Skip to main content

Initializer 

import io.cdktn.cdktn.S3BackendAssumeRoleWithWebIdentityConfig;

S3BackendAssumeRoleWithWebIdentityConfig.builder()
//  .duration(java.lang.String)
//  .policy(java.lang.String)
//  .policyArns(java.util.List<java.lang.String>)
//  .roleArn(java.lang.String)
//  .sessionName(java.lang.String)
//  .webIdentityToken(java.lang.String)
//  .webIdentityTokenFile(java.lang.String)
    .build();

Properties

NameTypeDescription
durationjava.lang.String(Optional) The duration individual credentials will be valid.
policyjava.lang.String(Optional) IAM Policy JSON describing further restricting permissions for the IAM Role being assumed.
policyArnsjava.util.List< java.lang.String >(Optional) Set of Amazon Resource Names (ARNs) of IAM Policies describing further restricting permissions for the IAM Role being assumed.
roleArnjava.lang.String(Required) Amazon Resource Name (ARN) of the IAM Role to assume.
sessionNamejava.lang.String(Optional) Session name to use when assuming the role.
webIdentityTokenjava.lang.String(Optional) The value of a web identity token from an OpenID Connect (OIDC) or OAuth provider.
webIdentityTokenFilejava.lang.String(Optional) File containing a web identity token from an OpenID Connect (OIDC) or OAuth provider.

durationOptional 

public java.lang.String getDuration();
  • Type: java.lang.String
(Optional) The duration individual credentials will be valid. Credentials are automatically renewed up to the maximum defined by the AWS account. Specified using the format < hours >h< minutes >m< seconds >s with any unit being optional. For example, an hour and a half can be specified as 1h30m or 90m. Must be between 15 minutes (15m) and 12 hours (12h).

policyOptional 

public java.lang.String getPolicy();
  • Type: java.lang.String
(Optional) IAM Policy JSON describing further restricting permissions for the IAM Role being assumed.

policyArnsOptional 

public java.util.List<java.lang.String> getPolicyArns();
  • Type: java.util.List< java.lang.String >
(Optional) Set of Amazon Resource Names (ARNs) of IAM Policies describing further restricting permissions for the IAM Role being assumed.

roleArnOptional 

public java.lang.String getRoleArn();
  • Type: java.lang.String
(Required) Amazon Resource Name (ARN) of the IAM Role to assume. Can also be set with the AWS_ROLE_ARN environment variable.

sessionNameOptional 

public java.lang.String getSessionName();
  • Type: java.lang.String
(Optional) Session name to use when assuming the role. Can also be set with the AWS_ROLE_SESSION_NAME environment variable.

webIdentityTokenOptional 

public java.lang.String getWebIdentityToken();
  • Type: java.lang.String
(Optional) The value of a web identity token from an OpenID Connect (OIDC) or OAuth provider. One of web_identity_token or web_identity_token_file is required.

webIdentityTokenFileOptional 

public java.lang.String getWebIdentityTokenFile();
  • Type: java.lang.String
(Optional) File containing a web identity token from an OpenID Connect (OIDC) or OAuth provider. One of web_identity_token_file or web_identity_token is required. Can also be set with the AWS_WEB_IDENTITY_TOKEN_FILE environment variable.