Skip to content

PolicyProps

Properties for defining a Policy.

See https://www.alibabacloud.com/help/ros/developer-reference/aliyun-kms-policy

Initializer 

import "github.com/alibabacloud-go/ros-cdk/alicloudroscdkkms"
&alicloudroscdkkms.PolicyProps {
    AccessControlRules: interface{},
    KmsInstanceId: interface{},
    Permissions: interface{},
    PolicyName: interface{},
    Resources: interface{},
    Description: interface{},
}

Properties

Name Type Description
AccessControlRules interface{} Property accessControlRules: Network Rules info.
KmsInstanceId interface{} Property kmsInstanceId: The scope of the permission policy.
Permissions interface{} Property permissions: The operations that can be performed.
PolicyName interface{} Property policyName: The name of the permission policy.
Resources interface{} Property resources: The key and secret that are allowed to access.
Description interface{} Property description: The description of the permission policy.

AccessControlRulesRequired 

AccessControlRules interface{}
  • Type: interface{}

Property accessControlRules: Network Rules info.

KmsInstanceIdRequired 

KmsInstanceId interface{}
  • Type: interface{}

Property kmsInstanceId: The scope of the permission policy.

You need to specify the KMS instance that you want to access.

PermissionsRequired 

Permissions interface{}
  • Type: interface{}

Property permissions: The operations that can be performed.

Valid values: RbacPermission/Template/CryptoServiceKeyUser: allows you to perform cryptographic operations. RbacPermission/Template/CryptoServiceSecretUser: allows you to perform secret-related operations.

PolicyNameRequired 

PolicyName interface{}
  • Type: interface{}

Property policyName: The name of the permission policy.

ResourcesRequired 

Resources interface{}
  • Type: interface{}

Property resources: The key and secret that are allowed to access.

Supports a maximum of 30 key and secret. Key: Enter a key in the key/${KeyId} format. To allow access to all keys of a KMS instance, enter key/. Secret: Enter a secret in the secret/${SecretName} format. To allow access to all secrets of a KMS instance, enter secret/.

DescriptionOptional 

Description interface{}
  • Type: interface{}

Property description: The description of the permission policy.