Package software.amazon.awscdk.services.sso

Class CfnPermissionSet

java.lang.Object

software.amazon.jsii.JsiiObject

software.constructs.Construct

software.amazon.awscdk.CfnElement

software.amazon.awscdk.CfnRefElement

software.amazon.awscdk.CfnResource

software.amazon.awscdk.services.sso.CfnPermissionSet

All Implemented Interfaces:

IInspectable, ITaggable, software.amazon.jsii.JsiiSerializable, software.constructs.IConstruct, software.constructs.IDependable

@Generated(value="jsii-pacmak/1.98.0 (build 00b106d)",
           date="2024-05-08T21:35:14.314Z")
@Stability(Stable)
public class CfnPermissionSet
extends CfnResource
implements IInspectable, ITaggable

Specifies a permission set within a specified IAM Identity Center instance.

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.sso.*;
 Object inlinePolicy;
 CfnPermissionSet cfnPermissionSet = CfnPermissionSet.Builder.create(this, "MyCfnPermissionSet")
         .instanceArn("instanceArn")
         .name("name")
         // the properties below are optional
         .customerManagedPolicyReferences(List.of(CustomerManagedPolicyReferenceProperty.builder()
                 .name("name")
                 // the properties below are optional
                 .path("path")
                 .build()))
         .description("description")
         .inlinePolicy(inlinePolicy)
         .managedPolicies(List.of("managedPolicies"))
         .permissionsBoundary(PermissionsBoundaryProperty.builder()
                 .customerManagedPolicyReference(CustomerManagedPolicyReferenceProperty.builder()
                         .name("name")
                         // the properties below are optional
                         .path("path")
                         .build())
                 .managedPolicyArn("managedPolicyArn")
                 .build())
         .relayStateType("relayStateType")
         .sessionDuration("sessionDuration")
         .tags(List.of(CfnTag.builder()
                 .key("key")
                 .value("value")
                 .build()))
         .build();
 

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-sso-permissionset.html

Nested Class Summary

Nested Classes

Modifier and Type	Class	Description
static final class	CfnPermissionSet.Builder	A fluent builder for CfnPermissionSet.
static interface	CfnPermissionSet.CustomerManagedPolicyReferenceProperty	Specifies the name and path of a customer managed policy.
static interface	CfnPermissionSet.PermissionsBoundaryProperty	Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary.

Nested classes/interfaces inherited from class software.amazon.jsii.JsiiObject

software.amazon.jsii.JsiiObject.InitializationMode

Nested classes/interfaces inherited from interface software.constructs.IConstruct

software.constructs.IConstruct.Jsii$Default

Nested classes/interfaces inherited from interface software.amazon.awscdk.IInspectable

IInspectable.Jsii$Default, IInspectable.Jsii$Proxy

Nested classes/interfaces inherited from interface software.amazon.awscdk.ITaggable

ITaggable.Jsii$Default, ITaggable.Jsii$Proxy

Field Summary

Fields

Modifier and Type	Field	Description
static final String	CFN_RESOURCE_TYPE_NAME	The CloudFormation resource type name for this resource class.

Constructor Summary

Constructors

Modifier	Constructor	Description
protected	CfnPermissionSet(software.amazon.jsii.JsiiObject.InitializationMode initializationMode)
protected	CfnPermissionSet(software.amazon.jsii.JsiiObjectRef objRef)
	CfnPermissionSet(software.constructs.Construct scope, String id, CfnPermissionSetProps props)

