ManagedPolicy

This class encapsulates and extends the ROS resource type ALIYUN::RAM::ManagedPolicy, which is used to create a Resource Access Management (RAM) policy.

Initializers

import ros_cdk_ram
ros_cdk_ram.ManagedPolicy(
  scope: Construct,
  id: str,
  policy_name: typing.Union[str, IResolvable],
  description: typing.Union[str, IResolvable] = None,
  groups: typing.Union[typing.List[typing.Any], IResolvable] = None,
  ignore_existing: typing.Union[bool, IResolvable] = None,
  policy_document: typing.Union[IResolvable, PolicyDocumentProperty] = None,
  policy_document_unchecked: typing.Union[IResolvable, typing.Mapping[typing.Any]] = None,
  roles: typing.Union[typing.List[typing.Any], IResolvable] = None,
  users: typing.Union[typing.List[typing.Any], IResolvable] = None,
  enable_resource_property_constraint: bool = None
)

Name	Type	Description
`scope`	`ros_cdk_core.Construct`	No description.
`id`	`str`	No description.
`policy_name`	`typing.Union[str, ros_cdk_core.IResolvable]`	Property policyName: Specifies the authorization policy name, containing up to 128 characters.
`description`	`typing.Union[str, ros_cdk_core.IResolvable]`	Property description: Specifies the authorization policy description, containing up to 1024 characters.
`groups`	`typing.Union[typing.List[typing.Any], ros_cdk_core.IResolvable]`	Property groups: The names of groups to attach to this policy.
`ignore_existing`	`typing.Union[bool, ros_cdk_core.IResolvable]`	Property ignoreExisting: Whether to ignore existing policy False: ROS will perform a uniqueness check.If a policy with the same name exists, an error will be reported when creating it. True: ROS will not check the uniqueness.If there is a policy with the same name, the policy creation process will be ignored. If the policy is not created by ROS, it will be ignored during update and delete stage.
`policy_document`	`typing.Union[ros_cdk_core.IResolvable, PolicyDocumentProperty]`	Property policyDocument: A policy document that describes what actions are allowed on which resources.
`policy_document_unchecked`	`typing.Union[ros_cdk_core.IResolvable, typing.Mapping[typing.Any]]`	Property policyDocumentUnchecked: A policy document that describes what actions are allowed on which resources.
`roles`	`typing.Union[typing.List[typing.Any], ros_cdk_core.IResolvable]`	Property roles: The names of roles to attach to this policy.
`users`	`typing.Union[typing.List[typing.Any], ros_cdk_core.IResolvable]`	Property users: The names of users to attach to this policy.
`enable_resource_property_constraint`	`bool`	No description.

`scope`^Required

Type: ros_cdk_core.Construct

`id`^Required

Type: str

`policy_name`^Required

Type: typing.Union[str, ros_cdk_core.IResolvable]

Property policyName: Specifies the authorization policy name, containing up to 128 characters.

`description`^Optional

Type: typing.Union[str, ros_cdk_core.IResolvable]

Property description: Specifies the authorization policy description, containing up to 1024 characters.

`groups`^Optional

Type: typing.Union[typing.List[typing.Any], ros_cdk_core.IResolvable]

Property groups: The names of groups to attach to this policy.

`ignore_existing`^Optional

Type: typing.Union[bool, ros_cdk_core.IResolvable]

Property ignoreExisting: Whether to ignore existing policy False: ROS will perform a uniqueness check.If a policy with the same name exists, an error will be reported when creating it. True: ROS will not check the uniqueness.If there is a policy with the same name, the policy creation process will be ignored. If the policy is not created by ROS, it will be ignored during update and delete stage.

`policy_document`^Optional

Type: typing.Union[ros_cdk_core.IResolvable, PolicyDocumentProperty]

Property policyDocument: A policy document that describes what actions are allowed on which resources.

`policy_document_unchecked`^Optional

Type: typing.Union[ros_cdk_core.IResolvable, typing.Mapping[typing.Any]]

Property policyDocumentUnchecked: A policy document that describes what actions are allowed on which resources.

