This is the new AWS CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the AWS CloudFormation User Guide.
AWS::QBusiness::WebExperience OpenIDConnectProviderConfiguration
Information about the OIDC-compliant identity provider (IdP) used to authenticate end users of an Amazon Q Business web experience.
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "SecretsArn" :String, "SecretsRole" :String}
YAML
SecretsArn:StringSecretsRole:String
Properties
SecretsArn-
The Amazon Resource Name (ARN) of a Secrets Manager secret containing the OIDC client secret.
Required: Yes
Type: String
Pattern:
^arn:[a-z0-9-\.]{1,63}:[a-z0-9-\.]{0,63}:[a-z0-9-\.]{0,63}:[a-z0-9-\.]{0,63}:[^/].{0,1023}$Minimum:
0Maximum:
1284Update requires: No interruption
SecretsRole-
An IAM role with permissions to access AWS KMS to decrypt the Secrets Manager secret containing your OIDC client secret.
Required: Yes
Type: String
Pattern:
^arn:[a-z0-9-\.]{1,63}:[a-z0-9-\.]{0,63}:[a-z0-9-\.]{0,63}:[a-z0-9-\.]{0,63}:[^/].{0,1023}$Minimum:
0Maximum:
1284Update requires: No interruption
