本文整理匯總了Python中awacs.aws.Policy方法的典型用法代碼示例。如果您正苦於以下問題:Python aws.Policy方法的具體用法?Python aws.Policy怎麽用?Python aws.Policy使用的例子?那麽, 這裏精選的方法代碼示例或許可以為您提供幫助。您也可以進一步了解該方法所在類awacs.aws的用法示例。
在下文中一共展示了aws.Policy方法的3個代碼示例,這些例子默認根據受歡迎程度排序。您可以為喜歡或者感覺有用的代碼點讚,您的評價將有助於係統推薦出更棒的Python代碼示例。
示例1: build_policy_bucket
# 需要導入模塊: from awacs import aws [as 別名]
# 或者: from awacs.aws import Policy [as 別名]
def build_policy_bucket(self, bucket, name, statements):
"""
Generate bucket policy for S3 bucket
:param bucket: The bucket to attach policy to
:param name: The name of the bucket (to generate policy name from it)
:param statements: The "rules" the policy should have
:return: Ref to new policy
"""
policy = self.__template.add_resource(
BucketPolicy(
self.name_strip(name, True, False),
Bucket=troposphere.Ref(bucket),
DependsOn=[
troposphere.Name(bucket)
],
PolicyDocument=Policy(
Version=self.VERSION_IAM,
Statement=statements
)
)
)
return policy 示例2: render
# 需要導入模塊: from awacs import aws [as 別名]
# 或者: from awacs.aws import Policy [as 別名]
def render(self,app_name=None,stage_name=None,username=None,function_bucket=None,
static_bucket=None,aws_region_name='us-east-1'):
self.app_name = app_name
self.stage_name = stage_name
self.username = username
self.function_bucket = function_bucket
self.static_bucket = static_bucket
self.aws_region_name = aws_region_name
self.t = Template()
self.t.add_description(
"Zappa Template for {app_name}-{stage_name} ".format(
app_name=self.app_name, stage_name=self.stage_name))
zappa_user = self.t.add_resource(User(self.username))
zappa_user_keys = self.t.add_resource(AccessKey(
"ZappaUserKeys",
Status="Active",
UserName=Ref(zappa_user))
)
self.t.add_resource(
PolicyType(
alpha_num_pattern.sub('',"{app_name}{stage_name}".format(
app_name=self.app_name,
stage_name=self.stage_name)),
Users=[Ref(zappa_user)],
PolicyName="zappa-{app_name}-{stage_name}".format(
app_name=self.app_name,
stage_name=self.stage_name),
PolicyDocument=Policy(
Version="2012-10-17",
Statement=self.get_statement_list(),
),
)
)
self.t.add_output(Output(
"AccessKey",
Value=Ref(zappa_user_keys),
Description="AWSAccessKeyId of new user",
))
self.t.add_output(Output(
"SecretKey",
Value=GetAtt(zappa_user_keys, "SecretAccessKey"),
Description="AWSSecretKey of new user",
))
return self.t.to_json() 示例3: build_role
# 需要導入模塊: from awacs import aws [as 別名]
# 或者: from awacs.aws import Policy [as 別名]
def build_role(self, name, policies=False):
"""
Generate role for IAM cloudformation template
:param name: Name of role
:param policies: List of policies to attach to this role (False = none)
:return: Ref to new role
"""
# Build role template
if policies:
role = self.__template.add_resource(
Role(
self.name_strip(name),
AssumeRolePolicyDocument=Policy(
Version=self.VERSION_IAM,
Statement=[
Statement(
Effect=Allow,
Principal=Principal(
"Service", self.__role_principals
),
Action=[AssumeRole],
)
]
),
Path=self.__role_path,
ManagedPolicyArns=policies,
))
# Add role to list for default policy
self.__roles_list.append(troposphere.Ref(role))
else:
role = self.__template.add_resource(
Role(
self.name_strip(name),
AssumeRolePolicyDocument=Policy(
Version=self.VERSION_IAM,
Statement=[
Statement(
Effect=Allow,
Principal=Principal(
"Service", self.__role_principals
),
Action=[AssumeRole],
)
]
),
Path=self.__role_path,
))
# Add role to list for default policy
self.__roles_list.append(troposphere.Ref(role))
return role