UNPKG

aws-cdk-lib

Version:

Version 2 of the AWS Cloud Development Kit library

github.com/aws/aws-cdk

aws/aws-cdk

27 lines (26 loc) 1.11 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
import { Construct } from 'constructs'; import * as iam from '../../../aws-iam'; import { PolicyStatement } from '../../../aws-iam'; /** * Role which will be reused across asset jobs * * Has some '*' resources to save IAM policy space, and will not * actually add policies that look like policies that were already added. */ export declare class AssetSingletonRole extends iam.Role { private _rejectDuplicates; private _assumeRoleStatement; constructor(scope: Construct, id: string, props: iam.RoleProps); addToPrincipalPolicy(statement: PolicyStatement): iam.AddToPrincipalPolicyResult; /** * Make sure the Role has sts:AssumeRole permissions to the given ARN * * Will add a new PolicyStatement to the Role if necessary, otherwise add resources to the existing * PolicyStatement. * * Normally this would have been many `grantAssume()` calls (which would get deduplicated by the * policy minimization logic), but we have to account for old pipelines that don't have policy * minimization enabled. */ addAssumeRole(roleArn: string): void; }