UNPKG

@aws-cdk/aws-iam

Version:

CDK routines for easily assigning correct and minimal IAM permissions

github.com/aws/aws-cdk

aws/aws-cdk

22 lines (21 loc) 913 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
import { IConstruct } from '@aws-cdk/core'; import { PolicyStatement } from '../policy-statement'; /** * Merge as many statements as possible to shrink the total policy doc, modifying the input array in place * * We compare and merge all pairs of statements (O(N^2) complexity), opportunistically * merging them. This is not guaranteed to produce the optimal output, but it's probably * Good Enough(tm). If it merges anything, it's at least going to produce a smaller output * than the input. */ export declare function mergeStatements(scope: IConstruct, statements: PolicyStatement[], limitSize: boolean): MergeStatementResult; export interface MergeStatementResult { /** * The list of maximally merged statements */ readonly mergedStatements: PolicyStatement[]; /** * Mapping of old to new statements */ readonly originsMap: Map<PolicyStatement, PolicyStatement[]>; }