Method Summary

Modifier and Type	Method	Description
String	getAttrPermissionSetArn()	The permission set ARN of the permission set, such as arn:aws:sso:::permissionSet/ins-instanceid/ps-permissionsetid .
protected Map<String,Object>	getCfnProperties()
Object	getCustomerManagedPolicyReferences()	Specifies the names and paths of the customer managed policies that you have attached to your permission set.
String	getDescription()	The description of the PermissionSet .
Object	getInlinePolicy()	The inline policy that is attached to the permission set.
String	getInstanceArn()	The ARN of the IAM Identity Center instance under which the operation will be executed.
List<String>	getManagedPolicies()	A structure that stores the details of the AWS managed policy.
String	getName()	The name of the permission set.
Object	getPermissionsBoundary()	Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary.
String	getRelayStateType()	Used to redirect users within the application during the federation authentication process.
String	getSessionDuration()	The length of time that the application user sessions are valid for in the ISO-8601 standard.
TagManager	getTags()	Tag Manager which manages the tags for this resource.
List<CfnTag>	getTagsRaw()	The tags to attach to the new PermissionSet .
void	inspect(TreeInspector inspector)	Examines the CloudFormation resource and discloses attributes.
protected Map<String,Object>	renderProperties(Map<String,Object> props)
void	setCustomerManagedPolicyReferences(List<Object> value)	Specifies the names and paths of the customer managed policies that you have attached to your permission set.
void	setCustomerManagedPolicyReferences(IResolvable value)	Specifies the names and paths of the customer managed policies that you have attached to your permission set.
void	setDescription(String value)	The description of the PermissionSet .
void	setInlinePolicy(Object value)	The inline policy that is attached to the permission set.
void	setInstanceArn(String value)	The ARN of the IAM Identity Center instance under which the operation will be executed.
void	setManagedPolicies(List<String> value)	A structure that stores the details of the AWS managed policy.
void	setName(String value)	The name of the permission set.
void	setPermissionsBoundary(IResolvable value)	Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary.
void	setPermissionsBoundary(CfnPermissionSet.PermissionsBoundaryProperty value)	Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary.
void	setRelayStateType(String value)	Used to redirect users within the application during the federation authentication process.
void	setSessionDuration(String value)	The length of time that the application user sessions are valid for in the ISO-8601 standard.
void	setTagsRaw(List<CfnTag> value)	The tags to attach to the new PermissionSet .

Methods inherited from class software.amazon.awscdk.CfnResource

addDeletionOverride, addDependency, addDependsOn, addMetadata, addOverride, addPropertyDeletionOverride, addPropertyOverride, applyRemovalPolicy, applyRemovalPolicy, applyRemovalPolicy, getAtt, getAtt, getCfnOptions, getCfnResourceType, getMetadata, getUpdatedProperites, getUpdatedProperties, isCfnResource, obtainDependencies, obtainResourceDependencies, removeDependency, replaceDependency, shouldSynthesize, toString, validateProperties

Methods inherited from class software.amazon.awscdk.CfnRefElement

getRef

Methods inherited from class software.amazon.awscdk.CfnElement

getCreationStack, getLogicalId, getStack, isCfnElement, overrideLogicalId

Methods inherited from class software.constructs.Construct

getNode, isConstruct

Methods inherited from class software.amazon.jsii.JsiiObject

jsiiAsyncCall, jsiiAsyncCall, jsiiCall, jsiiCall, jsiiGet, jsiiGet, jsiiSet, jsiiStaticCall, jsiiStaticCall, jsiiStaticGet, jsiiStaticGet, jsiiStaticSet, jsiiStaticSet

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Methods inherited from interface software.amazon.jsii.JsiiSerializable

$jsii$toJson

Field Details

CFN_RESOURCE_TYPE_NAME

@Stability(Stable)
public static final String CFN_RESOURCE_TYPE_NAME

The CloudFormation resource type name for this resource class.

Constructor Details

CfnPermissionSet

protected CfnPermissionSet(software.amazon.jsii.JsiiObjectRef objRef)

CfnPermissionSet

protected CfnPermissionSet(software.amazon.jsii.JsiiObject.InitializationMode initializationMode)

CfnPermissionSet

@Stability(Stable)
public CfnPermissionSet(@NotNull
 software.constructs.Construct scope,
 @NotNull
 String id,
 @NotNull
 CfnPermissionSetProps props)

Parameters:

scope - Scope in which this resource is defined. This parameter is required.

id - Construct identifier for this resource (unique in its scope). This parameter is required.

props - Resource properties. This parameter is required.

Method Details

inspect

@Stability(Stable)
public void inspect(@NotNull
 TreeInspector inspector)

Examines the CloudFormation resource and discloses attributes.

