Skip to content

Commit 5ae5f91

Browse files
author
AWS
committed
Amazon Verified Permissions Update: Adds description field to PolicyStore API's and namespaces field to GetSchema.
1 parent 74d108d commit 5ae5f91

File tree

2 files changed

+37
-1
lines changed

2 files changed

+37
-1
lines changed
Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,6 @@
1+
{
2+
"type": "feature",
3+
"category": "Amazon Verified Permissions",
4+
"contributor": "",
5+
"description": "Adds description field to PolicyStore API's and namespaces field to GetSchema."
6+
}

services/verifiedpermissions/src/main/resources/codegen-resources/service-2.json

Lines changed: 31 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -28,7 +28,7 @@
2828
{"shape":"ThrottlingException"},
2929
{"shape":"InternalServerException"}
3030
],
31-
"documentation":"<p>Makes a series of decisions about multiple authorization requests for one principal or resource. Each request contains the equivalent content of an <code>IsAuthorized</code> request: principal, action, resource, and context. Either the <code>principal</code> or the <code>resource</code> parameter must be identical across all requests. For example, Verified Permissions won't evaluate a pair of requests where <code>bob</code> views <code>photo1</code> and <code>alice</code> views <code>photo2</code>. Authorization of <code>bob</code> to view <code>photo1</code> and <code>photo2</code>, or <code>bob</code> and <code>alice</code> to view <code>photo1</code>, are valid batches. </p> <p>The request is evaluated against all policies in the specified policy store that match the entities that you declare. The result of the decisions is a series of <code>Allow</code> or <code>Deny</code> responses, along with the IDs of the policies that produced each decision.</p> <p>The <code>entities</code> of a <code>BatchIsAuthorized</code> API request can contain up to 100 principals and up to 100 resources. The <code>requests</code> of a <code>BatchIsAuthorized</code> API request can contain up to 30 requests.</p>"
31+
"documentation":"<p>Makes a series of decisions about multiple authorization requests for one principal or resource. Each request contains the equivalent content of an <code>IsAuthorized</code> request: principal, action, resource, and context. Either the <code>principal</code> or the <code>resource</code> parameter must be identical across all requests. For example, Verified Permissions won't evaluate a pair of requests where <code>bob</code> views <code>photo1</code> and <code>alice</code> views <code>photo2</code>. Authorization of <code>bob</code> to view <code>photo1</code> and <code>photo2</code>, or <code>bob</code> and <code>alice</code> to view <code>photo1</code>, are valid batches. </p> <p>The request is evaluated against all policies in the specified policy store that match the entities that you declare. The result of the decisions is a series of <code>Allow</code> or <code>Deny</code> responses, along with the IDs of the policies that produced each decision.</p> <p>The <code>entities</code> of a <code>BatchIsAuthorized</code> API request can contain up to 100 principals and up to 100 resources. The <code>requests</code> of a <code>BatchIsAuthorized</code> API request can contain up to 30 requests.</p> <note> <p>The <code>BatchIsAuthorized</code> operation doesn't have its own IAM permission. To authorize this operation for Amazon Web Services principals, include the permission <code>verifiedpermissions:IsAuthorized</code> in their IAM policies.</p> </note>"
3232
},
3333
"CreateIdentitySource":{
3434
"name":"CreateIdentitySource",
@@ -837,6 +837,10 @@
837837
"validationSettings":{
838838
"shape":"ValidationSettings",
839839
"documentation":"<p>Specifies the validation setting for this policy store.</p> <p>Currently, the only valid and required value is <code>Mode</code>.</p> <important> <p>We recommend that you turn on <code>STRICT</code> mode only after you define a schema. If a schema doesn't exist, then <code>STRICT</code> mode causes any policy to fail validation, and Verified Permissions rejects the policy. You can turn off validation by using the <a href=\"https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_UpdatePolicyStore\">UpdatePolicyStore</a>. Then, when you have a schema defined, use <a href=\"https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_UpdatePolicyStore\">UpdatePolicyStore</a> again to turn validation back on.</p> </important>"
840+
},
841+
"description":{
842+
"shape":"PolicyStoreDescription",
843+
"documentation":"<p>Descriptive text that you can provide to help with identification of the current policy store.</p>"
840844
}
841845
}
842846
},
@@ -1286,6 +1290,10 @@
12861290
"lastUpdatedDate":{
12871291
"shape":"TimestampFormat",
12881292
"documentation":"<p>The date and time that the policy store was last updated.</p>"
1293+
},
1294+
"description":{
1295+
"shape":"PolicyStoreDescription",
1296+
"documentation":"<p>Descriptive text that you can provide to help with identification of the current policy store.</p>"
12891297
}
12901298
}
12911299
},
@@ -1376,6 +1384,10 @@
13761384
"lastUpdatedDate":{
13771385
"shape":"TimestampFormat",
13781386
"documentation":"<p>The date and time that the schema was most recently updated.</p>"
1387+
},
1388+
"namespaces":{
1389+
"shape":"NamespaceList",
1390+
"documentation":"<p>The namespaces of the entities referenced by this schema.</p>"
13791391
}
13801392
}
13811393
},
@@ -1916,6 +1928,12 @@
19161928
"min":1,
19171929
"sensitive":true
19181930
},
1931+
"PolicyStoreDescription":{
1932+
"type":"string",
1933+
"max":150,
1934+
"min":0,
1935+
"sensitive":true
1936+
},
19191937
"PolicyStoreId":{
19201938
"type":"string",
19211939
"max":200,
@@ -1941,6 +1959,14 @@
19411959
"createdDate":{
19421960
"shape":"TimestampFormat",
19431961
"documentation":"<p>The date and time the policy was created.</p>"
1962+
},
1963+
"lastUpdatedDate":{
1964+
"shape":"TimestampFormat",
1965+
"documentation":"<p>The date and time the policy store was most recently updated.</p>"
1966+
},
1967+
"description":{
1968+
"shape":"PolicyStoreDescription",
1969+
"documentation":"<p>Descriptive text that you can provide to help with identification of the current policy store.</p>"
19441970
}
19451971
},
19461972
"documentation":"<p>Contains information about a policy store.</p> <p>This data type is used as a response parameter for the <a href=\"https://docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_ListPolicyStores.html\">ListPolicyStores</a> operation.</p>"
@@ -2471,6 +2497,10 @@
24712497
"validationSettings":{
24722498
"shape":"ValidationSettings",
24732499
"documentation":"<p>A structure that defines the validation settings that want to enable for the policy store.</p>"
2500+
},
2501+
"description":{
2502+
"shape":"PolicyStoreDescription",
2503+
"documentation":"<p>Descriptive text that you can provide to help with identification of the current policy store.</p>"
24742504
}
24752505
}
24762506
},

0 commit comments

Comments
 (0)