Namespace Amazon.CDK.AWS.IAM
Classes
| AccessKey | Define a new IAM Access Key. |
| AccessKeyProps | Properties for defining an IAM access key. |
| AccountPrincipal | Specify AWS account ID as the principal entity in a policy to delegate authority to the account. |
| AccountRootPrincipal | Use the AWS account into which a stack is deployed as the principal entity in a policy. |
| AddToPrincipalPolicyResult | Result of calling |
| AddToResourcePolicyResult | Result of calling addToResourcePolicy. |
| AnyPrincipal | A principal representing all AWS identities in all accounts. |
| ArnPrincipal | Specify a principal by the Amazon Resource Name (ARN). |
| CanonicalUserPrincipal | A policy principal for canonicalUserIds - useful for S3 bucket policies that use Origin Access identities. |
| CfnAccessKey | Creates a new AWS secret access key and corresponding AWS access key ID for the specified user. |
| CfnAccessKeyProps | Properties for defining a |
| CfnGroup | Creates a new group. |
| CfnGroup.PolicyProperty | Contains information about an attached policy. |
| CfnGroupPolicy | Adds or updates an inline policy document that is embedded in the specified IAM group. |
| CfnGroupPolicyProps | Properties for defining a |
| CfnGroupProps | Properties for defining a |
| CfnInstanceProfile | Creates a new instance profile. For information about instance profiles, see Using instance profiles . |
| CfnInstanceProfileProps | Properties for defining a |
| CfnManagedPolicy | Creates a new managed policy for your AWS account . |
| CfnManagedPolicyProps | Properties for defining a |
| CfnOIDCProvider | Creates or updates an IAM entity to describe an identity provider (IdP) that supports OpenID Connect (OIDC) . |
| CfnOIDCProviderProps | Properties for defining a |
| CfnPolicy | Adds or updates an inline policy document that is embedded in the specified IAM group, user or role. |
| CfnPolicyProps | Properties for defining a |
| CfnRole | Creates a new role for your AWS account . |
| CfnRole.PolicyProperty | Contains information about an attached policy. |
| CfnRolePolicy | Adds or updates an inline policy document that is embedded in the specified IAM role. |
| CfnRolePolicyProps | Properties for defining a |
| CfnRoleProps | Properties for defining a |
| CfnSAMLProvider | Creates an IAM resource that describes an identity provider (IdP) that supports SAML 2.0. |
| CfnSAMLProvider.SAMLPrivateKeyProperty | Contains the private keys for the SAML provider. |
| CfnSAMLProviderProps | Properties for defining a |
| CfnServerCertificate | Uploads a server certificate entity for the AWS account . |
| CfnServerCertificateProps | Properties for defining a |
| CfnServiceLinkedRole | Creates an IAM role that is linked to a specific AWS service. |
| CfnServiceLinkedRoleProps | Properties for defining a |
| CfnUser | Creates a new IAM user for your AWS account . |
| CfnUser.LoginProfileProperty | Creates a password for the specified user, giving the user the ability to access AWS services through the AWS Management Console . |
| CfnUser.PolicyProperty | Contains information about an attached policy. |
| CfnUserPolicy | Adds or updates an inline policy document that is embedded in the specified IAM user. |
| CfnUserPolicyProps | Properties for defining a |
| CfnUserProps | Properties for defining a |
| CfnUserToGroupAddition | Adds the specified user to the specified group. |
| CfnUserToGroupAdditionProps | Properties for defining a |
| CfnVirtualMFADevice | Creates a new virtual MFA device for the AWS account . |
| CfnVirtualMFADeviceProps | Properties for defining a |
| CommonGrantOptions | Basic options for a grant operation. |
| ComparablePrincipal | Helper class for working with |
| CompositeDependable | Composite dependable. |
| CompositePrincipal | Represents a principal that has multiple types of principals. |
| CustomizeRolesOptions | Options for customizing IAM role creation. |
| FederatedPrincipal | Principal entity that represents a federated identity provider such as Amazon Cognito, that can be used to provide temporary security credentials to users who have been authenticated. |
| FromRoleArnOptions | Options allowing customizing the behavior of |
| FromRoleNameOptions | Options allowing customizing the behavior of |
| Grant | Result of a grant() operation. |
