ssoadmin

package
v5.9.1 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jun 21, 2022 License: Apache-2.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type AccountAssignment

type AccountAssignment struct {
	pulumi.CustomResourceState

	// The Amazon Resource Name (ARN) of the SSO Instance.
	InstanceArn pulumi.StringOutput `pulumi:"instanceArn"`
	// The Amazon Resource Name (ARN) of the Permission Set that the admin wants to grant the principal access to.
	PermissionSetArn pulumi.StringOutput `pulumi:"permissionSetArn"`
	// An identifier for an object in SSO, such as a user or group. PrincipalIds are GUIDs (For example, `f81d4fae-7dec-11d0-a765-00a0c91e6bf6`).
	PrincipalId pulumi.StringOutput `pulumi:"principalId"`
	// The entity type for which the assignment will be created. Valid values: `USER`, `GROUP`.
	PrincipalType pulumi.StringOutput `pulumi:"principalType"`
	// An AWS account identifier, typically a 10-12 digit string.
	TargetId pulumi.StringOutput `pulumi:"targetId"`
	// The entity type for which the assignment will be created. Valid values: `AWS_ACCOUNT`.
	TargetType pulumi.StringPtrOutput `pulumi:"targetType"`
}

Provides a Single Sign-On (SSO) Account Assignment resource

## Import

SSO Account Assignments can be imported using the `principal_id`, `principal_type`, `target_id`, `target_type`, `permission_set_arn`, `instance_arn` separated by commas (`,`) e.g.,

```sh

$ pulumi import aws:ssoadmin/accountAssignment:AccountAssignment example f81d4fae-7dec-11d0-a765-00a0c91e6bf6,GROUP,1234567890,AWS_ACCOUNT,arn:aws:sso:::permissionSet/ssoins-0123456789abcdef/ps-0123456789abcdef,arn:aws:sso:::instance/ssoins-0123456789abcdef

```

func GetAccountAssignment

func GetAccountAssignment(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *AccountAssignmentState, opts ...pulumi.ResourceOption) (*AccountAssignment, error)

GetAccountAssignment gets an existing AccountAssignment resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewAccountAssignment

func NewAccountAssignment(ctx *pulumi.Context,
	name string, args *AccountAssignmentArgs, opts ...pulumi.ResourceOption) (*AccountAssignment, error)

NewAccountAssignment registers a new resource with the given unique name, arguments, and options.

func (*AccountAssignment) ElementType

func (*AccountAssignment) ElementType() reflect.Type

func (*AccountAssignment) ToAccountAssignmentOutput

func (i *AccountAssignment) ToAccountAssignmentOutput() AccountAssignmentOutput

func (*AccountAssignment) ToAccountAssignmentOutputWithContext

func (i *AccountAssignment) ToAccountAssignmentOutputWithContext(ctx context.Context) AccountAssignmentOutput

type AccountAssignmentArgs

type AccountAssignmentArgs struct {
	// The Amazon Resource Name (ARN) of the SSO Instance.
	InstanceArn pulumi.StringInput
	// The Amazon Resource Name (ARN) of the Permission Set that the admin wants to grant the principal access to.
	PermissionSetArn pulumi.StringInput
	// An identifier for an object in SSO, such as a user or group. PrincipalIds are GUIDs (For example, `f81d4fae-7dec-11d0-a765-00a0c91e6bf6`).
	PrincipalId pulumi.StringInput
	// The entity type for which the assignment will be created. Valid values: `USER`, `GROUP`.
	PrincipalType pulumi.StringInput
	// An AWS account identifier, typically a 10-12 digit string.
	TargetId pulumi.StringInput
	// The entity type for which the assignment will be created. Valid values: `AWS_ACCOUNT`.
	TargetType pulumi.StringPtrInput
}

The set of arguments for constructing a AccountAssignment resource.

func (AccountAssignmentArgs) ElementType

func (AccountAssignmentArgs) ElementType() reflect.Type

type AccountAssignmentArray

type AccountAssignmentArray []AccountAssignmentInput

func (AccountAssignmentArray) ElementType

func (AccountAssignmentArray) ElementType() reflect.Type

func (AccountAssignmentArray) ToAccountAssignmentArrayOutput

func (i AccountAssignmentArray) ToAccountAssignmentArrayOutput() AccountAssignmentArrayOutput

func (AccountAssignmentArray) ToAccountAssignmentArrayOutputWithContext

func (i AccountAssignmentArray) ToAccountAssignmentArrayOutputWithContext(ctx context.Context) AccountAssignmentArrayOutput

type AccountAssignmentArrayInput

type AccountAssignmentArrayInput interface {
	pulumi.Input

	ToAccountAssignmentArrayOutput() AccountAssignmentArrayOutput
	ToAccountAssignmentArrayOutputWithContext(context.Context) AccountAssignmentArrayOutput
}

AccountAssignmentArrayInput is an input type that accepts AccountAssignmentArray and AccountAssignmentArrayOutput values. You can construct a concrete instance of `AccountAssignmentArrayInput` via:

