Docs Home
We recommend new projects start with resources from the AWS provider.
AWS Cloud Control v1.26.0 published on Wednesday, Mar 12, 2025 by Pulumi
aws-native.verifiedpermissions.IdentitySource
Explore with Pulumi AI
We recommend new projects start with resources from the AWS provider.
AWS Cloud Control v1.26.0 published on Wednesday, Mar 12, 2025 by Pulumi
Definition of AWS::VerifiedPermissions::IdentitySource Resource Type
Example Usage
Example
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AwsNative = Pulumi.AwsNative;
return await Deployment.RunAsync(() =>
{
var config = new Config();
var policyStoreId = config.Require("policyStoreId");
var userPoolArn = config.Require("userPoolArn");
var clientIds = config.RequireObject<string[]>("clientIds");
var principalEntityType = config.Require("principalEntityType");
var identitySource = new AwsNative.VerifiedPermissions.IdentitySource("identitySource", new()
{
PolicyStoreId = policyStoreId,
Configuration = new AwsNative.VerifiedPermissions.Inputs.IdentitySourceConfiguration0PropertiesArgs
{
CognitoUserPoolConfiguration = new AwsNative.VerifiedPermissions.Inputs.IdentitySourceCognitoUserPoolConfigurationArgs
{
UserPoolArn = userPoolArn,
ClientIds = clientIds,
},
},
PrincipalEntityType = principalEntityType,
});
return new Dictionary<string, object?>
{
["identitySourceId"] = identitySource.IdentitySourceId,
};
});
package main
import (
"github.com/pulumi/pulumi-aws-native/sdk/go/aws/verifiedpermissions"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi/config"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
cfg := config.New(ctx, "")
policyStoreId := cfg.Require("policyStoreId")
userPoolArn := cfg.Require("userPoolArn")
clientIds := cfg.Require("clientIds")
principalEntityType := cfg.Require("principalEntityType")
identitySource, err := verifiedpermissions.NewIdentitySource(ctx, "identitySource", &verifiedpermissions.IdentitySourceArgs{
PolicyStoreId: pulumi.String(policyStoreId),
Configuration: &verifiedpermissions.IdentitySourceConfiguration0PropertiesArgs{
CognitoUserPoolConfiguration: &verifiedpermissions.IdentitySourceCognitoUserPoolConfigurationArgs{
UserPoolArn: pulumi.String(userPoolArn),
ClientIds: clientIds,
},
},
PrincipalEntityType: pulumi.String(principalEntityType),
})
if err != nil {
return err
}
ctx.Export("identitySourceId", identitySource.IdentitySourceId)
return nil
})
}
Coming soon!
import * as pulumi from "@pulumi/pulumi";
import * as aws_native from "@pulumi/aws-native";
const config = new pulumi.Config();
const policyStoreId = config.require("policyStoreId");
const userPoolArn = config.require("userPoolArn");
const clientIds = config.requireObject<Array<string>>("clientIds");
const principalEntityType = config.require("principalEntityType");
const identitySource = new aws_native.verifiedpermissions.IdentitySource("identitySource", {
policyStoreId: policyStoreId,
configuration: {
cognitoUserPoolConfiguration: {
userPoolArn: userPoolArn,
clientIds: clientIds,
},
},
principalEntityType: principalEntityType,
});
export const identitySourceId = identitySource.identitySourceId;
import pulumi
import pulumi_aws_native as aws_native
config = pulumi.Config()
policy_store_id = config.require("policyStoreId")
user_pool_arn = config.require("userPoolArn")
client_ids = config.require_object("clientIds")
principal_entity_type = config.require("principalEntityType")
identity_source = aws_native.verifiedpermissions.IdentitySource("identitySource",
policy_store_id=policy_store_id,
configuration={
"cognito_user_pool_configuration": {
"user_pool_arn": user_pool_arn,
"client_ids": client_ids,
},
},
principal_entity_type=principal_entity_type)
pulumi.export("identitySourceId", identity_source.identity_source_id)
Coming soon!
