AWS::BedrockAgentCore::OAuth2CredentialProvider CustomOauth2ProviderConfigInput

Input configuration for a custom OAuth2 provider.

Syntax

To declare this entity in your CloudFormation template, use the following syntax:

JSON


{
  "ClientId" : String,
  "ClientSecret" : String,
  "ClientSecretConfig" : SecretReference,
  "ClientSecretSource" : String,
  "OauthDiscovery" : Oauth2Discovery,
  "OnBehalfOfTokenExchangeConfig" : OnBehalfOfTokenExchangeConfig
}

YAML


  ClientId: String
  ClientSecret: String
  ClientSecretConfig: 
    SecretReference
  ClientSecretSource: String
  OauthDiscovery: 
    Oauth2Discovery
  OnBehalfOfTokenExchangeConfig: 
    OnBehalfOfTokenExchangeConfig

Properties

ClientId

The client ID for the custom OAuth2 provider.

Required: No

Type: String

Minimum: 1

Maximum: 256

Update requires: No interruption

ClientSecret

The client secret for the custom OAuth2 provider.

Required: No

Type: String

Minimum: 1

Maximum: 2048

Update requires: No interruption

ClientSecretConfig

Property description not available.

Required: No

Type: SecretReference

Update requires: No interruption

ClientSecretSource

Property description not available.

Required: No

Type: String

Allowed values: MANAGED | EXTERNAL

Update requires: No interruption

OauthDiscovery

The OAuth2 discovery information for the custom provider.

Required: Yes

Type: Oauth2Discovery

Update requires: No interruption

OnBehalfOfTokenExchangeConfig

The configuration for on-behalf-of token exchange. This enables authentication flows that use RFC 8693 token exchange or RFC 7523 JWT authorization grants.

Required: No

Type: OnBehalfOfTokenExchangeConfig

Update requires: No interruption

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

ClientSecretArn

GithubOauth2ProviderConfigInput