AccountAssignmentArray{ AccountAssignmentArgs{...} }

type AccountAssignmentArrayOutput

type AccountAssignmentArrayOutput struct{ *pulumi.OutputState }

func (AccountAssignmentArrayOutput) ElementType

func (AccountAssignmentArrayOutput) Index

func (AccountAssignmentArrayOutput) ToAccountAssignmentArrayOutput

func (o AccountAssignmentArrayOutput) ToAccountAssignmentArrayOutput() AccountAssignmentArrayOutput

func (AccountAssignmentArrayOutput) ToAccountAssignmentArrayOutputWithContext

func (o AccountAssignmentArrayOutput) ToAccountAssignmentArrayOutputWithContext(ctx context.Context) AccountAssignmentArrayOutput

type AccountAssignmentInput

type AccountAssignmentInput interface {
	pulumi.Input

	ToAccountAssignmentOutput() AccountAssignmentOutput
	ToAccountAssignmentOutputWithContext(ctx context.Context) AccountAssignmentOutput
}

type AccountAssignmentMap

type AccountAssignmentMap map[string]AccountAssignmentInput

func (AccountAssignmentMap) ElementType

func (AccountAssignmentMap) ElementType() reflect.Type

func (AccountAssignmentMap) ToAccountAssignmentMapOutput

func (i AccountAssignmentMap) ToAccountAssignmentMapOutput() AccountAssignmentMapOutput

func (AccountAssignmentMap) ToAccountAssignmentMapOutputWithContext

func (i AccountAssignmentMap) ToAccountAssignmentMapOutputWithContext(ctx context.Context) AccountAssignmentMapOutput

type AccountAssignmentMapInput

type AccountAssignmentMapInput interface {
	pulumi.Input

	ToAccountAssignmentMapOutput() AccountAssignmentMapOutput
	ToAccountAssignmentMapOutputWithContext(context.Context) AccountAssignmentMapOutput
}

AccountAssignmentMapInput is an input type that accepts AccountAssignmentMap and AccountAssignmentMapOutput values. You can construct a concrete instance of `AccountAssignmentMapInput` via:

AccountAssignmentMap{ "key": AccountAssignmentArgs{...} }

type AccountAssignmentMapOutput

type AccountAssignmentMapOutput struct{ *pulumi.OutputState }

func (AccountAssignmentMapOutput) ElementType

func (AccountAssignmentMapOutput) ElementType() reflect.Type

func (AccountAssignmentMapOutput) MapIndex

func (AccountAssignmentMapOutput) ToAccountAssignmentMapOutput

func (o AccountAssignmentMapOutput) ToAccountAssignmentMapOutput() AccountAssignmentMapOutput

func (AccountAssignmentMapOutput) ToAccountAssignmentMapOutputWithContext

func (o AccountAssignmentMapOutput) ToAccountAssignmentMapOutputWithContext(ctx context.Context) AccountAssignmentMapOutput

type AccountAssignmentOutput

type AccountAssignmentOutput struct{ *pulumi.OutputState }

func (AccountAssignmentOutput) ElementType

func (AccountAssignmentOutput) ElementType() reflect.Type

func (AccountAssignmentOutput) InstanceArn added in v5.4.0

The Amazon Resource Name (ARN) of the SSO Instance.

func (AccountAssignmentOutput) PermissionSetArn added in v5.4.0

func (o AccountAssignmentOutput) PermissionSetArn() pulumi.StringOutput

The Amazon Resource Name (ARN) of the Permission Set that the admin wants to grant the principal access to.

func (AccountAssignmentOutput) PrincipalId added in v5.4.0

An identifier for an object in SSO, such as a user or group. PrincipalIds are GUIDs (For example, `f81d4fae-7dec-11d0-a765-00a0c91e6bf6`).

func (AccountAssignmentOutput) PrincipalType added in v5.4.0

func (o AccountAssignmentOutput) PrincipalType() pulumi.StringOutput

The entity type for which the assignment will be created. Valid values: `USER`, `GROUP`.

func (AccountAssignmentOutput) TargetId added in v5.4.0

An AWS account identifier, typically a 10-12 digit string.

func (AccountAssignmentOutput) TargetType added in v5.4.0

The entity type for which the assignment will be created. Valid values: `AWS_ACCOUNT`.

func (AccountAssignmentOutput) ToAccountAssignmentOutput

func (o AccountAssignmentOutput) ToAccountAssignmentOutput() AccountAssignmentOutput

func (AccountAssignmentOutput) ToAccountAssignmentOutputWithContext

func (o AccountAssignmentOutput) ToAccountAssignmentOutputWithContext(ctx context.Context) AccountAssignmentOutput

type AccountAssignmentState

type AccountAssignmentState struct {
	// The Amazon Resource Name (ARN) of the SSO Instance.
	InstanceArn pulumi.StringPtrInput
	// The Amazon Resource Name (ARN) of the Permission Set that the admin wants to grant the principal access to.
	PermissionSetArn pulumi.StringPtrInput
	// An identifier for an object in SSO, such as a user or group. PrincipalIds are GUIDs (For example, `f81d4fae-7dec-11d0-a765-00a0c91e6bf6`).
	PrincipalId pulumi.StringPtrInput
	// The entity type for which the assignment will be created. Valid values: `USER`, `GROUP`.
	PrincipalType pulumi.StringPtrInput
	// An AWS account identifier, typically a 10-12 digit string.
	TargetId pulumi.StringPtrInput
	// The entity type for which the assignment will be created. Valid values: `AWS_ACCOUNT`.
	TargetType pulumi.StringPtrInput
}

func (AccountAssignmentState) ElementType

func (AccountAssignmentState) ElementType() reflect.Type

type GetInstancesResult

type GetInstancesResult struct {
	// Set of Amazon Resource Names (ARNs) of the SSO Instances.
	Arns []string `pulumi:"arns"`
	// The provider-assigned unique ID for this managed resource.
	Id string `pulumi:"id"`
	// Set of identifiers of the identity stores connected to the SSO Instances.
	IdentityStoreIds []string `pulumi:"identityStoreIds"`
}

A collection of values returned by getInstances.

func GetInstances

func GetInstances(ctx *pulumi.Context, opts ...pulumi.InvokeOption) (*GetInstancesResult, error)

Use this data source to get ARNs and Identity Store IDs of Single Sign-On (SSO) Instances.

