UNPKG

@k9securityio/k9-cdk

Version:

Provision strong AWS security policies easily using the AWS CDK.

github.com/k9securityio/k9-cdk

k9securityio/k9-cdk

15 lines (14 loc) 626 B
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
import { PolicyDocument } from 'aws-cdk-lib/aws-iam'; import { IAccessSpec } from './k9policy'; export interface K9DynamoDBResourcePolicyProps { readonly k9DesiredAccess: Array<IAccessSpec>; } export declare const SID_DENY_EVERYONE_ELSE = "DenyEveryoneElse"; /** * Generate a DynamoDB resource policy from the provided props that can be attached to DynamoDB * resources, particularly tables & indices. * * @param props specifying desired access * @return a PolicyDocument that can be attached to DynamoDB resources */ export declare function makeResourcePolicy(props: K9DynamoDBResourcePolicyProps): PolicyDocument;