Supported resource-level permissions for Amazon Batch API actions - Amazon Batch
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Supported resource-level permissions for Amazon Batch API actions

The term resource-level permissions refers to the ability to specify the resources that users are allowed to perform actions on. Amazon Batch has partial support for resource-level permissions. For some Amazon Batch actions, you can control when users are allowed to use those actions based on conditions that must be met. You can also control based on the specific resources that users are allowed to use. For example, you can grant users permissions to submit jobs, but only to a specific job queue and only with a specific job definition.

For details about actions and resource types defined by Amazon Batch, including the format of the ARNs for each of the resource types, see Actions, Resources, and Condition Keys for Amazon Batch in the Service Authorization Reference.