| GrantOnPrincipalAndResourceOptions | Options for a grant operation to both identity and resource. |
| GrantOnPrincipalOptions | Options for a grant operation that only applies to principals. |
| GrantPolicyWithResourceOptions | Options for a grant operation that directly adds a policy statement to a resource. |
| GrantWithResourceOptions | Options for a grant operation. |
| Group | An IAM Group (collection of IAM users) lets you specify permissions for multiple users, which can make it easier to manage permissions for those users. |
| GroupProps | Properties for defining an IAM group. |
| InstanceProfile | IAM Instance Profile. |
| InstanceProfileAttributes | Attributes of an Instance Profile. |
| InstanceProfileProps | Properties of an Instance Profile. |
| LazyRole | An IAM role that only gets attached to the construct tree once it gets used, not before. |
| LazyRoleProps | Properties for defining a LazyRole. |
| ManagedPolicy | Managed policy. |
| ManagedPolicyProps | Properties for defining an IAM managed policy. |
| OidcProviderNative | IAM OIDC identity providers are entities in IAM that describe an external identity provider (IdP) service that supports the OpenID Connect (OIDC) standard, such as Google or Salesforce. |
| OidcProviderNativeProps | Initialization properties for |
| OpenIdConnectPrincipal | A principal that represents a federated identity provider as from a OpenID Connect provider. |
| OpenIdConnectProvider | IAM OIDC identity providers are entities in IAM that describe an external identity provider (IdP) service that supports the OpenID Connect (OIDC) standard, such as Google or Salesforce. |
| OpenIdConnectProviderProps | Initialization properties for |
| OrganizationPrincipal | A principal that represents an AWS Organization. |
| PermissionsBoundary | Modify the Permissions Boundaries of Users and Roles in a construct tree. |
| Policy | The AWS::IAM::Policy resource associates an inline IAM policy with IAM users, roles, or groups. For more information about IAM policies, see Overview of IAM Policies in the IAM User Guide guide. |
| PolicyDocument | A PolicyDocument is a collection of statements. |
| PolicyDocumentProps | Properties for a new PolicyDocument. |
| PolicyProps | Properties for defining an IAM inline policy document. |
| PolicyStatement | Represents a statement in an IAM policy document. |
| PolicyStatementProps | Interface for creating a policy statement. |
| PrincipalBase | Base class for policy principals. |
| PrincipalPolicyFragment | A collection of the fields in a PolicyStatement that can be used to identify a principal. |
| PrincipalWithConditions | An IAM principal with additional conditions specifying when the policy is in effect. |
| Role | IAM Role. |
| RoleLookupOptions | Properties for looking up an existing Role. |
| RoleProps | Properties for defining an IAM Role. |
| SamlConsolePrincipal | Principal entity that represents a SAML federated identity provider for programmatic and AWS Management Console access. |
| SamlMetadataDocument | A SAML metadata document. |
| SamlPrincipal | Principal entity that represents a SAML federated identity provider. |
| SamlProvider | A SAML provider. |
| SamlProviderProps | Properties for a SAML provider. |
| ServicePrincipal | An IAM principal that represents an AWS service (i.e. |
| ServicePrincipalOpts | Options for a service principal. |
| SessionTagsPrincipal | Enables session tags on role assumptions from a principal. |
| StarPrincipal | A principal that uses a literal '*' in the IAM JSON language. |
| UnknownPrincipal | A principal for use in resources that need to have a role but it's unknown. |
| UnknownPrincipalProps | Properties for an UnknownPrincipal. |
| User | Define a new IAM user. |
| UserAttributes | Represents a user defined outside of this stack. |
| UserProps | Properties for defining an IAM user. |
| WebIdentityPrincipal | A principal that represents a federated identity provider as Web Identity such as Cognito, Amazon, Facebook, Google, etc. |
| WithoutPolicyUpdatesOptions | Options for the |
Interfaces
| CfnGroup.IPolicyProperty | Contains information about an attached policy. |
| CfnRole.IPolicyProperty | Contains information about an attached policy. |
| CfnSAMLProvider.ISAMLPrivateKeyProperty | Contains the private keys for the SAML provider. |
