1.0.2 • Published 3 years ago

aws-sso-mapper v1.0.2

Weekly downloads
-
License
Apache-2.0
Repository
github
Last release
3 years ago

Release npm

aws-sso-mapper module

Use this CDK module to create and map AWS SSO PermissionSets using principal names rather than principal ids

Stability: Experimental

API Reference

class AwsSSOMapper

Initializer

new AwsSSOMapper(scope: Construct, id: string)
  • scope (Construct) - represents the scope for all the resources.
  • id (string) - this is a a scope-unique id.

Properties

NameTypeDescription
identityStoreIdstringAWS SSO Identity Store id
instanceArnstringAWS SSO instance ARN

Methods

addPermissionSet(id, props)

Create new PermissionSet.

addPermissionSet(id: string, props: IAddPermissionSetProps): PermissionSet

Returns:

class PermissionSet

Initializer

new PermissionSet(scope: Construct, id: string, props: IPermissionSetProps)
  • scope (Construct) - represents the scope for all the resources.
  • id (string) - this is a a scope-unique id.
  • props (IPermissionSetProps) - user provided props for the construct.

Methods

assign(props)

Assign principal to a specific AWS Account.

assign(props: IAssignProps): CfnAssignment

Returns:

interface IAddPermissionSetProps

Properties

NameTypeDescription
namestringThe Permission Set name.
description?stringThe Permission Set description.Default: name
inlinePolicy?PolicyDocumentThe Permission Set inline policy.Default: No inline policy
managedPolicies?Array<IManagedPolicy>A list with AWS managed policies to apply to the Permission Set.Default: No managed policies
sessionDuration?DurationThe Permission Set session duration.Default: 4 hours

interface IAssignProps

Properties

NameTypeDescription
namestringThe principal name.
targetIdstringThe target id (AWS Account id).
typestringThe principal type (USER/GROUP).

interface IPermissionSetProps

Properties

NameTypeDescription
identityStoreIdstringThe AWS SSO Identity Store id.
instanceArnstringThe AWS SSO instance ARN.
namestringThe Permission Set name.
description?stringThe Permission Set description.Default: name
inlinePolicy?PolicyDocumentThe Permission Set inline policy.Default: No inline policy
managedPolicies?Array<IManagedPolicy>A list with AWS managed policies to apply to the Permission Set.Default: No managed policies
sessionDuration?DurationThe Permission Set session duration.Default: 4 hours
cdk
@aws-cdk/aws-iam@aws-cdk/aws-sso@aws-cdk/core@aws-cdk/custom-resources
@infinitebrahmanuniverse/nolb-aws-s@everything-registry/sub-chunk-1194@zalastax/nolb-aws-s
1.0.2

3 years ago

1.0.1

3 years ago