To learn how to attach a resource-based policy to a channel, see Create a channel using the MediaTailor console.
Anonymous
access
Consider the following Allow
policy. With this policy in effect, MediaTailor
allows anonymous access to the mediatailor:GetManifest
action on the
channel resource in the policy. This occurs where region
is
the AWS Region, accountID
is your AWS account ID, and
channelName
is the name of the channel resource.
{ "Version": "2012-10-17", "Statement": [ { "Sid": "AllowAnonymous", "Effect": "Allow", "Principal": "*", "Action": "mediatailor:GetManifest", "Resource": "arn:aws:mediatailor:
region
:accountID
:channel/channelName
" } ] }
Cross-account access
Consider the following Allow
policy. With this policy in effect, MediaTailor
allows the mediatailor:GetManifest
action on the channel resource in the
policy, across accounts. This occurs where region
is the
AWS Region, accountID
is your AWS account ID, and
channelName
is the name of the channel resource.
{ "Version": "2012-10-17", "Statement": [ { "Sid": "AllowCrossAccountAccess", "Effect": "Allow", "Principal": {"AWS": "arn:aws:iam::111111111111:root"}, "Action": "mediatailor:GetManifest", "Resource": "arn:aws:mediatailor:
region
:accountID
:channel/channelName
" } ] }