type LookupPermissionSetArgs

type LookupPermissionSetArgs struct {
	// The Amazon Resource Name (ARN) of the permission set.
	Arn *string `pulumi:"arn"`
	// The Amazon Resource Name (ARN) of the SSO Instance associated with the permission set.
	InstanceArn string `pulumi:"instanceArn"`
	// The name of the SSO Permission Set.
	Name *string `pulumi:"name"`
	// Key-value map of resource tags.
	Tags map[string]string `pulumi:"tags"`
}

A collection of arguments for invoking getPermissionSet.

type LookupPermissionSetOutputArgs

type LookupPermissionSetOutputArgs struct {
	// The Amazon Resource Name (ARN) of the permission set.
	Arn pulumi.StringPtrInput `pulumi:"arn"`
	// The Amazon Resource Name (ARN) of the SSO Instance associated with the permission set.
	InstanceArn pulumi.StringInput `pulumi:"instanceArn"`
	// The name of the SSO Permission Set.
	Name pulumi.StringPtrInput `pulumi:"name"`
	// Key-value map of resource tags.
	Tags pulumi.StringMapInput `pulumi:"tags"`
}

A collection of arguments for invoking getPermissionSet.

func (LookupPermissionSetOutputArgs) ElementType

type LookupPermissionSetResult

type LookupPermissionSetResult struct {
	Arn         string `pulumi:"arn"`
	CreatedDate string `pulumi:"createdDate"`
	// The description of the Permission Set.
	Description string `pulumi:"description"`
	// The provider-assigned unique ID for this managed resource.
	Id          string `pulumi:"id"`
	InstanceArn string `pulumi:"instanceArn"`
	Name        string `pulumi:"name"`
	// The relay state URL used to redirect users within the application during the federation authentication process.
	RelayState string `pulumi:"relayState"`
	// The length of time that the application user sessions are valid in the ISO-8601 standard.
	SessionDuration string `pulumi:"sessionDuration"`
	// Key-value map of resource tags.
	Tags map[string]string `pulumi:"tags"`
}

A collection of values returned by getPermissionSet.

func LookupPermissionSet

func LookupPermissionSet(ctx *pulumi.Context, args *LookupPermissionSetArgs, opts ...pulumi.InvokeOption) (*LookupPermissionSetResult, error)

Use this data source to get a Single Sign-On (SSO) Permission Set.

type LookupPermissionSetResultOutput

type LookupPermissionSetResultOutput struct{ *pulumi.OutputState }

A collection of values returned by getPermissionSet.

func (LookupPermissionSetResultOutput) Arn

func (LookupPermissionSetResultOutput) CreatedDate

func (LookupPermissionSetResultOutput) Description

The description of the Permission Set.

func (LookupPermissionSetResultOutput) ElementType

func (LookupPermissionSetResultOutput) Id

The provider-assigned unique ID for this managed resource.

func (LookupPermissionSetResultOutput) InstanceArn

func (LookupPermissionSetResultOutput) Name

func (LookupPermissionSetResultOutput) RelayState

The relay state URL used to redirect users within the application during the federation authentication process.

func (LookupPermissionSetResultOutput) SessionDuration

The length of time that the application user sessions are valid in the ISO-8601 standard.

func (LookupPermissionSetResultOutput) Tags

Key-value map of resource tags.

func (LookupPermissionSetResultOutput) ToLookupPermissionSetResultOutput

func (o LookupPermissionSetResultOutput) ToLookupPermissionSetResultOutput() LookupPermissionSetResultOutput

func (LookupPermissionSetResultOutput) ToLookupPermissionSetResultOutputWithContext

func (o LookupPermissionSetResultOutput) ToLookupPermissionSetResultOutputWithContext(ctx context.Context) LookupPermissionSetResultOutput

type ManagedPolicyAttachment

type ManagedPolicyAttachment struct {
	pulumi.CustomResourceState

	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringOutput `pulumi:"instanceArn"`
	// The IAM managed policy Amazon Resource Name (ARN) to be attached to the Permission Set.
	ManagedPolicyArn pulumi.StringOutput `pulumi:"managedPolicyArn"`
	// The name of the IAM Managed Policy.
	ManagedPolicyName pulumi.StringOutput `pulumi:"managedPolicyName"`
	// The Amazon Resource Name (ARN) of the Permission Set.
	PermissionSetArn pulumi.StringOutput `pulumi:"permissionSetArn"`
}

Provides an IAM managed policy for a Single Sign-On (SSO) Permission Set resource

> **NOTE:** Creating this resource will automatically [Provision the Permission Set](https://docs.aws.amazon.com/singlesignon/latest/APIReference/API_ProvisionPermissionSet.html) to apply the corresponding updates to all assigned accounts.

## Import

SSO Managed Policy Attachments can be imported using the `managed_policy_arn`, `permission_set_arn`, and `instance_arn` separated by a comma (`,`) e.g.,

```sh

$ pulumi import aws:ssoadmin/managedPolicyAttachment:ManagedPolicyAttachment example arn:aws:iam::aws:policy/AlexaForBusinessDeviceSetup,arn:aws:sso:::permissionSet/ssoins-2938j0x8920sbj72/ps-80383020jr9302rk,arn:aws:sso:::instance/ssoins-2938j0x8920sbj72

```

func GetManagedPolicyAttachment

func GetManagedPolicyAttachment(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *ManagedPolicyAttachmentState, opts ...pulumi.ResourceOption) (*ManagedPolicyAttachment, error)

GetManagedPolicyAttachment gets an existing ManagedPolicyAttachment resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewManagedPolicyAttachment

func NewManagedPolicyAttachment(ctx *pulumi.Context,
	name string, args *ManagedPolicyAttachmentArgs, opts ...pulumi.ResourceOption) (*ManagedPolicyAttachment, error)

