aws-native.bedrockagentcore.Policy

AWS Cloud Control v1.57.0, Mar 9 26

We recommend new projects start with resources from the AWS provider.

Viewing docs for AWS Cloud Control v1.57.0
published on Monday, Mar 9, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-aws-native

We recommend new projects start with resources from the AWS provider.

Viewing docs for AWS Cloud Control v1.57.0
published on Monday, Mar 9, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-aws-native

Create Policy Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new Policy(name: string, args: PolicyArgs, opts?: CustomResourceOptions);

@overload
def Policy(resource_name: str,
           args: PolicyArgs,
           opts: Optional[ResourceOptions] = None)

@overload
def Policy(resource_name: str,
           opts: Optional[ResourceOptions] = None,
           definition: Optional[PolicyDefinitionArgs] = None,
           policy_engine_id: Optional[str] = None,
           description: Optional[str] = None,
           name: Optional[str] = None,
           validation_mode: Optional[PolicyValidationMode] = None)

func NewPolicy(ctx *Context, name string, args PolicyArgs, opts ...ResourceOption) (*Policy, error)

public Policy(string name, PolicyArgs args, CustomResourceOptions? opts = null)

public Policy(String name, PolicyArgs args)
public Policy(String name, PolicyArgs args, CustomResourceOptions options)

type: aws-native:bedrockagentcore:Policy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args PolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args PolicyArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args PolicyArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args PolicyArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args PolicyArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Policy Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The Policy resource accepts the following input properties:

Definition Pulumi.AwsNative.BedrockAgentCore.Inputs.PolicyDefinition
PolicyEngineId string: The identifier of the policy engine which contains this policy.
Description string: A human-readable description of the policy's purpose and functionality.
Name string: The customer-assigned immutable name for the policy. Must be unique within the policy engine.
ValidationMode Pulumi.AwsNative.BedrockAgentCore.PolicyValidationMode

Definition PolicyDefinitionArgs
PolicyEngineId string: The identifier of the policy engine which contains this policy.
Description string: A human-readable description of the policy's purpose and functionality.
Name string: The customer-assigned immutable name for the policy. Must be unique within the policy engine.
ValidationMode PolicyValidationMode

definition PolicyDefinition
policyEngineId String: The identifier of the policy engine which contains this policy.
description String: A human-readable description of the policy's purpose and functionality.
name String: The customer-assigned immutable name for the policy. Must be unique within the policy engine.
validationMode PolicyValidationMode

definition PolicyDefinition
policyEngineId string: The identifier of the policy engine which contains this policy.
description string: A human-readable description of the policy's purpose and functionality.
name string: The customer-assigned immutable name for the policy. Must be unique within the policy engine.
validationMode PolicyValidationMode

definition PolicyDefinitionArgs
policy_engine_id str: The identifier of the policy engine which contains this policy.
description str: A human-readable description of the policy's purpose and functionality.
name str: The customer-assigned immutable name for the policy. Must be unique within the policy engine.
validation_mode PolicyValidationMode

definition Property Map
policyEngineId String: The identifier of the policy engine which contains this policy.
description String: A human-readable description of the policy's purpose and functionality.
name String: The customer-assigned immutable name for the policy. Must be unique within the policy engine.
validationMode "FAIL_ON_ANY_FINDINGS" | "IGNORE_ALL_FINDINGS"

Outputs

All input properties are implicitly available as output properties. Additionally, the Policy resource produces the following output properties:

CreatedAt string: The timestamp when the policy was created.
Id string: The provider-assigned unique ID for this managed resource.
PolicyArn string: The Amazon Resource Name (ARN) of the policy.
PolicyId string: The unique identifier for the policy.
Status Pulumi.AwsNative.BedrockAgentCore.PolicyStatus: The current status of the policy.
StatusReasons List<string>: Additional information about the policy status.
UpdatedAt string: The timestamp when the policy was last updated.

CreatedAt string: The timestamp when the policy was created.
Id string: The provider-assigned unique ID for this managed resource.
PolicyArn string: The Amazon Resource Name (ARN) of the policy.
PolicyId string: The unique identifier for the policy.
Status PolicyStatus: The current status of the policy.
StatusReasons []string: Additional information about the policy status.
UpdatedAt string: The timestamp when the policy was last updated.

createdAt String: The timestamp when the policy was created.
id String: The provider-assigned unique ID for this managed resource.
policyArn String: The Amazon Resource Name (ARN) of the policy.
policyId String: The unique identifier for the policy.
status PolicyStatus: The current status of the policy.
statusReasons List<String>: Additional information about the policy status.
updatedAt String: The timestamp when the policy was last updated.

createdAt string: The timestamp when the policy was created.
id string: The provider-assigned unique ID for this managed resource.
policyArn string: The Amazon Resource Name (ARN) of the policy.
policyId string: The unique identifier for the policy.
status PolicyStatus: The current status of the policy.
statusReasons string[]: Additional information about the policy status.
updatedAt string: The timestamp when the policy was last updated.

created_at str: The timestamp when the policy was created.
id str: The provider-assigned unique ID for this managed resource.
policy_arn str: The Amazon Resource Name (ARN) of the policy.
policy_id str: The unique identifier for the policy.
status PolicyStatus: The current status of the policy.
status_reasons Sequence[str]: Additional information about the policy status.
updated_at str: The timestamp when the policy was last updated.

createdAt String: The timestamp when the policy was created.
id String: The provider-assigned unique ID for this managed resource.
policyArn String: The Amazon Resource Name (ARN) of the policy.
policyId String: The unique identifier for the policy.
status "CREATING" | "ACTIVE" | "UPDATING" | "DELETING" | "CREATE_FAILED" | "UPDATE_FAILED" | "DELETE_FAILED": The current status of the policy.
statusReasons List<String>: Additional information about the policy status.
updatedAt String: The timestamp when the policy was last updated.