apigateway:CreateAccessAssociation is a Permissions management access-level action in the apigateway service. Grants permission to create an access association from an access association source to a custom domain name for private APIs
ARNs that apigateway:CreateAccessAssociation can be scoped to in an IAM policy.
Keys you can use in the Condition block of a policy that grants apigateway:CreateAccessAssociation.
Filters access by endpoint type. Available during the CreateDomainName, UpdateDomainName, CreateRestApi, and UpdateRestApi operations
Filters access by endpoint type. Available during the UpdateDomainName, DeleteDomainName, UpdateRestApi, and DeleteRestApi operations
Filters access by routing mode of the domain name. Available during the UpdateDomainName and DeleteDomainName operations
Filters access by the tags attached to the resource
A minimal policy that allows apigateway:CreateAccessAssociation. Replace "Resource": "*" with a specific ARN to follow least privilege.
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowApigatewayCreateAccessAssociation",
"Effect": "Allow",
"Action": "apigateway:CreateAccessAssociation",
"Resource": "*"
}
]
}