NewManagedPolicyAttachment registers a new resource with the given unique name, arguments, and options.

func (*ManagedPolicyAttachment) ElementType

func (*ManagedPolicyAttachment) ElementType() reflect.Type

func (*ManagedPolicyAttachment) ToManagedPolicyAttachmentOutput

func (i *ManagedPolicyAttachment) ToManagedPolicyAttachmentOutput() ManagedPolicyAttachmentOutput

func (*ManagedPolicyAttachment) ToManagedPolicyAttachmentOutputWithContext

func (i *ManagedPolicyAttachment) ToManagedPolicyAttachmentOutputWithContext(ctx context.Context) ManagedPolicyAttachmentOutput

type ManagedPolicyAttachmentArgs

type ManagedPolicyAttachmentArgs struct {
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringInput
	// The IAM managed policy Amazon Resource Name (ARN) to be attached to the Permission Set.
	ManagedPolicyArn pulumi.StringInput
	// The Amazon Resource Name (ARN) of the Permission Set.
	PermissionSetArn pulumi.StringInput
}

The set of arguments for constructing a ManagedPolicyAttachment resource.

func (ManagedPolicyAttachmentArgs) ElementType

type ManagedPolicyAttachmentArray

type ManagedPolicyAttachmentArray []ManagedPolicyAttachmentInput

func (ManagedPolicyAttachmentArray) ElementType

func (ManagedPolicyAttachmentArray) ToManagedPolicyAttachmentArrayOutput

func (i ManagedPolicyAttachmentArray) ToManagedPolicyAttachmentArrayOutput() ManagedPolicyAttachmentArrayOutput

func (ManagedPolicyAttachmentArray) ToManagedPolicyAttachmentArrayOutputWithContext

func (i ManagedPolicyAttachmentArray) ToManagedPolicyAttachmentArrayOutputWithContext(ctx context.Context) ManagedPolicyAttachmentArrayOutput

type ManagedPolicyAttachmentArrayInput

type ManagedPolicyAttachmentArrayInput interface {
	pulumi.Input

	ToManagedPolicyAttachmentArrayOutput() ManagedPolicyAttachmentArrayOutput
	ToManagedPolicyAttachmentArrayOutputWithContext(context.Context) ManagedPolicyAttachmentArrayOutput
}

ManagedPolicyAttachmentArrayInput is an input type that accepts ManagedPolicyAttachmentArray and ManagedPolicyAttachmentArrayOutput values. You can construct a concrete instance of `ManagedPolicyAttachmentArrayInput` via:

ManagedPolicyAttachmentArray{ ManagedPolicyAttachmentArgs{...} }

type ManagedPolicyAttachmentArrayOutput

type ManagedPolicyAttachmentArrayOutput struct{ *pulumi.OutputState }

func (ManagedPolicyAttachmentArrayOutput) ElementType

func (ManagedPolicyAttachmentArrayOutput) Index

func (ManagedPolicyAttachmentArrayOutput) ToManagedPolicyAttachmentArrayOutput

func (o ManagedPolicyAttachmentArrayOutput) ToManagedPolicyAttachmentArrayOutput() ManagedPolicyAttachmentArrayOutput

func (ManagedPolicyAttachmentArrayOutput) ToManagedPolicyAttachmentArrayOutputWithContext

func (o ManagedPolicyAttachmentArrayOutput) ToManagedPolicyAttachmentArrayOutputWithContext(ctx context.Context) ManagedPolicyAttachmentArrayOutput

type ManagedPolicyAttachmentInput

type ManagedPolicyAttachmentInput interface {
	pulumi.Input

	ToManagedPolicyAttachmentOutput() ManagedPolicyAttachmentOutput
	ToManagedPolicyAttachmentOutputWithContext(ctx context.Context) ManagedPolicyAttachmentOutput
}

type ManagedPolicyAttachmentMap

type ManagedPolicyAttachmentMap map[string]ManagedPolicyAttachmentInput

func (ManagedPolicyAttachmentMap) ElementType

func (ManagedPolicyAttachmentMap) ElementType() reflect.Type

func (ManagedPolicyAttachmentMap) ToManagedPolicyAttachmentMapOutput

func (i ManagedPolicyAttachmentMap) ToManagedPolicyAttachmentMapOutput() ManagedPolicyAttachmentMapOutput

func (ManagedPolicyAttachmentMap) ToManagedPolicyAttachmentMapOutputWithContext

func (i ManagedPolicyAttachmentMap) ToManagedPolicyAttachmentMapOutputWithContext(ctx context.Context) ManagedPolicyAttachmentMapOutput

type ManagedPolicyAttachmentMapInput

type ManagedPolicyAttachmentMapInput interface {
	pulumi.Input

	ToManagedPolicyAttachmentMapOutput() ManagedPolicyAttachmentMapOutput
	ToManagedPolicyAttachmentMapOutputWithContext(context.Context) ManagedPolicyAttachmentMapOutput
}

ManagedPolicyAttachmentMapInput is an input type that accepts ManagedPolicyAttachmentMap and ManagedPolicyAttachmentMapOutput values. You can construct a concrete instance of `ManagedPolicyAttachmentMapInput` via:

