/AWS1/CL_RAMRESRCSHAREPERMDET¶
Information about a RAM managed permission.
CONSTRUCTOR
¶
IMPORTING¶
Optional arguments:¶
IV_ARN
TYPE /AWS1/RAMSTRING
/AWS1/RAMSTRING
¶
The Amazon Resource Name (ARN) of this RAM managed permission.
IV_VERSION
TYPE /AWS1/RAMSTRING
/AWS1/RAMSTRING
¶
The version of the permission described in this response.
IV_DEFAULTVERSION
TYPE /AWS1/RAMBOOLEAN
/AWS1/RAMBOOLEAN
¶
Specifies whether the version of the permission represented in this response is the default version for this permission.
IV_NAME
TYPE /AWS1/RAMSTRING
/AWS1/RAMSTRING
¶
The name of this permission.
IV_RESOURCETYPE
TYPE /AWS1/RAMSTRING
/AWS1/RAMSTRING
¶
The resource type to which this permission applies.
IV_PERMISSION
TYPE /AWS1/RAMSTRING
/AWS1/RAMSTRING
¶
The permission's effect and actions in JSON format. The
effect
indicates whether the specified actions are allowed or denied. Theactions
list the operations to which the principal is granted or denied access.
IV_CREATIONTIME
TYPE /AWS1/RAMDATETIME
/AWS1/RAMDATETIME
¶
The date and time when the permission was created.
IV_LASTUPDATEDTIME
TYPE /AWS1/RAMDATETIME
/AWS1/RAMDATETIME
¶
The date and time when the permission was last updated.
IV_ISRESOURCETYPEDEFAULT
TYPE /AWS1/RAMBOOLEAN
/AWS1/RAMBOOLEAN
¶
Specifies whether the version of the permission represented in this response is the default version for all resources of this resource type.
IV_PERMISSIONTYPE
TYPE /AWS1/RAMPERMISSIONTYPE
/AWS1/RAMPERMISSIONTYPE
¶
The type of managed permission. This can be one of the following values:
AWS_MANAGED
– Amazon Web Services created and manages this managed permission. You can associate it with your resource shares, but you can't modify it.
CUSTOMER_MANAGED
– You, or another principal in your account created this managed permission. You can associate it with your resource shares and create new versions that have different permissions.
IV_FEATURESET
TYPE /AWS1/RAMPERMISSIONFEATURESET
/AWS1/RAMPERMISSIONFEATURESET
¶
Indicates what features are available for this resource share. This parameter can have one of the following values:
STANDARD – A resource share that supports all functionality. These resource shares are visible to all principals you share the resource share with. You can modify these resource shares in RAM using the console or APIs. This resource share might have been created by RAM, or it might have been CREATED_FROM_POLICY and then promoted.
CREATED_FROM_POLICY – The customer manually shared a resource by attaching a resource-based policy. That policy did not match any existing managed permissions, so RAM created this customer managed permission automatically on the customer's behalf based on the attached policy document. This type of resource share is visible only to the Amazon Web Services account that created it. You can't modify it in RAM unless you promote it. For more information, see PromoteResourceShareCreatedFromPolicy.
PROMOTING_TO_STANDARD – This resource share was originally
CREATED_FROM_POLICY
, but the customer ran the PromoteResourceShareCreatedFromPolicy and that operation is still in progress. This value changes toSTANDARD
when complete.
IV_STATUS
TYPE /AWS1/RAMPERMISSIONSTATUS
/AWS1/RAMPERMISSIONSTATUS
¶
The current status of the association between the permission and the resource share. The following are the possible values:
ATTACHABLE
– This permission or version can be associated with resource shares.
UNATTACHABLE
– This permission or version can't currently be associated with resource shares.
DELETING
– This permission or version is in the process of being deleted.
DELETED
– This permission or version is deleted.
IT_TAGS
TYPE /AWS1/CL_RAMTAG=>TT_TAGLIST
TT_TAGLIST
¶
The tag key and value pairs attached to the resource share.
Queryable Attributes¶
arn¶
The Amazon Resource Name (ARN) of this RAM managed permission.
Accessible with the following methods¶
Method | Description |
---|---|
GET_ARN() |
Getter for ARN, with configurable default |
ASK_ARN() |
Getter for ARN w/ exceptions if field has no value |
HAS_ARN() |
Determine if ARN has a value |
version¶
The version of the permission described in this response.
Accessible with the following methods¶
Method | Description |
---|---|
GET_VERSION() |
Getter for VERSION, with configurable default |
ASK_VERSION() |
Getter for VERSION w/ exceptions if field has no value |
HAS_VERSION() |
Determine if VERSION has a value |
defaultVersion¶
Specifies whether the version of the permission represented in this response is the default version for this permission.
Accessible with the following methods¶
Method | Description |
---|---|
GET_DEFAULTVERSION() |
Getter for DEFAULTVERSION, with configurable default |
ASK_DEFAULTVERSION() |
Getter for DEFAULTVERSION w/ exceptions if field has no valu |
HAS_DEFAULTVERSION() |
Determine if DEFAULTVERSION has a value |
name¶
The name of this permission.
