2.248.0

interface AccessControlAttributeProperty

LanguageType name
.NETAmazon.CDK.CfnPropertyMixins.AWS.SSO.CfnInstanceAccessControlAttributeConfigurationPropsMixin.AccessControlAttributeProperty
Gogithub.com/aws/aws-cdk-go/awscdkcfnpropertymixins/v2/awssso#CfnInstanceAccessControlAttributeConfigurationPropsMixin_AccessControlAttributeProperty
Javasoftware.amazon.awscdk.cfnpropertymixins.services.sso.CfnInstanceAccessControlAttributeConfigurationPropsMixin.AccessControlAttributeProperty
Pythonaws_cdk.cfn_property_mixins.aws_sso.CfnInstanceAccessControlAttributeConfigurationPropsMixin.AccessControlAttributeProperty
TypeScript @aws-cdk/cfn-property-mixins » aws_sso » CfnInstanceAccessControlAttributeConfigurationPropsMixin » AccessControlAttributeProperty

These are identity store attributes that you can configure for use in attributes-based access control (ABAC).

You can create permissions policies that determine who can access your AWS resources based upon the configured attribute values. When you enable ABAC and specify AccessControlAttributes , passes the attribute values of the authenticated user into IAM for use in policy evaluation.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sso-instanceaccesscontrolattributeconfiguration-accesscontrolattribute.html

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_sso as sso } from '@aws-cdk/cfn-property-mixins';
const accessControlAttributeProperty: sso.CfnInstanceAccessControlAttributeConfigurationPropsMixin.AccessControlAttributeProperty = {
  key: 'key',
  value: {
    source: ['source'],
  },
};

Properties

NameTypeDescription
key?stringThe name of the attribute associated with your identities in your identity source.
value?IResolvable | AccessControlAttributeValuePropertyThe value used for mapping a specified attribute to an identity source.

key?

Type: string (optional)

The name of the attribute associated with your identities in your identity source.

This is used to map a specified attribute in your identity source with an attribute in .

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sso-instanceaccesscontrolattributeconfiguration-accesscontrolattribute.html#cfn-sso-instanceaccesscontrolattributeconfiguration-accesscontrolattribute-key

value?

Type: IResolvable | AccessControlAttributeValueProperty (optional)

The value used for mapping a specified attribute to an identity source.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-sso-instanceaccesscontrolattributeconfiguration-accesscontrolattribute.html#cfn-sso-instanceaccesscontrolattributeconfiguration-accesscontrolattribute-value

PreviousNext