Learn R Programming

paws.security.identity (version 0.1.0)

wafregional_put_permission_policy: Attaches a IAM policy to the specified resource

Description

Attaches a IAM policy to the specified resource. The only supported use for this action is to share a RuleGroup across accounts.

Usage

wafregional_put_permission_policy(ResourceArn, Policy)

Arguments

ResourceArn

[required] The Amazon Resource Name (ARN) of the RuleGroup to which you want to attach the policy.

Policy

[required] The policy to attach to the specified RuleGroup.

Request syntax

svc$put_permission_policy(
  ResourceArn = "string",
  Policy = "string"
)

Details

The PutPermissionPolicy is subject to the following restrictions:

  • You can attach only one policy with each PutPermissionPolicy request.

  • The policy must include an Effect, Action and Principal.

  • Effect must specify Allow.

  • The Action in the policy must be waf:UpdateWebACL, waf-regional:UpdateWebACL, waf:GetRuleGroup and waf-regional:GetRuleGroup . Any extra or wildcard actions in the policy will be rejected.

  • The policy cannot include a Resource parameter.

  • The ARN in the request must be a valid WAF RuleGroup ARN and the RuleGroup must exist in the same region.

  • The user making the request must be the owner of the RuleGroup.

  • Your policy must be composed using IAM Policy version 2012-10-17.

For more information, see IAM Policies.

An example of a valid policy parameter is shown in the Examples section below.