Package com.pulumi.aws.organizations

Class ResourcePolicy

java.lang.Object

com.pulumi.resources.Resource

com.pulumi.resources.CustomResource

com.pulumi.aws.organizations.ResourcePolicy

public class ResourcePolicy
extends com.pulumi.resources.CustomResource

Provides a resource to manage a resource-based delegation policy that can be used to delegate policy management for AWS Organizations to specified member accounts to perform policy actions that are by default available only to the management account. See the [_AWS Organizations User Guide_](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_delegate_policies.html) for more information. ## Example Usage <!--Start PulumiCodeChooser -->

 
 package generated_program;
 
 import com.pulumi.Context;
 import com.pulumi.Pulumi;
 import com.pulumi.core.Output;
 import com.pulumi.aws.organizations.ResourcePolicy;
 import com.pulumi.aws.organizations.ResourcePolicyArgs;
 import java.util.List;
 import java.util.ArrayList;
 import java.util.Map;
 import java.io.File;
 import java.nio.file.Files;
 import java.nio.file.Paths;
 
 public class App {
     public static void main(String[] args) {
         Pulumi.run(App::stack);
     }
 
     public static void stack(Context ctx) {
         var example = new ResourcePolicy("example", ResourcePolicyArgs.builder()        
             .content("""
 {
   "Version": "2012-10-17",
   "Statement": [
     {
       "Sid": "DelegatingNecessaryDescribeListActions",
       "Effect": "Allow",
       "Principal": {
         "AWS": "arn:aws:iam::123456789012:root"
       },
       "Action": [
         "organizations:DescribeOrganization",
         "organizations:DescribeOrganizationalUnit",
         "organizations:DescribeAccount",
         "organizations:DescribePolicy",
         "organizations:DescribeEffectivePolicy",
         "organizations:ListRoots",
         "organizations:ListOrganizationalUnitsForParent",
         "organizations:ListParents",
         "organizations:ListChildren",
         "organizations:ListAccounts",
         "organizations:ListAccountsForParent",
         "organizations:ListPolicies",
         "organizations:ListPoliciesForTarget",
         "organizations:ListTargetsForPolicy",
         "organizations:ListTagsForResource"
       ],
       "Resource": "*"
     }
   ]
 }
             """)
             .build());
 
     }
 }
 
 

<!--End PulumiCodeChooser --> ## Import Using `pulumi import`, import `aws_organizations_resource_policy` using the resource policy ID. For example: ```sh $ pulumi import aws:organizations/resourcePolicy:ResourcePolicy example rp-12345678 ```

Nested Class Summary

Nested classes/interfaces inherited from class com.pulumi.resources.CustomResource

com.pulumi.resources.CustomResource.CustomResourceInternal

Nested classes/interfaces inherited from class com.pulumi.resources.Resource

com.pulumi.resources.Resource.LazyField<T extends java.lang.Object>, com.pulumi.resources.Resource.LazyFields, com.pulumi.resources.Resource.ResourceInternal

Field Summary

Fields inherited from class com.pulumi.resources.Resource

childResources, remote

Constructor Summary

Constructors

Constructor	Description
ResourcePolicy(java.lang.String name)
ResourcePolicy(java.lang.String name, ResourcePolicyArgs args)
ResourcePolicy(java.lang.String name, ResourcePolicyArgs args, com.pulumi.resources.CustomResourceOptions options)

Method Summary

Modifier and Type	Method	Description
com.pulumi.core.Output<java.lang.String>	arn()
com.pulumi.core.Output<java.lang.String>	content()
static ResourcePolicy	get(java.lang.String name, com.pulumi.core.Output<java.lang.String> id, ResourcePolicyState state, com.pulumi.resources.CustomResourceOptions options)	Get an existing Host resource's state with the given name, ID, and optional extra properties used to qualify the lookup.
com.pulumi.core.Output<java.util.Optional<java.util.Map<java.lang.String,java.lang.String>>>	tags()
com.pulumi.core.Output<java.util.Map<java.lang.String,java.lang.String>>	tagsAll()

Methods inherited from class com.pulumi.resources.CustomResource

getId, id, idFuture

Methods inherited from class com.pulumi.resources.Resource

getChildResources, getResourceName, getResourceType, getUrn, pulumiChildResources, pulumiResourceName, pulumiResourceType, urn

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

ResourcePolicy

public ResourcePolicy(java.lang.String name)

Parameters:

name - The _unique_ name of the resulting resource.

ResourcePolicy

public ResourcePolicy(java.lang.String name,
                      ResourcePolicyArgs args)

Parameters:

name - The _unique_ name of the resulting resource.

args - The arguments to use to populate this resource's properties.

ResourcePolicy

public ResourcePolicy(java.lang.String name,
                      ResourcePolicyArgs args,
                      @Nullable
                      com.pulumi.resources.CustomResourceOptions options)

Parameters:

name - The _unique_ name of the resulting resource.

args - The arguments to use to populate this resource's properties.

options - A bag of options that control this resource's behavior.

Method Detail

arn

public com.pulumi.core.Output<java.lang.String> arn()

Returns:

Amazon Resource Name (ARN) of the resource policy.

content

public com.pulumi.core.Output<java.lang.String> content()

Returns:

Content for the resource policy. The text must be correctly formatted JSON that complies with the syntax for the resource policy's type. See the [_AWS Organizations User Guide_](https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_delegate_examples.html) for examples.

tags

public com.pulumi.core.Output<java.util.Optional<java.util.Map<java.lang.String,java.lang.String>>> tags()

Returns:

Key-value map of resource tags. If configured with a provider `default_tags` configuration block present, tags with matching keys will overwrite those defined at the provider-level.

tagsAll

public com.pulumi.core.Output<java.util.Map<java.lang.String,java.lang.String>> tagsAll()

Returns:

A map of tags assigned to the resource, including those inherited from the provider `default_tags` configuration block.

get

public static ResourcePolicy get(java.lang.String name,
                                 com.pulumi.core.Output<java.lang.String> id,
                                 @Nullable
                                 ResourcePolicyState state,
                                 @Nullable
                                 com.pulumi.resources.CustomResourceOptions options)

Get an existing Host resource's state with the given name, ID, and optional extra properties used to qualify the lookup.

Parameters:

name - The _unique_ name of the resulting resource.

id - The _unique_ provider ID of the resource to lookup.

state -

options - Optional settings to control the behavior of the CustomResource.