/AWS1/CL_OWX=>SETPERMISSION()

About SetPermission

Specifies a user's permissions. For more information, see Security and Permissions.

Required Permissions: To use this action, an IAM user must have a Manage permissions level for the stack, or an attached policy that explicitly grants permissions. For more information on user permissions, see Managing User Permissions.

Method Signature

IMPORTING

Required arguments:

IV_STACKID TYPE /AWS1/OWXSTRING /AWS1/OWXSTRING

The stack ID.

IV_IAMUSERARN TYPE /AWS1/OWXSTRING /AWS1/OWXSTRING

The user's IAM ARN. This can also be a federated user's ARN.

Optional arguments:

IV_ALLOWSSH TYPE /AWS1/OWXBOOLEAN /AWS1/OWXBOOLEAN

The user is allowed to use SSH to communicate with the instance.

IV_ALLOWSUDO TYPE /AWS1/OWXBOOLEAN /AWS1/OWXBOOLEAN

The user is allowed to use sudo to elevate privileges.

IV_LEVEL TYPE /AWS1/OWXSTRING /AWS1/OWXSTRING

The user's permission level, which must be set to one of the following strings. You cannot set your own permissions level.

• deny

• show

• deploy

• manage

• iam_only

For more information about the permissions associated with these levels, see Managing User Permissions.