Package software.amazon.awscdk.services.ec2

Class CfnVerifiedAccessTrustProvider

java.lang.Object
software.amazon.jsii.JsiiObject
software.constructs.Construct
software.amazon.awscdk.CfnElement
software.amazon.awscdk.CfnRefElement
software.amazon.awscdk.CfnResource
software.amazon.awscdk.services.ec2.CfnVerifiedAccessTrustProvider
All Implemented Interfaces:
IInspectable, ITaggable, IVerifiedAccessTrustProviderRef, software.amazon.jsii.JsiiSerializable, software.constructs.IConstruct, software.constructs.IDependable
@Generated(value="jsii-pacmak/1.116.0 (build 0eddcff)", date="2025-10-29T11:15:37.687Z") @Stability(Stable) public class CfnVerifiedAccessTrustProvider extends CfnResource implements IInspectable, IVerifiedAccessTrustProviderRef, ITaggable
A trust provider is a third-party entity that creates, maintains, and manages identity information for users and devices.

When an application request is made, the identity information sent by the trust provider is evaluated by Verified Access before allowing or denying the application request.

Example: 

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.ec2.*;
 CfnVerifiedAccessTrustProvider cfnVerifiedAccessTrustProvider = CfnVerifiedAccessTrustProvider.Builder.create(this, "MyCfnVerifiedAccessTrustProvider")
         .policyReferenceName("policyReferenceName")
         .trustProviderType("trustProviderType")
         // the properties below are optional
         .description("description")
         .deviceOptions(DeviceOptionsProperty.builder()
                 .publicSigningKeyUrl("publicSigningKeyUrl")
                 .tenantId("tenantId")
                 .build())
         .deviceTrustProviderType("deviceTrustProviderType")
         .nativeApplicationOidcOptions(NativeApplicationOidcOptionsProperty.builder()
                 .authorizationEndpoint("authorizationEndpoint")
                 .clientId("clientId")
                 .clientSecret("clientSecret")
                 .issuer("issuer")
                 .publicSigningKeyEndpoint("publicSigningKeyEndpoint")
                 .scope("scope")
                 .tokenEndpoint("tokenEndpoint")
                 .userInfoEndpoint("userInfoEndpoint")
                 .build())
         .oidcOptions(OidcOptionsProperty.builder()
                 .authorizationEndpoint("authorizationEndpoint")
                 .clientId("clientId")
                 .clientSecret("clientSecret")
                 .issuer("issuer")
                 .scope("scope")
                 .tokenEndpoint("tokenEndpoint")
                 .userInfoEndpoint("userInfoEndpoint")
                 .build())
         .sseSpecification(SseSpecificationProperty.builder()
                 .customerManagedKeyEnabled(false)
                 .kmsKeyArn("kmsKeyArn")
                 .build())
         .tags(List.of(CfnTag.builder()
                 .key("key")
                 .value("value")
                 .build()))
         .userTrustProviderType("userTrustProviderType")
         .build();

See Also:

  • Field Details

    • CFN_RESOURCE_TYPE_NAME

      @Stability(Stable) public static final String CFN_RESOURCE_TYPE_NAME
      The CloudFormation resource type name for this resource class.

  • Constructor Details

    • CfnVerifiedAccessTrustProvider

      protected CfnVerifiedAccessTrustProvider(software.amazon.jsii.JsiiObjectRef objRef)

    • CfnVerifiedAccessTrustProvider

      protected CfnVerifiedAccessTrustProvider(software.amazon.jsii.JsiiObject.InitializationMode initializationMode)

    • CfnVerifiedAccessTrustProvider

      @Stability(Stable) public CfnVerifiedAccessTrustProvider(@NotNull software.constructs.Construct scope, @NotNull String id, @NotNull CfnVerifiedAccessTrustProviderProps props)
      Parameters:
      scope - Scope in which this resource is defined. This parameter is required.
      id - Construct identifier for this resource (unique in its scope). This parameter is required.
      props - Resource properties. This parameter is required.

  • Method Details

    • fromVerifiedAccessTrustProviderId

      @Stability(Stable) @NotNull public static IVerifiedAccessTrustProviderRef fromVerifiedAccessTrustProviderId(@NotNull software.constructs.Construct scope, @NotNull String id, @NotNull String verifiedAccessTrustProviderId)
      Creates a new IVerifiedAccessTrustProviderRef from a verifiedAccessTrustProviderId.

      Parameters:
      scope - This parameter is required.
      id - This parameter is required.
      verifiedAccessTrustProviderId - This parameter is required.

    • inspect

      @Stability(Stable) public void inspect(@NotNull TreeInspector inspector)
      Examines the CloudFormation resource and discloses attributes.

      Specified by:
      inspect in interface IInspectable
      Parameters:
      inspector - tree inspector to collect and process attributes. This parameter is required.

    • renderProperties

      @Stability(Stable) @NotNull protected Map<String,Object> renderProperties(@NotNull Map<String,Object> props)
      Overrides:
      renderProperties in class CfnResource
      Parameters:
      props - This parameter is required.

    • getAttrCreationTime

      @Stability(Stable) @NotNull public String getAttrCreationTime()
      The creation time.

