Domain name for API request: cam.tencentcloudapi.com.
This API (CreatePolicy) is used to create a policy.
A maximum of 10 requests can be initiated per second for this API.
The following request parameter list only provides API request parameters and some common parameters. For the complete common parameter list, see Common Request Parameters.
Parameter Name | Required | Type | Description |
---|---|---|---|
Action | Yes | String | Common Params. The value used for this API: CreatePolicy. |
Version | Yes | String | Common Params. The value used for this API: 2019-01-16. |
Region | No | String | Common Params. This parameter is not required for this API. |
PolicyName | Yes | String | Policy name |
PolicyDocument | Yes | String | Policy document, such as {"version":"2.0","statement":[{"action":"name/sts:AssumeRole","effect":"allow","principal":{"service":["cloudaudit.cloud.tencent.com","cls.cloud.tencent.com"]}}]} , where principal is used to specify the resources that the role is authorized to access. For more information on this parameter, please see the RoleInfo output parameter of the GetRole API |
Description | No | String | Policy description |
Parameter Name | Type | Description |
---|---|---|
PolicyId | Integer | ID of newly added policy |
RequestId | String | The unique request ID, which is returned for each request. RequestId is required for locating a problem. |
This example shows you how to create a policy that allows all COS APIs to access all COS resources.
https://cam.tencentcloudapi.com/?Action=CreatePolicy
&PolicyName=test-2019-04-29
&Description=Policy description
&PolicyDocument={"version":"2.0","statement":[{"effect":"allow","action":["name/cos:*"],"resource":["*"]}]}
&<Common request parameters>
{
"Response": {
"PolicyId": 17698703,
"RequestId": "89360f78-b1dd-4e43-aa91-ecb2c8b8f282"
}
}
TencentCloud API 3.0 integrates SDKs that support various programming languages to make it easier for you to call APIs.
The following only lists the error codes related to the API business logic. For other error codes, see Common Error Codes.
Error Code | Description |
---|---|
FailedOperation.PolicyFull | The number of user policies has exceeded the limit. |
FailedOperation.PolicyNameInUse | The policy name specified by the PolicyName field already exists. |
InternalError.SystemError | Internal error. |
InvalidParameter.ActionError | Action field of policy document invalid. |
InvalidParameter.ActionMiss | The action in the policy syntax does not exist. |
InvalidParameter.ActionNotExist | The action in the policy syntax does not exist. |
InvalidParameter.ActionServiceNotExist | The action service in the policy syntax does not exist. |
InvalidParameter.AttachmentFull | Limit on number of authorization object associated policies in the principal field reached. |
InvalidParameter.ConditionContentError | The condition content in the policy syntax is incorrect. |
InvalidParameter.ConditionError | condition field of policy document invalid. |
InvalidParameter.ConditionTypeError | The condition operator in the policy syntax is incorrect. |
InvalidParameter.DescriptionLengthOverlimit | The input parameter description cannot exceed 300 bytes in length. |
InvalidParameter.EffectError | Effect field of policy document invalid. |
InvalidParameter.NotSupportProduct | CAM does not support the resource type specified in the policy document. |
InvalidParameter.ParamError | Invalid input parameter. |
InvalidParameter.PolicyDocumentError | PolicyDocument field invalid. |
InvalidParameter.PolicyDocumentLengthOverLimit | PolicyDocument field exceeds length restriction. |
InvalidParameter.PolicyNameError | PolicyName field invalid. |
InvalidParameter.PrincipalError | principal field of policy document invalid. |
InvalidParameter.ResourceContentError | The resource context in the policy syntax is incorrect. |
InvalidParameter.ResourceError | Resource field of policy document invalid. |
InvalidParameter.ResourceProjectError | The resource project in the policy syntax is incorrect. |
InvalidParameter.ResourceQcsError | Incorrect resource QCS . |
InvalidParameter.ResourceRegionError | The resource region in the policy syntax is incorrect. |
InvalidParameter.ResourceServiceNotExist | The resource service in the policy syntax does not exist. |
InvalidParameter.ResourceUinError | The resource root account in the policy syntax is incorrect. |
InvalidParameter.StatementError | Statement field of policy document invalid. |
InvalidParameter.UserNotExist | User object does not exist |
InvalidParameter.VersionError | Version field of policy document invalid. |
ResourceNotFound.GroupNotExist | User group does not exist. |
ResourceNotFound.NotFound | Resource does not exist. |
ResourceNotFound.UserNotExist | User does not exist. |
문제 해결에 도움이 되었나요?