResourceName(String evalResourceName)
The ARN of the resource that the indicated API action was tested on.
|
EvaluationResult.Builder |
matchedStatements(Collection<Statement> matchedStatements)
A list of the statements in the input policies that determine the result for this scenario.
|
EvaluationResult.Builder |
matchedStatements(Consumer<Statement.Builder>... matchedStatements)
A list of the statements in the input policies that determine the result for this scenario.
|
EvaluationResult.Builder |
matchedStatements(Statement... matchedStatements)
A list of the statements in the input policies that determine the result for this scenario.
|
EvaluationResult.Builder |
missingContextValues(Collection<String> missingContextValues)
A list of context keys that are required by the included input policies but that were not provided by one of
the input parameters.
|
EvaluationResult.Builder |
missingContextValues(String... missingContextValues)
A list of context keys that are required by the included input policies but that were not provided by one of
the input parameters.
|
default EvaluationResult.Builder |
organizationsDecisionDetail(Consumer<OrganizationsDecisionDetail.Builder> organizationsDecisionDetail)
A structure that details how AWS Organizations and its service control policies affect the results of the
simulation.
|
EvaluationResult.Builder |
organizationsDecisionDetail(OrganizationsDecisionDetail organizationsDecisionDetail)
A structure that details how AWS Organizations and its service control policies affect the results of the
simulation.
|
EvaluationResult.Builder |
resourceSpecificResults(Collection<ResourceSpecificResult> resourceSpecificResults)
The individual results of the simulation of the API action specified in EvalActionName on each resource.
|
EvaluationResult.Builder |
resourceSpecificResults(Consumer<ResourceSpecificResult.Builder>... resourceSpecificResults)
The individual results of the simulation of the API action specified in EvalActionName on each resource.
|
EvaluationResult.Builder |
resourceSpecificResults(ResourceSpecificResult... resourceSpecificResults)
The individual results of the simulation of the API action specified in EvalActionName on each resource.
|
copy
applyMutation, build
EvaluationResult.Builder evalActionName(String evalActionName)
The name of the API action tested on the indicated resource.
evalActionName
- The name of the API action tested on the indicated resource.EvaluationResult.Builder evalResourceName(String evalResourceName)
The ARN of the resource that the indicated API action was tested on.
evalResourceName
- The ARN of the resource that the indicated API action was tested on.EvaluationResult.Builder evalDecision(String evalDecision)
The result of the simulation.
evalDecision
- The result of the simulation.PolicyEvaluationDecisionType
,
PolicyEvaluationDecisionType
EvaluationResult.Builder evalDecision(PolicyEvaluationDecisionType evalDecision)
The result of the simulation.
evalDecision
- The result of the simulation.PolicyEvaluationDecisionType
,
PolicyEvaluationDecisionType
EvaluationResult.Builder matchedStatements(Collection<Statement> matchedStatements)
A list of the statements in the input policies that determine the result for this scenario. Remember that even if multiple statements allow the action on the resource, if only one statement denies that action, then the explicit deny overrides any allow, and the deny statement is the only entry included in the result.
matchedStatements
- A list of the statements in the input policies that determine the result for this scenario. Remember
that even if multiple statements allow the action on the resource, if only one statement denies that
action, then the explicit deny overrides any allow, and the deny statement is the only entry included
in the result.EvaluationResult.Builder matchedStatements(Statement... matchedStatements)
A list of the statements in the input policies that determine the result for this scenario. Remember that even if multiple statements allow the action on the resource, if only one statement denies that action, then the explicit deny overrides any allow, and the deny statement is the only entry included in the result.
matchedStatements
- A list of the statements in the input policies that determine the result for this scenario. Remember
that even if multiple statements allow the action on the resource, if only one statement denies that
action, then the explicit deny overrides any allow, and the deny statement is the only entry included
in the result.EvaluationResult.Builder matchedStatements(Consumer<Statement.Builder>... matchedStatements)
A list of the statements in the input policies that determine the result for this scenario. Remember that even if multiple statements allow the action on the resource, if only one statement denies that action, then the explicit deny overrides any allow, and the deny statement is the only entry included in the result.
This is a convenience that creates an instance of theList.Builder
avoiding the need to
create one manually via List#builder()
.
When the Consumer
completes, List.Builder#build()
is called immediately and its
result is passed to #matchedStatements(List)
.matchedStatements
- a consumer that will call methods on List.Builder
#matchedStatements(List)
EvaluationResult.Builder missingContextValues(Collection<String> missingContextValues)
A list of context keys that are required by the included input policies but that were not provided by one of
the input parameters. This list is used when the resource in a simulation is "*", either explicitly, or when
the ResourceArns
parameter blank. If you include a list of resources, then any missing context
values are instead included under the ResourceSpecificResults
section. To discover the context
keys used by a set of policies, you can call GetContextKeysForCustomPolicy or
GetContextKeysForPrincipalPolicy.
