-
-
permissions.!
AliyunApiGatewayFullAccess: It is an administrator privilege which can be used to manage all
resources under the primary account, including API groups, APIs, throttling policies, and
applications.
AliyunApiGatewayReadOnlyAccess: It is used to view all resources under the primary
account, including API groups, APIs, throttling policies, and applications, but cannot operate
on them.
Custom authorization policy
You can customize management permissions precisely to an operation or resource as needed. For
example, you can customize the edition permission for API GetUsers. You can check the defined
custom authorization in
RAM console-policy management
-custom authorization policy.For more
information about how to view, create, modify, and delete a custom authorization, see
Authorization
policy management
.
For more information about how to enter the authorization policy content, see
Policy basic elements
,
Policy syntax structure
, and authorization policy described as follows.
Part 2: Authorization policy
An authorization policy is a set of permissions described in the policy language. After an
authorization policy is attached to a user or a group, the user or all users in the group can acquire the
access permissions specified in the policy.
For more information about how to enter the authorization policy content, see
Policy basic elements
and
Policy syntax structure
.
Example:
This example indicates that all the view operations are allowed.
{
"Version": "1",
"Statement": [
{
"Action": "apigateway:Describe*",
"Resource": "*",
"Effect": "Allow"
}
]
}
API Gateway
User Guide for Providers
24
Содержание API Gateway
Страница 1: ...API Gateway User Guide for Providers...
