Uses of Package
software.amazon.awscdk.services.iam
Package
Description
Continuous Integration / Continuous Delivery for CDK Applications
AWS CDK Custom Resources
CDK Pipelines
AWS Amplify Construct Library
Amazon API Gateway Construct Library
AWS::APIGatewayv2 Construct Library
AWS Auto Scaling Construct Library
AWS App Mesh Construct Library
AWS::AppRunner Construct Library
AWS AppSync Construct Library
Amazon EC2 Auto Scaling Construct Library
AWS Backup Construct Library
AWS Batch Construct Library
AWS Certificate Manager Construct Library
AWS::Chatbot Construct Library
Amazon CloudFront Construct Library
Amazon CloudWatch Construct Library
AWS CodeBuild Construct Library
AWS CodeCommit Construct Library
AWS CodeDeploy Construct Library
AWS::CodeGuruProfiler Construct Library
AWS CodePipeline Construct Library
AWS CodePipeline Actions
Amazon Cognito Construct Library
Amazon Cognito Identity Pool Construct Library
AWS Config Construct Library
Amazon DocumentDB Construct Library
Amazon DynamoDB Construct Library
Amazon EC2 Construct Library
Amazon ECR Construct Library
Amazon ECS Construct Library
CDK Construct library for higher-level ECS Constructs
Amazon Elastic File System Construct Library
Amazon EKS Construct Library
Amazon EKS Construct Library
Amazon OpenSearch Service Construct Library
Amazon EventBridge Construct Library
Event Targets for Amazon EventBridge
AWS Glue Construct Library
AWS Identity and Access Management Construct Library
Actions for AWS IoT Rule
AWS::IoTEvents Construct Library
Amazon Kinesis Construct Library
Kinesis Analytics Flink
Amazon Kinesis Data Firehose Construct Library
Amazon Kinesis Data Firehose Destinations Library
AWS Key Management Service Construct Library
AWS Lambda Construct Library
Amazon Lambda Golang Library
Amazon Lambda Node.js Library
Amazon Lambda Python Library
Amazon CloudWatch Logs Construct Library
AWS CloudWatch Logs Subscription Destination Library
Amazon Neptune Construct Library
Amazon OpenSearch Service Construct Library
Amazon Relational Database Service Construct Library
Amazon Redshift Construct Library
Amazon Route53 Construct Library
Amazon S3 Construct Library
AWS CDK Assets
AWS S3 Deployment Construct Library
AWS Secrets Manager Construct Library
AWS Service Catalog Construct Library
Amazon Simple Notification Service Construct Library
Amazon Simple Queue Service Construct Library
AWS Systems Manager Construct Library
AWS Step Functions Construct Library
Tasks for AWS Step Functions
Amazon CloudWatch Synthetics Construct Library
Triggers
-
ClassDescriptionA Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionAny object that has an associated principal that a permission can be granted to.Represents a logical IAM principal.A Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionAny object that has an associated principal that a permission can be granted to.Represents a logical IAM principal.A Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionAny object that has an associated principal that a permission can be granted to.Represents a logical IAM principal.A Role object.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.A PolicyDocument is a collection of statements.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.
-
ClassDescriptionA Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.
-
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.Represents a logical IAM principal.A Role object.
-
ClassDescriptionAny object that has an associated principal that a permission can be granted to.Internal default implementation for
IGrantable
.Represents a logical IAM principal.A Role object.Represents a statement in an IAM policy document. -
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.Represents a logical IAM principal.A Role object.A PolicyDocument is a collection of statements.Represents a statement in an IAM policy document.
-
-
-
ClassDescriptionAny object that has an associated principal that a permission can be granted to.Internal default implementation for
IGrantable
.Represents a logical IAM principal.A Role object.Represents a statement in an IAM policy document. -
ClassDescriptionAny object that has an associated principal that a permission can be granted to.Internal default implementation for
IGrantable
.Represents a logical IAM principal. -
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.Represents a logical IAM principal.A Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.Internal default implementation for
IGrantable
.A managed policy.Represents a logical IAM principal.A Role object.Managed policy.Represents a statement in an IAM policy document. -
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.
