Amazon Verified Permissions introduces policy store aliases and named policies

AWS has announced enhancements to Amazon Verified Permissions, introducing support for policy store aliases, named policies, and policy templates. These features aim to streamline multi-tenant deployments and simplify daily policy management tasks. Amazon Verified Permissions is a fine-grained authorization service designed to help manage and enforce permissions across applications through Cedar policies.

The introduction of policy store aliases allows developers working on multi-tenant applications to assign human-readable aliases based on tenant identifiers. This eliminates the need for a lookup table, as these aliases can be used directly in API calls. Additionally, the new named policies and policy templates feature enables users to reference policies by meaningful names rather than system-generated IDs, facilitating easier management of authorization logic as applications scale.

These new capabilities are available in all AWS Regions that support Amazon Verified Permissions. For a complete list of supported regions, users can refer to the Amazon Verified Permissions endpoints and quotas documentation.

To begin using these features, users can consult the sections on policy store aliases and creating static policies in the Amazon Verified Permissions User Guide, or visit the Amazon Verified Permissions API Reference for more detailed information.