apigateway:POST

Write

apigateway:POST is a Write access-level action in the apigateway service. Grants permission to create a particular resource

Resource types

ARNs that apigateway:POST can be scoped to in an IAM policy.

arn:${Partition}:apigateway:${Region}::/domainnames/${DomainName}/apimappings
ApiMappings
arn:${Partition}:apigateway:${Region}::/apis
Apis
arn:${Partition}:apigateway:${Region}::/apis/${ApiId}/authorizers
Authorizers
arn:${Partition}:apigateway:${Region}::/apis/${ApiId}/deployments
Deployments
arn:${Partition}:apigateway:${Region}::/apis/${ApiId}/integrations/${IntegrationId}/integrationresponses
IntegrationResponses
arn:${Partition}:apigateway:${Region}::/apis/${ApiId}/integrations
Integrations
arn:${Partition}:apigateway:${Region}::/apis/${ApiId}/models
Models
arn:${Partition}:apigateway:${Region}::/apis/${ApiId}/routes/${RouteId}/routeresponses
RouteResponses
arn:${Partition}:apigateway:${Region}::/apis/${ApiId}/routes
Routes
arn:${Partition}:apigateway:${Region}::/apis/${ApiId}/stages
Stages
arn:${Partition}:apigateway:${Region}::/vpclinks
VpcLinks

Condition keys

Keys you can use in the Condition block of a policy that grants apigateway:POST.

apigateway:Request/AccessLoggingDestination String

Filters access by access log destination. Available during the CreateStage and UpdateStage operations

apigateway:Request/AccessLoggingFormat String

Filters access by access log format. Available during the CreateStage and UpdateStage operations

apigateway:Request/ApiKeyRequired ArrayOfBool

Filters access by the requirement of API. Available during the CreateRoute and UpdateRoute operations. Also available as a collection during import and reimport

apigateway:Request/ApiName String

Filters access by API name. Available during the CreateApi and UpdateApi operations

apigateway:Request/AuthorizerType ArrayOfString

Filters access by type of authorizer in the request, for example REQUEST or JWT. Available during CreateAuthorizer and UpdateAuthorizer. Also available during import and reimport as an ArrayOfString

apigateway:Request/AuthorizerUri ArrayOfString

Filters access by URI of a Lambda authorizer function. Available during CreateAuthorizer and UpdateAuthorizer. Also available during import and reimport as an ArrayOfString

apigateway:Request/DisableExecuteApiEndpoint Bool

Filters access by status of the default execute-api endpoint. Available during the CreateApi and UpdateApi operations

apigateway:Request/EndpointType ArrayOfString

Filters access by endpoint type. Available during the CreateDomainName, UpdateDomainName, CreateApi, and UpdateApi operations

apigateway:Request/RouteAuthorizationType ArrayOfString

Filters access by authorization type, for example NONE, AWS_IAM, CUSTOM, JWT. Available during the CreateRoute and UpdateRoute operations. Also available as a collection during import

apigateway:Request/StageName String

Filters access by stage name of the deployment that you attempt to create. Available during the CreateDeployment operation

aws:ResourceTag/${TagKey} String

Filters access by tag key-value pairs attached to the resource

Example IAM policy

A minimal policy that allows apigateway:POST. Replace "Resource": "*" with a specific ARN to follow least privilege.

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "AllowApigatewayPOST",
      "Effect": "Allow",
      "Action": "apigateway:POST",
      "Resource": "*"
    }
  ]
}

Related actions in apigateway

View all apigateway actions →