AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.

You are viewing documentation for version 2 of the AWS SDK for Ruby. Version 3 documentation can be found here.

Class: Aws::IAM::Types::PermissionsBoundaryDecisionDetail

Inherits:
Struct
  • Object
show all
Defined in:
(unknown)

Overview

Contains information about the effect that a permissions boundary has on a policy simulation when the boundary is applied to an IAM entity.

Returned by:

Instance Attribute Summary collapse

Instance Attribute Details

#allowed_by_permissions_boundaryBoolean

Specifies whether an action is allowed by a permissions boundary that is applied to an IAM entity (user or role). A value of true means that the permissions boundary does not deny the action. This means that the policy includes an Allow statement that matches the request. In this case, if an identity-based policy also allows the action, the request is allowed. A value of false means that either the requested action is not allowed (implicitly denied) or that the action is explicitly denied by the permissions boundary. In both of these cases, the action is not allowed, regardless of the identity-based policy.

Returns:

  • (Boolean)

    Specifies whether an action is allowed by a permissions boundary that is applied to an IAM entity (user or role).