IoT Policy rules for publishing directly to rules (basic ingestion)
The AWS IoT Core action resources documentation explains how you can formulate policy statements for resource-limiting iot:Publish.
I am wondering: can you use this control access to be able to publish to basic ingestion rules. What I'm looking to do is to allow certain clients to ONLY publish to rules via basic ingestion, perhaps specific rules. Is something like this this okay:
resources: ["arn:aws:iot:*:*:topic/$aws/rules/*"]
- 최신
- 최다 투표
- 가장 많은 댓글
Hello,
Yes, you can use "resources: ["arn:aws:iot:::topic/$aws/rules/*"]"
According to the below documentation, we can observe below:
Before you use Basic Ingest, verify that your device or application is using a policy that has publish permissions on $aws/rules/. Alternatively, you can specify permission for individual rules with $aws/rules/rule_name/ in the policy.
[+]. https://docs.aws.amazon.com/iot/latest/developerguide/iot-basic-ingest.html#iot-basic-ingest-use
관련 콘텐츠
- 질문됨 4일 전
AWS 공식업데이트됨 2년 전- AWS 공식업데이트됨 일 년 전
- AWS 공식업데이트됨 3년 전
- AWS 공식업데이트됨 일 년 전
