Interface PolicyDefinition.Builder

All Superinterfaces:

Buildable, CopyableBuilder<PolicyDefinition.Builder,PolicyDefinition>, SdkBuilder<PolicyDefinition.Builder,PolicyDefinition>, SdkPojo

Enclosing class:

PolicyDefinition

@Mutable
@NotThreadSafe
public static interface PolicyDefinition.Builder
extends SdkPojo, CopyableBuilder<PolicyDefinition.Builder,PolicyDefinition>

Method Summary

Modifier and Type	Method	Description
default PolicyDefinition.Builder	cedar(Consumer<CedarPolicy.Builder> cedar)	The Cedar policy definition within the policy definition structure.
PolicyDefinition.Builder	cedar(CedarPolicy cedar)	The Cedar policy definition within the policy definition structure.

Methods inherited from interface software.amazon.awssdk.utils.builder.CopyableBuilder

copy

Methods inherited from interface software.amazon.awssdk.utils.builder.SdkBuilder

applyMutation, build

Methods inherited from interface software.amazon.awssdk.core.SdkPojo

equalsBySdkFields, sdkFieldNameToField, sdkFields

Method Details

cedar

PolicyDefinition.Builder cedar(CedarPolicy cedar)

The Cedar policy definition within the policy definition structure. This contains the Cedar policy statement that defines the authorization logic using Cedar's human-readable, analyzable policy language. Cedar policies specify principals (who can access), actions (what operations are allowed), resources (what can be accessed), and optional conditions for fine-grained control. Cedar provides a formal policy language designed for authorization with deterministic evaluation, making policies testable, reviewable, and auditable. All Cedar policies follow a default-deny model where actions are denied unless explicitly permitted, and forbid policies always override permit policies.

Parameters:

cedar - The Cedar policy definition within the policy definition structure. This contains the Cedar policy statement that defines the authorization logic using Cedar's human-readable, analyzable policy language. Cedar policies specify principals (who can access), actions (what operations are allowed), resources (what can be accessed), and optional conditions for fine-grained control. Cedar provides a formal policy language designed for authorization with deterministic evaluation, making policies testable, reviewable, and auditable. All Cedar policies follow a default-deny model where actions are denied unless explicitly permitted, and forbid policies always override permit policies.

Returns:

Returns a reference to this object so that method calls can be chained together.

cedar

default PolicyDefinition.Builder cedar(Consumer<CedarPolicy.Builder> cedar)

The Cedar policy definition within the policy definition structure. This contains the Cedar policy statement that defines the authorization logic using Cedar's human-readable, analyzable policy language. Cedar policies specify principals (who can access), actions (what operations are allowed), resources (what can be accessed), and optional conditions for fine-grained control. Cedar provides a formal policy language designed for authorization with deterministic evaluation, making policies testable, reviewable, and auditable. All Cedar policies follow a default-deny model where actions are denied unless explicitly permitted, and forbid policies always override permit policies.

This is a convenience method that creates an instance of the CedarPolicy.Builder avoiding the need to create one manually via CedarPolicy.builder().

When the Consumer completes, SdkBuilder.build() is called immediately and its result is passed to cedar(CedarPolicy).

Parameters:

cedar - a consumer that will call methods on CedarPolicy.Builder

Returns:

Returns a reference to this object so that method calls can be chained together.

See Also:

• cedar(CedarPolicy)