Skip to main content

Initializer 

import { S3BackendAssumeRoleConfig } from 'cdktn'

const s3BackendAssumeRoleConfig: S3BackendAssumeRoleConfig = { ... }

Properties

NameTypeDescription
roleArnstring(Required) Amazon Resource Name (ARN) of the IAM Role to assume.
durationstring(Optional) The duration individual credentials will be valid.
externalIdstring(Optional) External identifier to use when assuming the role.
policystring(Optional) IAM Policy JSON describing further restricting permissions for the IAM Role being assumed.
policyArnsstring[](Optional) Set of Amazon Resource Names (ARNs) of IAM Policies describing further restricting permissions for the IAM Role being assumed.
sessionNamestring(Optional) Session name to use when assuming the role.
sourceIdentitystring(Optional) Source identity specified by the principal assuming the.
tags{[ key: string ]: string}(Optional) Map of assume role session tags.
transitiveTagKeysstring[](Optional) Set of assume role session tag keys to pass to any subsequent sessions.

roleArnRequired 

public readonly roleArn: string;
  • Type: string
(Required) Amazon Resource Name (ARN) of the IAM Role to assume.

durationOptional 

public readonly duration: string;
  • Type: string
(Optional) The duration individual credentials will be valid. Credentials are automatically renewed up to the maximum defined by the AWS account. Specified using the format < hours >h< minutes >m< seconds >s with any unit being optional. For example, an hour and a half can be specified as 1h30m or 90m. Must be between 15 minutes (15m) and 12 hours (12h).

externalIdOptional 

public readonly externalId: string;
  • Type: string
(Optional) External identifier to use when assuming the role.

policyOptional 

public readonly policy: string;
  • Type: string
(Optional) IAM Policy JSON describing further restricting permissions for the IAM Role being assumed.

policyArnsOptional 

public readonly policyArns: string[];
  • Type: string[]
(Optional) Set of Amazon Resource Names (ARNs) of IAM Policies describing further restricting permissions for the IAM Role being assumed.

sessionNameOptional 

public readonly sessionName: string;
  • Type: string
(Optional) Session name to use when assuming the role.

sourceIdentityOptional 

public readonly sourceIdentity: string;
  • Type: string
(Optional) Source identity specified by the principal assuming the.

tagsOptional 

public readonly tags: {[ key: string ]: string};
  • Type: {[ key: string ]: string}
(Optional) Map of assume role session tags.

transitiveTagKeysOptional 

public readonly transitiveTagKeys: string[];
  • Type: string[]
(Optional) Set of assume role session tag keys to pass to any subsequent sessions.