Policy: AWS > API Gateway > Enabled
Configure whether the AWS API Gateway service is enabled. This will only affect Guardrails managed User Roles and will allow the Guardrails managed user to access AWS API Gateway service. - Enabled
policy allows Guardrails managed users to perform all the actions for the service - Enabled: Metadata Only
policy allows Guardrails managed users to perform only the metadata level actions for the service (like describe*
, list*
)
Note: - Disabled
policy disables the service but does NOT disable the API for Guardrails or SuperUsers - All the resource data stored in the Guardrails CMDB is considered to be metadata - For more information related to permissions and grant levels, please check the documentation
Targets
This policy targets the following resource types:
Controls
Setting this policy configures these controls:
- AWS > API Gateway > API > Approved
- AWS > API Gateway > Resource > Approved
- AWS > API Gateway > API Key > Approved
- AWS > API Gateway > API V2 > Approved
- AWS > API Gateway > Authorizer > Approved
- AWS > API Gateway > Authorizer V2 > Approved
- AWS > API Gateway > Domain Name V2 > Approved
- AWS > API Gateway > Integration V2 > Approved
- AWS > API Gateway > Stage > Approved
- AWS > API Gateway > Stage v2 > Approved
- AWS > API Gateway > Usage Plan > Approved
Policy Specification
Schema Type |
|
---|---|
Default |
|
Valid Values [YAML] |
|
Examples [YAML] |
|
Category
In Your Workspace
Developers
- tmod:@turbot/turbot#/control/categories/iamPermissions
- tmod:@turbot/aws-apigateway#/policy/types/apiGatewayEnabled
- turbot graphql policy-type --id "tmod:@turbot/aws-apigateway#/policy/types/apiGatewayEnabled"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-apigateway#/policy/types/apiGatewayEnabled"
Get Policy TypeGet Policy Settings