In this, we will learn about Lambda Permissions.

  • Lambda resources are
    • functions
    • versions
    • aliases
    • layer versions
  • For user access management and permissions, can use AWS IAM
  • Every Lambda function has execution role, which
    • is an access policy
    • to access AWS services and resources.
    • to read from event sources
    • like CloudWatch for log streaming.
  • Using resource based policies,
    • give other accounts and AWS services permission to use Lambda resources.
  • Lambda has managed policies for access granting as
    • AWSLambdaFullAccess – full access
    • AWSLambdaReadOnlyAccess – read-only access
    • AWSLambdaRole – only invoke Lambda functions.
  • Can also restrict user’s permissions by listing resources and conditions in IAM policy.
    • specify ARN or Amazon Resource Name of resource
Lambda Permissions
Lambda Permissions

Check here for more.

Menu