PolicyDefinition

The Cedar policy definition within the policy definition structure. This contains the Cedar policy statement that defines the authorization logic using Cedar's human-readable, analyzable policy language. Cedar policies specify principals (who can access), actions (what operations are allowed), resources (what can be accessed), and optional conditions for fine-grained control. Cedar provides a formal policy language designed for authorization with deterministic evaluation, making policies testable, reviewable, and auditable. All Cedar policies follow a default-deny model where actions are denied unless explicitly permitted, and forbid policies always override permit policies.

The generated policy asset information within the policy definition structure. This contains information identifying a generated policy asset from the AI-powered policy generation process within the AgentCore Policy system. Each asset contains a Cedar policy statement generated from natural language input, along with associated metadata and analysis findings to help users evaluate and select the most appropriate policy option.

Casts this PolicyDefinition as a Cedar and retrieves its aws.sdk.kotlin.services.bedrockagentcorecontrol.model.CedarPolicy value. Throws an exception if the PolicyDefinition is not a Cedar.

Casts this PolicyDefinition as a Cedar and retrieves its aws.sdk.kotlin.services.bedrockagentcorecontrol.model.CedarPolicy value. Returns null if the PolicyDefinition is not a Cedar.

Casts this PolicyDefinition as a PolicyGeneration and retrieves its aws.sdk.kotlin.services.bedrockagentcorecontrol.model.PolicyGenerationDetails value. Throws an exception if the PolicyDefinition is not a PolicyGeneration.

Casts this PolicyDefinition as a PolicyGeneration and retrieves its aws.sdk.kotlin.services.bedrockagentcorecontrol.model.PolicyGenerationDetails value. Returns null if the PolicyDefinition is not a PolicyGeneration.