Policy: AWS > DynamoDB > Table > Policy > Trusted Access > CloudFront Origin Access Identities
List of CloudFront Origin Access Identities (OAIs) that are trusted for cross-account access in the AWS DynamoDB table policy.
The expected format is an array of CloudFront OAI ARNs or OAI IDs.example: - "arn:aws:iam::cloudfront:user/CloudFront Origin Access Identity EH1HDMB1FH2TC" - "EH1HDMB1FH2TC" Note: Setting the policy to an Empty array will remove all CloudFront OAIs.
Targets
This policy targets the following resource types:
Primary Policy
This policy is used with the following primary policy:
Controls
Setting this policy configures this control:
Policy Specification
Schema Type | |
|---|---|
Default | |
Category
In Your Workspace
Developers
- tmod:@turbot/turbot#/control/categories/securityTrustedAccess
- tmod:@turbot/aws-dynamodb#/policy/types/tablePolicyTrustedCloudFrontOriginAccessIdentities
- turbot graphql policy-type --id "tmod:@turbot/aws-dynamodb#/policy/types/tablePolicyTrustedCloudFrontOriginAccessIdentities"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-dynamodb#/policy/types/tablePolicyTrustedCloudFrontOriginAccessIdentities"
Get Policy TypeGet Policy Settings
Category URI
Policy Type URI
GraphQL
CLI