interface CustomJWTAuthorizerConfigurationProperty

Language	Type name
.NET	Amazon.CDK.AWS.BedrockAgentCore.CfnRuntime.CustomJWTAuthorizerConfigurationProperty
Go	github.com/aws/aws-cdk-go/awscdk/v2/awsbedrockagentcore#CfnRuntime_CustomJWTAuthorizerConfigurationProperty
Java	software.amazon.awscdk.services.bedrockagentcore.CfnRuntime.CustomJWTAuthorizerConfigurationProperty
Python	aws_cdk.aws_bedrockagentcore.CfnRuntime.CustomJWTAuthorizerConfigurationProperty
TypeScript	aws-cdk-lib » aws_bedrockagentcore » CfnRuntime » CustomJWTAuthorizerConfigurationProperty

Configuration for custom JWT authorizer.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrockagentcore-runtime-customjwtauthorizerconfiguration.html

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_bedrockagentcore as bedrockagentcore } from 'aws-cdk-lib';
const customJWTAuthorizerConfigurationProperty: bedrockagentcore.CfnRuntime.CustomJWTAuthorizerConfigurationProperty = {
  discoveryUrl: 'discoveryUrl',

  // the properties below are optional
  allowedAudience: ['allowedAudience'],
  allowedClients: ['allowedClients'],
  allowedScopes: ['allowedScopes'],
  customClaims: [{
    authorizingClaimMatchValue: {
      claimMatchOperator: 'claimMatchOperator',
      claimMatchValue: {
        matchValueString: 'matchValueString',
        matchValueStringList: ['matchValueStringList'],
      },
    },
    inboundTokenClaimName: 'inboundTokenClaimName',
    inboundTokenClaimValueType: 'inboundTokenClaimValueType',
  }],
};

Properties

Name	Type	Description
discoveryUrl	string	The configuration authorization.
allowedAudience?	string[]	Represents inbound authorization configuration options used to authenticate incoming requests.
allowedClients?	string[]	Represents individual client IDs that are validated in the incoming JWT token validation process.
allowedScopes?	string[]	List of allowed scopes.
customClaims?	IResolvable | (IResolvable | CustomClaimValidationTypeProperty)[]	List of required custom claims.

---

discoveryUrl

Type: string

The configuration authorization.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrockagentcore-runtime-customjwtauthorizerconfiguration.html#cfn-bedrockagentcore-runtime-customjwtauthorizerconfiguration-discoveryurl

---

allowedAudience?

Type: string[] (optional)

Represents inbound authorization configuration options used to authenticate incoming requests.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrockagentcore-runtime-customjwtauthorizerconfiguration.html#cfn-bedrockagentcore-runtime-customjwtauthorizerconfiguration-allowedaudience

---

allowedClients?

Type: string[] (optional)

Represents individual client IDs that are validated in the incoming JWT token validation process.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrockagentcore-runtime-customjwtauthorizerconfiguration.html#cfn-bedrockagentcore-runtime-customjwtauthorizerconfiguration-allowedclients

---

allowedScopes?

Type: string[] (optional)

List of allowed scopes.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrockagentcore-runtime-customjwtauthorizerconfiguration.html#cfn-bedrockagentcore-runtime-customjwtauthorizerconfiguration-allowedscopes

---

customClaims?

Type: IResolvable | (IResolvable | CustomClaimValidationTypeProperty)[] (optional)

List of required custom claims.

See also: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-bedrockagentcore-runtime-customjwtauthorizerconfiguration.html#cfn-bedrockagentcore-runtime-customjwtauthorizerconfiguration-customclaims