Interface CfnIdentityProviderConfig.OidcIdentityProviderConfigProperty
- All Superinterfaces:
software.amazon.jsii.JsiiSerializable
- All Known Implementing Classes:
CfnIdentityProviderConfig.OidcIdentityProviderConfigProperty.Jsii$Proxy
- Enclosing class:
CfnIdentityProviderConfig
@Stability(Stable)
public static interface CfnIdentityProviderConfig.OidcIdentityProviderConfigProperty
extends software.amazon.jsii.JsiiSerializable
An object representing the configuration for an OpenID Connect (OIDC) identity provider.
Example:
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import software.amazon.awscdk.services.eks.*;
OidcIdentityProviderConfigProperty oidcIdentityProviderConfigProperty = OidcIdentityProviderConfigProperty.builder()
.clientId("clientId")
.issuerUrl("issuerUrl")
// the properties below are optional
.groupsClaim("groupsClaim")
.groupsPrefix("groupsPrefix")
.requiredClaims(List.of(RequiredClaimProperty.builder()
.key("key")
.value("value")
.build()))
.usernameClaim("usernameClaim")
.usernamePrefix("usernamePrefix")
.build();
- See Also:
-
Nested Class Summary
Nested ClassesModifier and TypeInterfaceDescriptionstatic final classstatic final classAn implementation forCfnIdentityProviderConfig.OidcIdentityProviderConfigProperty -
Method Summary
Modifier and TypeMethodDescriptionbuilder()This is also known as audience .default StringThe JSON web token (JWT) claim that the provider uses to return your groups.default StringThe prefix that is prepended to group claims to prevent clashes with existing names (such assystem:groups).The URL of the OIDC identity provider that allows the API server to discover public signing keys for verifying tokens.default ObjectThe key-value pairs that describe required claims in the identity token.default StringThe JSON Web token (JWT) claim that is used as the username.default StringThe prefix that is prepended to username claims to prevent clashes with existing names.Methods inherited from interface software.amazon.jsii.JsiiSerializable
$jsii$toJson
-
Method Details
-
getClientId
This is also known as audience .The ID of the client application that makes authentication requests to the OIDC identity provider.
- See Also:
-
getIssuerUrl
The URL of the OIDC identity provider that allows the API server to discover public signing keys for verifying tokens.- See Also:
-
getGroupsClaim
The JSON web token (JWT) claim that the provider uses to return your groups.- See Also:
-
getGroupsPrefix
The prefix that is prepended to group claims to prevent clashes with existing names (such assystem:groups).For example, the value
oidc:creates group names likeoidc:engineeringandoidc:infra. The prefix can't containsystem:- See Also:
-
getRequiredClaims
The key-value pairs that describe required claims in the identity token.If set, each claim is verified to be present in the token with a matching value.
Returns union: either
IResolvableor Listinvalid input: '<'eitherIResolvableorCfnIdentityProviderConfig.RequiredClaimProperty>- See Also:
-
getUsernameClaim
The JSON Web token (JWT) claim that is used as the username.- See Also:
-
getUsernamePrefix
The prefix that is prepended to username claims to prevent clashes with existing names.The prefix can't contain
system:- See Also:
-
builder
@Stability(Stable) static CfnIdentityProviderConfig.OidcIdentityProviderConfigProperty.Builder builder()
-