Amazon.IdentityManagement.AmazonIdentityManagementServiceClient.PutRolePolicy C# (CSharp) Method

AmazonIdentityManagementServiceClient Class Documentation Usage Examples Of Amazon.IdentityManagement.AmazonIdentityManagementServiceClient::PutRolePolicy 显示文件 Open project: aws/aws-sdk-net

PutRolePolicy() public method

Adds or updates an inline policy document that is embedded in the specified IAM role.

When you embed an inline policy in a role, the inline policy is used as part of the role's access (permissions) policy. The role's trust policy is created at the same time as the role, using CreateRole. You can update a role's trust policy using UpdateAssumeRolePolicy. For more information about IAM roles, go to Using Roles to Delegate Permissions and Federate Identities.

A role can also have a managed policy attached to it. To attach a managed policy to a role, use AttachRolePolicy. To create a new managed policy, use CreatePolicy. For information about policies, see Managed Policies and Inline Policies in the IAM User Guide.

For information about limits on the number of inline policies that you can embed with a role, see Limitations on IAM Entities in the IAM User Guide.

Because policy documents can be large, you should use POST rather than GET when calling PutRolePolicy. For general information about using the Query API with IAM, go to Making Query Requests in the IAM User Guide.

/// The request was rejected because it attempted to create resources beyond the current /// AWS account limits. The error message describes the limit exceeded. /// /// The request was rejected because the policy document was malformed. The error message /// describes the specific error. /// /// The request was rejected because it referenced an entity that does not exist. The /// error message describes the entity. /// /// The request processing has failed because of an unknown error, exception or failure. ///

public PutRolePolicy ( PutRolePolicyRequest request ) : PutRolePolicyResponse
request	PutRolePolicyRequest	Container for the necessary parameters to execute the PutRolePolicy service method.
return	PutRolePolicyResponse

        public PutRolePolicyResponse PutRolePolicy(PutRolePolicyRequest request)
        {
            var marshaller = new PutRolePolicyRequestMarshaller();
            var unmarshaller = PutRolePolicyResponseUnmarshaller.Instance;

            return Invoke<PutRolePolicyRequest,PutRolePolicyResponse>(request, marshaller, unmarshaller);
        }

Usage Example

示例#1

显示文件

文件： SolutionCode.cs 项目： jfaerman/devonaws-labs-csharp

        public virtual string PrepMode_CreateRole(AmazonIdentityManagementServiceClient iamClient, string roleName,
            string policyText, string trustRelationshipText)
        {
            var roleArn = String.Empty;

            // Use the CreateRoleRequest object to define the role. The AssumeRolePolicyDocument property should be
            // set to the value of the trustRelationshipText parameter.

            var createRoleRequest = new CreateRoleRequest
            {
                AssumeRolePolicyDocument = trustRelationshipText,
                RoleName = roleName
            };
            roleArn = iamClient.CreateRole(createRoleRequest).Role.Arn;

            // Use the PutRolePolicyRequest object to define the request. Select whatever policy name you would like.
            // The PolicyDocument property is there the policy is described.
            var putRolePolicyRequest = new PutRolePolicyRequest
            {
                RoleName = roleName,
                PolicyName = String.Format("{0}_policy", roleName),
                PolicyDocument = policyText
            };
            iamClient.PutRolePolicy(putRolePolicyRequest);

            return roleArn;
        }

All Usage Examples Of Amazon.IdentityManagement.AmazonIdentityManagementServiceClient::PutRolePolicy

AmazonIdentityManagementServiceClient

AddClientIDToOpenIDConnectProvider

AddClientIDToOpenIDConnectProviderAsync

AddRoleToInstanceProfile

AddRoleToInstanceProfileAsync

AddUserToGroup

AddUserToGroupAsync

AmazonIdentityManagementServiceClient

AttachGroupPolicy

AttachGroupPolicyAsync

AttachRolePolicy