lib/fog/aws/requests/iam/put_group_policy.rb
module Fog
module AWS
class IAM
class Real
require 'fog/aws/parsers/iam/basic'
# Add or update a policy for a group
#
# ==== Parameters
# * group_name<~String>: name of the group
# * policy_name<~String>: name of policy document
# * policy_document<~Hash>: policy document, see: http://docs.amazonwebservices.com/IAM/latest/UserGuide/PoliciesOverview.html
#
# ==== Returns
# * response<~Excon::Response>:
# * body<~Hash>:
# * 'RequestId'<~String> - Id of the request
#
# ==== See Also
# http://docs.amazonwebservices.com/IAM/latest/APIReference/API_PutGroupPolicy.html
#
def put_group_policy(group_name, policy_name, policy_document)
request(
'Action' => 'PutGroupPolicy',
'GroupName' => group_name,
'PolicyName' => policy_name,
'PolicyDocument' => Fog::JSON.encode(policy_document),
:parser => Fog::Parsers::AWS::IAM::Basic.new
)
end
end
class Mock
#FIXME: You can't actually use the credentials for anything elsewhere in Fog
#FIXME: Doesn't do any validation on the policy
def put_group_policy(group_name, policy_name, policy_document)
if data[:groups].key? group_name
data[:groups][group_name][:policies][policy_name] = policy_document
Excon::Response.new.tap do |response|
response.body = { 'RequestId' => Fog::AWS::Mock.request_id }
response.status = 200
end
else
raise Fog::AWS::IAM::NotFound.new("The group with name #{group_name} cannot be found.")
end
end
end
end
end
end