Module Values.UpdatePolicyOutputSource

Modifies a Cedar static policy in the specified policy store. You can change only certain elements of the UpdatePolicyDefinition parameter. You can directly update only static policies. To change a template-linked policy, you must update the template instead, using UpdatePolicyTemplate. If policy validation is enabled in the policy store, then updating a static policy causes Verified Permissions to validate the policy against the schema in the policy store. If the updated static policy doesn't pass validation, the operation fails and the update isn't stored. When you edit a static policy, you can change only certain elements of a static policy: The action referenced by the policy. A condition clause, such as when and unless. You can't change these elements of a static policy: Changing a policy from a static policy to a template-linked policy. Changing the effect of a static policy from permit or forbid. The principal referenced by a static policy. The resource referenced by a static policy. To update a template-linked policy, you must update the template instead. Verified Permissions is eventually consistent . It can take a few seconds for a new or changed element to propagate through the service and be visible in the results of other Verified Permissions operations.

Sourcetype nonrec t = {
  1. policyStoreId : PolicyStoreId.t option;
    (*

    The ID of the policy store that contains the policy that was updated.

    *)
  2. policyId : PolicyId.t option;
    (*

    The ID of the policy that was updated.

    *)
  3. policyType : PolicyType.t option;
    (*

    The type of the policy that was updated.

    *)
  4. principal : EntityIdentifier.t option;
    (*

    The principal specified in the policy's scope. This element isn't included in the response when Principal isn't present in the policy content.

    *)
  5. resource : EntityIdentifier.t option;
    (*

    The resource specified in the policy's scope. This element isn't included in the response when Resource isn't present in the policy content.

    *)
  6. actions : ActionIdentifierList.t option;
    (*

    The action that a policy permits or forbids. For example, {"actions": [{"actionId": "ViewPhoto", "actionType": "PhotoFlash::Action"}, {"entityID": "SharePhoto", "entityType": "PhotoFlash::Action"}]}.

    *)
  7. createdDate : TimestampFormat.t option;
    (*

    The date and time that the policy was originally created.

    *)
  8. lastUpdatedDate : TimestampFormat.t option;
    (*

    The date and time that the policy was most recently updated.

    *)
  9. effect_ : PolicyEffect.t option;
    (*

    The effect of the decision that a policy returns to an authorization request. For example, "effect": "Permit".

    *)
}
Sourcetype nonrec error = [
  1. | `AccessDeniedException of AccessDeniedException.t
  2. | `ConflictException of ConflictException.t
  3. | `InternalServerException of InternalServerException.t
  4. | `ResourceNotFoundException of ResourceNotFoundException.t
  5. | `ServiceQuotaExceededException of ServiceQuotaExceededException.t
  6. | `ThrottlingException of ThrottlingException.t
  7. | `ValidationException of ValidationException.t
  8. | `Unknown_operation_error of string * string option
]
Sourceval make : ?policyStoreId:??? -> ?policyId:??? -> ?policyType:??? -> ?principal:??? -> ?resource:??? -> ?actions:??? -> ?createdDate:??? -> ?lastUpdatedDate:??? -> ?effect_:??? -> unit -> t
Sourceval error_of_json : string -> Yojson.Safe.t -> [> `AccessDeniedException of AccessDeniedException.t | `ConflictException of ConflictException.t | `InternalServerException of InternalServerException.t | `ResourceNotFoundException of ResourceNotFoundException.t | `ServiceQuotaExceededException of ServiceQuotaExceededException.t | `ThrottlingException of ThrottlingException.t | `Unknown_operation_error of string * string option | `ValidationException of ValidationException.t ]
Sourceval error_of_xml : string -> Awso.Xml.t -> [> `AccessDeniedException of AccessDeniedException.t | `ConflictException of ConflictException.t | `InternalServerException of InternalServerException.t | `ResourceNotFoundException of ResourceNotFoundException.t | `ServiceQuotaExceededException of ServiceQuotaExceededException.t | `ThrottlingException of ThrottlingException.t | `Unknown_operation_error of string * string option | `ValidationException of ValidationException.t ]
Sourceval error_to_json : error -> Yojson.Safe.t
Sourceval to_value : t -> [> `Structure of (string * [> `Enum of string | `List of [> `Structure of (string * [> `String of ActionType.t ]) list ] list | `String of PolicyStoreId.t | `Structure of (string * [> `String of EntityType.t ]) list | `Timestamp of TimestampFormat.t ]) list ]
Sourceval to_query : t -> Awso.Client.Query.t
Sourceval of_xml : Awso.Xml.t -> t
Sourceval of_string : string -> t
Sourceval of_json : Yojson.Safe.t -> t
Sourceval to_json : t -> Yojson.Safe.t