Tagging for access control in Amazon SQS
The following is an example of how to use tags for access control. The IAM policy
restricts an IAM user to all Amazon SQS actions for all queues that include a resource tag with
the key environment and the value production. For more information, see Attribute-based access control with tags and Amazon Organizations
{ "Version": "2012-10-17", "Statement": [ { "Sid": "DenyAccessForProd", "Effect": "Deny", "Action": "sqs:*", "Resource": "*", "Condition": { "StringEquals": { "aws:ResourceTag/environment": "prod" } } } ] }