Amazon Glacier

2015/05/07 - Amazon Glacier - 3 new api methods

GetVaultAccessPolicy (new) Link ¶

This operation retrieves the access-policy subresource set on the vault—for more information on setting this subresource, see Set Vault Access Policy (PUT access-policy). If there is no access policy set on the vault, the operation returns a 404 Not found error. For more information about vault access policies, see Amazon Glacier Access Control with Vault Access Policies.

Request Syntax

client.get_vault_access_policy(
    accountId='string',
    vaultName='string'
)
type accountId

string

param accountId

[REQUIRED]

The AccountId value is the AWS account ID of the account that owns the vault. You can either specify an AWS account ID or optionally a single apos - apos (hyphen), in which case Amazon Glacier uses the AWS account ID associated with the credentials used to sign the request. If you use an account ID, do not include any hyphens (apos-apos) in the ID.

type vaultName

string

param vaultName

[REQUIRED]

The name of the vault.

rtype

dict

returns

Response Syntax

{
    'policy': {
        'Policy': 'string'
    }
}

Response Structure

  • (dict) --

    Output for GetVaultAccessPolicy.

    • policy (dict) --

      Contains the returned vault access policy as a JSON string.

      • Policy (string) --

        The vault access policy.

SetVaultAccessPolicy (new) Link ¶

This operation configures an access policy for a vault and will overwrite an existing policy. To configure a vault access policy, send a PUT request to the access-policy subresource of the vault. An access policy is specific to a vault and is also called a vault subresource. You can set one access policy per vault and the policy can be up to 20 KB in size. For more information about vault access policies, see Amazon Glacier Access Control with Vault Access Policies.

Request Syntax

client.set_vault_access_policy(
    accountId='string',
    vaultName='string',
    policy={
        'Policy': 'string'
    }
)
type accountId

string

param accountId

[REQUIRED]

The AccountId value is the AWS account ID of the account that owns the vault. You can either specify an AWS account ID or optionally a single apos - apos (hyphen), in which case Amazon Glacier uses the AWS account ID associated with the credentials used to sign the request. If you use an account ID, do not include any hyphens (apos-apos) in the ID.

type vaultName

string

param vaultName

[REQUIRED]

The name of the vault.

type policy

dict

param policy

The vault access policy as a JSON string.

  • Policy (string) --

    The vault access policy.

returns

None

DeleteVaultAccessPolicy (new) Link ¶

This operation deletes the access policy associated with the specified vault. The operation is eventually consistent—that is, it might take some time for Amazon Glacier to completely remove the access policy, and you might still see the effect of the policy for a short time after you send the delete request.

This operation is idempotent. You can invoke delete multiple times, even if there is no policy associated with the vault. For more information about vault access policies, see Amazon Glacier Access Control with Vault Access Policies.

Request Syntax

client.delete_vault_access_policy(
    accountId='string',
    vaultName='string'
)
type accountId

string

param accountId

[REQUIRED]

The AccountId value is the AWS account ID of the account that owns the vault. You can either specify an AWS account ID or optionally a single apos - apos (hyphen), in which case Amazon Glacier uses the AWS account ID associated with the credentials used to sign the request. If you use an account ID, do not include any hyphens (apos-apos) in the ID.

type vaultName

string

param vaultName

[REQUIRED]

The name of the vault.

returns

None