/AWS1/CL_SSAACCESSCONTROLATTR¶
These are IAM Identity Center identity store attributes that you can configure for use in attributes-based access control (ABAC). You can create permissions policies that determine who can access your Amazon Web Services resources based upon the configured attribute values. When you enable ABAC and specify AccessControlAttributes, IAM Identity Center passes the attribute values of the authenticated user into IAM for use in policy evaluation.
CONSTRUCTOR¶
IMPORTING¶
Required arguments:¶
iv_key TYPE /AWS1/SSAACCESSCONTROLATTRKEY /AWS1/SSAACCESSCONTROLATTRKEY¶
The name of the attribute associated with your identities in your identity source. This is used to map a specified attribute in your identity source with an attribute in IAM Identity Center.
io_value TYPE REF TO /AWS1/CL_SSAACCESSCTLATTRVALUE /AWS1/CL_SSAACCESSCTLATTRVALUE¶
The value used for mapping a specified attribute to an identity source.
Queryable Attributes¶
Key¶
The name of the attribute associated with your identities in your identity source. This is used to map a specified attribute in your identity source with an attribute in IAM Identity Center.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_KEY() |
Getter for KEY, with configurable default |
ASK_KEY() |
Getter for KEY w/ exceptions if field has no value |
HAS_KEY() |
Determine if KEY has a value |
Value¶
The value used for mapping a specified attribute to an identity source.
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_VALUE() |
Getter for VALUE |
Public Local Types In This Class¶
Internal table types, representing arrays and maps of this class, are defined as local types:
TT_ACCESSCONTROLATTRIBUTELIST¶
TYPES TT_ACCESSCONTROLATTRIBUTELIST TYPE STANDARD TABLE OF REF TO /AWS1/CL_SSAACCESSCONTROLATTR WITH DEFAULT KEY
.