Class: Aws::VerifiedPermissions::Types::OpenIdConnectAccessTokenConfiguration

Inherits:

Struct

• Object
• Struct
• Aws::VerifiedPermissions::Types::OpenIdConnectAccessTokenConfiguration

Includes:

Structure

Defined in:

lib/aws-sdk-verifiedpermissions/types.rb

Overview

The configuration of an OpenID Connect (OIDC) identity source for handling access token claims. Contains the claim that you want to identify as the principal in an authorization request, and the values of the ‘aud` claim, or audiences, that you want to accept.

This data type is part of a [OpenIdConnectTokenSelection] structure, which is a parameter of [CreateIdentitySource].

[1]: docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_OpenIdConnectTokenSelection.html [2]: docs.aws.amazon.com/verifiedpermissions/latest/apireference/API_CreateIdentitySource.html

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[:principal_id_claim]

Instance Attribute Summary

• #audiences ⇒ Array<String>

  The access token ‘aud` claim values that you want to accept in your policy store.

• #principal_id_claim ⇒ String

  The claim that determines the principal in OIDC access tokens.

Instance Attribute Details

#audiences ⇒ Array<String>

The access token ‘aud` claim values that you want to accept in your policy store. For example, `myapp.example.com, myapp2.example.com`.

Returns:

• (Array<String>)

# File 'lib/aws-sdk-verifiedpermissions/types.rb', line 2650

class OpenIdConnectAccessTokenConfiguration < Struct.new(
  :principal_id_claim,
  :audiences)
  SENSITIVE = [:principal_id_claim]
  include Aws::Structure
end

#principal_id_claim ⇒ String

The claim that determines the principal in OIDC access tokens. For example, ‘sub`.

Returns:

• (String)

# File 'lib/aws-sdk-verifiedpermissions/types.rb', line 2650

class OpenIdConnectAccessTokenConfiguration < Struct.new(
  :principal_id_claim,
  :audiences)
  SENSITIVE = [:principal_id_claim]
  include Aws::Structure
end