policy

Gets an individual policy resource

Overview

Name	policy
Type	Resource
Description	policy
Id	awscc.iot.policy

Fields

Name	Datatype	Description
id	string
arn	string
policy_document	object
policy_name	string
tags	array
region	string	AWS region.

Methods

Currently only SELECT is supported for this resource resource.

Example

SELECT
region,
id,
arn,
policy_document,
policy_name,
tags
FROM awscc.iot.policy
WHERE data__Identifier = '<Id>';

Permissions

To operate on the policy resource, the following permissions are required:

Read

iot:GetPolicy,
iot:ListTagsForResource

Delete

iot:DeletePolicy,
iot:GetPolicy,
iot:ListPolicyVersions,
iot:DeletePolicyVersion

Update

iot:GetPolicy,
iot:ListPolicyVersions,
iot:CreatePolicyVersion,
iot:DeletePolicyVersion,
iot:SetDefaultPolicyVersion,
iot:TagResource,
iot:UntagResource,
iot:ListTagsForResource