2022-10-03 09:54:27 -04:00
// Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
// SPDX-License-Identifier: Apache-2.0
/**
2022-10-07 15:58:01 -04:00
* Before running this C++ code example, set up your development environment,
* including your credentials.
2022-10-03 09:54:27 -04:00
*
* For more information, see the following documentation topic:
2022-10-14 09:27:14 -04:00
* https://docs.aws.amazon.com/sdk-for-cpp/v1/developer-guide/getting-started.html.
2022-10-03 09:54:27 -04:00
*
2022-10-12 14:52:10 -04:00
* For information on the structure of the code examples and how to build and run the examples, see
* https://docs.aws.amazon.com/sdk-for-cpp/v1/developer-guide/getting-started-code-examples.html.
*
2022-10-03 09:54:27 -04:00
* Purpose
*
2022-10-12 14:52:10 -04:00
* Demonstrates creating a fixed policy with name.
2022-10-03 09:54:27 -04:00
*
*/
2022-10-07 15:58:01 -04:00
// snippet-start:[iam.cpp.create_policy.inc]
# include <aws/core/Aws.h>
# include <aws/iam/IAMClient.h>
# include <aws/iam/model/CreatePolicyRequest.h>
# include <aws/iam/model/CreatePolicyResult.h>
# include <iostream>
# include "iam_samples.h"
// snippet-end:[iam.cpp.create_policy.inc]
2022-10-03 09:54:27 -04:00
namespace AwsDoc {
namespace IAM {
2022-10-07 15:58:01 -04:00
static Aws : : String BuildSamplePolicyDocument ( const Aws : : String & rsrc_arn ) ;
2022-10-03 09:54:27 -04:00
} // IAM
} // AwsDoc
//! Creates a fixed policy with name.
/*!
\sa createPolicy()
\param policyName: The policy name.
2022-10-12 14:52:10 -04:00
\param rsrcArn: The Amazon Resource Name (ARN).
2022-10-14 09:27:14 -04:00
\param clientConfig: Aws client configuration.
2022-10-10 10:28:34 -04:00
\return Aws::String: Policy ARN or empty string if unsuccessful.
2022-10-03 09:54:27 -04:00
*/
2022-10-12 14:52:10 -04:00
// snippet-start:[iam.cpp.create_policy.code]
2022-10-10 10:28:34 -04:00
Aws : : String AwsDoc : : IAM : : createPolicy ( const Aws : : String & policyName ,
2022-10-12 14:52:10 -04:00
const Aws : : String & rsrcArn ,
const Aws : : Client : : ClientConfiguration & clientConfig ) {
2022-10-07 15:58:01 -04:00
Aws : : IAM : : IAMClient iam ( clientConfig ) ;
2022-10-03 09:54:27 -04:00
Aws : : IAM : : Model : : CreatePolicyRequest request ;
request . SetPolicyName ( policyName ) ;
request . SetPolicyDocument ( BuildSamplePolicyDocument ( rsrcArn ) ) ;
2022-10-10 10:28:34 -04:00
Aws : : IAM : : Model : : CreatePolicyOutcome outcome = iam . CreatePolicy ( request ) ;
Aws : : String result ;
2022-10-07 15:58:01 -04:00
if ( ! outcome . IsSuccess ( ) ) {
2022-10-03 09:54:27 -04:00
std : : cerr < < " Error creating policy " < < policyName < < " : " < <
outcome . GetError ( ) . GetMessage ( ) < < std : : endl ;
}
2022-10-07 15:58:01 -04:00
else {
2022-10-10 10:28:34 -04:00
result = outcome . GetResult ( ) . GetPolicy ( ) . GetArn ( ) ;
2022-10-03 09:54:27 -04:00
std : : cout < < " Successfully created policy " < < policyName < <
std : : endl ;
}
2022-10-10 10:28:34 -04:00
return result ;
2022-10-03 09:54:27 -04:00
}
// snippet-end:[iam.cpp.create_policy.code]
// snippet-start:[iam.cpp.build_policy.code]
2022-10-07 15:58:01 -04:00
Aws : : String AwsDoc : : IAM : : BuildSamplePolicyDocument ( const Aws : : String & rsrc_arn ) {
2022-10-03 09:54:27 -04:00
std : : stringstream stringStream ;
stringStream < < " { "
2022-10-07 15:58:01 -04:00
< < " \" Version \" : \" 2012-10-17 \" , "
< < " \" Statement \" : [ "
< < " { "
< < " \" Effect \" : \" Allow \" , "
< < " \" Action \" : \" logs:CreateLogGroup \" , "
< < " \" Resource \" : \" "
< < rsrc_arn
< < " \" "
< < " }, "
< < " { "
< < " \" Effect \" : \" Allow \" , "
< < " \" Action \" : [ "
< < " \" dynamodb:DeleteItem \" , "
< < " \" dynamodb:GetItem \" , "
< < " \" dynamodb:PutItem \" , "
< < " \" dynamodb:Scan \" , "
< < " \" dynamodb:UpdateItem \" "
< < " ], "
< < " \" Resource \" : \" "
< < rsrc_arn
< < " \" "
< < " } "
< < " ] "
< < " } " ;
2022-10-03 09:54:27 -04:00
return stringStream . str ( ) ;
2021-11-15 13:15:43 +00:00
}
// snippet-end:[iam.cpp.build_policy.code]
2022-10-03 09:54:27 -04:00
/*
*
* main function
*
2022-10-12 14:52:10 -04:00
* Usage: 'run_create_policy <policy_name> <resource_arn>'
2022-10-03 09:54:27 -04:00
*
2021-11-15 13:15:43 +00:00
*/
2022-10-03 09:54:27 -04:00
# ifndef TESTING_BUILD
2022-10-07 15:58:01 -04:00
int main ( int argc , char * * argv ) {
if ( argc ! = 3 ) {
2022-10-06 16:46:51 -04:00
std : : cout < < " Usage: run_create_policy <policy_name> <resource_arn> " < <
2022-10-07 15:58:01 -04:00
std : : endl ;
2021-11-15 13:15:43 +00:00
return 1 ;
}
Aws : : SDKOptions options ;
Aws : : InitAPI ( options ) ;
{
2022-10-03 09:54:27 -04:00
Aws : : Client : : ClientConfiguration clientConfig ;
// Optional: Set to the AWS Region in which the bucket was created (overrides config file).
// clientConfig.region = "us-east-1";
Aws : : String policyName ( argv [ 1 ] ) ;
Aws : : String rsrcArn ( argv [ 2 ] ) ;
2021-11-15 13:15:43 +00:00
2022-10-03 09:54:27 -04:00
AwsDoc : : IAM : : createPolicy ( policyName , rsrcArn , clientConfig ) ;
2021-11-15 13:15:43 +00:00
}
Aws : : ShutdownAPI ( options ) ;
return 0 ;
}
2022-10-07 15:58:01 -04:00
2022-10-03 09:54:27 -04:00
# endif // TESTING_BUILD
2021-11-15 13:15:43 +00:00
