Menu
Here is a documentation:
Sid – (Optional) The Sid is a statement identifier, an arbitrary string you can use to identify the statement.
Does it means that Sid parameter is just description?
448
Principal key values The values for aws:username , aws:userid , and aws:PrincipalType depend on what type of principal initiated the request. For example, the request could be made using the credentials of an IAM user, an IAM role, or the AWS account root user.
IAM policies define permissions for an action regardless of the method that you use to perform the operation. For example, if a policy allows the GetUser action, then a user with that policy can get user information from the AWS Management Console, the AWS CLI, or the AWS API.
Principal – The account or user who is allowed access to the actions and resources in the statement. In a bucket policy, the principal is the user, account, service, or other entity that is the recipient of this permission.
An AWS managed policy is a standalone policy that is created and administered by AWS. Standalone policy means that the policy has its own Amazon Resource Name (ARN) that includes the policy name. For example, arn:aws:iam::aws:policy/IAMReadOnlyAccess is an AWS managed policy.
In another part of the documentation AWS provides some additional information about the purpose of the Sid:
The
Sid(statement ID) is an optional identifier that you provide for the policy statement. You can assign aSidvalue to each statement in a statement array. In services that let you specify anIDelement, such as SQS and SNS, theSidvalue is just a sub-ID of the policy document's ID. In IAM, theSidvalue must be unique within a JSON policy.
So yes, it's just a description.
53
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
