Creates a custom policy
POST/iam/policies
Creates a custom IAM policy used to control permissions. A policy is composed of one or more statements that grant permissions to a set of members. Each statement contains a role as well as a list of tenants.
The role defines a set of actions that the statement is scoped to.
The tenant list defines the set of resources that the statement is scoped to.
Pass "tenants": ["*"] to scope a statement to every tenant.
A policy's top-level tenants list defines which tenants the policy belongs to (for filtering policies by their tenants), whereas the statement-level tenants list defines which tenants the statement applies to.
The example creates a new policy not associated with any tenant (because the top-level tenants property is empty) that grants the viewer role
on a few tenants for all local teams and a custom role myRole on a specific tenant.
Authorization Action:
iam:policies:create
Request
Responses
- 200
- default
A successful response.
An unexpected error response.