Creating a fine-grained access control policy using AWS IAM
A fine-grained access control allows us to restrict access to the table data as we want it. It allows us to create policies, which allow users to access only their data, limit their access to certain attributes, and so on. In this recipe, we will see how to create a fine-grained policy.
Getting ready
To perform this recipe, you should have performed the earlier recipes.
How to do it…
Here, the policy creation actions will be similar to the earlier recipe. So, we will directly jump to the policy wizard set permissions screen. Here, we will consider the same e-commerce example that we have been considering since the start of this book, where we had a product table. If you want to hide certain attributes, such as purchase price and stock, from the end users, then you can create a policy that will deny access to these items:
Navigate to the create policy user interface, and select the third option, that is, Create Your Own Policy.
You may...