    • getAttrLastUpdatedTime

      @Stability(Stable) @NotNull public String getAttrLastUpdatedTime()
      The last updated time.

    • getAttrVerifiedAccessTrustProviderId

      @Stability(Stable) @NotNull public String getAttrVerifiedAccessTrustProviderId()
      The ID of the Verified Access trust provider.

    • getCfnProperties

      @Stability(Stable) @NotNull protected Map<String,Object> getCfnProperties()
      Overrides:
      getCfnProperties in class CfnResource

    • getTags

      @Stability(Stable) @NotNull public TagManager getTags()
      Tag Manager which manages the tags for this resource.
      Specified by:
      getTags in interface ITaggable

    • getVerifiedAccessTrustProviderRef

      @Stability(Stable) @NotNull public VerifiedAccessTrustProviderReference getVerifiedAccessTrustProviderRef()
      A reference to a VerifiedAccessTrustProvider resource.
      Specified by:
      getVerifiedAccessTrustProviderRef in interface IVerifiedAccessTrustProviderRef

    • getPolicyReferenceName

      @Stability(Stable) @NotNull public String getPolicyReferenceName()
      The identifier to be used when working with policy rules.

    • setPolicyReferenceName

      @Stability(Stable) public void setPolicyReferenceName(@NotNull String value)
      The identifier to be used when working with policy rules.

    • getTrustProviderType

      @Stability(Stable) @NotNull public String getTrustProviderType()
      The type of Verified Access trust provider.

    • setTrustProviderType

      @Stability(Stable) public void setTrustProviderType(@NotNull String value)
      The type of Verified Access trust provider.

    • getDescription

      @Stability(Stable) @Nullable public String getDescription()
      A description for the AWS Verified Access trust provider.

    • setDescription

      @Stability(Stable) public void setDescription(@Nullable String value)
      A description for the AWS Verified Access trust provider.

    • getDeviceOptions

      @Stability(Stable) @Nullable public Object getDeviceOptions()
      The options for device-identity trust provider.

      Returns union: either IResolvable or CfnVerifiedAccessTrustProvider.DeviceOptionsProperty

    • setDeviceOptions

      @Stability(Stable) public void setDeviceOptions(@Nullable IResolvable value)
      The options for device-identity trust provider.

    • setDeviceOptions

      @Stability(Stable) public void setDeviceOptions(@Nullable CfnVerifiedAccessTrustProvider.DeviceOptionsProperty value)
      The options for device-identity trust provider.

    • getDeviceTrustProviderType

      @Stability(Stable) @Nullable public String getDeviceTrustProviderType()
      The type of device-based trust provider.

    • setDeviceTrustProviderType

      @Stability(Stable) public void setDeviceTrustProviderType(@Nullable String value)
      The type of device-based trust provider.

    • getNativeApplicationOidcOptions

      @Stability(Stable) @Nullable public Object getNativeApplicationOidcOptions()
      The OpenID Connect (OIDC) options.

      Returns union: either IResolvable or CfnVerifiedAccessTrustProvider.NativeApplicationOidcOptionsProperty

    • setNativeApplicationOidcOptions

      @Stability(Stable) public void setNativeApplicationOidcOptions(@Nullable IResolvable value)
      The OpenID Connect (OIDC) options.

    • setNativeApplicationOidcOptions

      @Stability(Stable) public void setNativeApplicationOidcOptions(@Nullable CfnVerifiedAccessTrustProvider.NativeApplicationOidcOptionsProperty value)
      The OpenID Connect (OIDC) options.

    • getOidcOptions

      @Stability(Stable) @Nullable public Object getOidcOptions()
      The options for an OpenID Connect-compatible user-identity trust provider.

      Returns union: either IResolvable or CfnVerifiedAccessTrustProvider.OidcOptionsProperty

    • setOidcOptions

      @Stability(Stable) public void setOidcOptions(@Nullable IResolvable value)
      The options for an OpenID Connect-compatible user-identity trust provider.

    • setOidcOptions

      @Stability(Stable) public void setOidcOptions(@Nullable CfnVerifiedAccessTrustProvider.OidcOptionsProperty value)
      The options for an OpenID Connect-compatible user-identity trust provider.

    • getSseSpecification

      @Stability(Stable) @Nullable public Object getSseSpecification()
      The options for additional server side encryption.

      Returns union: either IResolvable or CfnVerifiedAccessTrustProvider.SseSpecificationProperty

    • setSseSpecification

      @Stability(Stable) public void setSseSpecification(@Nullable IResolvable value)
      The options for additional server side encryption.

    • setSseSpecification

      @Stability(Stable) public void setSseSpecification(@Nullable CfnVerifiedAccessTrustProvider.SseSpecificationProperty value)
      The options for additional server side encryption.

    • getTagsRaw

      @Stability(Stable) @Nullable public List<CfnTag> getTagsRaw()
      The tags.

    • setTagsRaw

      @Stability(Stable) public void setTagsRaw(@Nullable List<CfnTag> value)
      The tags.

    • getUserTrustProviderType

      @Stability(Stable) @Nullable public String getUserTrustProviderType()
      The type of user-based trust provider.

    • setUserTrustProviderType

      @Stability(Stable) public void setUserTrustProviderType(@Nullable String value)
      The type of user-based trust provider.