Class: AWSCDK::Verifiedpermissions::CfnIdentitySource::OpenIdConnectAccessTokenConfigurationProperty
- Inherits:
-
Jsii::Struct
- Object
- Jsii::Struct
- AWSCDK::Verifiedpermissions::CfnIdentitySource::OpenIdConnectAccessTokenConfigurationProperty
- Defined in:
- verifiedpermissions/cfn_identity_source.rb
Overview
The configuration of an OpenID Connect (OIDC) identity source for handling access token claims.
Contains the claim that you want to identify as the principal in an authorization request, and the values of the aud claim, or audiences, that you want to accept.
This data type is part of a OpenIdConnectTokenSelection structure, which is a parameter of CreateIdentitySource .
Instance Attribute Summary collapse
-
#audiences ⇒ Array<String>?
readonly
The access token
audclaim values that you want to accept in your policy store. -
#principal_id_claim ⇒ String?
readonly
The claim that determines the principal in OIDC access tokens.
Class Method Summary collapse
Instance Method Summary collapse
-
#initialize(audiences: nil, principal_id_claim: nil) ⇒ OpenIdConnectAccessTokenConfigurationProperty
constructor
A new instance of OpenIdConnectAccessTokenConfigurationProperty.
- #to_jsii ⇒ Object
Constructor Details
#initialize(audiences: nil, principal_id_claim: nil) ⇒ OpenIdConnectAccessTokenConfigurationProperty
Returns a new instance of OpenIdConnectAccessTokenConfigurationProperty.
762 763 764 765 766 767 |
# File 'verifiedpermissions/cfn_identity_source.rb', line 762 def initialize(audiences: nil, principal_id_claim: nil) @audiences = audiences Jsii::Type.check_type(@audiences, JSON.parse(Base64.strict_decode64("eyJjb2xsZWN0aW9uIjp7ImVsZW1lbnR0eXBlIjp7InByaW1pdGl2ZSI6InN0cmluZyJ9LCJraW5kIjoiYXJyYXkifX0=")), "audiences") unless @audiences.nil? @principal_id_claim = principal_id_claim Jsii::Type.check_type(@principal_id_claim, JSON.parse(Base64.strict_decode64("eyJwcmltaXRpdmUiOiJzdHJpbmcifQ==")), "principalIdClaim") unless @principal_id_claim.nil? end |
Instance Attribute Details
#audiences ⇒ Array<String>? (readonly)
The access token aud claim values that you want to accept in your policy store.
For example, https://myapp.example.com, https://myapp2.example.com .
775 776 777 |
# File 'verifiedpermissions/cfn_identity_source.rb', line 775 def audiences @audiences end |
#principal_id_claim ⇒ String? (readonly)
Default: - "sub"
The claim that determines the principal in OIDC access tokens.
For example, sub .
783 784 785 |
# File 'verifiedpermissions/cfn_identity_source.rb', line 783 def principal_id_claim @principal_id_claim end |
Class Method Details
.jsii_properties ⇒ Object
785 786 787 788 789 790 |
# File 'verifiedpermissions/cfn_identity_source.rb', line 785 def self.jsii_properties { :audiences => "audiences", :principal_id_claim => "principalIdClaim", } end |
Instance Method Details
#to_jsii ⇒ Object
792 793 794 795 796 797 798 799 |
# File 'verifiedpermissions/cfn_identity_source.rb', line 792 def to_jsii result = {} result.merge!({ "audiences" => @audiences, "principalIdClaim" => @principal_id_claim, }) result.compact end |