OpenIdConnectGroupConfigurationItem
The claim in OIDC identity provider tokens that indicates a user's group membership, and
the entity type that you want to map it to. For example, this object can map the contents
of a groups
claim to MyCorp::UserGroup
.
This data type is part of a OpenIdConnectConfigurationItem structure, which is a parameter of ListIdentitySourcea.
Contents
Note
In the following list, the required parameters are described first.
- groupClaim
-
The token claim that you want Verified Permissions to interpret as group membership. For example,
groups
.Type: String
Length Constraints: Minimum length of 1.
Required: Yes
- groupEntityType
-
The policy store entity type that you want to map your users' group claim to. For example,
MyCorp::UserGroup
. A group entity type is an entity that can have a user entity type as a member.Type: String
Length Constraints: Minimum length of 1. Maximum length of 200.
Pattern:
([_a-zA-Z][_a-zA-Z0-9]*::)*[_a-zA-Z][_a-zA-Z0-9]*
Required: Yes
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following: