View a markdown version of this page

AWS::BedrockAgentCore::ResourcePolicy - Amazon CloudFormation
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

This is the new Amazon CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the Amazon CloudFormation User Guide.

AWS::BedrockAgentCore::ResourcePolicy

Specifies a resource-based policy for an Amazon Bedrock AgentCore resource. A resource policy grants cross-account or service-level access to a specific AgentCore resource such as a Runtime or Gateway.

Note

This feature is currently available only for AgentCore Runtime and Gateway.

See the Properties section below for descriptions of both the required and optional properties.

Syntax

To declare this entity in your Amazon CloudFormation template, use the following syntax:

JSON

{ "Type" : "AWS::BedrockAgentCore::ResourcePolicy", "Properties" : { "Policy" : String, "ResourceArn" : String } }

YAML

Type: AWS::BedrockAgentCore::ResourcePolicy Properties: Policy: String ResourceArn: String

Properties

Policy

The resource policy to create or update.

Required: Yes

Type: String

Minimum: 1

Maximum: 20480

Update requires: No interruption

ResourceArn

The Amazon Resource Name (ARN) of the resource for which to create or update the resource policy.

Required: Yes

Type: String

Pattern: ^arn:[a-z0-9-]+:bedrock-agentcore:[a-z0-9-]*:[0-9]{12}:.+$

Minimum: 20

Maximum: 1011

Update requires: Replacement

Return values

Ref