-
ClassDescriptionA Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionAny object that has an associated principal that a permission can be granted to.A Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.
-
ClassDescriptionRepresents an IAM OpenID Connect provider.A Role object.A SAML provider.
-
-
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.
-
ClassDescriptionSpecify a principal by the Amazon Resource Name (ARN).Result of a grant() operation.Any object that has an associated principal that a permission can be granted to.Internal default implementation for
IGrantable
.Represents a logical IAM principal.A Role object.A SAML provider.A PolicyDocument is a collection of statements.Represents a statement in an IAM policy document. -
ClassDescriptionResult of calling addToResourcePolicy.Result of a grant() operation.Any object that has an associated principal that a permission can be granted to.Represents a statement in an IAM policy document.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.Represents a statement in an IAM policy document.
-
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.
-
ClassDescriptionResult of calling
addToPrincipalPolicy
.Any object that has an associated principal that a permission can be granted to.Represents an IAM OpenID Connect provider.Represents a logical IAM principal.A Role object.Represents an IAM user.IAM OIDC identity providers are entities in IAM that describe an external identity provider (IdP) service that supports the OpenID Connect (OIDC) standard, such as Google or Salesforce.Represents a statement in an IAM policy document.A collection of the fields in a PolicyStatement that can be used to identify a principal.IAM Role. -
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.
-
ClassDescriptionA Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.Internal default implementation for
IGrantable
.Represents a logical IAM principal.A Role object. -
ClassDescriptionDefine a new IAM Access Key.A fluent builder for
AccessKey
.Properties for defining an IAM access key.A builder forAccessKeyProps
Valid statuses for an IAM Access Key.Specify AWS account ID as the principal entity in a policy to delegate authority to the account.Result of callingaddToPrincipalPolicy
.A builder forAddToPrincipalPolicyResult
Result of calling addToResourcePolicy.A builder forAddToResourcePolicyResult
A principal representing all AWS identities in all accounts.Specify a principal by the Amazon Resource Name (ARN).A CloudFormationAWS::IAM::AccessKey
.A fluent builder forCfnAccessKey
.Properties for defining aCfnAccessKey
.A builder forCfnAccessKeyProps
A CloudFormationAWS::IAM::Group
.A fluent builder forCfnGroup
.Contains information about an attached policy.A builder forCfnGroup.PolicyProperty
Properties for defining aCfnGroup
.A builder forCfnGroupProps
A CloudFormationAWS::IAM::InstanceProfile
.A fluent builder forCfnInstanceProfile
.Properties for defining aCfnInstanceProfile
.A builder forCfnInstanceProfileProps
A CloudFormationAWS::IAM::ManagedPolicy
.A fluent builder forCfnManagedPolicy
.Properties for defining aCfnManagedPolicy
.A builder forCfnManagedPolicyProps
A CloudFormationAWS::IAM::OIDCProvider
.A fluent builder forCfnOIDCProvider
.Properties for defining aCfnOIDCProvider
.A builder forCfnOIDCProviderProps
A CloudFormationAWS::IAM::Policy
.A fluent builder forCfnPolicy
.Properties for defining aCfnPolicy
.A builder forCfnPolicyProps
A CloudFormationAWS::IAM::Role
.A fluent builder forCfnRole
.Contains information about an attached policy.A builder forCfnRole.PolicyProperty
Properties for defining aCfnRole
.A builder forCfnRoleProps
A CloudFormationAWS::IAM::SAMLProvider
.A fluent builder forCfnSAMLProvider
.Properties for defining aCfnSAMLProvider
.A builder forCfnSAMLProviderProps
A CloudFormationAWS::IAM::ServerCertificate
.A fluent builder forCfnServerCertificate
.Properties for defining aCfnServerCertificate
.A builder forCfnServerCertificateProps
A CloudFormationAWS::IAM::ServiceLinkedRole
.A fluent builder forCfnServiceLinkedRole
.Properties for defining aCfnServiceLinkedRole
.A builder forCfnServiceLinkedRoleProps
A CloudFormationAWS::IAM::User
.A fluent builder forCfnUser
.Creates a password for the specified user, giving the user the ability to access AWS services through the AWS Management Console .A builder forCfnUser.LoginProfileProperty
Contains information about an attached policy.A builder forCfnUser.PolicyProperty
Properties for defining aCfnUser
.A builder forCfnUserProps
A CloudFormationAWS::IAM::UserToGroupAddition
.A fluent builder forCfnUserToGroupAddition
.Properties for defining aCfnUserToGroupAddition
.A builder forCfnUserToGroupAdditionProps
A CloudFormationAWS::IAM::VirtualMFADevice
.A fluent builder forCfnVirtualMFADevice
