In the context of his development tasks, an AWS Certified Developer Associate is responsible for creating and managing policies within an AWS environment. Initially, he has created and attached Identity-based policies to various IAM identities to ensure secure access control. Now, his focus has shifted to crafting Resource-based policies, which are designed to specify who (which principal) can access the AWS resource and what actions they can perform.

What is the sole resource-based policy that the IAM service endorses?