Create IdentitySource Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new IdentitySource(name: string, args: IdentitySourceArgs, opts?: CustomResourceOptions);@overload
def IdentitySource(resource_name: str,
args: IdentitySourceArgs,
opts: Optional[ResourceOptions] = None)
@overload
def IdentitySource(resource_name: str,
opts: Optional[ResourceOptions] = None,
configuration: Optional[Union[IdentitySourceConfiguration0PropertiesArgs, IdentitySourceConfiguration1PropertiesArgs]] = None,
policy_store_id: Optional[str] = None,
principal_entity_type: Optional[str] = None)func NewIdentitySource(ctx *Context, name string, args IdentitySourceArgs, opts ...ResourceOption) (*IdentitySource, error)public IdentitySource(string name, IdentitySourceArgs args, CustomResourceOptions? opts = null)
public IdentitySource(String name, IdentitySourceArgs args)
public IdentitySource(String name, IdentitySourceArgs args, CustomResourceOptions options)
type: aws-native:verifiedpermissions:IdentitySource
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args IdentitySourceArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args IdentitySourceArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args IdentitySourceArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args IdentitySourceArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args IdentitySourceArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
IdentitySource Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The IdentitySource resource accepts the following input properties:
- Configuration
Pulumi.
Aws | Pulumi.Native. Verified Permissions. Inputs. Identity Source Configuration0Properties Aws Native. Verified Permissions. Inputs. Identity Source Configuration1Properties - Contains configuration information used when creating a new identity source.
- Policy
Store stringId - Specifies the ID of the policy store in which you want to store this identity source. Only policies and requests made using this policy store can reference identities from the identity provider configured in the new identity source.
- Principal
Entity stringType - Specifies the namespace and data type of the principals generated for identities authenticated by the new identity source.
- Configuration
Identity
Source | IdentityConfiguration0Properties Args Source Configuration1Properties Args - Contains configuration information used when creating a new identity source.
- Policy
Store stringId - Specifies the ID of the policy store in which you want to store this identity source. Only policies and requests made using this policy store can reference identities from the identity provider configured in the new identity source.
- Principal
Entity stringType - Specifies the namespace and data type of the principals generated for identities authenticated by the new identity source.
- configuration
Identity
Source | IdentityConfiguration0Properties Source Configuration1Properties - Contains configuration information used when creating a new identity source.
- policy
Store StringId - Specifies the ID of the policy store in which you want to store this identity source. Only policies and requests made using this policy store can reference identities from the identity provider configured in the new identity source.
- principal
Entity StringType - Specifies the namespace and data type of the principals generated for identities authenticated by the new identity source.
- configuration
Identity
Source | IdentityConfiguration0Properties Source Configuration1Properties - Contains configuration information used when creating a new identity source.
- policy
Store stringId - Specifies the ID of the policy store in which you want to store this identity source. Only policies and requests made using this policy store can reference identities from the identity provider configured in the new identity source.
- principal
Entity stringType - Specifies the namespace and data type of the principals generated for identities authenticated by the new identity source.
- configuration
Identity
Source | IdentityConfiguration0Properties Args Source Configuration1Properties Args - Contains configuration information used when creating a new identity source.
- policy_
store_ strid - Specifies the ID of the policy store in which you want to store this identity source. Only policies and requests made using this policy store can reference identities from the identity provider configured in the new identity source.
- principal_
entity_ strtype - Specifies the namespace and data type of the principals generated for identities authenticated by the new identity source.
- configuration Property Map | Property Map
- Contains configuration information used when creating a new identity source.
- policy
Store StringId - Specifies the ID of the policy store in which you want to store this identity source. Only policies and requests made using this policy store can reference identities from the identity provider configured in the new identity source.
- principal
Entity StringType - Specifies the namespace and data type of the principals generated for identities authenticated by the new identity source.
Outputs
All input properties are implicitly available as output properties. Additionally, the IdentitySource resource produces the following output properties:
- Details
Pulumi.
Aws Native. Verified Permissions. Outputs. Identity Source Details - Id string
- The provider-assigned unique ID for this managed resource.
- Identity
Source stringId - The unique ID of the new or updated identity store.
- Details
Identity
Source Details - Id string
- The provider-assigned unique ID for this managed resource.
- Identity
Source stringId - The unique ID of the new or updated identity store.
- details
Identity
Source Details - id String
- The provider-assigned unique ID for this managed resource.
- identity
Source StringId - The unique ID of the new or updated identity store.
- details
Identity
Source Details - id string
- The provider-assigned unique ID for this managed resource.
- identity
Source stringId - The unique ID of the new or updated identity store.
- details
Identity
Source Details - id str
- The provider-assigned unique ID for this managed resource.
- identity_
source_ strid - The unique ID of the new or updated identity store.
- details Property Map
- id String
- The provider-assigned unique ID for this managed resource.
