Enum scratchstack_aspen::PolicySource

pub enum PolicySource {
    EntityInline {
        entity_arn: String,
        entity_id: String,
        policy_name: String,
    },
    EntityAttachedPolicy {
        policy_arn: String,
        policy_id: String,
        version: String,
    },
    GroupInline {
        group_arn: String,
        group_id: String,
        policy_name: String,
    },
    GroupAttachedPolicy {
        group_arn: String,
        group_id: String,
        policy_arn: String,
        policy_id: String,
        version: String,
    },
    Resource {
        resource_arn: String,
        policy_name: Option<String>,
    },
    PermissionBoundary {
        policy_arn: String,
        policy_id: String,
        version: String,
    },
    OrgServiceControl {
        policy_arn: String,
        policy_name: String,
        applied_arn: String,
    },
    Session,
}

The source of a policy.

Variants

EntityInline

Fields

entity_arn: String

The ARN of the entity.

entity_id: String

The IAM ID of the entity.

policy_name: String

The name of the policy.

An inline policy directly attached to an IAM entity (user, role).

EntityAttachedPolicy

Fields

policy_arn: String

The ARN of the of the policy.

policy_id: String

The IAM ID of the policy.

version: String

The version of the policy used.

A managed policy that is attached to an IAM entity (user, role).

GroupInline

Fields

group_arn: String

The ARN of the IAM group.

group_id: String

The IAM ID of the group.

policy_name: String

The name of the policy.

An inline policy directly attached to an IAM group that an IAM user ia a member of.

GroupAttachedPolicy

Fields

group_arn: String

The ARN of the of IAM group.

group_id: String

The IAM ID of the group.

policy_arn: String

The ARN of the of the policy.

policy_id: String

The IAM ID of the policy.

version: String

The version of the policy used.

A managed policy that is attached to an IAM group that an IAM user is a member of.

Resource

Fields

resource_arn: String

The ARN of the resource being accessed.

policy_name: Option<String>

The name of the policy, if any.

A policy attached to a resource being accessed.

PermissionBoundary

Fields

policy_arn: String

The ARN of the the policy used as a permissions boundary.

policy_id: String

The IAM ID of the policy used as a permissions boundary.

version: String

The version of the policy used.

A permissions boundary attached to an IAM entity (user, role).

OrgServiceControl

Fields

policy_arn: String

The ARN of the the policy used as a service control policy.

policy_name: String

The name of the policy used as a service control policy.

applied_arn: String

The ARN of the account or organizational unit that the policy is attached to.

An service control policy attached to an account or organizational unit.

Session

A policy embedded in an assumed role session.

Implementations

impl PolicySource

pub fn is_boundary(&self) -> bool

Indicates whether the policy is being used permissions boundary.

Permissions boundaries are used to limit the permissions in effect. Allow effects in a permissions boundary do not grant permissions, but must be combined with an allow effect in a non-permissions boundary policy to be effective. Absence of an allow effect in a permissions boundary is the same as a deny effect.

pub fn new_entity_inline<S1, S2, S3>(
    entity_arn: S1,
    entity_id: S2,
    policy_name: S3
) -> Selfwhere
    S1: Into<String>,
    S2: Into<String>,
    S3: Into<String>,

Create a new PolicySource::EntityInline object.

pub fn new_entity_attached_policy<S1, S2, S3>(
    policy_arn: S1,
    policy_id: S2,
    version: S3
) -> Selfwhere
    S1: Into<String>,
    S2: Into<String>,
    S3: Into<String>,

Create a new PolicySource::EntityAttachedPolicy object.

pub fn new_group_inline<S1, S2, S3>(
    group_arn: S1,
    group_id: S2,
    policy_name: S3
) -> Selfwhere
    S1: Into<String>,
    S2: Into<String>,
    S3: Into<String>,

Create a new PolicySource::GroupInline object.

pub fn new_group_attached_policy<S1, S2, S3, S4, S5>(
    group_arn: S1,
    group_id: S2,
    policy_arn: S3,
    policy_id: S4,
    version: S5
) -> Selfwhere
    S1: Into<String>,
    S2: Into<String>,
    S3: Into<String>,
    S4: Into<String>,
    S5: Into<String>,

Create a new PolicySource::GroupAttachedPolicy object.

pub fn new_resource<S1, S2>(resource_arn: S1, policy_name: Option<S2>) -> Selfwhere
    S1: Into<String>,
    S2: Into<String>,

Create a new PolicySource::Resource object.

pub fn new_permission_boundary<S1, S2, S3>(
    policy_arn: S1,
    policy_id: S2,
    version: S3
) -> Selfwhere
    S1: Into<String>,
    S2: Into<String>,
    S3: Into<String>,

Create a new PolicySource::PermissionBoundary object.

pub fn new_org_service_control<S1, S2, S3>(
    policy_arn: S1,
    policy_name: S2,
    applied_arn: S3
) -> Selfwhere
    S1: Into<String>,
    S2: Into<String>,
    S3: Into<String>,

Create a new PolicySource::OrgServiceControl object.

pub fn new_session() -> Self

Create a new PolicySource::Session object.

Trait Implementations

impl Clone for PolicySource

fn clone(&self) -> PolicySource

Returns a copy of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for PolicySource

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Hash for PolicySource

fn hash<__H: Hasher>(&self, state: &mut __H)

Feeds this value into the given Hasher.

fn hash_slice<H>(data: &[Self], state: &mut H)where
    H: Hasher,
    Self: Sized,

Feeds a slice of this type into the given Hasher.

impl PartialEq<PolicySource> for PolicySource

fn eq(&self, other: &PolicySource) -> bool

This method tests for self and other values to be equal, and is used by ==.

fn ne(&self, other: &Rhs) -> bool

This method tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

impl Eq for PolicySource

impl StructuralEq for PolicySource

impl StructuralPartialEq for PolicySource