class Aws::KMS::Types::GrantListEntry
Contains information about a grant.
@!attribute [rw] key_id
The unique identifier for the KMS key to which the grant applies. @return [String]
@!attribute [rw] grant_id
The unique identifier for the grant. @return [String]
@!attribute [rw] name
The friendly name that identifies the grant. If a name was provided in the CreateGrant request, that name is returned. Otherwise this value is null. @return [String]
@!attribute [rw] creation_date
The date and time when the grant was created. @return [Time]
@!attribute [rw] grantee_principal
The identity that gets the permissions in the grant. The `GranteePrincipal` field in the `ListGrants` response usually contains the user or role designated as the grantee principal in the grant. However, when the grantee principal in the grant is an Amazon Web Services service, the `GranteePrincipal` field contains the [service principal][1], which might represent several different grantee principals. [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_principal.html#principal-services @return [String]
@!attribute [rw] retiring_principal
The principal that can retire the grant. @return [String]
@!attribute [rw] issuing_account
The Amazon Web Services account under which the grant was issued. @return [String]
@!attribute [rw] operations
The list of operations permitted by the grant. @return [Array<String>]
@!attribute [rw] constraints
A list of key-value pairs that must be present in the encryption context of certain subsequent operations that the grant allows. @return [Types::GrantConstraints]
@see docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/GrantListEntry AWS API Documentation
Constants
- SENSITIVE