com.pulumi.awsnative.iam.kotlin.RolePolicy.kt Maven / Gradle / Ivy
@file:Suppress("NAME_SHADOWING", "DEPRECATION")
package com.pulumi.awsnative.iam.kotlin
import com.pulumi.core.Output
import com.pulumi.kotlin.KotlinCustomResource
import com.pulumi.kotlin.PulumiTagMarker
import com.pulumi.kotlin.ResourceMapper
import com.pulumi.kotlin.options.CustomResourceOptions
import com.pulumi.kotlin.options.CustomResourceOptionsBuilder
import com.pulumi.resources.Resource
import kotlin.Any
import kotlin.Boolean
import kotlin.String
import kotlin.Suppress
import kotlin.Unit
/**
* Builder for [RolePolicy].
*/
@PulumiTagMarker
public class RolePolicyResourceBuilder internal constructor() {
public var name: String? = null
public var args: RolePolicyArgs = RolePolicyArgs()
public var opts: CustomResourceOptions = CustomResourceOptions()
/**
* @param name The _unique_ name of the resulting resource.
*/
public fun name(`value`: String) {
this.name = value
}
/**
* @param block The arguments to use to populate this resource's properties.
*/
public suspend fun args(block: suspend RolePolicyArgsBuilder.() -> Unit) {
val builder = RolePolicyArgsBuilder()
block(builder)
this.args = builder.build()
}
/**
* @param block A bag of options that control this resource's behavior.
*/
public suspend fun opts(block: suspend CustomResourceOptionsBuilder.() -> Unit) {
this.opts = com.pulumi.kotlin.options.CustomResourceOptions.opts(block)
}
internal fun build(): RolePolicy {
val builtJavaResource = com.pulumi.awsnative.iam.RolePolicy(
this.name,
this.args.toJava(),
this.opts.toJava(),
)
return RolePolicy(builtJavaResource)
}
}
/**
* Adds or updates an inline policy document that is embedded in the specified IAM role.
* When you embed an inline policy in a role, the inline policy is used as part of the role's access (permissions) policy. The role's trust policy is created at the same time as the role, using [CreateRole](https://docs.aws.amazon.com/IAM/latest/APIReference/API_CreateRole.html). You can update a role's trust policy using [UpdateAssumeRolePolicy](https://docs.aws.amazon.com/IAM/latest/APIReference/API_UpdateAssumeRolePolicy.html). For information about roles, see [roles](https://docs.aws.amazon.com/IAM/latest/UserGuide/roles-toplevel.html) in the *IAM User Guide*.
* A role can also have a managed policy attached to it. To attach a managed policy to a role, use [AWS::IAM::Role](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iam-role.html). To create a new managed policy, use [AWS::IAM::ManagedPolicy](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iam-managedpolicy.html). For information about policies, see [Managed policies and inline policies](https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the *IAM User Guide*.
* For information about the maximum number of inline policies that you can embed with a role, see [IAM and quotas](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html) in the *IAM User Guide*.
*/
public class RolePolicy internal constructor(
override val javaResource: com.pulumi.awsnative.iam.RolePolicy,
) : KotlinCustomResource(javaResource, RolePolicyMapper) {
/**
* The policy document.
* You must provide policies in JSON format in IAM. However, for CFN templates formatted in YAML, you can provide the policy in JSON or YAML format. CFN always converts a YAML policy to JSON format before submitting it to IAM.
* The [regex pattern](https://docs.aws.amazon.com/http://wikipedia.org/wiki/regex) used to validate this parameter is a string of characters consisting of the following:
* + Any printable ASCII character ranging from the space character (``\u0020``) through the end of the ASCII character range
* + The printable characters in the Basic Latin and Latin-1 Supplement character set (through ``\u00FF``)
* + The special characters tab (``\u0009``), line feed (``\u000A``), and carriage return (``\u000D``)
* Search the [CloudFormation User Guide](https://docs.aws.amazon.com/cloudformation/) for `AWS::IAM::RolePolicy` for more information about the expected schema for this property.
*/
public val policyDocument: Output?
get() = javaResource.policyDocument().applyValue({ args0 ->
args0.map({ args0 ->
args0
}).orElse(null)
})
/**
* The name of the policy document.
* This parameter allows (through its [regex pattern](https://docs.aws.amazon.com/http://wikipedia.org/wiki/regex)) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-
*/
public val policyName: Output
get() = javaResource.policyName().applyValue({ args0 -> args0 })
/**
* The name of the role to associate the policy with.
* This parameter allows (through its [regex pattern](https://docs.aws.amazon.com/http://wikipedia.org/wiki/regex)) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-
*/
public val roleName: Output
get() = javaResource.roleName().applyValue({ args0 -> args0 })
}
public object RolePolicyMapper : ResourceMapper {
override fun supportsMappingOfType(javaResource: Resource): Boolean =
com.pulumi.awsnative.iam.RolePolicy::class == javaResource::class
override fun map(javaResource: Resource): RolePolicy = RolePolicy(
javaResource as
com.pulumi.awsnative.iam.RolePolicy,
)
}
/**
* @see [RolePolicy].
* @param name The _unique_ name of the resulting resource.
* @param block Builder for [RolePolicy].
*/
public suspend fun rolePolicy(name: String, block: suspend RolePolicyResourceBuilder.() -> Unit): RolePolicy {
val builder = RolePolicyResourceBuilder()
builder.name(name)
block(builder)
return builder.build()
}
/**
* @see [RolePolicy].
* @param name The _unique_ name of the resulting resource.
*/
public fun rolePolicy(name: String): RolePolicy {
val builder = RolePolicyResourceBuilder()
builder.name(name)
return builder.build()
}