View a markdown version of this page

AWS::BedrockAgentCore::ResourcePolicy - AWS CloudFormation

This is the new CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the AWS CloudFormation User Guide.

AWS::BedrockAgentCore::ResourcePolicy

Specifies a resource-based policy for an Amazon Bedrock AgentCore resource. A resource policy grants cross-account or service-level access to a specific AgentCore resource such as a Runtime or Gateway.

Note

This feature is currently available only for AgentCore Runtime and Gateway.

See the Properties section below for descriptions of both the required and optional properties.

Syntax

To declare this entity in your CloudFormation template, use the following syntax:

JSON

{ "Type" : "AWS::BedrockAgentCore::ResourcePolicy", "Properties" : { "Policy" : String, "ResourceArn" : String } }

YAML

Type: AWS::BedrockAgentCore::ResourcePolicy Properties: Policy: String ResourceArn: String

Properties

Policy

The resource policy to create or update.

Required: Yes

Type: String

Minimum: 1

Maximum: 20480

Update requires: No interruption

ResourceArn

The Amazon Resource Name (ARN) of the resource for which to create or update the resource policy.

Required: Yes

Type: String

Pattern: ^arn:[a-z0-9-]+:bedrock-agentcore:[a-z0-9-]*:[0-9]{12}:.+$

Minimum: 20

Maximum: 1011

Update requires: Replacement

Return values

Ref