aws_cdk.aws_iamο
Define a new IAM Access Key. |
|
Valid statuses for an IAM Access Key. |
|
Specify AWS account ID as the principal entity in a policy to delegate authority to the account. |
|
Use the AWS account into which a stack is deployed as the principal entity in a policy. |
|
A principal representing all AWS identities in all accounts. |
|
Specify a principal by the Amazon Resource Name (ARN). |
|
A policy principal for canonicalUserIds - useful for S3 bucket policies that use Origin Access identities. |
|
Creates a new AWS secret access key and corresponding AWS access key ID for the specified user. |
|
Creates a new group. |
|
Adds or updates an inline policy document that is embedded in the specified IAM group. |
|
Creates a new instance profile. For information about instance profiles, see Using instance profiles . |
|
Creates a new managed policy for your AWS account . |
|
Creates or updates an IAM entity to describe an identity provider (IdP) that supports OpenID Connect (OIDC) . |
|
Adds or updates an inline policy document that is embedded in the specified IAM group, user or role. |
|
Creates a new role for your AWS account . |
|
Adds or updates an inline policy document that is embedded in the specified IAM role. |
|
Creates an IAM resource that describes an identity provider (IdP) that supports SAML 2.0. |
|
Uploads a server certificate entity for the AWS account . |
|
Creates an IAM role that is linked to a specific AWS service. |
|
Creates a new IAM user for your AWS account . |
|
Adds or updates an inline policy document that is embedded in the specified IAM user. |
|
Adds the specified user to the specified group. |
|
Creates a new virtual MFA device for the AWS account . |
|
Helper class for working with ``IComparablePrincipal``s. |
|
Composite dependable. |
|
Represents a principal that has multiple types of principals. |
|
The Effect element of an IAM policy. |
|
Principal entity that represents a federated identity provider such as Amazon Cognito, that can be used to provide temporary security credentials to users who have been authenticated. |
|
Result of a grant() operation. |
|
An IAM Group (collection of IAM users) lets you specify permissions for multiple users, which can make it easier to manage permissions for those users. |
|
Represents an IAM Access Key. |
|
(experimental) Indicates that this resource can be referenced as a AccessKey. |
|
A type of principal that has more control over its own representation in AssumeRolePolicyDocuments. |
|
Interface for principals that can be compared. |
|
Any object that has an associated principal that a permission can be granted to. |
|
Represents an IAM Group. |
|
(experimental) Indicates that this resource can be referenced as a GroupPolicy. |
|
(experimental) Indicates that this resource can be referenced as a Group. |
|
A construct that represents an IAM principal, such as a user, group or role. |
|
Represents an IAM Instance Profile. |
|
(experimental) Indicates that this resource can be referenced as a InstanceProfile. |
|
A managed policy. |
|
(experimental) Indicates that this resource can be referenced as a ManagedPolicy. |
|
(experimental) Indicates that this resource can be referenced as a OIDCProvider. |
|
Represents an IAM OpenID Connect provider. |
|
Represents an IAM OpenID Connect provider. |
|
Represents an IAM Policy. |
|
(experimental) Indicates that this resource can be referenced as a Policy. |
|
Represents a logical IAM principal. |
|
A resource with a resource policy that can be added to. |
|
A Role object. |
|
(experimental) Indicates that this resource can be referenced as a RolePolicy. |
|
(experimental) Indicates that this resource can be referenced as a Role. |
|
(experimental) Indicates that this resource can be referenced as a SAMLProvider. |
|
A SAML provider. |
|
(experimental) Indicates that this resource can be referenced as a ServerCertificate. |
|
(experimental) Indicates that this resource can be referenced as a ServiceLinkedRole. |
|
Represents an IAM user. |
|
(experimental) Indicates that this resource can be referenced as a UserPolicy. |
|
(experimental) Indicates that this resource can be referenced as a User. |
|
(experimental) Indicates that this resource can be referenced as a UserToGroupAddition. |
|
(experimental) Indicates that this resource can be referenced as a VirtualMFADevice. |
|
IAM Instance Profile. |
|
An IAM role that only gets attached to the construct tree once it gets used, not before. |
|
Managed policy. |
|
IAM OIDC identity providers are entities in IAM that describe an external identity provider (IdP) service that supports the OpenID Connect (OIDC) standard, such as Google or Salesforce. |
|
A principal that represents a federated identity provider as from a OpenID Connect provider. |
|
IAM OIDC identity providers are entities in IAM that describe an external identity provider (IdP) service that supports the OpenID Connect (OIDC) standard, such as Google or Salesforce. |
|
A principal that represents an AWS Organization. |
|
Modify the Permissions Boundaries of Users and Roles in a construct tree. |
|
The AWS::IAM::Policy resource associates an inline IAM policy with IAM users, roles, or groups. For more information about IAM policies, see Overview of IAM Policies in the IAM User Guide guide. |
|
A PolicyDocument is a collection of statements. |
|
Represents a statement in an IAM policy document. |
|
Base class for policy principals. |
|
A collection of the fields in a PolicyStatement that can be used to identify a principal. |
|
An IAM principal with additional conditions specifying when the policy is in effect. |
|
IAM Role. |
|
Principal entity that represents a SAML federated identity provider for programmatic and AWS Management Console access. |
|
A SAML metadata document. |
|
Principal entity that represents a SAML federated identity provider. |
|
A SAML provider. |
|
An IAM principal that represents an AWS service (i.e. |
|
Enables session tags on role assumptions from a principal. |
|
A principal that uses a literal β*β in the IAM JSON language. |
|
A principal for use in resources that need to have a role but itβs unknown. |
|
Define a new IAM user. |
|
A principal that represents a federated identity provider as Web Identity such as Cognito, Amazon, Facebook, Google, etc. |
|