Accessible with the following methods¶
Method | Description |
---|---|
GET_NAME() |
Getter for NAME, with configurable default |
ASK_NAME() |
Getter for NAME w/ exceptions if field has no value |
HAS_NAME() |
Determine if NAME has a value |
resourceType¶
The resource type to which this permission applies.
Accessible with the following methods¶
Method | Description |
---|---|
GET_RESOURCETYPE() |
Getter for RESOURCETYPE, with configurable default |
ASK_RESOURCETYPE() |
Getter for RESOURCETYPE w/ exceptions if field has no value |
HAS_RESOURCETYPE() |
Determine if RESOURCETYPE has a value |
permission¶
The permission's effect and actions in JSON format. The
effect
indicates whether the specified actions are allowed or denied. Theactions
list the operations to which the principal is granted or denied access.
Accessible with the following methods¶
Method | Description |
---|---|
GET_PERMISSION() |
Getter for PERMISSION, with configurable default |
ASK_PERMISSION() |
Getter for PERMISSION w/ exceptions if field has no value |
HAS_PERMISSION() |
Determine if PERMISSION has a value |
creationTime¶
The date and time when the permission was created.
Accessible with the following methods¶
Method | Description |
---|---|
GET_CREATIONTIME() |
Getter for CREATIONTIME, with configurable default |
ASK_CREATIONTIME() |
Getter for CREATIONTIME w/ exceptions if field has no value |
HAS_CREATIONTIME() |
Determine if CREATIONTIME has a value |
lastUpdatedTime¶
The date and time when the permission was last updated.
Accessible with the following methods¶
Method | Description |
---|---|
GET_LASTUPDATEDTIME() |
Getter for LASTUPDATEDTIME, with configurable default |
ASK_LASTUPDATEDTIME() |
Getter for LASTUPDATEDTIME w/ exceptions if field has no val |
HAS_LASTUPDATEDTIME() |
Determine if LASTUPDATEDTIME has a value |
isResourceTypeDefault¶
Specifies whether the version of the permission represented in this response is the default version for all resources of this resource type.
Accessible with the following methods¶
Method | Description |
---|---|
GET_ISRESOURCETYPEDEFAULT() |
Getter for ISRESOURCETYPEDEFAULT, with configurable default |
ASK_ISRESOURCETYPEDEFAULT() |
Getter for ISRESOURCETYPEDEFAULT w/ exceptions if field has |
HAS_ISRESOURCETYPEDEFAULT() |
Determine if ISRESOURCETYPEDEFAULT has a value |
permissionType¶
The type of managed permission. This can be one of the following values:
AWS_MANAGED
– Amazon Web Services created and manages this managed permission. You can associate it with your resource shares, but you can't modify it.
CUSTOMER_MANAGED
– You, or another principal in your account created this managed permission. You can associate it with your resource shares and create new versions that have different permissions.
Accessible with the following methods¶
Method | Description |
---|---|
GET_PERMISSIONTYPE() |
Getter for PERMISSIONTYPE, with configurable default |
ASK_PERMISSIONTYPE() |
Getter for PERMISSIONTYPE w/ exceptions if field has no valu |
HAS_PERMISSIONTYPE() |
Determine if PERMISSIONTYPE has a value |
featureSet¶
Indicates what features are available for this resource share. This parameter can have one of the following values:
STANDARD – A resource share that supports all functionality. These resource shares are visible to all principals you share the resource share with. You can modify these resource shares in RAM using the console or APIs. This resource share might have been created by RAM, or it might have been CREATED_FROM_POLICY and then promoted.
CREATED_FROM_POLICY – The customer manually shared a resource by attaching a resource-based policy. That policy did not match any existing managed permissions, so RAM created this customer managed permission automatically on the customer's behalf based on the attached policy document. This type of resource share is visible only to the Amazon Web Services account that created it. You can't modify it in RAM unless you promote it. For more information, see PromoteResourceShareCreatedFromPolicy.
PROMOTING_TO_STANDARD – This resource share was originally
CREATED_FROM_POLICY
, but the customer ran the PromoteResourceShareCreatedFromPolicy and that operation is still in progress. This value changes toSTANDARD
when complete.
Accessible with the following methods¶
Method | Description |
---|---|
GET_FEATURESET() |
Getter for FEATURESET, with configurable default |
ASK_FEATURESET() |
Getter for FEATURESET w/ exceptions if field has no value |
HAS_FEATURESET() |
Determine if FEATURESET has a value |
status¶
The current status of the association between the permission and the resource share. The following are the possible values:
ATTACHABLE
– This permission or version can be associated with resource shares.
UNATTACHABLE
– This permission or version can't currently be associated with resource shares.
DELETING
– This permission or version is in the process of being deleted.
DELETED
– This permission or version is deleted.
Accessible with the following methods¶
Method | Description |
---|---|
GET_STATUS() |
Getter for STATUS, with configurable default |
ASK_STATUS() |
Getter for STATUS w/ exceptions if field has no value |
HAS_STATUS() |
Determine if STATUS has a value |
tags¶
The tag key and value pairs attached to the resource share.
Accessible with the following methods¶
Method | Description |
---|---|
GET_TAGS() |
Getter for TAGS, with configurable default |
ASK_TAGS() |
Getter for TAGS w/ exceptions if field has no value |
HAS_TAGS() |
Determine if TAGS has a value |