.Properties for defining aCfnVirtualMFADevice
.A builder forCfnVirtualMFADeviceProps
Basic options for a grant operation.A builder forCommonGrantOptions
Represents a principal that has multiple types of principals.The Effect element of an IAM policy.Principal entity that represents a federated identity provider such as Amazon Cognito, that can be used to provide temporary security credentials to users who have been authenticated.Options allowing customizing the behavior ofinvalid @link
Role.fromRoleArn
A builder forFromRoleArnOptions
Result of a grant() operation.Options for a grant operation to both identity and resource.A builder forGrantOnPrincipalAndResourceOptions
Options for a grant operation that only applies to principals.A builder forGrantOnPrincipalOptions
Options for a grant operation.A builder forGrantWithResourceOptions
An IAM Group (collection of IAM users) lets you specify permissions for multiple users, which can make it easier to manage permissions for those users.A fluent builder forGroup
.Properties for defining an IAM group.A builder forGroupProps
Represents an IAM Access Key.Internal default implementation forIAccessKey
.A type of principal that has more control over its own representation in AssumeRolePolicyDocuments.Internal default implementation forIAssumeRolePrincipal
.Interface for principals that can be compared.Internal default implementation forIComparablePrincipal
.Any object that has an associated principal that a permission can be granted to.Internal default implementation forIGrantable
.Represents an IAM Group.Internal default implementation forIGroup
.A construct that represents an IAM principal, such as a user, group or role.Internal default implementation forIIdentity
.A managed policy.Internal default implementation forIManagedPolicy
.Represents an IAM OpenID Connect provider.Internal default implementation forIOpenIdConnectProvider
.Represents an IAM Policy.Internal default implementation forIPolicy
.Represents a logical IAM principal.Internal default implementation forIPrincipal
.A resource with a resource policy that can be added to.Internal default implementation forIResourceWithPolicy
.A Role object.Internal default implementation forIRole
.A SAML provider.Internal default implementation forISamlProvider
.Represents an IAM user.Internal default implementation forIUser
.An IAM role that only gets attached to the construct tree once it gets used, not before.A fluent builder forLazyRole
.Properties for defining a LazyRole.A builder forLazyRoleProps
Managed policy.A fluent builder forManagedPolicy
.Properties for defining an IAM managed policy.A builder forManagedPolicyProps
IAM OIDC identity providers are entities in IAM that describe an external identity provider (IdP) service that supports the OpenID Connect (OIDC) standard, such as Google or Salesforce.A fluent builder forOpenIdConnectProvider
.Initialization properties forOpenIdConnectProvider
.A builder forOpenIdConnectProviderProps
Modify the Permissions Boundaries of Users and Roles in a construct tree.The AWS::IAM::Policy resource associates an IAM policy with IAM users, roles, or groups.A fluent builder forPolicy
.A PolicyDocument is a collection of statements.A fluent builder forPolicyDocument
.Properties for a new PolicyDocument.A builder forPolicyDocumentProps
Properties for defining an IAM inline policy document.A builder forPolicyProps
Represents a statement in an IAM policy document.A fluent builder forPolicyStatement
.Interface for creating a policy statement.A builder forPolicyStatementProps
Base class for policy principals.A collection of the fields in a PolicyStatement that can be used to identify a principal.IAM Role.A fluent builder forRole
.Properties for defining an IAM Role.A builder forRoleProps
A SAML metadata document.Principal entity that represents a SAML federated identity provider.A SAML provider.A fluent builder forSamlProvider
.Properties for a SAML provider.A builder forSamlProviderProps
An IAM principal that represents an AWS service (i.e.A fluent builder forServicePrincipal
.Options for a service principal.A builder forServicePrincipalOpts
A principal for use in resources that need to have a role but it's unknown.A fluent builder forUnknownPrincipal
.Properties for an UnknownPrincipal.A builder forUnknownPrincipalProps
Define a new IAM user.A fluent builder forUser
.Represents a user defined outside of this stack.A builder forUserAttributes
Properties for defining an IAM user.A builder forUserProps
A principal that represents a federated identity provider as Web Identity such as Cognito, Amazon, Facebook, Google, etc.Options for thewithoutPolicyUpdates()
modifier of a Role.A builder forWithoutPolicyUpdatesOptions
-
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.
