Lambda Permissions
In this, we will learn about Lambda Permissions.
- Lambda resources are
- functions
- versions
- aliases
- layer versions
- For user access management and permissions, can use AWS IAM
- Every Lambda function has execution role, which
- is an access policy
- to access AWS services and resources.
- to read from event sources
- like CloudWatch for log streaming.
- Using resource based policies,
- give other accounts and AWS services permission to use Lambda resources.
- Lambda has managed policies for access granting as
- AWSLambdaFullAccess – full access
- AWSLambdaReadOnlyAccess – read-only access
- AWSLambdaRole – only invoke Lambda functions.
- Can also restrict user’s permissions by listing resources and conditions in IAM policy.
- specify ARN or Amazon Resource Name of resource
AWS Certified Developer - Associate Free Practice TestTake a Quiz