- identity
Source StringId - The unique ID of the new or updated identity store.
Supporting Types
IdentitySourceCognitoGroupConfiguration, IdentitySourceCognitoGroupConfigurationArgs
- Group
Entity stringType
- Group
Entity stringType
- group
Entity StringType
- group
Entity stringType
- group
Entity StringType
IdentitySourceCognitoUserPoolConfiguration, IdentitySourceCognitoUserPoolConfigurationArgs
- user
Pool StringArn - client
Ids List<String> - group
Configuration IdentitySource Cognito Group Configuration
- user
Pool StringArn - client
Ids List<String> - group
Configuration Property Map
IdentitySourceConfiguration0Properties, IdentitySourceConfiguration0PropertiesArgs
IdentitySourceConfiguration1Properties, IdentitySourceConfiguration1PropertiesArgs
IdentitySourceDetails, IdentitySourceDetailsArgs
- Client
Ids List<string> - Discovery
Url string - Open
Id Pulumi.Issuer Aws Native. Verified Permissions. Identity Source Open Id Issuer - User
Pool stringArn
- Client
Ids []string - Discovery
Url string - Open
Id IdentityIssuer Source Open Id Issuer - User
Pool stringArn
- client
Ids List<String> - discovery
Url String - open
Id IdentityIssuer Source Open Id Issuer - user
Pool StringArn
- client
Ids string[] - discovery
Url string - open
Id IdentityIssuer Source Open Id Issuer - user
Pool stringArn
- client_
ids Sequence[str] - discovery_
url str - open_
id_ Identityissuer Source Open Id Issuer - user_
pool_ strarn
- client
Ids List<String> - discovery
Url String - open
Id "COGNITO"Issuer - user
Pool StringArn
IdentitySourceOpenIdConnectAccessTokenConfiguration, IdentitySourceOpenIdConnectAccessTokenConfigurationArgs
- Audiences List<string>
- Principal
Id stringClaim
- Audiences []string
- Principal
Id stringClaim
- audiences List<String>
- principal
Id StringClaim
- audiences string[]
- principal
Id stringClaim
- audiences Sequence[str]
- principal_
id_ strclaim
- audiences List<String>
- principal
Id StringClaim
IdentitySourceOpenIdConnectConfiguration, IdentitySourceOpenIdConnectConfigurationArgs
- Issuer string
- Token
Selection Pulumi.Aws | Pulumi.Native. Verified Permissions. Inputs. Identity Source Open Id Connect Token Selection0Properties Aws Native. Verified Permissions. Inputs. Identity Source Open Id Connect Token Selection1Properties - Entity
Id stringPrefix - Group
Configuration Pulumi.Aws Native. Verified Permissions. Inputs. Identity Source Open Id Connect Group Configuration
IdentitySourceOpenIdConnectGroupConfiguration, IdentitySourceOpenIdConnectGroupConfigurationArgs
- Group
Claim string - Group
Entity stringType
- Group
Claim string - Group
Entity stringType
- group
Claim String - group
Entity StringType
- group
Claim string - group
Entity stringType
- group_
claim str - group_
entity_ strtype
- group
Claim String - group
Entity StringType
IdentitySourceOpenIdConnectIdentityTokenConfiguration, IdentitySourceOpenIdConnectIdentityTokenConfigurationArgs
- Client
Ids List<string> - Principal
Id stringClaim
- Client
Ids []string - Principal
Id stringClaim
- client
Ids List<String> - principal
Id StringClaim
- client
Ids string[] - principal
Id stringClaim
- client_
ids Sequence[str] - principal_
id_ strclaim
- client
Ids List<String> - principal
Id StringClaim
IdentitySourceOpenIdConnectTokenSelection0Properties, IdentitySourceOpenIdConnectTokenSelection0PropertiesArgs
IdentitySourceOpenIdConnectTokenSelection1Properties, IdentitySourceOpenIdConnectTokenSelection1PropertiesArgs
IdentitySourceOpenIdIssuer, IdentitySourceOpenIdIssuerArgs
- Cognito
- COGNITO
- Identity
Source Open Id Issuer Cognito - COGNITO
- Cognito
- COGNITO
- Cognito
- COGNITO
- COGNITO
- COGNITO
- "COGNITO"
- COGNITO
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
We recommend new projects start with resources from the AWS provider.
AWS Cloud Control v1.26.0 published on Wednesday, Mar 12, 2025 by Pulumi