Lambda Permissions

In this, we will learn about Lambda Permissions.

• Lambda resources are
  • functions
  • versions
  • aliases
  • layer versions
• For user access management and permissions, can use AWS IAM
• Every Lambda function has execution role, which
  • is an access policy
  • to access AWS services and resources.
  • to read from event sources
  • like CloudWatch for log streaming.
• Using resource based policies,
  • give other accounts and AWS services permission to use Lambda resources.
• Lambda has managed policies for access granting as
  • AWSLambdaFullAccess – full access
  • AWSLambdaReadOnlyAccess – read-only access
  • AWSLambdaRole – only invoke Lambda functions.
• Can also restrict user’s permissions by listing resources and conditions in IAM policy.
  • specify ARN or Amazon Resource Name of resource

Check here for more.