ManagedPolicyAttachmentMap{ "key": ManagedPolicyAttachmentArgs{...} }

type ManagedPolicyAttachmentMapOutput

type ManagedPolicyAttachmentMapOutput struct{ *pulumi.OutputState }

func (ManagedPolicyAttachmentMapOutput) ElementType

func (ManagedPolicyAttachmentMapOutput) MapIndex

func (ManagedPolicyAttachmentMapOutput) ToManagedPolicyAttachmentMapOutput

func (o ManagedPolicyAttachmentMapOutput) ToManagedPolicyAttachmentMapOutput() ManagedPolicyAttachmentMapOutput

func (ManagedPolicyAttachmentMapOutput) ToManagedPolicyAttachmentMapOutputWithContext

func (o ManagedPolicyAttachmentMapOutput) ToManagedPolicyAttachmentMapOutputWithContext(ctx context.Context) ManagedPolicyAttachmentMapOutput

type ManagedPolicyAttachmentOutput

type ManagedPolicyAttachmentOutput struct{ *pulumi.OutputState }

func (ManagedPolicyAttachmentOutput) ElementType

func (ManagedPolicyAttachmentOutput) InstanceArn added in v5.4.0

The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.

func (ManagedPolicyAttachmentOutput) ManagedPolicyArn added in v5.4.0

func (o ManagedPolicyAttachmentOutput) ManagedPolicyArn() pulumi.StringOutput

The IAM managed policy Amazon Resource Name (ARN) to be attached to the Permission Set.

func (ManagedPolicyAttachmentOutput) ManagedPolicyName added in v5.4.0

func (o ManagedPolicyAttachmentOutput) ManagedPolicyName() pulumi.StringOutput

The name of the IAM Managed Policy.

func (ManagedPolicyAttachmentOutput) PermissionSetArn added in v5.4.0

func (o ManagedPolicyAttachmentOutput) PermissionSetArn() pulumi.StringOutput

The Amazon Resource Name (ARN) of the Permission Set.

func (ManagedPolicyAttachmentOutput) ToManagedPolicyAttachmentOutput

func (o ManagedPolicyAttachmentOutput) ToManagedPolicyAttachmentOutput() ManagedPolicyAttachmentOutput

func (ManagedPolicyAttachmentOutput) ToManagedPolicyAttachmentOutputWithContext

func (o ManagedPolicyAttachmentOutput) ToManagedPolicyAttachmentOutputWithContext(ctx context.Context) ManagedPolicyAttachmentOutput

type ManagedPolicyAttachmentState

type ManagedPolicyAttachmentState struct {
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringPtrInput
	// The IAM managed policy Amazon Resource Name (ARN) to be attached to the Permission Set.
	ManagedPolicyArn pulumi.StringPtrInput
	// The name of the IAM Managed Policy.
	ManagedPolicyName pulumi.StringPtrInput
	// The Amazon Resource Name (ARN) of the Permission Set.
	PermissionSetArn pulumi.StringPtrInput
}

func (ManagedPolicyAttachmentState) ElementType

type PermissionSet

type PermissionSet struct {
	pulumi.CustomResourceState

	// The Amazon Resource Name (ARN) of the Permission Set.
	Arn pulumi.StringOutput `pulumi:"arn"`
	// The date the Permission Set was created in [RFC3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).
	CreatedDate pulumi.StringOutput `pulumi:"createdDate"`
	// The description of the Permission Set.
	Description pulumi.StringPtrOutput `pulumi:"description"`
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringOutput `pulumi:"instanceArn"`
	// The name of the Permission Set.
	Name pulumi.StringOutput `pulumi:"name"`
	// The relay state URL used to redirect users within the application during the federation authentication process.
	RelayState pulumi.StringPtrOutput `pulumi:"relayState"`
	// The length of time that the application user sessions are valid in the ISO-8601 standard. Default: `PT1H`.
	SessionDuration pulumi.StringPtrOutput `pulumi:"sessionDuration"`
	// Key-value map of resource tags. .If configured with a provider `defaultTags` configuration block present, tags with matching keys will overwrite those defined at the provider-level.
	Tags pulumi.StringMapOutput `pulumi:"tags"`
	// A map of tags assigned to the resource, including those inherited from the provider .
	TagsAll pulumi.StringMapOutput `pulumi:"tagsAll"`
}

Provides a Single Sign-On (SSO) Permission Set resource

> **NOTE:** Updating this resource will automatically [Provision the Permission Set](https://docs.aws.amazon.com/singlesignon/latest/APIReference/API_ProvisionPermissionSet.html) to apply the corresponding updates to all assigned accounts.

## Import

SSO Permission Sets can be imported using the `arn` and `instance_arn` separated by a comma (`,`) e.g.,

```sh

$ pulumi import aws:ssoadmin/permissionSet:PermissionSet example arn:aws:sso:::permissionSet/ssoins-2938j0x8920sbj72/ps-80383020jr9302rk,arn:aws:sso:::instance/ssoins-2938j0x8920sbj72

```

func GetPermissionSet

func GetPermissionSet(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PermissionSetState, opts ...pulumi.ResourceOption) (*PermissionSet, error)

GetPermissionSet gets an existing PermissionSet resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPermissionSet

func NewPermissionSet(ctx *pulumi.Context,
	name string, args *PermissionSetArgs, opts ...pulumi.ResourceOption) (*PermissionSet, error)

NewPermissionSet registers a new resource with the given unique name, arguments, and options.

func (*PermissionSet) ElementType

func (*PermissionSet) ElementType() reflect.Type

func (*PermissionSet) ToPermissionSetOutput

func (i *PermissionSet) ToPermissionSetOutput() PermissionSetOutput

func (*PermissionSet) ToPermissionSetOutputWithContext

func (i *PermissionSet) ToPermissionSetOutputWithContext(ctx context.Context) PermissionSetOutput

type PermissionSetArgs

type PermissionSetArgs struct {
	// The description of the Permission Set.
	Description pulumi.StringPtrInput
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringInput
	// The name of the Permission Set.
	Name pulumi.StringPtrInput
	// The relay state URL used to redirect users within the application during the federation authentication process.
	RelayState pulumi.StringPtrInput
	// The length of time that the application user sessions are valid in the ISO-8601 standard. Default: `PT1H`.
	SessionDuration pulumi.StringPtrInput
	// Key-value map of resource tags. .If configured with a provider `defaultTags` configuration block present, tags with matching keys will overwrite those defined at the provider-level.
	Tags pulumi.StringMapInput
}

