Class: Aws::ACMPCA::Types::Permission

Inherits:

Struct

• Object
• Struct
• Aws::ACMPCA::Types::Permission

Includes:

Structure

Defined in:

lib/aws-sdk-acmpca/types.rb

Overview

Permissions designate which private CA actions can be performed by an Amazon Web Services service or entity. In order for ACM to automatically renew private certificates, you must give the ACM service principal all available permissions (‘IssueCertificate`, `GetCertificate`, and `ListPermissions`). Permissions can be assigned with the [CreatePermission] action, removed with the

DeletePermission][2

action, and listed with the [ListPermissions]

action.

[1]: docs.aws.amazon.com/privateca/latest/APIReference/API_CreatePermission.html [2]: docs.aws.amazon.com/privateca/latest/APIReference/API_DeletePermission.html [3]: docs.aws.amazon.com/privateca/latest/APIReference/API_ListPermissions.html

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #actions ⇒ Array<String>

  The private CA actions that can be performed by the designated Amazon Web Services service.

• #certificate_authority_arn ⇒ String

  The Amazon Resource Number (ARN) of the private CA from which the permission was issued.

• #created_at ⇒ Time

  The time at which the permission was created.

• #policy ⇒ String

  The name of the policy that is associated with the permission.

• #principal ⇒ String

  The Amazon Web Services service or entity that holds the permission.

• #source_account ⇒ String

  The ID of the account that assigned the permission.

Instance Attribute Details

#actions ⇒ Array<String>

The private CA actions that can be performed by the designated Amazon Web Services service.

# File 'lib/aws-sdk-acmpca/types.rb', line 2173

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end

#certificate_authority_arn ⇒ String

The Amazon Resource Number (ARN) of the private CA from which the permission was issued.

# File 'lib/aws-sdk-acmpca/types.rb', line 2173

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end

#created_at ⇒ Time

The time at which the permission was created.

# File 'lib/aws-sdk-acmpca/types.rb', line 2173

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end

#policy ⇒ String

The name of the policy that is associated with the permission.

# File 'lib/aws-sdk-acmpca/types.rb', line 2173

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end

#principal ⇒ String

The Amazon Web Services service or entity that holds the permission. At this time, the only valid principal is ‘acm.amazonaws.com`.

# File 'lib/aws-sdk-acmpca/types.rb', line 2173

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end

#source_account ⇒ String

The ID of the account that assigned the permission.

# File 'lib/aws-sdk-acmpca/types.rb', line 2173

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end