pulumi-alicloud-kotlin/com.pulumi.alicloud.kotlin.inputs/ProviderAssumeRoleWithOidcArgs

ProviderAssumeRoleWithOidcArgs

data class ProviderAssumeRoleWithOidcArgs(val oidcProviderArn: Output<String>, val oidcToken: Output<String>? = null, val oidcTokenFile: Output<String>? = null, val policy: Output<String>? = null, val roleArn: Output<String>, val roleSessionName: Output<String>? = null, val sessionExpiration: Output<Int>? = null) : ConvertibleToJava<ProviderAssumeRoleWithOidcArgs>

Constructors

constructor(oidcProviderArn: Output<String>, oidcToken: Output<String>? = null, oidcTokenFile: Output<String>? = null, policy: Output<String>? = null, roleArn: Output<String>, roleSessionName: Output<String>? = null, sessionExpiration: Output<Int>? = null)

Properties

oidcProviderArn

val oidcProviderArn: Output<String>

ARN of the OIDC IdP.

oidcToken

val oidcToken: Output<String>? = null

oidcTokenFile

val oidcTokenFile: Output<String>? = null

The file path of OIDC token that is issued by the external IdP.

policy

val policy: Output<String>? = null

The policy that specifies the permissions of the returned STS token. You can use this parameter to grant the STS token fewer permissions than the permissions granted to the RAM role.

roleArn

val roleArn: Output<String>

ARN of a RAM role to assume prior to making API calls.

roleSessionName

val roleSessionName: Output<String>? = null

The custom name of the role session. Set this parameter based on your business requirements. In most cases, this parameter is set to the identity of the user who calls the operation, for example, the username.

sessionExpiration

val sessionExpiration: Output<Int>? = null

The validity period of the STS token. Unit: seconds. Default value: 3600. Minimum value: 900. Maximum value: the value of the MaxSessionDuration parameter when creating a ram role.

Functions

toJava

open override fun toJava(): ProviderAssumeRoleWithOidcArgs