signer / Client / add_profile_permission

add_profile_permission#

signer.Client.add_profile_permission(**kwargs)#

Adds cross-account permissions to a signing profile.

See also: AWS API Documentation

Request Syntax

response = client.add_profile_permission(
    profileName='string',
    profileVersion='string',
    action='string',
    principal='string',
    revisionId='string',
    statementId='string'
)
Parameters:
  • profileName (string) –

    [REQUIRED]

    The human-readable name of the signing profile.

  • profileVersion (string) – The version of the signing profile.

  • action (string) –

    [REQUIRED]

    For cross-account signing. Grant a designated account permission to perform one or more of the following actions. Each action is associated with a specific API’s operations. For more information about cross-account signing, see Using cross-account signing with signing profiles in the AWS Signer Developer Guide.

    You can designate the following actions to an account.

    • signer:StartSigningJob. This action isn’t supported for container image workflows. For details, see StartSigningJob.

    • signer:SignPayload. This action isn’t supported for AWS Lambda workflows. For details, see SignPayload

    • signer:GetSigningProfile. For details, see GetSigningProfile.

    • signer:RevokeSignature. For details, see RevokeSignature.

  • principal (string) –

    [REQUIRED]

    The AWS principal receiving cross-account permissions. This may be an IAM role or another AWS account ID.

  • revisionId (string) – A unique identifier for the current profile revision.

  • statementId (string) –

    [REQUIRED]

    A unique identifier for the cross-account permission statement.

Return type:

dict

Returns:

Response Syntax

{
    'revisionId': 'string'
}

Response Structure

  • (dict) –

    • revisionId (string) –

      A unique identifier for the current profile revision.

Exceptions