missingContextValues
- A list of context keys that are required by the included input policies but that were not provided by
one of the input parameters. This list is used when the resource in a simulation is "*", either
explicitly, or when the ResourceArns
parameter blank. If you include a list of resources,
then any missing context values are instead included under the ResourceSpecificResults
section. To discover the context keys used by a set of policies, you can call
GetContextKeysForCustomPolicy or GetContextKeysForPrincipalPolicy.EvaluationResult.Builder missingContextValues(String... missingContextValues)
A list of context keys that are required by the included input policies but that were not provided by one of
the input parameters. This list is used when the resource in a simulation is "*", either explicitly, or when
the ResourceArns
parameter blank. If you include a list of resources, then any missing context
values are instead included under the ResourceSpecificResults
section. To discover the context
keys used by a set of policies, you can call GetContextKeysForCustomPolicy or
GetContextKeysForPrincipalPolicy.
missingContextValues
- A list of context keys that are required by the included input policies but that were not provided by
one of the input parameters. This list is used when the resource in a simulation is "*", either
explicitly, or when the ResourceArns
parameter blank. If you include a list of resources,
then any missing context values are instead included under the ResourceSpecificResults
section. To discover the context keys used by a set of policies, you can call
GetContextKeysForCustomPolicy or GetContextKeysForPrincipalPolicy.EvaluationResult.Builder organizationsDecisionDetail(OrganizationsDecisionDetail organizationsDecisionDetail)
A structure that details how AWS Organizations and its service control policies affect the results of the simulation. Only applies if the simulated user's account is part of an organization.
organizationsDecisionDetail
- A structure that details how AWS Organizations and its service control policies affect the results of
the simulation. Only applies if the simulated user's account is part of an organization.default EvaluationResult.Builder organizationsDecisionDetail(Consumer<OrganizationsDecisionDetail.Builder> organizationsDecisionDetail)
A structure that details how AWS Organizations and its service control policies affect the results of the simulation. Only applies if the simulated user's account is part of an organization.
This is a convenience that creates an instance of theOrganizationsDecisionDetail.Builder
avoiding
the need to create one manually via OrganizationsDecisionDetail.builder()
.
When the Consumer
completes, SdkBuilder.build()
is called
immediately and its result is passed to organizationsDecisionDetail(OrganizationsDecisionDetail)
.organizationsDecisionDetail
- a consumer that will call methods on OrganizationsDecisionDetail.Builder
organizationsDecisionDetail(OrganizationsDecisionDetail)
EvaluationResult.Builder evalDecisionDetailsWithStrings(Map<String,String> evalDecisionDetails)
Additional details about the results of the evaluation decision. When there are both IAM policies and resource policies, this parameter explains how each set of policies contributes to the final evaluation decision. When simulating cross-account access to a resource, both the resource-based policy and the caller's IAM policy must grant access. See How IAM Roles Differ from Resource-based Policies
evalDecisionDetails
- Additional details about the results of the evaluation decision. When there are both IAM policies and
resource policies, this parameter explains how each set of policies contributes to the final
evaluation decision. When simulating cross-account access to a resource, both the resource-based
policy and the caller's IAM policy must grant access. See How IAM
Roles Differ from Resource-based PoliciesEvaluationResult.Builder evalDecisionDetails(Map<String,PolicyEvaluationDecisionType> evalDecisionDetails)
Additional details about the results of the evaluation decision. When there are both IAM policies and resource policies, this parameter explains how each set of policies contributes to the final evaluation decision. When simulating cross-account access to a resource, both the resource-based policy and the caller's IAM policy must grant access. See How IAM Roles Differ from Resource-based Policies
evalDecisionDetails
- Additional details about the results of the evaluation decision. When there are both IAM policies and
resource policies, this parameter explains how each set of policies contributes to the final
evaluation decision. When simulating cross-account access to a resource, both the resource-based
policy and the caller's IAM policy must grant access. See How IAM
Roles Differ from Resource-based PoliciesEvaluationResult.Builder resourceSpecificResults(Collection<ResourceSpecificResult> resourceSpecificResults)
The individual results of the simulation of the API action specified in EvalActionName on each resource.
resourceSpecificResults
- The individual results of the simulation of the API action specified in EvalActionName on each
resource.EvaluationResult.Builder resourceSpecificResults(ResourceSpecificResult... resourceSpecificResults)
The individual results of the simulation of the API action specified in EvalActionName on each resource.
resourceSpecificResults
- The individual results of the simulation of the API action specified in EvalActionName on each
resource.EvaluationResult.Builder resourceSpecificResults(Consumer<ResourceSpecificResult.Builder>... resourceSpecificResults)
The individual results of the simulation of the API action specified in EvalActionName on each resource.
This is a convenience that creates an instance of theList.Builder
avoiding
the need to create one manually via List#builder()
.
When the Consumer
completes, List.Builder#build()
is called
immediately and its result is passed to #resourceSpecificResults(List)
.resourceSpecificResults
- a consumer that will call methods on List.Builder
#resourceSpecificResults(List)
Copyright © 2017 Amazon Web Services, Inc. All Rights Reserved.