These IAM policies allow users to manage or list rules.
Let Users List Rules in a Compartment 🔗
Type of access: Ability to list Events rules.
Where to create the policy: In the tenancy.
Copy
Allow group RuleReaders to read cloudevents-rules in tenancy
The preceding policy allows RuleReaders to list rules in the tenancy.
Let Admins Manage Rules in a Compartment 🔗
Type of access: Ability to manage Events rules, including creating, deleting, updating or moving rules to a different compartment.
Where to create the policy: In the tenancy.
This line gives the user inspect access to resources in compartments to select actions.
Copy
allow group <RuleAdmins> to inspect compartments in tenancy
This line gives the user access to defined tags to apply filter tags to rules.
Copy
allow group <RuleAdmins> to use tag-namespaces in tenancy
These lines give the user access to Streaming resources for actions
Copy
allow group <RuleAdmins> to inspect streams in tenancy
allow group <RuleAdmins> to use stream-push in tenancy
allow group <RuleAdmins> to use stream-pull in tenancy
These lines give the user access to Functions resources for actions.
Copy
allow group <RuleAdmins> to use virtual-network-family in tenancy
allow group <RuleAdmins> to manage function-family in tenancy
This line give the user access to Notifications topics for actions.
Copy
allow group <RuleAdmins> to use ons-topic in tenancy
This line gives the user manage access to rules for Events.
Copy
allow group <RuleAdmins> to manage cloudevents-rules in tenancy