| CfnUser.ILoginProfileProperty | Creates a password for the specified user, giving the user the ability to access AWS services through the AWS Management Console . |
| CfnUser.IPolicyProperty | Contains information about an attached policy. |
| IAccessKey | Represents an IAM Access Key. |
| IAccessKeyProps | Properties for defining an IAM access key. |
| IAddToPrincipalPolicyResult | Result of calling |
| IAddToResourcePolicyResult | Result of calling addToResourcePolicy. |
| IAssumeRolePrincipal | A type of principal that has more control over its own representation in AssumeRolePolicyDocuments. |
| ICfnAccessKeyProps | Properties for defining a |
| ICfnGroupPolicyProps | Properties for defining a |
| ICfnGroupProps | Properties for defining a |
| ICfnInstanceProfileProps | Properties for defining a |
| ICfnManagedPolicyProps | Properties for defining a |
| ICfnOIDCProviderProps | Properties for defining a |
| ICfnPolicyProps | Properties for defining a |
| ICfnRolePolicyProps | Properties for defining a |
| ICfnRoleProps | Properties for defining a |
| ICfnSAMLProviderProps | Properties for defining a |
| ICfnServerCertificateProps | Properties for defining a |
| ICfnServiceLinkedRoleProps | Properties for defining a |
| ICfnUserPolicyProps | Properties for defining a |
| ICfnUserProps | Properties for defining a |
| ICfnUserToGroupAdditionProps | Properties for defining a |
| ICfnVirtualMFADeviceProps | Properties for defining a |
| ICommonGrantOptions | Basic options for a grant operation. |
| IComparablePrincipal | Interface for principals that can be compared. |
| ICustomizeRolesOptions | Options for customizing IAM role creation. |
| IFromRoleArnOptions | Options allowing customizing the behavior of |
| IFromRoleNameOptions | Options allowing customizing the behavior of |
| IGrantOnPrincipalAndResourceOptions | Options for a grant operation to both identity and resource. |
| IGrantOnPrincipalOptions | Options for a grant operation that only applies to principals. |
| IGrantPolicyWithResourceOptions | Options for a grant operation that directly adds a policy statement to a resource. |
| IGrantWithResourceOptions | Options for a grant operation. |
| IGrantable | Any object that has an associated principal that a permission can be granted to. |
| IGroup | Represents an IAM Group. |
| IGroupProps | Properties for defining an IAM group. |
| IIdentity | A construct that represents an IAM principal, such as a user, group or role. |
| IInstanceProfile | Represents an IAM Instance Profile. |
| IInstanceProfileAttributes | Attributes of an Instance Profile. |
| IInstanceProfileProps | Properties of an Instance Profile. |
| ILazyRoleProps | Properties for defining a LazyRole. |
| IManagedPolicy | A managed policy. |
| IManagedPolicyProps | Properties for defining an IAM managed policy. |
| IOidcProvider | Represents an IAM OpenID Connect provider. |
| IOidcProviderNativeProps | Initialization properties for |
| IOpenIdConnectProvider | Represents an IAM OpenID Connect provider. |
| IOpenIdConnectProviderProps | Initialization properties for |
| IPolicy | Represents an IAM Policy. |
| IPolicyDocumentProps | Properties for a new PolicyDocument. |
| IPolicyProps | Properties for defining an IAM inline policy document. |
| IPolicyStatementProps | Interface for creating a policy statement. |
| IPrincipal | Represents a logical IAM principal. |
| IResourceWithPolicy | (deprecated) A resource with a resource policy that can be added to. |
| IResourceWithPolicyV2 | A resource with a resource policy that can be added to. |
| IRole | A Role object. |
| IRoleLookupOptions | Properties for looking up an existing Role. |
| IRoleProps | Properties for defining an IAM Role. |
| ISamlProvider | A SAML provider. |
| ISamlProviderProps | Properties for a SAML provider. |
| IServicePrincipalOpts | Options for a service principal. |
| IUnknownPrincipalProps | Properties for an UnknownPrincipal. |
| IUser | Represents an IAM user. |
| IUserAttributes | Represents a user defined outside of this stack. |
| IUserProps | Properties for defining an IAM user. |
| IWithoutPolicyUpdatesOptions | Options for the |
Enums
| AccessKeyStatus | Valid statuses for an IAM Access Key. |
| Effect | The Effect element of an IAM policy. |