class Aws::KMS::Types::GrantListEntry

Contains information about a grant.

@!attribute [rw] key_id

The unique identifier for the KMS key to which the grant applies.
@return [String]

@!attribute [rw] grant_id

The unique identifier for the grant.
@return [String]

@!attribute [rw] name

The friendly name that identifies the grant. If a name was provided
in the CreateGrant request, that name is returned. Otherwise this
value is null.
@return [String]

@!attribute [rw] creation_date

The date and time when the grant was created.
@return [Time]

@!attribute [rw] grantee_principal

The identity that gets the permissions in the grant.

The `GranteePrincipal` field in the `ListGrants` response usually
contains the user or role designated as the grantee principal in the
grant. However, when the grantee principal in the grant is an Amazon
Web Services service, the `GranteePrincipal` field contains the
[service principal][1], which might represent several different
grantee principals.

[1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_principal.html#principal-services
@return [String]

@!attribute [rw] retiring_principal

The principal that can retire the grant.
@return [String]

@!attribute [rw] issuing_account

The Amazon Web Services account under which the grant was issued.
@return [String]

@!attribute [rw] operations

The list of operations permitted by the grant.
@return [Array<String>]

@!attribute [rw] constraints

A list of key-value pairs that must be present in the encryption
context of certain subsequent operations that the grant allows.
@return [Types::GrantConstraints]

@see docs.aws.amazon.com/goto/WebAPI/kms-2014-11-01/GrantListEntry AWS API Documentation

Constants

SENSITIVE