Specified by:

inspect in interface IInspectable

Parameters:

inspector - tree inspector to collect and process attributes. This parameter is required.

renderProperties

@Stability(Stable)
@NotNull
protected Map<String,Object> renderProperties(@NotNull
 Map<String,Object> props)

Overrides:

renderProperties in class CfnResource

Parameters:

props - This parameter is required.

getAttrPermissionSetArn

@Stability(Stable)
@NotNull
public String getAttrPermissionSetArn()

The permission set ARN of the permission set, such as arn:aws:sso:::permissionSet/ins-instanceid/ps-permissionsetid .

getCfnProperties

@Stability(Stable)
@NotNull
protected Map<String,Object> getCfnProperties()

Overrides:

getCfnProperties in class CfnResource

getTags

@Stability(Stable)
@NotNull
public TagManager getTags()

Tag Manager which manages the tags for this resource.

Specified by:

getTags in interface ITaggable

getInstanceArn

@Stability(Stable)
@NotNull
public String getInstanceArn()

The ARN of the IAM Identity Center instance under which the operation will be executed.

setInstanceArn

@Stability(Stable)
public void setInstanceArn(@NotNull
 String value)

The ARN of the IAM Identity Center instance under which the operation will be executed.

getName

@Stability(Stable)
@NotNull
public String getName()

The name of the permission set.

setName

@Stability(Stable)
public void setName(@NotNull
 String value)

The name of the permission set.

getCustomerManagedPolicyReferences

@Stability(Stable)
@Nullable
public Object getCustomerManagedPolicyReferences()

Specifies the names and paths of the customer managed policies that you have attached to your permission set.

setCustomerManagedPolicyReferences

@Stability(Stable)
public void setCustomerManagedPolicyReferences(@Nullable
 IResolvable value)

Specifies the names and paths of the customer managed policies that you have attached to your permission set.

setCustomerManagedPolicyReferences

@Stability(Stable)
public void setCustomerManagedPolicyReferences(@Nullable
 List<Object> value)

Specifies the names and paths of the customer managed policies that you have attached to your permission set.

getDescription

@Stability(Stable)
@Nullable
public String getDescription()

The description of the PermissionSet .

setDescription

@Stability(Stable)
public void setDescription(@Nullable
 String value)

The description of the PermissionSet .

getInlinePolicy

@Stability(Stable)
@Nullable
public Object getInlinePolicy()

The inline policy that is attached to the permission set.

setInlinePolicy

@Stability(Stable)
public void setInlinePolicy(@Nullable
 Object value)

The inline policy that is attached to the permission set.

getManagedPolicies

@Stability(Stable)
@Nullable
public List<String> getManagedPolicies()

A structure that stores the details of the AWS managed policy.

setManagedPolicies

@Stability(Stable)
public void setManagedPolicies(@Nullable
 List<String> value)

A structure that stores the details of the AWS managed policy.

getPermissionsBoundary

@Stability(Stable)
@Nullable
public Object getPermissionsBoundary()

Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary.

setPermissionsBoundary

@Stability(Stable)
public void setPermissionsBoundary(@Nullable
 IResolvable value)

Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary.

setPermissionsBoundary

@Stability(Stable)
public void setPermissionsBoundary(@Nullable
 CfnPermissionSet.PermissionsBoundaryProperty value)

Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary.

getRelayStateType

@Stability(Stable)
@Nullable
public String getRelayStateType()

Used to redirect users within the application during the federation authentication process.

setRelayStateType

@Stability(Stable)
public void setRelayStateType(@Nullable
 String value)

Used to redirect users within the application during the federation authentication process.

getSessionDuration

@Stability(Stable)
@Nullable
public String getSessionDuration()

The length of time that the application user sessions are valid for in the ISO-8601 standard.

setSessionDuration

@Stability(Stable)
public void setSessionDuration(@Nullable
 String value)

The length of time that the application user sessions are valid for in the ISO-8601 standard.

getTagsRaw

@Stability(Stable)
@Nullable
public List<CfnTag> getTagsRaw()

The tags to attach to the new PermissionSet .

setTagsRaw

@Stability(Stable)
public void setTagsRaw(@Nullable
 List<CfnTag> value)

The tags to attach to the new PermissionSet .