| Field | Type | Required | Description | Example |
|---|---|---|---|---|
policy_statement |
str | ✔️ | A Cedar statement that permits or forbids a principal to perform an action on a resource. Refer to the Permissions API guide for more information. | permit(principal == Cloudinary::APIKey::"1234",action==Cloudinary::Action::"read",resource is Cloudinary::Folder ) when {resource.ancestor_ids.contains("asdfjkl12347890")} ; |
description |
OptionalNullable[str] | ➖ | A short description of the policy. | Permit read access to the Clothing folder with external ID asdfjkl12347890. |
scope_type |
models.ScopeTypeEnum | ✔️ | Specifies where the role/policy is applied, either at the account level or within product environments. | prodenv |
scope_id |
OptionalNullable[str] | ➖ | The ID of a specific product environment, or "all" product environments, where the policy is applied. Required and only relevant if scope_type is "prodenv". - <product_environment_id> - all Note: The "all" specification is relevant only when creating or updating a policy. |
975l29lz02jt0836fhwi |
name |
str | ✔️ | The name assigned to the policy. | Read access to Clothing folder |
enabled |
OptionalNullable[bool] | ➖ | Indicates whether the policy is currently active. Can be "true" (enabled) or "false" (disabled). | true |