UNPKG

aws-cdk-lib

Version:

Version 2 of the AWS Cloud Development Kit library

github.com/aws/aws-cdk

aws/aws-cdk

57 lines (56 loc) 1.81 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
import { Construct } from 'constructs'; import { IStream } from './stream'; import { IStreamConsumer } from './stream-consumer'; import { PolicyDocument } from '../../aws-iam'; import { Resource } from '../../core'; /** * Properties to associate a data stream with a policy */ export interface ResourcePolicyProps { /** * The stream this policy applies to. * * Note: only one of `stream` and `streamConsumer` must be set. * * @default - policy is not associated to a stream */ readonly stream?: IStream; /** * The stream consumer this policy applies to. * * Note: only one of `stream` and `streamConsumer` must be set. * * @default - policy is not associated to a consumer */ readonly streamConsumer?: IStreamConsumer; /** * IAM policy document to apply to a data stream. * * @default - empty policy document */ readonly policyDocument?: PolicyDocument; } /** * The policy for a data stream or registered consumer. * * Policies define the operations that are allowed on this resource. * * You almost never need to define this construct directly. * * All AWS resources that support resource policies have a method called * `addToResourcePolicy()`, which will automatically create a new resource * policy if one doesn't exist yet, otherwise it will add to the existing * policy. * * Prefer to use `addToResourcePolicy()` instead. */ export declare class ResourcePolicy extends Resource { /** Uniquely identifies this class. */ static readonly PROPERTY_INJECTION_ID: string; /** * The IAM policy document for this policy. */ readonly document: PolicyDocument; constructor(scope: Construct, id: string, props: ResourcePolicyProps); private createResourcePolicy; }