signer / Client / add_profile_permission
add_profile_permission#
- signer.Client.add_profile_permission(**kwargs)#
Adds cross-account permissions to a signing profile.
See also: AWS API Documentation
Request Syntax
response = client.add_profile_permission( profileName='string', profileVersion='string', action='string', principal='string', revisionId='string', statementId='string' )
- Parameters:
profileName (string) –
[REQUIRED]
The human-readable name of the signing profile.
profileVersion (string) – The version of the signing profile.
action (string) –
[REQUIRED]
For cross-account signing. Grant a designated account permission to perform one or more of the following actions. Each action is associated with a specific API’s operations. For more information about cross-account signing, see Using cross-account signing with signing profiles in the AWS Signer Developer Guide.
You can designate the following actions to an account.
signer:StartSigningJob
. This action isn’t supported for container image workflows. For details, see StartSigningJob.signer:SignPayload
. This action isn’t supported for AWS Lambda workflows. For details, see SignPayloadsigner:GetSigningProfile
. For details, see GetSigningProfile.signer:RevokeSignature
. For details, see RevokeSignature.
principal (string) –
[REQUIRED]
The AWS principal receiving cross-account permissions. This may be an IAM role or another AWS account ID.
revisionId (string) – A unique identifier for the current profile revision.
statementId (string) –
[REQUIRED]
A unique identifier for the cross-account permission statement.
- Return type:
dict
- Returns:
Response Syntax
{ 'revisionId': 'string' }
Response Structure
(dict) –
revisionId (string) –
A unique identifier for the current profile revision.
Exceptions