CfnIdentityPoolRoleAttachmentMixinProps

class aws_cdk.mixins_preview.aws_cognito.mixins.CfnIdentityPoolRoleAttachmentMixinProps(*, identity_pool_id=None, role_mappings=None, roles=None)

Bases: object

Properties for CfnIdentityPoolRoleAttachmentPropsMixin.

Parameters:

identity_pool_id (Optional[str]) – An identity pool ID in the format REGION:GUID .
role_mappings (Union[IResolvable, Mapping[str, Union[IResolvable, RoleMappingProperty, Dict[str, Any]]], None]) – How users for a specific identity provider are mapped to roles. This is a string to the RoleMapping object map. The string identifies the identity provider. For example: graph.facebook.com or cognito-idp.us-east-1.amazonaws.com/us-east-1_abcdefghi:app_client_id . If the IdentityProvider field isn’t provided in this object, the string is used as the identity provider name. For more information, see the RoleMapping property .
roles (Any) – The map of the roles associated with this pool. For a given role, the key is either “authenticated” or “unauthenticated”. The value is the role ARN.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-identitypoolroleattachment.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview.aws_cognito import mixins as cognito_mixins

# roles: Any

cfn_identity_pool_role_attachment_mixin_props = cognito_mixins.CfnIdentityPoolRoleAttachmentMixinProps(
    identity_pool_id="identityPoolId",
    role_mappings={
        "role_mappings_key": cognito_mixins.CfnIdentityPoolRoleAttachmentPropsMixin.RoleMappingProperty(
            ambiguous_role_resolution="ambiguousRoleResolution",
            identity_provider="identityProvider",
            rules_configuration=cognito_mixins.CfnIdentityPoolRoleAttachmentPropsMixin.RulesConfigurationTypeProperty(
                rules=[cognito_mixins.CfnIdentityPoolRoleAttachmentPropsMixin.MappingRuleProperty(
                    claim="claim",
                    match_type="matchType",
                    role_arn="roleArn",
                    value="value"
                )]
            ),
            type="type"
        )
    },
    roles=roles
)

Attributes

identity_pool_id

An identity pool ID in the format REGION:GUID .

See:: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-identitypoolroleattachment.html#cfn-cognito-identitypoolroleattachment-identitypoolid

role_mappings

How users for a specific identity provider are mapped to roles.

This is a string to the RoleMapping object map. The string identifies the identity provider. For example: graph.facebook.com or cognito-idp.us-east-1.amazonaws.com/us-east-1_abcdefghi:app_client_id .

If the IdentityProvider field isn’t provided in this object, the string is used as the identity provider name.

For more information, see the RoleMapping property .

See:: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-identitypoolroleattachment.html#cfn-cognito-identitypoolroleattachment-rolemappings

roles

The map of the roles associated with this pool.

For a given role, the key is either “authenticated” or “unauthenticated”. The value is the role ARN.

See:: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-identitypoolroleattachment.html#cfn-cognito-identitypoolroleattachment-roles