PolicyProps

Properties for defining a Policy.

See https://www.alibabacloud.com/help/ros/developer-reference/aliyun-kms-policy

Initializer

using AlibabaCloud.SDK.ROS.CDK.Kms;
new PolicyProps {
    object AccessControlRules,
    object KmsInstanceId,
    object Permissions,
    object PolicyName,
    object Resources,
    object Description = null
};

Properties

Name	Type	Description
`AccessControlRules`	`object`	Property accessControlRules: Network Rules info.
`KmsInstanceId`	`object`	Property kmsInstanceId: The scope of the permission policy.
`Permissions`	`object`	Property permissions: The operations that can be performed.
`PolicyName`	`object`	Property policyName: The name of the permission policy.
`Resources`	`object`	Property resources: The key and secret that are allowed to access.
`Description`	`object`	Property description: The description of the permission policy.

`AccessControlRules`^Required

public object AccessControlRules { get; set; }

Type: object

Property accessControlRules: Network Rules info.

`KmsInstanceId`^Required

public object KmsInstanceId { get; set; }

Type: object

Property kmsInstanceId: The scope of the permission policy.

You need to specify the KMS instance that you want to access.

`Permissions`^Required

public object Permissions { get; set; }

Type: object

Property permissions: The operations that can be performed.

Valid values: RbacPermission/Template/CryptoServiceKeyUser: allows you to perform cryptographic operations. RbacPermission/Template/CryptoServiceSecretUser: allows you to perform secret-related operations.

`PolicyName`^Required

public object PolicyName { get; set; }

Type: object

Property policyName: The name of the permission policy.

`Resources`^Required

public object Resources { get; set; }

Type: object

Property resources: The key and secret that are allowed to access.

Supports a maximum of 30 key and secret. Key: Enter a key in the key/${KeyId} format. To allow access to all keys of a KMS instance, enter key/. Secret: Enter a secret in the secret/${SecretName} format. To allow access to all secrets of a KMS instance, enter secret/.

`Description`^Optional

public object Description { get; set; }

Type: object

Property description: The description of the permission policy.

PolicyProps

Initializer

Properties

AccessControlRulesRequired

KmsInstanceIdRequired

PermissionsRequired

PolicyNameRequired

ResourcesRequired

DescriptionOptional