授权策略语言

<p class="shortdesc"></p> <table class="table" id="authorizepolicy__table_oz3_pgk_flb"><caption></caption><colgroup><col><col><col></colgroup><thead class="thead"> <tr class="row"> <th class="entry" id="authorizepolicy__table_oz3_pgk_flb__entry__1">接口名称</th> <th class="entry" id="authorizepolicy__table_oz3_pgk_flb__entry__2">鉴权规则</th> <th class="entry" id="authorizepolicy__table_oz3_pgk_flb__entry__3">说明</th> </tr> </thead><tbody class="tbody"> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 " rowspan="2"> <p class="p">AddUserToGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${GroupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 " rowspan="2"> <p class="p">将子用户添加到群组</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">AdminResetPassword</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/*</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">重置子账号密码</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 " rowspan="2"> <p class="p">AttachPolicyToGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${GroupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 " rowspan="2"> <p class="p">为组附加授权</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/${PolicyName}</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 " rowspan="2"> <p class="p">AttachPolicyToUser</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 " rowspan="2"> <p class="p">为用户附加授权</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/${PolicyName}</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">BatchUpdatePolicyToGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${groupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">批量为组授权</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">BatchUpdatePolicyToUser</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">批量为用户授权</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">CreateAccessKey</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${UserName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">创建访问秘钥</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">CreateGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/*</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">创建群组</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">CreatePolicy</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/*</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">创建一个授权策略</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">CreatePolicyVersion</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/${PolicyName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">创建策略版本</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">CreateUser</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/*</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">创建用户</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">DeleteAccessKey</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${UserName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">删除访问秘钥</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">DeleteGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${GroupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">删除一个群组</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">DeletePolicy</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/${PolicyName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">删除策略</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">DeletePolicyVersion</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/${PolicyName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">删除策略版本</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">DeleteUser</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">删除用户</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 " rowspan="2"> <p class="p">DetachPolicyFromGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${GroupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 " rowspan="2"> <p class="p">为组撤销授权</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/${PolicyName}</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 " rowspan="2"> <p class="p">DetachPolicyFromUser</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 " rowspan="2"> <p class="p">为用户撤销授权</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/${PolicyName}</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ExportAccessKey</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${UserName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">导出访问秘钥到本地</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">GetAccessKey</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${UserName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">获取访问秘钥</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">GetGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${GroupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">获取组信息</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">GetPolicy</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/${PolicyName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">获取策略信息</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">GetPolicyVersion</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/${PolicyName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">获取授权策略版本</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">GetRamSummary</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:ramsummary/*</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">获取RAM的概览信息</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">GetUser</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">获取用户信息</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListAccessKey</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${UserName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出访问秘钥</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListGroups</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/*</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出组列表</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListGroupsCanAddForUser</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出子用户可以加入的组</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListGroupsForUser</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出子用户加入的组</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListPolicies</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/*</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出授权策略</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListPoliciesCanAttachToGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${GroupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出群组的可授权策略</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListPoliciesCanAttachToUser</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出用户的可授权策略</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListPoliciesForGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${GroupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出群组授权策略</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListPoliciesForUser</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出用户授权策略</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListPolicyVersions</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/${PolicyName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出授权策略版本</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListUsers</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/*</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出组的授权策略</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListUsersCanAddToGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${GroupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出可添加到组的子用户</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">ListUsersForGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${GroupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">列出群组包含的子用户</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 " rowspan="2"> <p class="p">RemoveUserFromGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${GroupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 " rowspan="2"> <p class="p">移除组中的子用户</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">SetDefaultPolicyVersion</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:policy/${PolicyName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">设置策略版本</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">UpdateAccessKey</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${UserName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">更新访问秘钥</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">UpdateGroup</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:group/${GroupName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">修改群组信息</p> </td> </tr> <tr class="row"> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__1 "> <p class="p">UpdateUser</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__2 "> <p class="p">pcs:ram:*:${AccountId}:user/${LoginName}</p> </td> <td class="entry" headers="authorizepolicy__table_oz3_pgk_flb__entry__3 "> <p class="p">更新用户信息</p> </td> </tr> </tbody></table>
以上内容是否解决了您的问题?
请补全提交信息!
咨询·建议

电话咨询

400-151-8800

邮件咨询

cloud@pingan.com

在线客服

工单支持

解决云产品相关技术问题