The set of arguments for constructing a PermissionSet resource.

func (PermissionSetArgs) ElementType

func (PermissionSetArgs) ElementType() reflect.Type

type PermissionSetArray

type PermissionSetArray []PermissionSetInput

func (PermissionSetArray) ElementType

func (PermissionSetArray) ElementType() reflect.Type

func (PermissionSetArray) ToPermissionSetArrayOutput

func (i PermissionSetArray) ToPermissionSetArrayOutput() PermissionSetArrayOutput

func (PermissionSetArray) ToPermissionSetArrayOutputWithContext

func (i PermissionSetArray) ToPermissionSetArrayOutputWithContext(ctx context.Context) PermissionSetArrayOutput

type PermissionSetArrayInput

type PermissionSetArrayInput interface {
	pulumi.Input

	ToPermissionSetArrayOutput() PermissionSetArrayOutput
	ToPermissionSetArrayOutputWithContext(context.Context) PermissionSetArrayOutput
}

PermissionSetArrayInput is an input type that accepts PermissionSetArray and PermissionSetArrayOutput values. You can construct a concrete instance of `PermissionSetArrayInput` via:

PermissionSetArray{ PermissionSetArgs{...} }

type PermissionSetArrayOutput

type PermissionSetArrayOutput struct{ *pulumi.OutputState }

func (PermissionSetArrayOutput) ElementType

func (PermissionSetArrayOutput) ElementType() reflect.Type

func (PermissionSetArrayOutput) Index

func (PermissionSetArrayOutput) ToPermissionSetArrayOutput

func (o PermissionSetArrayOutput) ToPermissionSetArrayOutput() PermissionSetArrayOutput

func (PermissionSetArrayOutput) ToPermissionSetArrayOutputWithContext

func (o PermissionSetArrayOutput) ToPermissionSetArrayOutputWithContext(ctx context.Context) PermissionSetArrayOutput

type PermissionSetInlinePolicy

type PermissionSetInlinePolicy struct {
	pulumi.CustomResourceState

	// The IAM inline policy to attach to a Permission Set.
	InlinePolicy pulumi.StringOutput `pulumi:"inlinePolicy"`
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringOutput `pulumi:"instanceArn"`
	// The Amazon Resource Name (ARN) of the Permission Set.
	PermissionSetArn pulumi.StringOutput `pulumi:"permissionSetArn"`
}

Provides an IAM inline policy for a Single Sign-On (SSO) Permission Set resource

> **NOTE:** AWS Single Sign-On (SSO) only supports one IAM inline policy per `ssoadmin.PermissionSet` resource. Creating or updating this resource will automatically [Provision the Permission Set](https://docs.aws.amazon.com/singlesignon/latest/APIReference/API_ProvisionPermissionSet.html) to apply the corresponding updates to all assigned accounts.

## Import

SSO Permission Set Inline Policies can be imported using the `permission_set_arn` and `instance_arn` separated by a comma (`,`) e.g.,

```sh

$ pulumi import aws:ssoadmin/permissionSetInlinePolicy:PermissionSetInlinePolicy example arn:aws:sso:::permissionSet/ssoins-2938j0x8920sbj72/ps-80383020jr9302rk,arn:aws:sso:::instance/ssoins-2938j0x8920sbj72

```

func GetPermissionSetInlinePolicy

func GetPermissionSetInlinePolicy(ctx *pulumi.Context,
	name string, id pulumi.IDInput, state *PermissionSetInlinePolicyState, opts ...pulumi.ResourceOption) (*PermissionSetInlinePolicy, error)

GetPermissionSetInlinePolicy gets an existing PermissionSetInlinePolicy resource's state with the given name, ID, and optional state properties that are used to uniquely qualify the lookup (nil if not required).

func NewPermissionSetInlinePolicy

func NewPermissionSetInlinePolicy(ctx *pulumi.Context,
	name string, args *PermissionSetInlinePolicyArgs, opts ...pulumi.ResourceOption) (*PermissionSetInlinePolicy, error)

NewPermissionSetInlinePolicy registers a new resource with the given unique name, arguments, and options.

func (*PermissionSetInlinePolicy) ElementType

func (*PermissionSetInlinePolicy) ElementType() reflect.Type

func (*PermissionSetInlinePolicy) ToPermissionSetInlinePolicyOutput

func (i *PermissionSetInlinePolicy) ToPermissionSetInlinePolicyOutput() PermissionSetInlinePolicyOutput

func (*PermissionSetInlinePolicy) ToPermissionSetInlinePolicyOutputWithContext

func (i *PermissionSetInlinePolicy) ToPermissionSetInlinePolicyOutputWithContext(ctx context.Context) PermissionSetInlinePolicyOutput

type PermissionSetInlinePolicyArgs

type PermissionSetInlinePolicyArgs struct {
	// The IAM inline policy to attach to a Permission Set.
	InlinePolicy pulumi.StringInput
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringInput
	// The Amazon Resource Name (ARN) of the Permission Set.
	PermissionSetArn pulumi.StringInput
}

The set of arguments for constructing a PermissionSetInlinePolicy resource.

