Package software.amazon.awscdk.services.verifiedpermissions

Interface CfnIdentitySource.OpenIdConnectTokenSelectionProperty

All Superinterfaces:

software.amazon.jsii.JsiiSerializable

All Known Implementing Classes:

CfnIdentitySource.OpenIdConnectTokenSelectionProperty.Jsii$Proxy

Enclosing class:

CfnIdentitySource

@Stability(Stable)
public static interface CfnIdentitySource.OpenIdConnectTokenSelectionProperty
extends software.amazon.jsii.JsiiSerializable

The token type that you want to process from your OIDC identity provider.

Your policy store can process either identity (ID) or access tokens from a given OIDC identity source.

This data type is part of a OpenIdConnectConfiguration structure, which is a parameter of CreateIdentitySource .

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.verifiedpermissions.*;
 OpenIdConnectTokenSelectionProperty openIdConnectTokenSelectionProperty = OpenIdConnectTokenSelectionProperty.builder()
         .accessTokenOnly(OpenIdConnectAccessTokenConfigurationProperty.builder()
                 .audiences(List.of("audiences"))
                 .principalIdClaim("principalIdClaim")
                 .build())
         .identityTokenOnly(OpenIdConnectIdentityTokenConfigurationProperty.builder()
                 .clientIds(List.of("clientIds"))
                 .principalIdClaim("principalIdClaim")
                 .build())
         .build();
 

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-verifiedpermissions-identitysource-openidconnecttokenselection.html

Nested Class Summary

Nested Classes

Modifier and Type	Interface	Description
static final class	CfnIdentitySource.OpenIdConnectTokenSelectionProperty.Builder	A builder for CfnIdentitySource.OpenIdConnectTokenSelectionProperty
static final class	CfnIdentitySource.OpenIdConnectTokenSelectionProperty.Jsii$Proxy	An implementation for CfnIdentitySource.OpenIdConnectTokenSelectionProperty

Method Summary

Modifier and Type	Method	Description
static CfnIdentitySource.OpenIdConnectTokenSelectionProperty.Builder	builder()
default Object	getAccessTokenOnly()	The OIDC configuration for processing access tokens.
default Object	getIdentityTokenOnly()	The OIDC configuration for processing identity (ID) tokens.

Methods inherited from interface software.amazon.jsii.JsiiSerializable

$jsii$toJson

Method Details

getAccessTokenOnly

@Stability(Stable)
@Nullable
default Object getAccessTokenOnly()

The OIDC configuration for processing access tokens.

Contains allowed audience claims, for example https://auth.example.com , and the claim that you want to map to the principal, for example sub .

Returns union: either IResolvable or CfnIdentitySource.OpenIdConnectAccessTokenConfigurationProperty

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-verifiedpermissions-identitysource-openidconnecttokenselection.html#cfn-verifiedpermissions-identitysource-openidconnecttokenselection-accesstokenonly

getIdentityTokenOnly

@Stability(Stable)
@Nullable
default Object getIdentityTokenOnly()

The OIDC configuration for processing identity (ID) tokens.

Contains allowed client ID claims, for example 1example23456789 , and the claim that you want to map to the principal, for example sub .

Returns union: either IResolvable or CfnIdentitySource.OpenIdConnectIdentityTokenConfigurationProperty

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-verifiedpermissions-identitysource-openidconnecttokenselection.html#cfn-verifiedpermissions-identitysource-openidconnecttokenselection-identitytokenonly

builder

@Stability(Stable)
static CfnIdentitySource.OpenIdConnectTokenSelectionProperty.Builder builder()

Returns:

a CfnIdentitySource.OpenIdConnectTokenSelectionProperty.Builder of CfnIdentitySource.OpenIdConnectTokenSelectionProperty