Uses of Class
AWS Identity and Access Management Construct Library
AWS Key Management Service Construct Library
Uses of PrincipalBase in software.amazon.awscdk.services.iamModifier and TypeClassDescription
classSpecify AWS account ID as the principal entity in a policy to delegate authority to the account.
classUse the AWS account into which a stack is deployed as the principal entity in a policy.
classA principal representing all AWS identities in all accounts.
classSpecify a principal by the Amazon Resource Name (ARN).
classA policy principal for canonicalUserIds - useful for S3 bucket policies that use Origin Access identities.
classRepresents a principal that has multiple types of principals.
classPrincipal entity that represents a federated identity provider such as Amazon Cognito, that can be used to provide temporary security credentials to users who have been authenticated.
classA principal that represents a federated identity provider as from a OpenID Connect provider.
classA principal that represents an AWS Organization.
classAn IAM principal with additional conditions specifying when the policy is in effect.
classPrincipal entity that represents a SAML federated identity provider for programmatic and AWS Management Console access.
classPrincipal entity that represents a SAML federated identity provider.
classAn IAM principal that represents an AWS service (i.e.
classEnables session tags on role assumptions from a principal.
classA principal that uses a literal '*' in the IAM JSON language.
classA principal that represents a federated identity provider as Web Identity such as Cognito, Amazon, Facebook, Google, etc.Modifier and TypeMethodDescriptionA convenience method for adding a condition that the principal is part of the specified AWS Organization.Returns a new PrincipalWithConditions using this principal as the base, with the passed conditions added.PrincipalBase.
withSessionTags()Returns a new principal using this principal as the base, with session tags enabled.
Uses of PrincipalBase in software.amazon.awscdk.services.kmsModifier and TypeClassDescription
classA principal to allow access to a key if it's being used through another AWS service.