Class: Aws::SSOAdmin::Types::AccessControlAttribute
- Inherits:
-
Struct
- Object
- Struct
- Aws::SSOAdmin::Types::AccessControlAttribute
- Defined in:
- gems/aws-sdk-ssoadmin/lib/aws-sdk-ssoadmin/types.rb
Overview
These are IAM Identity Center identity store attributes that you can
configure for use in attributes-based access control (ABAC). You can
create permissions policies that determine who can access your AWS
resources based upon the configured attribute values. When you enable
ABAC and specify AccessControlAttributes
, IAM Identity Center passes
the attribute values of the authenticated user into IAM for use in
policy evaluation.
Constant Summary collapse
- SENSITIVE =
[]
Instance Attribute Summary collapse
-
#key ⇒ String
The name of the attribute associated with your identities in your identity source.
-
#value ⇒ Types::AccessControlAttributeValue
The value used for mapping a specified attribute to an identity source.
Instance Attribute Details
#key ⇒ String
The name of the attribute associated with your identities in your identity source. This is used to map a specified attribute in your identity source with an attribute in IAM Identity Center.
34 35 36 37 38 39 |
# File 'gems/aws-sdk-ssoadmin/lib/aws-sdk-ssoadmin/types.rb', line 34 class AccessControlAttribute < Struct.new( :key, :value) SENSITIVE = [] include Aws::Structure end |
#value ⇒ Types::AccessControlAttributeValue
The value used for mapping a specified attribute to an identity source.
34 35 36 37 38 39 |
# File 'gems/aws-sdk-ssoadmin/lib/aws-sdk-ssoadmin/types.rb', line 34 class AccessControlAttribute < Struct.new( :key, :value) SENSITIVE = [] include Aws::Structure end |