Class: Aws::ACMPCA::Types::Permission

Inherits:
Struct
  • Object
show all
Includes:
Structure
Defined in:
lib/aws-sdk-acmpca/types.rb

Overview

Permissions designate which private CA actions can be performed by an Amazon Web Services service or entity. In order for ACM to automatically renew private certificates, you must give the ACM service principal all available permissions (‘IssueCertificate`, `GetCertificate`, and `ListPermissions`). Permissions can be assigned with the [CreatePermission] action, removed with the

DeletePermission][2

action, and listed with the [ListPermissions]

action.

[1]: docs.aws.amazon.com/privateca/latest/APIReference/API_CreatePermission.html [2]: docs.aws.amazon.com/privateca/latest/APIReference/API_DeletePermission.html [3]: docs.aws.amazon.com/privateca/latest/APIReference/API_ListPermissions.html

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#actionsArray<String>

The private CA actions that can be performed by the designated Amazon Web Services service.

Returns:

  • (Array<String>)


2134
2135
2136
2137
2138
2139
2140
2141
2142
2143
# File 'lib/aws-sdk-acmpca/types.rb', line 2134

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end

#certificate_authority_arnString

The Amazon Resource Number (ARN) of the private CA from which the permission was issued.

Returns:

  • (String)


2134
2135
2136
2137
2138
2139
2140
2141
2142
2143
# File 'lib/aws-sdk-acmpca/types.rb', line 2134

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end

#created_atTime

The time at which the permission was created.

Returns:

  • (Time)


2134
2135
2136
2137
2138
2139
2140
2141
2142
2143
# File 'lib/aws-sdk-acmpca/types.rb', line 2134

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end

#policyString

The name of the policy that is associated with the permission.

Returns:

  • (String)


2134
2135
2136
2137
2138
2139
2140
2141
2142
2143
# File 'lib/aws-sdk-acmpca/types.rb', line 2134

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end

#principalString

The Amazon Web Services service or entity that holds the permission. At this time, the only valid principal is ‘acm.amazonaws.com`.

Returns:

  • (String)


2134
2135
2136
2137
2138
2139
2140
2141
2142
2143
# File 'lib/aws-sdk-acmpca/types.rb', line 2134

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end

#source_accountString

The ID of the account that assigned the permission.

Returns:

  • (String)


2134
2135
2136
2137
2138
2139
2140
2141
2142
2143
# File 'lib/aws-sdk-acmpca/types.rb', line 2134

class Permission < Struct.new(
  :certificate_authority_arn,
  :created_at,
  :principal,
  :source_account,
  :actions,
  :policy)
  SENSITIVE = []
  include Aws::Structure
end