Class CfnIdentityProviderConfig

java.lang.Object
software.amazon.jsii.JsiiObject
software.constructs.Construct
All Implemented Interfaces:
IInspectable, ITaggable, software.amazon.jsii.JsiiSerializable, software.constructs.IConstruct, software.constructs.IDependable

@Generated(value="jsii-pacmak/1.92.0 (build db7f27d)", date="2023-12-06T04:49:38.350Z") @Stability(Stable) public class CfnIdentityProviderConfig extends CfnResource implements IInspectable, ITaggable
Associate an identity provider configuration to a cluster.

If you want to authenticate identities using an identity provider, you can create an identity provider configuration and associate it to your cluster. After configuring authentication to your cluster you can create Kubernetes roles and clusterroles to assign permissions to the roles, and then bind the roles to the identities using Kubernetes rolebindings and clusterrolebindings . For more information see Using RBAC Authorization in the Kubernetes documentation.

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.eks.*;
 CfnIdentityProviderConfig cfnIdentityProviderConfig = CfnIdentityProviderConfig.Builder.create(this, "MyCfnIdentityProviderConfig")
         .clusterName("clusterName")
         .type("type")
         // the properties below are optional
         .identityProviderConfigName("identityProviderConfigName")
         .oidc(OidcIdentityProviderConfigProperty.builder()
                 .clientId("clientId")
                 .issuerUrl("issuerUrl")
                 // the properties below are optional
                 .groupsClaim("groupsClaim")
                 .groupsPrefix("groupsPrefix")
                 .requiredClaims(List.of(RequiredClaimProperty.builder()
                         .key("key")
                         .value("value")
                         .build()))
                 .usernameClaim("usernameClaim")
                 .usernamePrefix("usernamePrefix")
                 .build())
         .tags(List.of(CfnTag.builder()
                 .key("key")
                 .value("value")
                 .build()))
         .build();
 

See Also:
  • Field Details

    • CFN_RESOURCE_TYPE_NAME

      @Stability(Stable) public static final String CFN_RESOURCE_TYPE_NAME
      The CloudFormation resource type name for this resource class.
  • Constructor Details

    • CfnIdentityProviderConfig

      protected CfnIdentityProviderConfig(software.amazon.jsii.JsiiObjectRef objRef)
    • CfnIdentityProviderConfig

      protected CfnIdentityProviderConfig(software.amazon.jsii.JsiiObject.InitializationMode initializationMode)
    • CfnIdentityProviderConfig

      @Stability(Stable) public CfnIdentityProviderConfig(@NotNull software.constructs.Construct scope, @NotNull String id, @NotNull CfnIdentityProviderConfigProps props)
      Parameters:
      scope - Scope in which this resource is defined. This parameter is required.
      id - Construct identifier for this resource (unique in its scope). This parameter is required.
      props - Resource properties. This parameter is required.
  • Method Details

    • inspect

      @Stability(Stable) public void inspect(@NotNull TreeInspector inspector)
      Examines the CloudFormation resource and discloses attributes.

      Specified by:
      inspect in interface IInspectable
      Parameters:
      inspector - tree inspector to collect and process attributes. This parameter is required.
    • renderProperties

      @Stability(Stable) @NotNull protected Map<String,Object> renderProperties(@NotNull Map<String,Object> props)
      Overrides:
      renderProperties in class CfnResource
      Parameters:
      props - This parameter is required.
    • getAttrIdentityProviderConfigArn

      @Stability(Stable) @NotNull public String getAttrIdentityProviderConfigArn()
      The Amazon Resource Name (ARN) associated with the identity provider config.
    • getCfnProperties

      @Stability(Stable) @NotNull protected Map<String,Object> getCfnProperties()
      Overrides:
      getCfnProperties in class CfnResource
    • getTags

      @Stability(Stable) @NotNull public TagManager getTags()
      Tag Manager which manages the tags for this resource.
      Specified by:
      getTags in interface ITaggable
    • getClusterName

      @Stability(Stable) @NotNull public String getClusterName()
      The cluster that the configuration is associated to.
    • setClusterName

      @Stability(Stable) public void setClusterName(@NotNull String value)
      The cluster that the configuration is associated to.
    • getType

      @Stability(Stable) @NotNull public String getType()
      The type of the identity provider configuration.
    • setType

      @Stability(Stable) public void setType(@NotNull String value)
      The type of the identity provider configuration.
    • getIdentityProviderConfigName

      @Stability(Stable) @Nullable public String getIdentityProviderConfigName()
      The name of the configuration.
    • setIdentityProviderConfigName

      @Stability(Stable) public void setIdentityProviderConfigName(@Nullable String value)
      The name of the configuration.
    • getOidc

      @Stability(Stable) @Nullable public Object getOidc()
      An object representing an OpenID Connect (OIDC) identity provider configuration.
    • setOidc

      @Stability(Stable) public void setOidc(@Nullable IResolvable value)
      An object representing an OpenID Connect (OIDC) identity provider configuration.
    • setOidc

      @Stability(Stable) public void setOidc(@Nullable CfnIdentityProviderConfig.OidcIdentityProviderConfigProperty value)
      An object representing an OpenID Connect (OIDC) identity provider configuration.
    • getTagsRaw

      @Stability(Stable) @Nullable public List<CfnTag> getTagsRaw()
      The metadata to apply to the provider configuration to assist with categorization and organization.
    • setTagsRaw

      @Stability(Stable) public void setTagsRaw(@Nullable List<CfnTag> value)
      The metadata to apply to the provider configuration to assist with categorization and organization.