本文属于机器翻译版本。若本译文内容与英语原文存在差异,则一律以英文原文为准。 # Amazon Cloud Directory API 权限:API 权限:操作、资源和条件参考 在设置[访问控制](iam_auth_access.md#iam_auth_access_accesscontrol)和编写您可挂载到 IAM 身份的权限策略 (基于身份的策略) 时,可以使用下表作为参考。该表列出的每个 Amazon Cloud Directory API 操作、您可授予操作执行权限的对应操作以及您可为其授予权限的 AWS 资源。您在策略的 `Action` 字段中指定操作,并在策略的 `Resource` 字段中指定资源值。 您可以在 Amazon Cloud Directory 策略中使用 AWS 范围的条件键来表达条件。有关 AWS 范围内的键的完整列表,请参阅[可用的全局条件键](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html#AvailableKeys)中的*IAM 用户指南*。 **注意** 要指定操作,请在 API 操作名称之前使用 `clouddirectory:` 前缀 (例如,`clouddirectory:CreateDirectory`)。 **Amazon Cloud Directory API 和所需操作权限** | Amazon Cloud Directory API 操作 | 所需权限(API 操作) | 资源 | | --- | --- | --- | | [AddFacetToObject](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_AddFacetToObject.html) | `clouddirectory:AddFacetToObject` | \* | | [ApplySchema](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ApplySchema.html) | clouddirectory:ApplySchema | \* | | [AttachObject](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_AttachObject.html) | clouddirectory:AttachObject | \* | | [AttachPolicy](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_AttachPolicy.html) | `clouddirectory:AttachPolicy` | \* | | [AttachToIndex](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_AttachToIndex.html) | `clouddirectory:AttachToIndex` | \* | | [AttachTypedLink](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_AttachTypedLink.html) | `clouddirectory:AttachTypedLink` | \* | | [BatchRead](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_BatchRead.html) | `clouddirectory:BatchRead` | \* | | [BatchWrite](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_BatchWrite.html) | `clouddirectory:BatchWrite` | \* | | [CreateDirectory](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_CreateDirectory.html) | `clouddirectory:CreateDirectory` | \* | | [CreateFacet](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_CreateFacet.html) | `clouddirectory:CreateFacet` | \* | | [CreateIndex](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_CreateIndex.html) | `clouddirectory:CreateIndex` | \* | | [CreateObject](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_CreateObject.html) | `clouddirectory:CreateObject` | \* | | [CreateSchema](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_CreateSchema.html) | `clouddirectory:CreateSchema` | \* | | [CreateTypedLinkFacet](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_CreateTypedLinkFacet.html) | `clouddirectory:CreateTypedLinkFacet` | \* | | [DeleteDirectory](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_DeleteDirectory.html) | `clouddirectory:DeleteDirectory` | \* | | [DeleteFacet](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_DeleteFacet.html) | `clouddirectory:DeleteFacet` | \* | | [DeleteObject](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_DeleteObject.html) | `clouddirectory:DeleteObject` | \* | | [DeleteSchema](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_DeleteSchema.html) | `clouddirectory:DeleteSchema` | \* | | [DeleteTypedLinkFacet](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_DeleteTypedLinkFacet.html) | `clouddirectory:DeleteTypedLinkFacet` | \* | | [DetachFromIndex](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_DetachFromIndex.html) | `clouddirectory:DetachFromIndex` | \* | | [DetachObject](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_DetachObject.html) | `clouddirectory:DetachObject` | \* | | [DetachPolicy](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_DetachPolicy.html) | `clouddirectory:DetachPolicy` | \* | | [DetachedTypedLink](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_DetachTypedLink.html) | `clouddirectory:DetachTypedLink` | \* | | [DisableDirectory](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_DisableDirectory.html) | `clouddirectory:DisableDirectory` | \* | | [EnableDirectory](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_EnableDirectory.html) | `clouddirectory:EnableDirectory` | \* | | [GetAppliedSchemaVersion](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_GetAppliedSchemaVersion.html) | `clouddirectory:GetAppliedSchemaVersion` | \* | | [GetDirectory](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_GetDirectory.html) | `clouddirectory:GetDirectory` | \* | | [GetFacet](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_GetFacet.html) | `clouddirectory:GetFacet` | \* | | [GetObjectAttributes](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_GetObjectAttributes.html) | `clouddirectory:GetObjectAttributes` | \* | | [GetObjectInformation](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_GetObjectInformation.html) | `clouddirectory:GetObjectInformation` | \* | | [GetSchemaAsJson](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_GetSchemaAsJson