Skip to main content

Initializer 

import cdktn

cdktn.S3BackendAssumeRoleConfig(
  role_arn: str,
  duration: str = None,
  external_id: str = None,
  policy: str = None,
  policy_arns: typing.List[str] = None,
  session_name: str = None,
  source_identity: str = None,
  tags: typing.Mapping[str] = None,
  transitive_tag_keys: typing.List[str] = None
)

Properties

NameTypeDescription
role_arnstr(Required) Amazon Resource Name (ARN) of the IAM Role to assume.
durationstr(Optional) The duration individual credentials will be valid.
external_idstr(Optional) External identifier to use when assuming the role.
policystr(Optional) IAM Policy JSON describing further restricting permissions for the IAM Role being assumed.
policy_arnstyping.List[str](Optional) Set of Amazon Resource Names (ARNs) of IAM Policies describing further restricting permissions for the IAM Role being assumed.
session_namestr(Optional) Session name to use when assuming the role.
source_identitystr(Optional) Source identity specified by the principal assuming the.
tagstyping.Mapping[str](Optional) Map of assume role session tags.
transitive_tag_keystyping.List[str](Optional) Set of assume role session tag keys to pass to any subsequent sessions.

role_arnRequired 

role_arn: str
  • Type: str
(Required) Amazon Resource Name (ARN) of the IAM Role to assume.

durationOptional 

duration: str
  • Type: str
(Optional) The duration individual credentials will be valid. Credentials are automatically renewed up to the maximum defined by the AWS account. Specified using the format < hours >h< minutes >m< seconds >s with any unit being optional. For example, an hour and a half can be specified as 1h30m or 90m. Must be between 15 minutes (15m) and 12 hours (12h).

external_idOptional 

external_id: str
  • Type: str
(Optional) External identifier to use when assuming the role.

policyOptional 

policy: str
  • Type: str
(Optional) IAM Policy JSON describing further restricting permissions for the IAM Role being assumed.

policy_arnsOptional 

policy_arns: typing.List[str]
  • Type: typing.List[str]
(Optional) Set of Amazon Resource Names (ARNs) of IAM Policies describing further restricting permissions for the IAM Role being assumed.

session_nameOptional 

session_name: str
  • Type: str
(Optional) Session name to use when assuming the role.

source_identityOptional 

source_identity: str
  • Type: str
(Optional) Source identity specified by the principal assuming the.

tagsOptional 

tags: typing.Mapping[str]
  • Type: typing.Mapping[str]
(Optional) Map of assume role session tags.

transitive_tag_keysOptional 

transitive_tag_keys: typing.List[str]
  • Type: typing.List[str]
(Optional) Set of assume role session tag keys to pass to any subsequent sessions.