func (PermissionSetInlinePolicyArgs) ElementType

type PermissionSetInlinePolicyArray

type PermissionSetInlinePolicyArray []PermissionSetInlinePolicyInput

func (PermissionSetInlinePolicyArray) ElementType

func (PermissionSetInlinePolicyArray) ToPermissionSetInlinePolicyArrayOutput

func (i PermissionSetInlinePolicyArray) ToPermissionSetInlinePolicyArrayOutput() PermissionSetInlinePolicyArrayOutput

func (PermissionSetInlinePolicyArray) ToPermissionSetInlinePolicyArrayOutputWithContext

func (i PermissionSetInlinePolicyArray) ToPermissionSetInlinePolicyArrayOutputWithContext(ctx context.Context) PermissionSetInlinePolicyArrayOutput

type PermissionSetInlinePolicyArrayInput

type PermissionSetInlinePolicyArrayInput interface {
	pulumi.Input

	ToPermissionSetInlinePolicyArrayOutput() PermissionSetInlinePolicyArrayOutput
	ToPermissionSetInlinePolicyArrayOutputWithContext(context.Context) PermissionSetInlinePolicyArrayOutput
}

PermissionSetInlinePolicyArrayInput is an input type that accepts PermissionSetInlinePolicyArray and PermissionSetInlinePolicyArrayOutput values. You can construct a concrete instance of `PermissionSetInlinePolicyArrayInput` via:

PermissionSetInlinePolicyArray{ PermissionSetInlinePolicyArgs{...} }

type PermissionSetInlinePolicyArrayOutput

type PermissionSetInlinePolicyArrayOutput struct{ *pulumi.OutputState }

func (PermissionSetInlinePolicyArrayOutput) ElementType

func (PermissionSetInlinePolicyArrayOutput) Index

func (PermissionSetInlinePolicyArrayOutput) ToPermissionSetInlinePolicyArrayOutput

func (o PermissionSetInlinePolicyArrayOutput) ToPermissionSetInlinePolicyArrayOutput() PermissionSetInlinePolicyArrayOutput

func (PermissionSetInlinePolicyArrayOutput) ToPermissionSetInlinePolicyArrayOutputWithContext

func (o PermissionSetInlinePolicyArrayOutput) ToPermissionSetInlinePolicyArrayOutputWithContext(ctx context.Context) PermissionSetInlinePolicyArrayOutput

type PermissionSetInlinePolicyInput

type PermissionSetInlinePolicyInput interface {
	pulumi.Input

	ToPermissionSetInlinePolicyOutput() PermissionSetInlinePolicyOutput
	ToPermissionSetInlinePolicyOutputWithContext(ctx context.Context) PermissionSetInlinePolicyOutput
}

type PermissionSetInlinePolicyMap

type PermissionSetInlinePolicyMap map[string]PermissionSetInlinePolicyInput

func (PermissionSetInlinePolicyMap) ElementType

func (PermissionSetInlinePolicyMap) ToPermissionSetInlinePolicyMapOutput

func (i PermissionSetInlinePolicyMap) ToPermissionSetInlinePolicyMapOutput() PermissionSetInlinePolicyMapOutput

func (PermissionSetInlinePolicyMap) ToPermissionSetInlinePolicyMapOutputWithContext

func (i PermissionSetInlinePolicyMap) ToPermissionSetInlinePolicyMapOutputWithContext(ctx context.Context) PermissionSetInlinePolicyMapOutput

type PermissionSetInlinePolicyMapInput

type PermissionSetInlinePolicyMapInput interface {
	pulumi.Input

	ToPermissionSetInlinePolicyMapOutput() PermissionSetInlinePolicyMapOutput
	ToPermissionSetInlinePolicyMapOutputWithContext(context.Context) PermissionSetInlinePolicyMapOutput
}

PermissionSetInlinePolicyMapInput is an input type that accepts PermissionSetInlinePolicyMap and PermissionSetInlinePolicyMapOutput values. You can construct a concrete instance of `PermissionSetInlinePolicyMapInput` via:

PermissionSetInlinePolicyMap{ "key": PermissionSetInlinePolicyArgs{...} }

type PermissionSetInlinePolicyMapOutput

type PermissionSetInlinePolicyMapOutput struct{ *pulumi.OutputState }

func (PermissionSetInlinePolicyMapOutput) ElementType

func (PermissionSetInlinePolicyMapOutput) MapIndex

func (PermissionSetInlinePolicyMapOutput) ToPermissionSetInlinePolicyMapOutput

func (o PermissionSetInlinePolicyMapOutput) ToPermissionSetInlinePolicyMapOutput() PermissionSetInlinePolicyMapOutput

func (PermissionSetInlinePolicyMapOutput) ToPermissionSetInlinePolicyMapOutputWithContext

func (o PermissionSetInlinePolicyMapOutput) ToPermissionSetInlinePolicyMapOutputWithContext(ctx context.Context) PermissionSetInlinePolicyMapOutput

type PermissionSetInlinePolicyOutput

type PermissionSetInlinePolicyOutput struct{ *pulumi.OutputState }

func (PermissionSetInlinePolicyOutput) ElementType

func (PermissionSetInlinePolicyOutput) InlinePolicy added in v5.4.0

The IAM inline policy to attach to a Permission Set.

func (PermissionSetInlinePolicyOutput) InstanceArn added in v5.4.0

The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.

func (PermissionSetInlinePolicyOutput) PermissionSetArn added in v5.4.0

The Amazon Resource Name (ARN) of the Permission Set.

