Skip to content

/AWS1/CL_RAMRESRCSHAREPERMDET

Information about a RAM managed permission.

CONSTRUCTOR

IMPORTING

Optional arguments:

IV_ARN TYPE /AWS1/RAMSTRING /AWS1/RAMSTRING

The Amazon Resource Name (ARN) of this RAM managed permission.

IV_VERSION TYPE /AWS1/RAMSTRING /AWS1/RAMSTRING

The version of the permission described in this response.

IV_DEFAULTVERSION TYPE /AWS1/RAMBOOLEAN /AWS1/RAMBOOLEAN

Specifies whether the version of the permission represented in this response is the default version for this permission.

IV_NAME TYPE /AWS1/RAMSTRING /AWS1/RAMSTRING

The name of this permission.

IV_RESOURCETYPE TYPE /AWS1/RAMSTRING /AWS1/RAMSTRING

The resource type to which this permission applies.

IV_PERMISSION TYPE /AWS1/RAMSTRING /AWS1/RAMSTRING

The permission's effect and actions in JSON format. The effect indicates whether the specified actions are allowed or denied. The actions list the operations to which the principal is granted or denied access.

IV_CREATIONTIME TYPE /AWS1/RAMDATETIME /AWS1/RAMDATETIME

The date and time when the permission was created.

IV_LASTUPDATEDTIME TYPE /AWS1/RAMDATETIME /AWS1/RAMDATETIME

The date and time when the permission was last updated.

IV_ISRESOURCETYPEDEFAULT TYPE /AWS1/RAMBOOLEAN /AWS1/RAMBOOLEAN

Specifies whether the version of the permission represented in this response is the default version for all resources of this resource type.

IV_PERMISSIONTYPE TYPE /AWS1/RAMPERMISSIONTYPE /AWS1/RAMPERMISSIONTYPE

The type of managed permission. This can be one of the following values:

  • AWS_MANAGED – Amazon Web Services created and manages this managed permission. You can associate it with your resource shares, but you can't modify it.

  • CUSTOMER_MANAGED – You, or another principal in your account created this managed permission. You can associate it with your resource shares and create new versions that have different permissions.

IV_FEATURESET TYPE /AWS1/RAMPERMISSIONFEATURESET /AWS1/RAMPERMISSIONFEATURESET

Indicates what features are available for this resource share. This parameter can have one of the following values:

  • STANDARD – A resource share that supports all functionality. These resource shares are visible to all principals you share the resource share with. You can modify these resource shares in RAM using the console or APIs. This resource share might have been created by RAM, or it might have been CREATED_FROM_POLICY and then promoted.

  • CREATED_FROM_POLICY – The customer manually shared a resource by attaching a resource-based policy. That policy did not match any existing managed permissions, so RAM created this customer managed permission automatically on the customer's behalf based on the attached policy document. This type of resource share is visible only to the Amazon Web Services account that created it. You can't modify it in RAM unless you promote it. For more information, see PromoteResourceShareCreatedFromPolicy.

  • PROMOTING_TO_STANDARD – This resource share was originally CREATED_FROM_POLICY, but the customer ran the PromoteResourceShareCreatedFromPolicy and that operation is still in progress. This value changes to STANDARD when complete.

IV_STATUS TYPE /AWS1/RAMPERMISSIONSTATUS /AWS1/RAMPERMISSIONSTATUS

The current status of the association between the permission and the resource share. The following are the possible values:

  • ATTACHABLE – This permission or version can be associated with resource shares.

  • UNATTACHABLE – This permission or version can't currently be associated with resource shares.

  • DELETING – This permission or version is in the process of being deleted.

  • DELETED – This permission or version is deleted.

IT_TAGS TYPE /AWS1/CL_RAMTAG=>TT_TAGLIST TT_TAGLIST

The tag key and value pairs attached to the resource share.

Queryable Attributes

arn

The Amazon Resource Name (ARN) of this RAM managed permission.

Accessible with the following methods

Method Description
GET_ARN() Getter for ARN, with configurable default
ASK_ARN() Getter for ARN w/ exceptions if field has no value
HAS_ARN() Determine if ARN has a value

version

The version of the permission described in this response.

Accessible with the following methods

Method Description
GET_VERSION() Getter for VERSION, with configurable default
ASK_VERSION() Getter for VERSION w/ exceptions if field has no value
HAS_VERSION() Determine if VERSION has a value

defaultVersion

Specifies whether the version of the permission represented in this response is the default version for this permission.

Accessible with the following methods

Method Description
GET_DEFAULTVERSION() Getter for DEFAULTVERSION, with configurable default
ASK_DEFAULTVERSION() Getter for DEFAULTVERSION w/ exceptions if field has no valu
HAS_DEFAULTVERSION() Determine if DEFAULTVERSION has a value

name

The name of this permission.

