1 個回答
- 最新
- 最多得票
- 最多評論
2
Generally the documentation says when update of a property requires replacement or not, see https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iam-managedpolicy.html for example. I've seen cases where requiring replacement was a bug, and there was discussion about on the CloudFormation Coverage Roadmap https://github.com/aws-cloudformation/cloudformation-coverage-roadmap/issues. But in this case it appears to be by design - "The policy description is immutable. After a value is assigned, it cannot be changed.". I don't know why it's immutable; if it's a security issue it's not obvious to me.
相關內容
- AWS 官方已更新 2 年前
- AWS 官方已更新 1 年前