createPolicy method
Creates a new managed policy for your Amazon Web Services account.
This operation creates a policy version with a version identifier of
v1 and sets v1 as the policy's default version. For more
information about policy versions, see Versioning
for managed policies in the IAM User Guide.
As a best practice, you can validate your IAM policies. To learn more, see Validating IAM policies in the IAM User Guide.
For more information about managed policies in general, see Managed policies and inline policies in the IAM User Guide.
May throw ConcurrentModificationException.
May throw EntityAlreadyExistsException.
May throw InvalidInputException.
May throw LimitExceededException.
May throw MalformedPolicyDocumentException.
May throw ServiceFailureException.
Parameter policyDocument :
The JSON policy document that you want to use as the content for the new
policy.
You must provide policies in JSON format in IAM. However, for CloudFormation templates formatted in YAML, you can provide the policy in JSON or YAML format. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.
The maximum length of the policy document that you can pass in this operation, including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see IAM and STS character quotas.
To learn more about JSON policy grammar, see Grammar of the IAM JSON policy language in the IAM User Guide.
The regex pattern used to validate this parameter is a string of characters consisting of the following:
-
Any printable ASCII character ranging from the space character
(
\u0020) through the end of the ASCII character range -
The printable characters in the Basic Latin and Latin-1 Supplement
character set (through
\u00FF) -
The special characters tab (
\u0009), line feed (\u000A), and carriage return (\u000D)
Parameter policyName :
The friendly name of the policy.
IAM user, group, role, and policy names must be unique within the account. Names are not distinguished by case. For example, you cannot create resources named both "MyResource" and "myresource".
Parameter description :
A friendly description of the policy.
Typically used to store information about the permissions defined in the policy. For example, "Grants access to production DynamoDB tables."
The policy description is immutable. After a value is assigned, it cannot be changed.
Parameter path :
The path for the policy.
For more information about paths, see IAM identifiers in the IAM User Guide.
This parameter is optional. If it is not included, it defaults to a slash (/).
This parameter allows (through its regex pattern) a string of
characters consisting of either a forward slash (/) by itself or a string
that must begin and end with forward slashes. In addition, it can contain
any ASCII character from the ! (\u0021) through the DEL
character (\u007F), including most punctuation characters,
digits, and upper and lowercased letters.
Parameter tags :
A list of tags that you want to attach to the new IAM customer managed
policy. Each tag consists of a key name and an associated value. For more
information about tagging, see Tagging
IAM resources in the IAM User Guide.
Implementation
Future<CreatePolicyResponse> createPolicy({
required String policyDocument,
required String policyName,
String? description,
String? path,
List<Tag>? tags,
}) async {
final $request = <String, String>{
'PolicyDocument': policyDocument,
'PolicyName': policyName,
if (description != null) 'Description': description,
if (path != null) 'Path': path,
if (tags != null)
if (tags.isEmpty)
'Tags': ''
else
for (var i1 = 0; i1 < tags.length; i1++)
for (var e3 in tags[i1].toQueryMap().entries)
'Tags.member.${i1 + 1}.${e3.key}': e3.value,
};
final $result = await _protocol.send(
$request,
action: 'CreatePolicy',
version: '2010-05-08',
method: 'POST',
requestUri: '/',
exceptionFnMap: _exceptionFns,
resultWrapper: 'CreatePolicyResult',
);
return CreatePolicyResponse.fromXml($result);
}