Class: Aws::SSOAdmin::Types::AccessControlAttribute

Inherits:

Struct

• Object
• Struct
• Aws::SSOAdmin::Types::AccessControlAttribute

Defined in:

gems/aws-sdk-ssoadmin/lib/aws-sdk-ssoadmin/types.rb

Overview

These are IAM Identity Center identity store attributes that you can configure for use in attributes-based access control (ABAC). You can create permissions policies that determine who can access your Amazon Web Services resources based upon the configured attribute values. When you enable ABAC and specify AccessControlAttributes, IAM Identity Center passes the attribute values of the authenticated user into IAM for use in policy evaluation.

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #key ⇒ String

  The name of the attribute associated with your identities in your identity source.

• #value ⇒ Types::AccessControlAttributeValue

  The value used for mapping a specified attribute to an identity source.

Instance Attribute Details

#key ⇒ String

The name of the attribute associated with your identities in your identity source. This is used to map a specified attribute in your identity source with an attribute in IAM Identity Center.

Returns:

• (String)

# File 'gems/aws-sdk-ssoadmin/lib/aws-sdk-ssoadmin/types.rb', line 34

class AccessControlAttribute < Struct.new(
  :key,
  :value)
  SENSITIVE = []
  include Aws::Structure
end

#value ⇒ Types::AccessControlAttributeValue

The value used for mapping a specified attribute to an identity source.

Returns:

• (Types::AccessControlAttributeValue)

# File 'gems/aws-sdk-ssoadmin/lib/aws-sdk-ssoadmin/types.rb', line 34

class AccessControlAttribute < Struct.new(
  :key,
  :value)
  SENSITIVE = []
  include Aws::Structure
end