Sometimes writing AWS IAM policies gets confusing. Especially if our policy authoring is reactive in nature instead of following a proactive permissions strategy.

The fact that IAM policies contain some restrictions doesn’t really help either.

To start off, let’s take a look at what the IAM policy evaluation order looks…


Let’s admit it. We access more and more of the information we need in our daily activities using URLs. These URLs have become longer and more cryptic over time but that’s ok since we simply click on them.

Photo by Steve Johnson on Unsplash

However, sometimes we need to communicate those URLs in a non-internet-native way…

Johannes Verwijnen

Cloud and AI/ML training and consulting. AWS Champion Authorized Instructor.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store