AWS::VerifiedPermissions::IdentitySource CognitoUserPoolConfiguration

A structure that contains configuration information used when creating or updating an identity source that represents a connection to an Amazon Cognito user pool used as an identity provider for Verified Permissions.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON


{
  "ClientIds" : [ String, ... ],
  "GroupConfiguration" : CognitoGroupConfiguration,
  "UserPoolArn" : String
}

YAML


  ClientIds: 
    - String
  GroupConfiguration: 
    CognitoGroupConfiguration
  UserPoolArn: String

Properties

ClientIds

The unique application client IDs that are associated with the specified Amazon Cognito user pool.

Example: "ClientIds": ["&ExampleCogClientId;"]

Required: No

Type: Array of String

Minimum: 1 | 0

Maximum: 255 | 1000

Update requires: No interruption

GroupConfiguration

The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.

Required: No

Type: CognitoGroupConfiguration

Update requires: No interruption

UserPoolArn

The Amazon Resource Name (ARN) of the Amazon Cognito user pool that contains the identities to be authorized.

Required: Yes

Type: String

Pattern: ^arn:[a-zA-Z0-9-]+:cognito-idp:(([a-zA-Z0-9-]+:\d{12}:userpool/[\w-]+_[0-9a-zA-Z]+))$

Minimum: 1

Maximum: 255

Update requires: No interruption

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

CognitoGroupConfiguration

IdentitySourceConfiguration