Skip to content

Modify Vpc Endpoint Service Permissions

ec2_modify_vpc_endpoint_service_permissions R Documentation

Modifies the permissions for your VPC endpoint service

Description

Modifies the permissions for your VPC endpoint service. You can add or remove permissions for service consumers (Amazon Web Services accounts, users, and IAM roles) to connect to your endpoint service.

If you grant permissions to all principals, the service is public. Any users who know the name of a public service can send a request to attach an endpoint. If the service does not require manual approval, attachments are automatically approved.

Usage

ec2_modify_vpc_endpoint_service_permissions(DryRun, ServiceId,
  AddAllowedPrincipals, RemoveAllowedPrincipals)

Arguments

DryRun

Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.

ServiceId

[required] The ID of the service.

AddAllowedPrincipals

The Amazon Resource Names (ARN) of the principals. Permissions are granted to the principals in this list. To grant permissions to all principals, specify an asterisk (*).

RemoveAllowedPrincipals

The Amazon Resource Names (ARN) of the principals. Permissions are revoked for principals in this list.

Value

A list with the following syntax: 

list(
  AddedPrincipals = list(
    list(
      PrincipalType = "All"|"Service"|"OrganizationUnit"|"Account"|"User"|"Role",
      Principal = "string",
      ServicePermissionId = "string",
      ServiceId = "string"
    )
  ),
  ReturnValue = TRUE|FALSE
)

Request syntax

svc$modify_vpc_endpoint_service_permissions(
  DryRun = TRUE|FALSE,
  ServiceId = "string",
  AddAllowedPrincipals = list(
    "string"
  ),
  RemoveAllowedPrincipals = list(
    "string"
  )
)