.html) | `clouddirectory:GetSchemaAsJson` | \* | | [GetTypedLinkFacetInformation](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_GetTypedLinkFacetInformation.html) | `clouddirectory:GetTypedLinkFacetInformation` | \* | | [ListAppliedSchemaArns](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListAppliedSchemaArns.html) | `clouddirectory:ListAppliedSchemaArns` | \* | | [ListAttachedIndices](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListAttachedIndices.html) | `clouddirectory:ListAttachedIndices` | \* | | [ListDevelopmentSchemaArns](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListDevelopmentSchemaArns.html) | `clouddirectory:ListDevelopmentSchemaArns` | \* | | [ListDirectories](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListDirectories.html) | `clouddirectory:ListDirectories` | \* | | [ListFacetAttributes](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListFacetAttributes.html) | `clouddirectory:ListFacetAttributes` | \* | | [ListFacetNames](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListFacetNames.html) | `clouddirectory:ListFacetNames` | \* | | [ListIncomingTypedLinks](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListIncomingTypedLinks.html) | `clouddirectory:ListIncomingTypedLinks` | \* | | [ListIndex](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListIndex.html) | `clouddirectory:ListIndex` | \* | | [ListObjectAttributes](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListObjectAttributes.html) | `clouddirectory:ListObjectAttributes` | \* | | [ListObjectChildren](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListObjectChildren.html) | `clouddirectory:ListObjectChildren` | \* | | [ListObjectParentPaths](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListObjectParentPaths.html) | `clouddirectory:ListObjectParentPaths` | \* | | [ListObjectParents](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListObjectParents.html) | `clouddirectory:ListObjectParents` | \* | | [ListObjectPolicies](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListObjectPolicies.html) | `clouddirectory:ListObjectPolicies` | \* | | [ListOutgoingTypedLinks](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListOutgoingTypedLinks.html) | `clouddirectory:ListOutgoingTypedLinks` | \* | | [ListPolicyAttachments](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListPolicyAttachments.html) | `clouddirectory:ListPolicyAttachments` | \* | | [ListPublishedSchemaArns](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListPublishedSchemaArns.html) | `clouddirectory:ListPublishedSchemaArns` | \* | | [ListTagsForResource](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListTagsForResource.html) | `clouddirectory:ListTagsForResource` | \* | | [ListTypedLinkFacetAttributes](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListTypedLinkFacetAttributes.html) | `clouddirectory:ListTypedLinkFacetAttributes` | \* | | [ListTypedLinkFacetNames](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_ListTypedLinkFacetNames.html) | `clouddirectory:ListTypedLinkFacetNames` | \* | | [LookupPolicy](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_LookupPolicy.html) | `clouddirectory:LookupPolicy` | \* | | [PublishSchema](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_PublishSchema.html) | `clouddirectory:PublishSchema` | \* | | [PutSchemaFromJson](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_PutSchemaFromJson.html) | `clouddirectory:PutSchemaFromJson` | \* | | [RemoveFacetFromObject](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_RemoveFacetFromObject.html) | `clouddirectory:RemoveFacetFromObject` | \* | | [TagResource](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_TagResource.html) | `clouddirectory:TagResource` | \* | | [UntagResource](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_UntagResource.html) | `clouddirectory:UntagResource` | \* | | [UpdateFacet](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_UpdateFacet.html) | `clouddirectory:UpdateFacet` | \* | | [UpdateObjectAttributes](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_UpdateObjectAttributes.html) | `clouddirectory:UpdateObjectAttributes` | \* | | [UpdateSchema](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_UpdateSchema.html) | `clouddirectory:UpdateSchema` | \* | | [UpdateTypedLinkFacet](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_UpdateTypedLinkFacet.html) | `clouddirectory:UpdateTypedLinkFacet` | \* | | [UpgradeAppliedSchema](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_UpgradeAppliedSchema.html) | `clouddirectory:UpgradeAppliedSchema` | \* | | [UpgradePublishedSchema](https://docs.aws.amazon.com/clouddirectory/latest/APIReference/API_UpgradePublishedSchema.html) | `clouddirectory:UpgradePublishedSchema` | \* |