class Aws::ACMPCA::Types::CreatePermissionRequest

@note When making an API call, you may pass CreatePermissionRequest

data as a hash:

    {
      certificate_authority_arn: "Arn", # required
      principal: "Principal", # required
      source_account: "AccountId",
      actions: ["IssueCertificate"], # required, accepts IssueCertificate, GetCertificate, ListPermissions
    }

@!attribute [rw] certificate_authority_arn

The Amazon Resource Name (ARN) of the CA that grants the
permissions. You can find the ARN by calling the
[ListCertificateAuthorities][1] action. This must have the following
form:

`arn:aws:acm-pca:region:account:certificate-authority/12345678-1234-1234-1234-123456789012
`.

[1]: https://docs.aws.amazon.com/acm-pca/latest/APIReference/API_ListCertificateAuthorities.html
@return [String]

@!attribute [rw] principal

The AWS service or identity that receives the permission. At this
time, the only valid principal is `acm.amazonaws.com`.
@return [String]

@!attribute [rw] source_account

The ID of the calling account.
@return [String]

@!attribute [rw] actions

The actions that the specified AWS service principal can use. These
include `IssueCertificate`, `GetCertificate`, and `ListPermissions`.
@return [Array<String>]

@see docs.aws.amazon.com/goto/WebAPI/acm-pca-2017-08-22/CreatePermissionRequest AWS API Documentation

Constants

SENSITIVE