Using permissions policies to manage access to resources - Amazon Glue
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China.

Using permissions policies to manage access to resources

A permissions policy is defined by a JSON object that describes who has access to what. The syntax of the JSON object is largely defined by Amazon Identity and Access Management (IAM). For more information, see IAM JSON Policy Reference in the IAM User Guide.

Note

This section discusses using IAM in the context of Amazon Glue, but it does not provide detailed information about the IAM service. For more information, see What Is IAM? in the IAM User Guide.

For a table showing all of the Amazon Glue API operations and the resources that they apply to, see Amazon Glue API permissions: Actions and resources reference.

To learn more about IAM policy syntax and descriptions, see IAM JSON Policy Reference in the IAM User Guide.

Amazon Glue supports two kinds of policies:

By supporting both identity-based and resource policies, Amazon Glue gives you fine-grained control over who can access what metadata.

For more examples, see Amazon Glue resource-based access control policy examples.