AWS::QBusiness::WebExperience OpenIDConnectProviderConfiguration

Information about the OIDC-compliant identity provider (IdP) used to authenticate end users of an Amazon Q Business web experience.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:


{
  "SecretsArn" : String,
  "SecretsRole" : String
}


  SecretsArn: String
  SecretsRole: String

SecretsArn

The Amazon Resource Name (ARN) of a Secrets Manager secret containing the OIDC client secret.

Required: Yes

Type: String

Pattern: ^arn:[a-z0-9-\.]{1,63}:[a-z0-9-\.]{0,63}:[a-z0-9-\.]{0,63}:[a-z0-9-\.]{0,63}:[^/].{0,1023}$

Minimum: 0

Maximum: 1284

Update requires: No interruption

SecretsRole

An IAM role with permissions to access AWS KMS to decrypt the Secrets Manager secret containing your OIDC client secret.

Required: Yes

Type: String

Pattern: ^arn:[a-z0-9-\.]{1,63}:[a-z0-9-\.]{0,63}:[a-z0-9-\.]{0,63}:[a-z0-9-\.]{0,63}:[^/].{0,1023}$

Minimum: 0

Maximum: 1284

Update requires: No interruption

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

IdentityProviderConfiguration

SamlProviderConfiguration