Skip to main content

Initializer

import { S3BackendAssumeRoleConfig } from 'cdktn'

const s3BackendAssumeRoleConfig: S3BackendAssumeRoleConfig = { ... }

Properties

NameTypeDescription
roleArnstring(Required) Amazon Resource Name (ARN) of the IAM Role to assume.
durationstring(Optional) The duration individual credentials will be valid.
externalIdstring(Optional) External identifier to use when assuming the role.
policystring(Optional) IAM Policy JSON describing further restricting permissions for the IAM Role being assumed.
policyArnsstring[](Optional) Set of Amazon Resource Names (ARNs) of IAM Policies describing further restricting permissions for the IAM Role being assumed.
sessionNamestring(Optional) Session name to use when assuming the role.
sourceIdentitystring(Optional) Source identity specified by the principal assuming the.
tags{[ key: string ]: string}(Optional) Map of assume role session tags.
transitiveTagKeysstring[](Optional) Set of assume role session tag keys to pass to any subsequent sessions.

roleArnRequired

public readonly roleArn: string;
  • Type: string
(Required) Amazon Resource Name (ARN) of the IAM Role to assume.

durationOptional

public readonly duration: string;
  • Type: string
(Optional) The duration individual credentials will be valid. Credentials are automatically renewed up to the maximum defined by the AWS account. Specified using the format < hours >h< minutes >m< seconds >s with any unit being optional. For example, an hour and a half can be specified as 1h30m or 90m. Must be between 15 minutes (15m) and 12 hours (12h).

externalIdOptional

public readonly externalId: string;
  • Type: string
(Optional) External identifier to use when assuming the role.

policyOptional

public readonly policy: string;
  • Type: string
(Optional) IAM Policy JSON describing further restricting permissions for the IAM Role being assumed.

policyArnsOptional

public readonly policyArns: string[];
  • Type: string[]
(Optional) Set of Amazon Resource Names (ARNs) of IAM Policies describing further restricting permissions for the IAM Role being assumed.

sessionNameOptional

public readonly sessionName: string;
  • Type: string
(Optional) Session name to use when assuming the role.

sourceIdentityOptional

public readonly sourceIdentity: string;
  • Type: string
(Optional) Source identity specified by the principal assuming the.

tagsOptional

public readonly tags: {[ key: string ]: string};
  • Type: {[ key: string ]: string}
(Optional) Map of assume role session tags.

transitiveTagKeysOptional

public readonly transitiveTagKeys: string[];
  • Type: string[]
(Optional) Set of assume role session tag keys to pass to any subsequent sessions.