Uses of Interface
AWS Identity and Access Management Construct Library
AWS Key Management Service Construct Library
Modifier and TypeInterfaceDescription
static interfaceInternal default implementation for
IAssumeRolePrincipal.Modifier and TypeClassDescription
classSpecify AWS account ID as the principal entity in a policy to delegate authority to the account.
classUse the AWS account into which a stack is deployed as the principal entity in a policy.
classA principal representing all AWS identities in all accounts.
classSpecify a principal by the Amazon Resource Name (ARN).
classA policy principal for canonicalUserIds - useful for S3 bucket policies that use Origin Access identities.
classRepresents a principal that has multiple types of principals.
classPrincipal entity that represents a federated identity provider such as Amazon Cognito, that can be used to provide temporary security credentials to users who have been authenticated.
classA principal that represents a federated identity provider as from a OpenID Connect provider.
classA principal that represents an AWS Organization.
classBase class for policy principals.
classAn IAM principal with additional conditions specifying when the policy is in effect.
classPrincipal entity that represents a SAML federated identity provider for programmatic and AWS Management Console access.
classPrincipal entity that represents a SAML federated identity provider.
classAn IAM principal that represents an AWS service (i.e.
classEnables session tags on role assumptions from a principal.
classA principal that uses a literal '*' in the IAM JSON language.
classA principal that represents a federated identity provider as Web Identity such as Cognito, Amazon, Facebook, Google, etc.
Modifier and TypeClassDescription
classA principal to allow access to a key if it's being used through another AWS service.