Class UserPoolIdentityProviderSamlProps
Properties to initialize UserPoolIdentityProviderSaml.
Inheritance
Namespace: Amazon.CDK.AWS.Cognito
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public class UserPoolIdentityProviderSamlProps : Object, IUserPoolIdentityProviderSamlProps, IUserPoolIdentityProviderPropsSyntax (vb)
Public Class UserPoolIdentityProviderSamlProps
Inherits Object
Implements IUserPoolIdentityProviderSamlProps, IUserPoolIdentityProviderPropsRemarks
ExampleMetadata: infused
Examples
var userpool = new UserPool(this, "Pool");
// specify the metadata as a file content
// specify the metadata as a file content
new UserPoolIdentityProviderSaml(this, "userpoolIdpFile", new UserPoolIdentityProviderSamlProps {
UserPool = userpool,
Metadata = UserPoolIdentityProviderSamlMetadata.File("my-file-contents"),
// Whether to require encrypted SAML assertions from IdP
EncryptedResponses = true,
// The signing algorithm for the SAML requests
RequestSigningAlgorithm = SigningAlgorithm.RSA_SHA256,
// Enable IdP initiated SAML auth flow
IdpInitiated = true
});
// specify the metadata as a URL
// specify the metadata as a URL
new UserPoolIdentityProviderSaml(this, "userpoolidpUrl", new UserPoolIdentityProviderSamlProps {
UserPool = userpool,
Metadata = UserPoolIdentityProviderSamlMetadata.Url("https://my-metadata-url.com")
});Synopsis
Constructors
| User |
Properties
| Attribute |
Mapping attributes from the identity provider to standard and custom attributes of the user pool. |
| Encrypted |
Whether to require encrypted SAML assertions from IdP. |
| Identifiers | Identifiers. |
| Idp |
Whether to enable IdP-initiated SAML auth flows. |
| Idp |
Whether to enable the "Sign-out flow" feature. |
| Metadata | The SAML metadata. |
| Name | The name of the provider. |
| Request |
The signing algorithm for SAML requests. |
| User |
The user pool to which this construct provides identities. |
Constructors
UserPoolIdentityProviderSamlProps()
public UserPoolIdentityProviderSamlProps()Properties
AttributeMapping
Mapping attributes from the identity provider to standard and custom attributes of the user pool.
public IAttributeMapping AttributeMapping { get; set; }Property Value
Remarks
Default: - no attribute mapping
EncryptedResponses
Whether to require encrypted SAML assertions from IdP.
public Nullable<bool> EncryptedResponses { get; set; }Property Value
System.
Remarks
Identifiers
Identifiers.
public string[] Identifiers { get; set; }Property Value
System.
Remarks
Identifiers can be used to redirect users to the correct IdP in multitenant apps.
Default: - no identifiers used
IdpInitiated
Whether to enable IdP-initiated SAML auth flows.
public Nullable<bool> IdpInitiated { get; set; }Property Value
System.
Remarks
Default: false
IdpSignout
Whether to enable the "Sign-out flow" feature.
public Nullable<bool> IdpSignout { get; set; }Property Value
System.
Remarks
Default: - false
Metadata
The SAML metadata.
public UserPoolIdentityProviderSamlMetadata Metadata { get; set; }Property Value
User
Name
The name of the provider.
public string Name { get; set; }Property Value
System.
Remarks
Must be between 3 and 32 characters.
Default: - the unique ID of the construct
RequestSigningAlgorithm
The signing algorithm for SAML requests.
public Nullable<SigningAlgorithm> RequestSigningAlgorithm { get; set; }Property Value
System.
Remarks
Default: - don't sign requests
UserPool
The user pool to which this construct provides identities.
public IUserPool UserPool { get; set; }Property Value