-
ClassDescriptionAny object that has an associated principal that a permission can be granted to.Internal default implementation for
IGrantable
.Represents a logical IAM principal.A Role object.Represents a statement in an IAM policy document. -
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.Internal default implementation for
IGrantable
.Represents a logical IAM principal.A Role object. -
-
ClassDescriptionResult of calling addToResourcePolicy.Result of a grant() operation.A type of principal that has more control over its own representation in AssumeRolePolicyDocuments.Interface for principals that can be compared.Any object that has an associated principal that a permission can be granted to.Represents a logical IAM principal.A PolicyDocument is a collection of statements.Represents a statement in an IAM policy document.Base class for policy principals.A collection of the fields in a PolicyStatement that can be used to identify a principal.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.Internal default implementation for
IGrantable
.Represents a logical IAM principal.A Role object.Represents a statement in an IAM policy document. -
ClassDescriptionAny object that has an associated principal that a permission can be granted to.A Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionAny object that has an associated principal that a permission can be granted to.A Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionAny object that has an associated principal that a permission can be granted to.A Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionResult of calling addToResourcePolicy.Result of a grant() operation.Any object that has an associated principal that a permission can be granted to.A resource with a resource policy that can be added to.Internal default implementation for
IResourceWithPolicy
.A Role object.A PolicyDocument is a collection of statements.Represents a statement in an IAM policy document. -
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.Represents a statement in an IAM policy document.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.
-
-
ClassDescriptionRepresents a logical IAM principal.A Role object.IAM Role.
-
ClassDescriptionResult of calling addToResourcePolicy.Result of a grant() operation.Any object that has an associated principal that a permission can be granted to.A Role object.A PolicyDocument is a collection of statements.Represents a statement in an IAM policy document.
-
ClassDescriptionAny object that has an associated principal that a permission can be granted to.
-
-
ClassDescriptionResult of calling addToResourcePolicy.Result of a grant() operation.Any object that has an associated principal that a permission can be granted to.A PolicyDocument is a collection of statements.Represents a statement in an IAM policy document.
-
-
ClassDescriptionResult of calling addToResourcePolicy.Result of a grant() operation.Any object that has an associated principal that a permission can be granted to.A PolicyDocument is a collection of statements.Represents a statement in an IAM policy document.
-
ClassDescriptionResult of calling addToResourcePolicy.Result of a grant() operation.Any object that has an associated principal that a permission can be granted to.A PolicyDocument is a collection of statements.Represents a statement in an IAM policy document.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.
-
ClassDescriptionResult of a grant() operation.Any object that has an associated principal that a permission can be granted to.Internal default implementation for
IGrantable
.Represents a logical IAM principal.A Role object.Represents a statement in an IAM policy document. -
ClassDescriptionAny object that has an associated principal that a permission can be granted to.Internal default implementation for
IGrantable
.Represents a logical IAM principal.A Role object.Represents a statement in an IAM policy document. -
-
ClassDescriptionAny object that has an associated principal that a permission can be granted to.A Role object.Represents a statement in an IAM policy document.