func (PermissionSetInlinePolicyOutput) ToPermissionSetInlinePolicyOutput

func (o PermissionSetInlinePolicyOutput) ToPermissionSetInlinePolicyOutput() PermissionSetInlinePolicyOutput

func (PermissionSetInlinePolicyOutput) ToPermissionSetInlinePolicyOutputWithContext

func (o PermissionSetInlinePolicyOutput) ToPermissionSetInlinePolicyOutputWithContext(ctx context.Context) PermissionSetInlinePolicyOutput

type PermissionSetInlinePolicyState

type PermissionSetInlinePolicyState struct {
	// The IAM inline policy to attach to a Permission Set.
	InlinePolicy pulumi.StringPtrInput
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringPtrInput
	// The Amazon Resource Name (ARN) of the Permission Set.
	PermissionSetArn pulumi.StringPtrInput
}

func (PermissionSetInlinePolicyState) ElementType

type PermissionSetInput

type PermissionSetInput interface {
	pulumi.Input

	ToPermissionSetOutput() PermissionSetOutput
	ToPermissionSetOutputWithContext(ctx context.Context) PermissionSetOutput
}

type PermissionSetMap

type PermissionSetMap map[string]PermissionSetInput

func (PermissionSetMap) ElementType

func (PermissionSetMap) ElementType() reflect.Type

func (PermissionSetMap) ToPermissionSetMapOutput

func (i PermissionSetMap) ToPermissionSetMapOutput() PermissionSetMapOutput

func (PermissionSetMap) ToPermissionSetMapOutputWithContext

func (i PermissionSetMap) ToPermissionSetMapOutputWithContext(ctx context.Context) PermissionSetMapOutput

type PermissionSetMapInput

type PermissionSetMapInput interface {
	pulumi.Input

	ToPermissionSetMapOutput() PermissionSetMapOutput
	ToPermissionSetMapOutputWithContext(context.Context) PermissionSetMapOutput
}

PermissionSetMapInput is an input type that accepts PermissionSetMap and PermissionSetMapOutput values. You can construct a concrete instance of `PermissionSetMapInput` via:

PermissionSetMap{ "key": PermissionSetArgs{...} }

type PermissionSetMapOutput

type PermissionSetMapOutput struct{ *pulumi.OutputState }

func (PermissionSetMapOutput) ElementType

func (PermissionSetMapOutput) ElementType() reflect.Type

func (PermissionSetMapOutput) MapIndex

func (PermissionSetMapOutput) ToPermissionSetMapOutput

func (o PermissionSetMapOutput) ToPermissionSetMapOutput() PermissionSetMapOutput

func (PermissionSetMapOutput) ToPermissionSetMapOutputWithContext

func (o PermissionSetMapOutput) ToPermissionSetMapOutputWithContext(ctx context.Context) PermissionSetMapOutput

type PermissionSetOutput

type PermissionSetOutput struct{ *pulumi.OutputState }

func (PermissionSetOutput) Arn added in v5.4.0

The Amazon Resource Name (ARN) of the Permission Set.

func (PermissionSetOutput) CreatedDate added in v5.4.0

func (o PermissionSetOutput) CreatedDate() pulumi.StringOutput

The date the Permission Set was created in [RFC3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).

func (PermissionSetOutput) Description added in v5.4.0

func (o PermissionSetOutput) Description() pulumi.StringPtrOutput

The description of the Permission Set.

func (PermissionSetOutput) ElementType

func (PermissionSetOutput) ElementType() reflect.Type

func (PermissionSetOutput) InstanceArn added in v5.4.0

func (o PermissionSetOutput) InstanceArn() pulumi.StringOutput

The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.

func (PermissionSetOutput) Name added in v5.4.0

The name of the Permission Set.

func (PermissionSetOutput) RelayState added in v5.4.0

The relay state URL used to redirect users within the application during the federation authentication process.

func (PermissionSetOutput) SessionDuration added in v5.4.0

func (o PermissionSetOutput) SessionDuration() pulumi.StringPtrOutput

The length of time that the application user sessions are valid in the ISO-8601 standard. Default: `PT1H`.

func (PermissionSetOutput) Tags added in v5.4.0

Key-value map of resource tags. .If configured with a provider `defaultTags` configuration block present, tags with matching keys will overwrite those defined at the provider-level.

func (PermissionSetOutput) TagsAll added in v5.4.0

A map of tags assigned to the resource, including those inherited from the provider .

func (PermissionSetOutput) ToPermissionSetOutput

func (o PermissionSetOutput) ToPermissionSetOutput() PermissionSetOutput

func (PermissionSetOutput) ToPermissionSetOutputWithContext

func (o PermissionSetOutput) ToPermissionSetOutputWithContext(ctx context.Context) PermissionSetOutput

type PermissionSetState

type PermissionSetState struct {
	// The Amazon Resource Name (ARN) of the Permission Set.
	Arn pulumi.StringPtrInput
	// The date the Permission Set was created in [RFC3339 format](https://tools.ietf.org/html/rfc3339#section-5.8).
	CreatedDate pulumi.StringPtrInput
	// The description of the Permission Set.
	Description pulumi.StringPtrInput
	// The Amazon Resource Name (ARN) of the SSO Instance under which the operation will be executed.
	InstanceArn pulumi.StringPtrInput
	// The name of the Permission Set.
	Name pulumi.StringPtrInput
	// The relay state URL used to redirect users within the application during the federation authentication process.
	RelayState pulumi.StringPtrInput
	// The length of time that the application user sessions are valid in the ISO-8601 standard. Default: `PT1H`.
	SessionDuration pulumi.StringPtrInput
	// Key-value map of resource tags. .If configured with a provider `defaultTags` configuration block present, tags with matching keys will overwrite those defined at the provider-level.
	Tags pulumi.StringMapInput
	// A map of tags assigned to the resource, including those inherited from the provider .
	TagsAll pulumi.StringMapInput
}

func (PermissionSetState) ElementType

func (PermissionSetState) ElementType() reflect.Type

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL