How to create an IAM policy for Cloudformation, which is based on a stack state?
Question
I'm trying to create an IAM policy to allow deletion of Cloudformation stacks that are in ROLLBACK_COMPLETE state ?
Is there any way to achieve a such filter ?
1 answers
solution1
2 2019-07-08 08:59:03
Unfortunately, as far as I can see, it's not possible. I don't see a way to apply a condition to only allow deletion based on stack state.
Documentation on Condition Keys for AWS CloudFormation: Actions, Resources, and Condition Keys for AWS CloudFormation
Maybe there's another way to do what you're trying to achieve?
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
How to create a condition which allows only resources created in the same CloudFormation stack to assume IAM role?
create AWS IAM Policy using cloudformation
Cannot create only IAM policy with cloudformation
Cloudformation IAM Policy
AWS IAM Policy restrict access to resources based on parent Cloudformation
Setting up Lambda to Create AWS CloudFormation without IAM Policy
AWS Cloudformation IAM Policy with Resource
How to use cloudformation to create an IAM user/role
How to use AWS CloudFormation pseudoparameter inside IAM Policy Document
Clear stack policy in Cloudformation?
Related Tags