| Class | Description |
|---|---|
| Action |
An access control policy action identifies a specific action in a service
that can be performed on a resource.
|
| Condition |
AWS access control policy conditions are contained in
Statement
objects, and affect when a statement is applied. |
| Policy |
An AWS access control policy is a object that acts as a container for one or
more statements, which specify fine grained rules for allowing or denying
various types of actions from being performed on your AWS resources.
|
| Principal |
A principal is an AWS account or AWS web service, which is being allowed or denied access to a
resource through an access control policy.
|
| Resource |
Represents a resource involved in an AWS access control policy statement.
|
| Statement |
A statement is the formal description of a single permission, and is always
contained within a policy object.
|
| Enum | Description |
|---|---|
| Principal.Services |
The services who have the right to do the assume the role
action.
|
| Principal.WebIdentityProviders |
Web identity providers, such as Login with Amazon, Facebook, or Google.
|
| Statement.Effect |
The effect is the result that you want a policy statement to return at
evaluation time.
|
Copyright © 2017 Amazon Web Services, Inc. All Rights Reserved.