Policy: AWS > Turbot > Permissions > Custom Role Levels [Folder]
An ordered list of custom levels used to customize Guardrails' permissions. Levels in this policy will appear in the Guardrails console as grantable to Guardrails users as AWS/Role/{role name}
at a folder level. When granted access, Guardrails will allow the user to assume the associated IAM role. Note that the IAM roles must already exist in the AWS Account, and Guardrails must have the ability to assume the roles.
Resource Types
This policy targets the following resource types:
Primary Policy
This policy is used with the following primary policy:
Policy Specification
Schema Type |
|
---|---|
Default |
|
Examples [YAML] |
|
Category
In Your Workspace
Developers
- tmod:@turbot/turbot#/control/categories/iamPermissions
- tmod:@turbot/aws-iam#/policy/types/permissionsCustomLevelsFolder
- turbot graphql policy-type --id "tmod:@turbot/aws-iam#/policy/types/permissionsCustomLevelsFolder"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-iam#/policy/types/permissionsCustomLevelsFolder"
Get Policy TypeGet Policy Settings
Category URI
Policy Type URI
GraphQL
CLI