[Solved] You want to allow users to read only their own orders in a DynamoDB table where the partition key... Which IAM policy condition correctly enforces this fine-grained access control for user 'alice'? | DynamoDB

DynamoDB - Security and Access Control

You want to allow users to read only their own orders in a DynamoDB table where the partition key is 'UserId'. Which IAM policy condition correctly enforces this fine-grained access control for user 'alice'?

A{ "ForAllValues:StringEquals": { "dynamodb:LeadingKeys": ["alice"] } }

B{ "StringEquals": { "dynamodb:Attributes": ["alice"] } }

C{ "ForAnyValue:StringEquals": { "dynamodb:LeadingKeys": ["alice"] } }

D{ "StringLike": { "dynamodb:LeadingKeys": "alice*" } }

Step-by-Step Solution

Solution:

Step 1: Identify correct condition operator for exact key match
For fine-grained access, ForAllValues:StringEquals with an array ensures all keys match exactly.
Step 2: Evaluate options for correct syntax and semantics
{ "ForAllValues:StringEquals": { "dynamodb:LeadingKeys": ["alice"] } } uses correct operator and array format; others use wrong keys or operators.
Final Answer:
{ "ForAllValues:StringEquals": { "dynamodb:LeadingKeys": ["alice"] } } -> Option A
Quick Check:
Exact key match needs ForAllValues:StringEquals with array [OK]

Quick Trick: Use ForAllValues:StringEquals with array for exact user keys [OK]

Common Mistakes:

MISTAKES

Using dynamodb:Attributes instead of LeadingKeys
Using StringEquals without array
Using StringLike which allows wildcards

Master "Security and Access Control" in DynamoDB

9 interactive learning modes - each teaches the same concept differently

Learn Why Deep Visual Try Challenge Project Recall Time

More DynamoDB Quizzes

Which IAM policy condition correctly enforces this fine-grained access control for user 'alice'?

Step 1: Identify correct condition operator for exact key match

Step 2: Evaluate options for correct syntax and semantics

Final Answer:

Quick Check:

Want More Practice?