Policy: AWS > Cognito > Enabled
Configure whether the AWS Cognito service is enabled. This will only affect Turbot managed User Roles and will allow the Turbot managed user to access AWS Cognito service.
Enabled
policy allows Turbot managed users to perform all the actions for the serviceEnabled: Metadata Only
policy allows Turbot managed users to perform only the metadata level actions for the service (likedescribe*
,list*
)
Note:
Disabled
policy disables the service but does NOT disable the API for Turbot or SuperUsers- All the resource data stored in the Turbot CMDB is considered to be metadata
- For more information related to permissions and grant levels, please check the documentation
Resource Types
This policy targets the following resource types:
Policy Specification
Schema Type |
|
---|---|
Default |
|
Valid Values [YAML] |
|
Examples [YAML] |
|
Category
In Your Workspace
Developers
- tmod:@turbot/turbot#/control/categories/iamPermissions
- tmod:@turbot/aws-cognito#/policy/types/cognitoEnabled
- turbot graphql policy-type --id "tmod:@turbot/aws-cognito#/policy/types/cognitoEnabled"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-cognito#/policy/types/cognitoEnabled"
Get Policy TypeGet Policy Settings
Category URI
Policy Type URI
GraphQL
CLI