If it is specified, PolicyDocument will be ignored.

`roles`^Optional

Type: typing.Union[typing.List[typing.Any], ros_cdk_core.IResolvable]

Property roles: The names of roles to attach to this policy.

`users`^Optional

Type: typing.Union[typing.List[typing.Any], ros_cdk_core.IResolvable]

Property users: The names of users to attach to this policy.

`enable_resource_property_constraint`^Optional

Type: bool

Methods

Name	Description
`to_string`	Returns a string representation of this construct.
`synthesize`	Allows this construct to emit artifacts into the cloud assembly during synthesis.
`add_condition`	No description.
`add_count`	No description.
`add_dependency`	No description.
`add_resource_desc`	No description.
`apply_removal_policy`	No description.
`get_att`	No description.
`set_metadata`	No description.

`to_string`

def to_string() -> str

Returns a string representation of this construct.

`synthesize`

def synthesize(
  session: ISynthesisSession
) -> None

Allows this construct to emit artifacts into the cloud assembly during synthesis.

This method is usually implemented by framework-level constructs such as Stack and Asset as they participate in synthesizing the cloud assembly.

session^Required

Type: ros_cdk_core.ISynthesisSession

The synthesis session.

`add_condition`

def add_condition(
  condition: RosCondition
) -> None

condition^Required

Type: ros_cdk_core.RosCondition

`add_count`

def add_count(
  count: typing.Union[typing.Union[int, float], IResolvable]
) -> None

count^Required

Type: typing.Union[typing.Union[int, float], ros_cdk_core.IResolvable]

`add_dependency`

def add_dependency(
  resource: Resource
) -> None

resource^Required

Type: ros_cdk_core.Resource

`add_resource_desc`

def add_resource_desc(
  desc: str
) -> None

desc^Required

Type: str

`apply_removal_policy`

def apply_removal_policy(
  policy: RemovalPolicy
) -> None

policy^Required

Type: ros_cdk_core.RemovalPolicy

`get_att`

def get_att(
  name: str
) -> IResolvable

name^Required

Type: str

`set_metadata`

def set_metadata(
  key: str,
  value: typing.Any
) -> None

key^Required

Type: str

value^Required

Type: typing.Any

Static Functions

Name	Description
`is_construct`	Return whether the given object is a Construct.

`is_construct`

import ros_cdk_ram
ros_cdk_ram.ManagedPolicy.is_construct(
  x: typing.Any
)

Return whether the given object is a Construct.

x^Required

Type: typing.Any

Properties

Name	Type	Description
`node`	`ros_cdk_core.ConstructNode`	The construct tree node associated with this construct.
`ref`	`str`	No description.
`stack`	`ros_cdk_core.Stack`	The stack in which this resource is defined.
`resource`	`ros_cdk_core.RosResource`	No description.
`attr_policy_name`	`ros_cdk_core.IResolvable`	Attribute PolicyName: When the logical ID of this resource is provided to the Ref intrinsic function, Ref returns the ARN.

`node`^Required

node: ConstructNode

Type: ros_cdk_core.ConstructNode

The construct tree node associated with this construct.

`ref`^Required

ref: str

Type: str

`stack`^Required

stack: Stack

Type: ros_cdk_core.Stack

The stack in which this resource is defined.

`resource`^Optional

resource: RosResource

Type: ros_cdk_core.RosResource

`attr_policy_name`^Required

attr_policy_name: IResolvable

Type: ros_cdk_core.IResolvable

Attribute PolicyName: When the logical ID of this resource is provided to the Ref intrinsic function, Ref returns the ARN.

ManagedPolicy

Initializers

scopeRequired

idRequired

policy_nameRequired

descriptionOptional

groupsOptional

ignore_existingOptional

policy_documentOptional

policy_document_uncheckedOptional

rolesOptional

usersOptional

enable_resource_property_constraintOptional

Methods

to_string

synthesize

add_condition

add_count

add_dependency

add_resource_desc

apply_removal_policy

get_att

set_metadata