Currently we only have assetType to restrict the policy scope to this template.
assetType:
description: "Restrict which asset type this policy applies to"
type: string
Similar to what CAI real time export asset, we should have assetName to restrict the policy scope as well:
ASSET_NAME is a list of asset full names that you want to receive change notifications for.
Use case: this allows users to place strict policy monitoring to a controlled list of assets. For example, assets with sensitive information should be carefully monitored and this rule can be used in this case if we extend the parameter to use assetName to specify target resources.
Currently we only have assetType to restrict the policy scope to this template.
Similar to what CAI real time export asset, we should have assetName to restrict the policy scope as well: ASSET_NAME is a list of asset full names that you want to receive change notifications for.
Use case: this allows users to place strict policy monitoring to a controlled list of assets. For example, assets with sensitive information should be carefully monitored and this rule can be used in this case if we extend the parameter to use assetName to specify target resources.