Copyright	(c) 2013-2021 Brendan Hay
License	Mozilla Public License, v. 2.0.
Maintainer	Brendan Hay <brendan.g.hay+amazonka@gmail.com>
Stability	auto-generated
Portability	non-portable (GHC extensions)
Safe Haskell	None

Amazonka.IAM.Types.PermissionsBoundaryDecisionDetail

Description

Synopsis

data PermissionsBoundaryDecisionDetail = PermissionsBoundaryDecisionDetail' {
- allowedByPermissionsBoundary :: Maybe Bool
}
newPermissionsBoundaryDecisionDetail :: PermissionsBoundaryDecisionDetail
permissionsBoundaryDecisionDetail_allowedByPermissionsBoundary :: Lens' PermissionsBoundaryDecisionDetail (Maybe Bool)

Documentation

data PermissionsBoundaryDecisionDetail Source #

Contains information about the effect that a permissions boundary has on a policy simulation when the boundary is applied to an IAM entity.

See: newPermissionsBoundaryDecisionDetail smart constructor.

Constructors

PermissionsBoundaryDecisionDetail'

Fields

allowedByPermissionsBoundary :: Maybe Bool
Specifies whether an action is allowed by a permissions boundary that is applied to an IAM entity (user or role). A value of true means that the permissions boundary does not deny the action. This means that the policy includes an Allow statement that matches the request. In this case, if an identity-based policy also allows the action, the request is allowed. A value of false means that either the requested action is not allowed (implicitly denied) or that the action is explicitly denied by the permissions boundary. In both of these cases, the action is not allowed, regardless of the identity-based policy.

Instances

Instances details

Eq PermissionsBoundaryDecisionDetail Source #
Instance details Defined in Amazonka.IAM.Types.PermissionsBoundaryDecisionDetail Methods (==) :: PermissionsBoundaryDecisionDetail -> PermissionsBoundaryDecisionDetail -> Bool # (/=) :: PermissionsBoundaryDecisionDetail -> PermissionsBoundaryDecisionDetail -> Bool #
Read PermissionsBoundaryDecisionDetail Source #
Instance details Defined in Amazonka.IAM.Types.PermissionsBoundaryDecisionDetail Methods readsPrec :: Int -> ReadS PermissionsBoundaryDecisionDetail # readList :: ReadS [PermissionsBoundaryDecisionDetail] # readPrec :: ReadPrec PermissionsBoundaryDecisionDetail # readListPrec :: ReadPrec [PermissionsBoundaryDecisionDetail] #
Show PermissionsBoundaryDecisionDetail Source #
Instance details Defined in Amazonka.IAM.Types.PermissionsBoundaryDecisionDetail Methods showsPrec :: Int -> PermissionsBoundaryDecisionDetail -> ShowS # show :: PermissionsBoundaryDecisionDetail -> String # showList :: [PermissionsBoundaryDecisionDetail] -> ShowS #
Generic PermissionsBoundaryDecisionDetail Source #
Instance details Defined in Amazonka.IAM.Types.PermissionsBoundaryDecisionDetail Associated Types type Rep PermissionsBoundaryDecisionDetail :: Type -> Type # Methods from :: PermissionsBoundaryDecisionDetail -> Rep PermissionsBoundaryDecisionDetail x # to :: Rep PermissionsBoundaryDecisionDetail x -> PermissionsBoundaryDecisionDetail #
NFData PermissionsBoundaryDecisionDetail Source #
Instance details Defined in Amazonka.IAM.Types.PermissionsBoundaryDecisionDetail Methods rnf :: PermissionsBoundaryDecisionDetail -> () #
Hashable PermissionsBoundaryDecisionDetail Source #
Instance details Defined in Amazonka.IAM.Types.PermissionsBoundaryDecisionDetail Methods hashWithSalt :: Int -> PermissionsBoundaryDecisionDetail -> Int # hash :: PermissionsBoundaryDecisionDetail -> Int #
FromXML PermissionsBoundaryDecisionDetail Source #
Instance details Defined in Amazonka.IAM.Types.PermissionsBoundaryDecisionDetail Methods parseXML :: [Node] -> Either String PermissionsBoundaryDecisionDetail #
type Rep PermissionsBoundaryDecisionDetail Source #
Instance details Defined in Amazonka.IAM.Types.PermissionsBoundaryDecisionDetail type Rep PermissionsBoundaryDecisionDetail = D1 ('MetaData "PermissionsBoundaryDecisionDetail" "Amazonka.IAM.Types.PermissionsBoundaryDecisionDetail" "libZSservicesZSamazonka-iamZSamazonka-iam" 'False) (C1 ('MetaCons "PermissionsBoundaryDecisionDetail'" 'PrefixI 'True) (S1 ('MetaSel ('Just "allowedByPermissionsBoundary") 'NoSourceUnpackedness 'NoSourceStrictness 'DecidedStrict) (Rec0 (Maybe Bool))))

newPermissionsBoundaryDecisionDetail :: PermissionsBoundaryDecisionDetail Source #

Create a value of PermissionsBoundaryDecisionDetail with all optional fields omitted.

Use generic-lens or optics to modify other optional fields.

The following record fields are available, with the corresponding lenses provided for backwards compatibility:

$sel:allowedByPermissionsBoundary:PermissionsBoundaryDecisionDetail', permissionsBoundaryDecisionDetail_allowedByPermissionsBoundary - Specifies whether an action is allowed by a permissions boundary that is applied to an IAM entity (user or role). A value of true means that the permissions boundary does not deny the action. This means that the policy includes an Allow statement that matches the request. In this case, if an identity-based policy also allows the action, the request is allowed. A value of false means that either the requested action is not allowed (implicitly denied) or that the action is explicitly denied by the permissions boundary. In both of these cases, the action is not allowed, regardless of the identity-based policy.

permissionsBoundaryDecisionDetail_allowedByPermissionsBoundary :: Lens' PermissionsBoundaryDecisionDetail (Maybe Bool) Source #

Specifies whether an action is allowed by a permissions boundary that is applied to an IAM entity (user or role). A value of true means that the permissions boundary does not deny the action. This means that the policy includes an Allow statement that matches the request. In this case, if an identity-based policy also allows the action, the request is allowed. A value of false means that either the requested action is not allowed (implicitly denied) or that the action is explicitly denied by the permissions boundary. In both of these cases, the action is not allowed, regardless of the identity-based policy.