/AWS1/CL_HLLIDENTITYPVDRCONF¶
The identity provider configuration that you gave when the data store was created.
CONSTRUCTOR
¶
IMPORTING¶
Required arguments:¶
IV_AUTHORIZATIONSTRATEGY
TYPE /AWS1/HLLAUTHORIZATIONSTRATEGY
/AWS1/HLLAUTHORIZATIONSTRATEGY
¶
The authorization strategy that you selected when you created the data store.
Optional arguments:¶
IV_FINEGRAINEDAUTHENABLED
TYPE /AWS1/HLLBOOLEAN
/AWS1/HLLBOOLEAN
¶
If you enabled fine-grained authorization when you created the data store.
IV_METADATA
TYPE /AWS1/HLLCONFIGURATIONMETADATA
/AWS1/HLLCONFIGURATIONMETADATA
¶
The JSON metadata elements that you want to use in your identity provider configuration. Required elements are listed based on the launch specification of the SMART application. For more information on all possible elements, see Metadata in SMART's App Launch specification.
authorization_endpoint
: The URL to the OAuth2 authorization endpoint.
grant_types_supported
: An array of grant types that are supported at the token endpoint. You must provide at least one grant type option. Valid options areauthorization_code
andclient_credentials
.
token_endpoint
: The URL to the OAuth2 token endpoint.
capabilities
: An array of strings of the SMART capabilities that the authorization server supports.
code_challenge_methods_supported
: An array of strings of supported PKCE code challenge methods. You must include theS256
method in the array of PKCE code challenge methods.
IV_IDPLAMBDAARN
TYPE /AWS1/HLLLAMBDAARN
/AWS1/HLLLAMBDAARN
¶
The Amazon Resource Name (ARN) of the Lambda function that you want to use to decode the access token created by the authorization server.
Queryable Attributes¶
AuthorizationStrategy¶
The authorization strategy that you selected when you created the data store.
Accessible with the following methods¶
Method | Description |
---|---|
GET_AUTHORIZATIONSTRATEGY() |
Getter for AUTHORIZATIONSTRATEGY, with configurable default |
ASK_AUTHORIZATIONSTRATEGY() |
Getter for AUTHORIZATIONSTRATEGY w/ exceptions if field has |
HAS_AUTHORIZATIONSTRATEGY() |
Determine if AUTHORIZATIONSTRATEGY has a value |
FineGrainedAuthorizationEnabled¶
If you enabled fine-grained authorization when you created the data store.
Accessible with the following methods¶
Method | Description |
---|---|
GET_FINEGRAINEDAUTHENABLED() |
Getter for FINEGRAINEDAUTHENABLED |
Metadata¶
The JSON metadata elements that you want to use in your identity provider configuration. Required elements are listed based on the launch specification of the SMART application. For more information on all possible elements, see Metadata in SMART's App Launch specification.
authorization_endpoint
: The URL to the OAuth2 authorization endpoint.
grant_types_supported
: An array of grant types that are supported at the token endpoint. You must provide at least one grant type option. Valid options areauthorization_code
andclient_credentials
.
token_endpoint
: The URL to the OAuth2 token endpoint.
capabilities
: An array of strings of the SMART capabilities that the authorization server supports.
code_challenge_methods_supported
: An array of strings of supported PKCE code challenge methods. You must include theS256
method in the array of PKCE code challenge methods.
Accessible with the following methods¶
Method | Description |
---|---|
GET_METADATA() |
Getter for METADATA, with configurable default |
ASK_METADATA() |
Getter for METADATA w/ exceptions if field has no value |
HAS_METADATA() |
Determine if METADATA has a value |
IdpLambdaArn¶
The Amazon Resource Name (ARN) of the Lambda function that you want to use to decode the access token created by the authorization server.
Accessible with the following methods¶
Method | Description |
---|---|
GET_IDPLAMBDAARN() |
Getter for IDPLAMBDAARN, with configurable default |
ASK_IDPLAMBDAARN() |
Getter for IDPLAMBDAARN w/ exceptions if field has no value |
HAS_IDPLAMBDAARN() |
Determine if IDPLAMBDAARN has a value |