aws-cdk-lib.aws_greengrass.CfnResourceDefinitionVersion.GroupOwnerSettingProperty

interface GroupOwnerSettingProperty

LanguageType name
.NETAmazon.CDK.AWS.Greengrass.CfnResourceDefinitionVersion.GroupOwnerSettingProperty
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsgreengrass#CfnResourceDefinitionVersion_GroupOwnerSettingProperty
Javasoftware.amazon.awscdk.services.greengrass.CfnResourceDefinitionVersion.GroupOwnerSettingProperty
Pythonaws_cdk.aws_greengrass.CfnResourceDefinitionVersion.GroupOwnerSettingProperty
TypeScript aws-cdk-lib » aws_greengrass » CfnResourceDefinitionVersion » GroupOwnerSettingProperty

Settings that define additional Linux OS group permissions to give to the Lambda function process.

You can give the permissions of the Linux group that owns the resource or choose another Linux group. These permissions are in addition to the function's RunAs permissions.

In an AWS CloudFormation template, GroupOwnerSetting is a property of the LocalDeviceResourceData and LocalVolumeResourceData property types.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_greengrass as greengrass } from 'aws-cdk-lib';
const groupOwnerSettingProperty: greengrass.CfnResourceDefinitionVersion.GroupOwnerSettingProperty = {
  autoAddGroupOwner: false,

  // the properties below are optional
  groupOwner: 'groupOwner',
};

Properties

NameTypeDescription
autoAddGroupOwnerboolean | IResolvableIndicates whether to give the privileges of the Linux group that owns the resource to the Lambda process.
groupOwner?stringThe name of the Linux group whose privileges you want to add to the Lambda process.

autoAddGroupOwner

Type: boolean | IResolvable

Indicates whether to give the privileges of the Linux group that owns the resource to the Lambda process.

This gives the Lambda process the file access permissions of the Linux group.


groupOwner?

Type: string (optional)

The name of the Linux group whose privileges you want to add to the Lambda process.

This value is ignored if AutoAddGroupOwner is true.