I tried to solve this and completed the json file with the appropriate type. I even published it via cli, but haven’t confirmed it’s working yet. Below is the content of my json file. Hope this helps someone… ( After final modification, it seems to be working as desired. If a problem arises, I will fix it again if possible.)
Allowed Actions:
- Allow - Anonymous Sign Up
- Allow - External Token Sign In
- Allow - Session Token Sign In
- Allow - Link External Id
- Allow - Get PlayerInfo
- Allow - Get JWKS
- Allow - Read GetPlayers Configuration
- Allow - Read Player currency
- Allow - Read inventory
- Allow - Write Purchase Virtual
- Allow - Write Purchase GooglePlayStore
- Allow - Write Purchase AppleAppstore
- Allow - Read Leaderboards
- Allow - Read CloudSave PlayerDataKey
- Allow - Read&Write CloudSave PlayerDataItem // OnlySelf
- Allow - Write Query Default PlayerData
- Allow - Read CloudSave Public PlayerDataKey // maybe Another Player
- Allow - Read CloudSave Public PlayerDataItem // maybe Another Player
- Allow - Write Query Public PlayerData
- Allow - Read CloudSave Default GameDataItem
- Allow - Write Access Cloud Code Module
- Allow - Write Access Cloud Script
- Allow - Write Access Subscription Token
Denied Actions:
- Deny - Unlink External Id
- Deny - Delete Player
- Deny - Write Player currency
- Deny - Write Inventory
- Deny - Write CloudSave
{
“statements”: [
{
“Sid”: “Deny-all-ugs-access”,
“Effect”: “Deny”,
“Action”: [“"],
“Principal”: “Player”,
“Resource”: "urn:ugs:"
},
{
“Sid”: “Allow-Anonymous-SignUp”,
“Effect”: “Allow”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: "urn:ugs:player-auth:/*/authentication/anonymous”
},
{
“Sid”: “Allow-External-Token-SignIn”,
“Effect”: “Allow”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:player-auth://authentication/external-token**"
},
{
“Sid”: “Allow-Session-Token-SignIn”,
“Effect”: “Allow”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: "urn:ugs:player-auth://authentication/session-token**”
},
{
“Sid”: “Allow-Link-External-Id”,
“Effect”: “Allow”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:player-auth://authentication/link/**"
},
{
“Sid”: “Deny-Unlink-External-Id”,
“Effect”: “Deny”,
“Action”: ["”],
“Principal”: “Player”,
“Resource”: “urn:ugs:player-auth://authentication/unlink/**"
},
{
“Sid”: “Allow-Get-PlayerInfo”,
“Effect”: “Allow”,
“Action”: [“Read”],
“Principal”: “Player”,
“Resource”: "urn:ugs:player-auth://users**”
},
{
“Sid”: “Deny-Delete-Player”,
“Effect”: “Deny”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:player-auth://users**"
},
{
“Sid”: “Allow-Get-JWKS”,
“Effect”: “Allow”,
“Action”: [“Read”],
“Principal”: “Player”,
“Resource”: "urn:ugs:player-auth:/.well-known/"
},{
“Sid”: “Allow-Read-GetPlayers-Configuration”,
“Effect”: “Allow”,
“Action”: [“Read”],
“Principal”: “Player”,
“Resource”: "urn:ugs:economy://players//config**”
},
{
“Sid”: “Deny-Write-Player-currencies”,
“Effect”: “Deny”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:economy://currencies”
},
{
“Sid”: “Allow-Read-Player-currencies”,
“Effect”: “Allow”,
“Action”: [“Read”],
“Principal”: “Player”,
“Resource”: “urn:ugs:economy://currencies”
},
{
“Sid”: “Deny-Write-Inventory”,
“Effect”: “Deny”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:economy://inventory”
},
{
“Sid”: “Allow-Read-inventory”,
“Effect”: “Allow”,
“Action”: [“Read”],
“Principal”: “Player”,
“Resource”: “urn:ugs:economy://inventory”
},
{
“Sid”: “Allow-Write-Purchase-Virtual”,
“Effect”: “Allow”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:economy://purchases/virtual”
},
{
“Sid”: “Allow-Write-Purchase-GooglePlayStore”,
“Effect”: “Allow”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:economy://purchases/googleplaystore”
},
{
“Sid”: “Allow-Write-Purchase-AppleAppstore”,
“Effect”: “Allow”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:economy://purchases/appleappstore”
},
{
“Sid”: “Allow-Read-Leaderboards”,
“Effect”: “Allow”,
“Action”: [“Read”],
“Principal”: “Player”,
“Resource”: “urn:ugs:leaderboards://leaderboards/”
},
{
“Sid”: “Deny-Write-All_CloudSave”,
“Effect”: “Deny”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:cloud-save:/"
},
{
“Sid”: “Allow-Read-CloudSave-PlayerDataKey”,
“Effect”: “Allow”,
“Action”: [“Read”],
“Principal”: “Player”,
“Resource”: "urn:ugs:cloud-save://players//keys**"
},
{
“Sid”: “Allow-ReadAndWrite-CloudSave-PlayerDataItem”,
“Effect”: “Allow”,
“Action”: ["”],
“Principal”: “Player”,
“Resource”: “urn:ugs:cloud-save://players/*/items”
},
{
“Sid”: “Allow-Write-CloudSave-PlayerDataItemBatch”,
“Effect”: “Allow”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:cloud-save://players/*/item-batch”
},
{
“Sid”: “Allow-Write-Query-Default-PlayerData”,
“Effect”: “Allow”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:cloud-save://players/query”
},
{
“Sid”: “Allow-Read-CloudSave-Public-PlayerDataKey”,
“Effect”: “Allow”,
“Action”: [“Read”],
“Principal”: “Player”,
“Resource”: “urn:ugs:cloud-save://players/*/public/keys”
},
{
“Sid”: “Allow-Read-CloudSave-Public-PlayerDataItem”,
“Effect”: “Allow”,
“Action”: [“Read”],
“Principal”: “Player”,
“Resource”: “urn:ugs:cloud-save://players/*/public/items”
},
{
“Sid”: “Allow-Write-Query-Public-PlayerData”,
“Effect”: “Allow”,
“Action”: [“Write”],
“Principal”: “Player”,
“Resource”: “urn:ugs:cloud-save://players/public/query”
},
{
“Sid”: “Allow-Read-CloudSave-Default-GameDataItem”,
“Effect”: “Allow”,
“Action”: [“Read”],
“Principal”: “Player”,
“Resource”: “urn:ugs:cloud-save://custom/*/items”
},
{
“Sid”: “Allow-Access-Cloud-Code-Module”,
“Effect”: “Allow”,
“Action”: [““],
“Principal”: “Player”,
“Resource”: “urn:ugs:cloud-code://modules/”
},
{
“Sid”: “Allow-Access-Cloud-Script”,
“Effect”: “Allow”,
“Action”: [””],
“Principal”: “Player”,
“Resource”: “urn:ugs:cloud-code://scripts/”
},
{
“Sid”: “Allow-Access-Subscription-Token”,
“Effect”: “Allow”,
“Action”: [“*”],
“Principal”: “Player”,
“Resource”: “urn:ugs:cloud-code://subscriptions/tokens/”
}
]
}