Amazon Verified Permissions is a scalable permissions management and fine-grained authorization service for the applications that you build. Using Cedar, an expressive and analyzable open-source policy language, developers and administrators can define policy-based access controls by using roles and attributes for more granular, context-aware access control.
With Verified Permissions, you pay only for what you use. There are no upfront fees or minimum fees. Also, there is no minimum number of authorization requests that a customer must make to use Amazon Verified Permissions. You are charged based on the number of authorization requests and policy management requests made by your application.
Authorization requests are the number of calls to the IsAuthorized API, BatchIsAuthorized API, and IsAuthorizedWithToken API. Authorization request APIs are high-volume APIs that your application calls multiple times per user session. A single API call to BatchIsAuthorized is considered a single authorization request, irrespective of the numbers of authorizations requested as part of the API request.
Policy management requests are the total number of API calls made, including CreatePolicy, UpdatePolicy, GetPolicy, and ListPolicy APIs. Policy management APIs are called less frequently and are charged at a different rate.
Region: US East (N. Virginia) – same pricing for all Regions
|Pricing tier (authorization requests per month)||Price per million|
|First 40 million requests per month||$150/million authorization requests|
|Next 60 million requests per month||$75/million authorization requests|
|More than 100 million requests per month||$40/million authorization requests|
|Policy management requests||$40/million policy management requests|
There is no minimum number of requests that you must make to use Amazon Verified Permissions. For example, if your application makes 1000 authorization requests, then you are charged for 1000 requests ($150 / 1000 requests = $0.15).