{"version":"2.0","statement":[{"effect":"effect","action":["action"],"resource":["resource"],"condition": {"key":{"value"}}}]}
effect
, action
, resource
, and condition
. One policy has only one statement.allow
or explicit deny
.name
) or a feature set (a group of APIs, prefixed with permid
).allow
) a resource, access is implicitly denied. You can also explicitly deny
access to a resource to ensure that a user cannot access it, even if another policy has granted access to it. The following example specifies an allow
effect."effect" : "allow"
apm:Describe\\*
) and all APIs (apm:\\*
) based on the operation nature."action": ["name/apm:Describe*"]
resource
element describes one or multiple operation objects, such as APM resources. All the resources can be described in the following 6-segment format.qcs:project_id:service_type:region:account:resource
Parameter | Description | Required |
qcs | Abbreviation for "qcloud service", which indicates a Tencent Cloud service | Yes |
project_id | Project information, which is only used to enable compatibility with legacy CAM logic and generally can be left empty | No |
service_type | Product name abbreviation, which is apm here | Yes |
region | Region information | Yes |
account | Root account information of the resource owner, which is the root account ID in the format of uin/${OwnerUin} , such as uin/100000000001 | Yes |
resource | Resource details prefixed with instance | Yes |
"resource":["qcs::apm:ap-guangzhou:uin/1250000000:apm/apm-btzsrI123"]
1250000000
:{"version": "2.0","statement": [{"effect": "allow","action": ["apm:ModifyApmInstance"],"resource": ["qcs::apm:ap-guangzhou:uin/1250000000:apm-instance/apm-btzsrI123"]}]}
API | Description |
DescribeApmAgent | Gets the APM agent |
DescribeApmInstances | Queries APM business systems |
DescribeApmRegions | Gets APM regions |
DescribeGeneralSpanList | Queries spans |
DescribeInstanceBriefs | Queries the business system overview |
DescribeMetricLineData | Pulls metric curve data |
DescribeMetricRecords | Queries the list of metrics |
DescribePAASGeneralSpanList | Queries spans |
DescribePAASMetricLineData | Queries the metric curve data |
DescribePAASMetricPointData | Queries the metric point data |
DescribePAASTagValues | Queries the dimension information |
DescribePAASTopology | Queries the topology data |
DescribeServiceNodes | Gets the list of services |
DescribeServiceOverview | Gets the APM system overview |
CreateApmInstance | Creates an APM business system |
CreatePAASInstance | Creates a PaaS APM business system |
DeletePAASInstance | Deletes an APM business system |
ModifyApmInstance | Modifies an APM business system |
TerminateApmInstance | Terminates an APM business system |
Was this page helpful?