Start line:  
End line:  

Snippet Preview

Snippet HTML Code

Stack Overflow Questions
  /*
   * Copyright 2010-2015 Amazon.com, Inc. or its affiliates. All Rights Reserved.
   *
   * Licensed under the Apache License, Version 2.0 (the "License").
   * You may not use this file except in compliance with the License.
   * A copy of the License is located at
   *
   *  http://aws.amazon.com/apache2.0
   *
  * or in the "license" file accompanying this file. This file is distributed
  * on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
  * express or implied. See the License for the specific language governing
  * permissions and limitations under the License.
  */
 package com.amazonaws.auth.policy.conditions;
 
Factory for creating common AWS access control policy conditions. These conditions are common for AWS services and can be expected to work across any service that supports AWS access control policies.
 
 public class ConditionFactory {

    
Condition key for the current time.

This condition key should only be used with DateCondition objects.

 
     public static final String CURRENT_TIME_CONDITION_KEY = "aws:CurrentTime";

    
Condition key for whether or not an incoming request is using a secure transport to make the request (i.e. HTTPS instead of HTTP).

This condition key should only be used with BooleanCondition objects.

 
     public static final String SECURE_TRANSPORT_CONDITION_KEY = "aws:SecureTransport";

    
Condition key for the source IP from which a request originates.

This condition key should only be used with IpAddressCondition objects.

 
     public static final String SOURCE_IP_CONDITION_KEY = "aws:SourceIp";

    
Condition key for the user agent included in a request.

This condition key should only be used with StringCondition objects.

 
     public static final String USER_AGENT_CONDITION_KEY = "aws:UserAgent";

    
Condition key for the current time, in epoch seconds.

This condition key should only be used with NumericCondition objects.

 
     public static final String EPOCH_TIME_CONDITION_KEY = "aws:EpochTime";

    
Condition key for the referer specified by a request.

This condition key should only be used with StringCondition objects.

 
     public static final String REFERER_CONDITION_KEY = "aws:Referer";

    
Condition key for the Amazon Resource Name (ARN) of the source specified in a request. The source ARN indicates which resource is affecting the resource listed in your policy. For example, an SNS topic is the source ARN when publishing messages from the topic to an SQS queue.

This condition key should only be used with ArnCondition objects.

 
     public static final String SOURCE_ARN_CONDITION_KEY = "aws:SourceArn";
 
     private ConditionFactory() {}

    
Constructs a new access policy condition that compares the Amazon Resource Name (ARN) of the source of an AWS resource that is modifying another AWS resource with the specified pattern.

For example, the source ARN could be an Amazon SNS topic ARN that is sending messages to an Amazon SQS queue. In that case, the SNS topic ARN would be compared the ARN pattern specified here.

The endpoint pattern may optionally contain the multi-character wildcard (*) or the single-character wildcard (?). Each of the six colon-delimited components of the ARN is checked separately and each can include a wildcard.

 Policy policy = new Policy("MyQueuePolicy");
 policy.withStatements(new Statement("AllowSNSMessages", Effect.Allow)
         .withPrincipals(new Principal("*")).withActions(SQSActions.SendMessage)
         .withResources(new Resource(myQueueArn))
         .withConditions(ConditionFactory.newSourceArnCondition(myTopicArn)));
 

Parameters:
arnPattern The ARN pattern against which the source ARN will be compared. Each of the six colon-delimited components of the ARN is checked separately and each can include a wildcard.
Returns:
A new access control policy condition that compares the ARN of the source specified in an incoming request with the ARN pattern specified here.
    public static Condition newSourceArnCondition(String arnPattern) {
        return new ArnCondition(.arnPattern);
    }

    
Constructs a new access control policy condition that tests if the incoming request was sent over a secure transport (HTTPS).

Returns:
A new access control policy condition that tests if the incoming request was sent over a secure transport (HTTPS).
    public static Condition newSecureTransportCondition() {
        return new BooleanCondition(true);
    }

    
Constructs a new access control policy condition that tests the incoming request's user agent field against the specified value, using the specified comparison type. This condition can be used to allow or deny access to a resource based on what user agent is specified in the request.

Parameters:
comparisonType The type of string comparison to perform when testing an incoming request's user agent field with the specified value.
value The value against which to compare the incoming request's user agent.
Returns:
A new access control policy condition that tests an incoming request's user agent field.
    public static Condition newUserAgentCondition(StringComparisonType comparisonTypeString value) {
        return new StringCondition(comparisonTypevalue);
    }

    
Constructs a new access control policy condition that tests the incoming request's referer field against the specified value, using the specified comparison type.

Parameters:
comparisonType The type of string comparison to perform when testing an incoming request's referer field with the specified value.
value The value against which to compare the incoming request's referer field.
Returns:
A new access control policy condition that tests an incoming request's referer field.
    public static Condition newRefererCondition(StringComparisonType comparisonTypeString value) {
        return new StringCondition(comparisonTypevalue);
    }
New to GrepCode? Check out our FAQ X