Amazon Verified Permissions launches new API to get multiple policies

Posted on: Nov 7, 2024

Amazon Verified Permissions has launched a new API called batchGetPolicies. Customers can now make a single API call that returns multiple policies, for example to populate a list of policies that apply to a specific principal or resource. Amazon Verified Permissions is a permissions management and fine-grained authorization service for the applications that you build. Amazon Verified Permissions uses the Cedar policy language to enable developers and admins to define policy-based access controls based on roles and attributes. For example, a patient management application might call Amazon Verified Permissions (AVP) to determine if Alice is permitted access to Bob’s patient records.

The new API accepts up to 100 policy IDs and returns the corresponding set of policies, from across one or more policy stores. This simplifies the integration and reduces latency. Using the API reduces the number of calls that an application needs to make to Verified Permissions. For example, when building a permissions management UX that lists Cedar policies, the application now needs to make only one call to get 50 policies, rather than making 50 calls.

This feature is available in all regions where Verified Permissions is available. Pricing is based on the number of policies requested. For more information on pricing visit Amazon Verified Permissions Pricing – AWS - Amazon Web Services. For more information on the service visit Fine-Grained Authorization - Amazon Verified Permissions - AWS.