Class: Aws::SSOAdmin::Types::OidcJwtConfiguration

Inherits:

Struct

• Object
• Struct
• Aws::SSOAdmin::Types::OidcJwtConfiguration

Defined in:

gems/aws-sdk-ssoadmin/lib/aws-sdk-ssoadmin/types.rb

Overview

A structure that describes configuration settings for a trusted token issuer that supports OpenID Connect (OIDC) and JSON Web Tokens (JWTs).

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #claim_attribute_path ⇒ String

  The path of the source attribute in the JWT from the trusted token issuer.

• #identity_store_attribute_path ⇒ String

  The path of the destination attribute in a JWT from IAM Identity Center.

• #issuer_url ⇒ String

  The URL that IAM Identity Center uses for OpenID Discovery.

• #jwks_retrieval_option ⇒ String

  The method that the trusted token issuer can use to retrieve the JSON Web Key Set used to verify a JWT.

Instance Attribute Details

#claim_attribute_path ⇒ String

The path of the source attribute in the JWT from the trusted token issuer. The attribute mapped by this JMESPath expression is compared against the attribute mapped by IdentityStoreAttributePath when a trusted token issuer token is exchanged for an IAM Identity Center token.

Returns:

• (String)

# File 'gems/aws-sdk-ssoadmin/lib/aws-sdk-ssoadmin/types.rb', line 3466

class OidcJwtConfiguration < Struct.new(
  :issuer_url,
  :claim_attribute_path,
  :identity_store_attribute_path,
  :jwks_retrieval_option)
  SENSITIVE = []
  include Aws::Structure
end

#identity_store_attribute_path ⇒ String

The path of the destination attribute in a JWT from IAM Identity Center. The attribute mapped by this JMESPath expression is compared against the attribute mapped by ClaimAttributePath when a trusted token issuer token is exchanged for an IAM Identity Center token.

Returns:

• (String)

# File 'gems/aws-sdk-ssoadmin/lib/aws-sdk-ssoadmin/types.rb', line 3466

class OidcJwtConfiguration < Struct.new(
  :issuer_url,
  :claim_attribute_path,
  :identity_store_attribute_path,
  :jwks_retrieval_option)
  SENSITIVE = []
  include Aws::Structure
end

#issuer_url ⇒ String

The URL that IAM Identity Center uses for OpenID Discovery. OpenID Discovery is used to obtain the information required to verify the tokens that the trusted token issuer generates.

Returns:

• (String)

# File 'gems/aws-sdk-ssoadmin/lib/aws-sdk-ssoadmin/types.rb', line 3466

class OidcJwtConfiguration < Struct.new(
  :issuer_url,
  :claim_attribute_path,
  :identity_store_attribute_path,
  :jwks_retrieval_option)
  SENSITIVE = []
  include Aws::Structure
end

#jwks_retrieval_option ⇒ String

The method that the trusted token issuer can use to retrieve the JSON Web Key Set used to verify a JWT.

Returns:

• (String)

# File 'gems/aws-sdk-ssoadmin/lib/aws-sdk-ssoadmin/types.rb', line 3466

class OidcJwtConfiguration < Struct.new(
  :issuer_url,
  :claim_attribute_path,
  :identity_store_attribute_path,
  :jwks_retrieval_option)
  SENSITIVE = []
  include Aws::Structure
end