Class PermissionsBoundary
- All Implemented Interfaces:
Serializable,SdkPojo,ToCopyableBuilder<PermissionsBoundary.Builder,PermissionsBoundary>
Specifies the configuration of the Amazon Web Services managed or customer managed policy that you want to set as a
permissions boundary. Specify either CustomerManagedPolicyReference to use the name and path of a
customer managed policy, or ManagedPolicyArn to use the ARN of an Amazon Web Services managed policy. A
permissions boundary represents the maximum permissions that any policy can grant your role. For more information,
see Permissions boundaries
for IAM entities in the IAM User Guide.
Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see IAM JSON policy evaluation logic in the IAM User Guide.
- See Also:
-
Nested Class Summary
Nested Classes -
Method Summary
Modifier and TypeMethodDescriptionstatic PermissionsBoundary.Builderbuilder()Specifies the name and path of a customer managed policy.final booleanfinal booleanequalsBySdkFields(Object obj) Indicates whether some other object is "equal to" this one by SDK fields.final <T> Optional<T> getValueForField(String fieldName, Class<T> clazz) final inthashCode()final StringThe Amazon Web Services managed policy ARN that you want to attach to a permission set as a permissions boundary.static Class<? extends PermissionsBoundary.Builder> Take this object and create a builder that contains all of the current property values of this object.final StringtoString()Returns a string representation of this object.Methods inherited from interface software.amazon.awssdk.utils.builder.ToCopyableBuilder
copy
-
Method Details
-
customerManagedPolicyReference
Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each Amazon Web Services account where you want to deploy your permission set.
- Returns:
- Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each Amazon Web Services account where you want to deploy your permission set.
-
managedPolicyArn
The Amazon Web Services managed policy ARN that you want to attach to a permission set as a permissions boundary.
- Returns:
- The Amazon Web Services managed policy ARN that you want to attach to a permission set as a permissions boundary.
-
toBuilder
Description copied from interface:ToCopyableBuilderTake this object and create a builder that contains all of the current property values of this object.- Specified by:
toBuilderin interfaceToCopyableBuilder<PermissionsBoundary.Builder,PermissionsBoundary> - Returns:
- a builder for type T
-
builder
-
serializableBuilderClass
-
hashCode
-
equals
-
equalsBySdkFields
Description copied from interface:SdkPojoIndicates whether some other object is "equal to" this one by SDK fields. An SDK field is a modeled, non-inherited field in anSdkPojoclass, and is generated based on a service model.If an
SdkPojoclass does not have any inherited fields,equalsBySdkFieldsandequalsare essentially the same.- Specified by:
equalsBySdkFieldsin interfaceSdkPojo- Parameters:
obj- the object to be compared with- Returns:
- true if the other object equals to this object by sdk fields, false otherwise.
-
toString
-
getValueForField
-
sdkFields
-