Amazon SQS access control architecture - Amazon Simple Queue Service
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China.

Amazon SQS access control architecture

The following diagram describes the access control for your Amazon SQS resources.

You, the resource owner.

Your resources contained within the Amazon service (for example, Amazon SQS queues).

Your policies. It is a good practice to have one policy per resource. The Amazon service provides an API you use to upload and manage your policies.

Requesters and their incoming requests to the Amazon service.

The access policy language evaluation code. This is the set of code within the Amazon service that evaluates incoming requests against the applicable policies and determines whether the requester is allowed access to the resource.