2022-07-06 13:27:17 +00:00
|
|
|
using System.Collections.Generic;
|
2023-03-24 11:43:46 +00:00
|
|
|
using System.Linq;
|
2022-07-06 13:27:17 +00:00
|
|
|
using System.Text.Json;
|
|
|
|
using Pulumi;
|
|
|
|
using Aws = Pulumi.Aws;
|
|
|
|
|
2022-07-21 19:04:02 +00:00
|
|
|
return await Deployment.RunAsync(() =>
|
2022-07-06 13:27:17 +00:00
|
|
|
{
|
2022-07-21 19:04:02 +00:00
|
|
|
// Create a policy with multiple Condition keys
|
|
|
|
var policy = new Aws.Iam.Policy("policy", new()
|
2022-07-06 13:27:17 +00:00
|
|
|
{
|
2022-07-21 19:04:02 +00:00
|
|
|
Path = "/",
|
|
|
|
Description = "My test policy",
|
|
|
|
PolicyDocument = JsonSerializer.Serialize(new Dictionary<string, object?>
|
2022-07-06 13:27:17 +00:00
|
|
|
{
|
2022-07-21 19:04:02 +00:00
|
|
|
["Version"] = "2012-10-17",
|
|
|
|
["Statement"] = new[]
|
2022-07-06 13:27:17 +00:00
|
|
|
{
|
2022-07-21 19:04:02 +00:00
|
|
|
new Dictionary<string, object?>
|
|
|
|
{
|
|
|
|
["Effect"] = "Allow",
|
|
|
|
["Action"] = "lambda:*",
|
|
|
|
["Resource"] = "arn:aws:lambda:*:*:function:*",
|
|
|
|
["Condition"] = new Dictionary<string, object?>
|
2022-07-06 13:27:17 +00:00
|
|
|
{
|
2022-07-21 19:04:02 +00:00
|
|
|
["StringEquals"] = new Dictionary<string, object?>
|
2022-07-06 13:27:17 +00:00
|
|
|
{
|
2022-07-21 19:04:02 +00:00
|
|
|
["aws:RequestTag/Team"] = new[]
|
2022-07-06 13:27:17 +00:00
|
|
|
{
|
2022-07-21 19:04:02 +00:00
|
|
|
"iamuser-admin",
|
|
|
|
"iamuser2-admin",
|
|
|
|
},
|
2022-07-06 13:27:17 +00:00
|
|
|
},
|
2022-07-21 19:04:02 +00:00
|
|
|
["ForAllValues:StringEquals"] = new Dictionary<string, object?>
|
|
|
|
{
|
|
|
|
["aws:TagKeys"] = new[]
|
|
|
|
{
|
|
|
|
"Team",
|
|
|
|
},
|
|
|
|
},
|
|
|
|
},
|
|
|
|
},
|
|
|
|
},
|
|
|
|
}),
|
|
|
|
});
|
|
|
|
|
|
|
|
return new Dictionary<string, object?>
|
|
|
|
{
|
|
|
|
["policyName"] = policy.Name,
|
|
|
|
};
|
|
|
|
});
|
2022-07-06 13:27:17 +00:00
|
|
|
|