Skip to main content

accounts

Creates, updates, deletes or gets an account resource or lists accounts in a region

Overview

Nameaccounts
TypeResource
DescriptionResource schema for AWS::CertificateManager::Account.
Idaws.certificatemanager.accounts

Fields

NameDatatypeDescription
expiry_events_configurationobject
account_idstring
regionstringAWS region.

Methods

NameAccessible byRequired Params
create_resourceINSERTExpiryEventsConfiguration, region
delete_resourceDELETEdata__Identifier, region
update_resourceUPDATEdata__Identifier, data__PatchDocument, region
get_resourceSELECTdata__Identifier, region

SELECT examples

Gets all properties from an individual account.

SELECT
region,
expiry_events_configuration,
account_id
FROM aws.certificatemanager.accounts
WHERE region = 'us-east-1' AND data__Identifier = '<AccountId>';

INSERT example

Use the following StackQL query and manifest file to create a new account resource, using stack-deploy.

/*+ create */
INSERT INTO aws.certificatemanager.accounts (
 ExpiryEventsConfiguration,
 region
)
SELECT 
'{{ ExpiryEventsConfiguration }}',
'{{ region }}';

DELETE example

/*+ delete */
DELETE FROM aws.certificatemanager.accounts
WHERE data__Identifier = '<AccountId>'
AND region = 'us-east-1';

Permissions

To operate on the accounts resource, the following permissions are required:

Create

acm:GetAccountConfiguration,
acm:PutAccountConfiguration

Read

acm:GetAccountConfiguration

Update

acm:GetAccountConfiguration,
acm:PutAccountConfiguration

Delete

acm:GetAccountConfiguration,
acm:PutAccountConfiguration