Accessible with the following methods

Method Description
GET_NAME() Getter for NAME, with configurable default
ASK_NAME() Getter for NAME w/ exceptions if field has no value
HAS_NAME() Determine if NAME has a value

resourceType

The resource type to which this permission applies.

Accessible with the following methods

Method Description
GET_RESOURCETYPE() Getter for RESOURCETYPE, with configurable default
ASK_RESOURCETYPE() Getter for RESOURCETYPE w/ exceptions if field has no value
HAS_RESOURCETYPE() Determine if RESOURCETYPE has a value

permission

The permission's effect and actions in JSON format. The effect indicates whether the specified actions are allowed or denied. The actions list the operations to which the principal is granted or denied access.

Accessible with the following methods

Method Description
GET_PERMISSION() Getter for PERMISSION, with configurable default
ASK_PERMISSION() Getter for PERMISSION w/ exceptions if field has no value
HAS_PERMISSION() Determine if PERMISSION has a value

creationTime

The date and time when the permission was created.

Accessible with the following methods

Method Description
GET_CREATIONTIME() Getter for CREATIONTIME, with configurable default
ASK_CREATIONTIME() Getter for CREATIONTIME w/ exceptions if field has no value
HAS_CREATIONTIME() Determine if CREATIONTIME has a value

lastUpdatedTime

The date and time when the permission was last updated.

Accessible with the following methods

Method Description
GET_LASTUPDATEDTIME() Getter for LASTUPDATEDTIME, with configurable default
ASK_LASTUPDATEDTIME() Getter for LASTUPDATEDTIME w/ exceptions if field has no val
HAS_LASTUPDATEDTIME() Determine if LASTUPDATEDTIME has a value

isResourceTypeDefault

Specifies whether the version of the permission represented in this response is the default version for all resources of this resource type.

Accessible with the following methods

Method Description
GET_ISRESOURCETYPEDEFAULT() Getter for ISRESOURCETYPEDEFAULT, with configurable default
ASK_ISRESOURCETYPEDEFAULT() Getter for ISRESOURCETYPEDEFAULT w/ exceptions if field has
HAS_ISRESOURCETYPEDEFAULT() Determine if ISRESOURCETYPEDEFAULT has a value

permissionType

The type of managed permission. This can be one of the following values:

  • AWS_MANAGED – Amazon Web Services created and manages this managed permission. You can associate it with your resource shares, but you can't modify it.

  • CUSTOMER_MANAGED – You, or another principal in your account created this managed permission. You can associate it with your resource shares and create new versions that have different permissions.

Accessible with the following methods

Method Description
GET_PERMISSIONTYPE() Getter for PERMISSIONTYPE, with configurable default
ASK_PERMISSIONTYPE() Getter for PERMISSIONTYPE w/ exceptions if field has no valu
HAS_PERMISSIONTYPE() Determine if PERMISSIONTYPE has a value

featureSet

Indicates what features are available for this resource share. This parameter can have one of the following values:

  • STANDARD – A resource share that supports all functionality. These resource shares are visible to all principals you share the resource share with. You can modify these resource shares in RAM using the console or APIs. This resource share might have been created by RAM, or it might have been CREATED_FROM_POLICY and then promoted.

  • CREATED_FROM_POLICY – The customer manually shared a resource by attaching a resource-based policy. That policy did not match any existing managed permissions, so RAM created this customer managed permission automatically on the customer's behalf based on the attached policy document. This type of resource share is visible only to the Amazon Web Services account that created it. You can't modify it in RAM unless you promote it. For more information, see PromoteResourceShareCreatedFromPolicy.

  • PROMOTING_TO_STANDARD – This resource share was originally CREATED_FROM_POLICY, but the customer ran the PromoteResourceShareCreatedFromPolicy and that operation is still in progress. This value changes to STANDARD when complete.

Accessible with the following methods

Method Description
GET_FEATURESET() Getter for FEATURESET, with configurable default
ASK_FEATURESET() Getter for FEATURESET w/ exceptions if field has no value
HAS_FEATURESET() Determine if FEATURESET has a value

status

The current status of the association between the permission and the resource share. The following are the possible values:

  • ATTACHABLE – This permission or version can be associated with resource shares.

  • UNATTACHABLE – This permission or version can't currently be associated with resource shares.

  • DELETING – This permission or version is in the process of being deleted.

  • DELETED – This permission or version is deleted.

Accessible with the following methods

Method Description
GET_STATUS() Getter for STATUS, with configurable default
ASK_STATUS() Getter for STATUS w/ exceptions if field has no value
HAS_STATUS() Determine if STATUS has a value

tags

The tag key and value pairs attached to the resource share.

Accessible with the following methods

Method Description
GET_TAGS() Getter for TAGS, with configurable default
ASK_TAGS() Getter for TAGS w/ exceptions if field has no value
HAS_TAGS() Determine if TAGS has a value