pulumi-aws-kotlin/com.pulumi.aws.cognito.kotlin/UserPoolArgs

UserPoolArgs

data class UserPoolArgs(val accountRecoverySetting: Output<UserPoolAccountRecoverySettingArgs>? = null, val adminCreateUserConfig: Output<UserPoolAdminCreateUserConfigArgs>? = null, val aliasAttributes: Output<List<String>>? = null, val autoVerifiedAttributes: Output<List<String>>? = null, val deletionProtection: Output<String>? = null, val deviceConfiguration: Output<UserPoolDeviceConfigurationArgs>? = null, val emailConfiguration: Output<UserPoolEmailConfigurationArgs>? = null, val emailVerificationMessage: Output<String>? = null, val emailVerificationSubject: Output<String>? = null, val lambdaConfig: Output<UserPoolLambdaConfigArgs>? = null, val mfaConfiguration: Output<String>? = null, val name: Output<String>? = null, val passwordPolicy: Output<UserPoolPasswordPolicyArgs>? = null, val schemas: Output<List<UserPoolSchemaArgs>>? = null, val smsAuthenticationMessage: Output<String>? = null, val smsConfiguration: Output<UserPoolSmsConfigurationArgs>? = null, val smsVerificationMessage: Output<String>? = null, val softwareTokenMfaConfiguration: Output<UserPoolSoftwareTokenMfaConfigurationArgs>? = null, val tags: Output<Map<String, String>>? = null, val userAttributeUpdateSettings: Output<UserPoolUserAttributeUpdateSettingsArgs>? = null, val userPoolAddOns: Output<UserPoolUserPoolAddOnsArgs>? = null, val usernameAttributes: Output<List<String>>? = null, val usernameConfiguration: Output<UserPoolUsernameConfigurationArgs>? = null, val verificationMessageTemplate: Output<UserPoolVerificationMessageTemplateArgs>? = null) : ConvertibleToJava<UserPoolArgs>

Provides a Cognito User Pool resource.

Example Usage

Basic configuration

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.cognito.UserPool;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var pool = new UserPool("pool");
    }
}
Content copied to clipboard

Enabling SMS and Software Token Multi-Factor Authentication

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.cognito.UserPool;
import com.pulumi.aws.cognito.UserPoolArgs;
import com.pulumi.aws.cognito.inputs.UserPoolSmsConfigurationArgs;
import com.pulumi.aws.cognito.inputs.UserPoolSoftwareTokenMfaConfigurationArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var example = new UserPool("example", UserPoolArgs.builder()
            .mfaConfiguration("ON")
            .smsAuthenticationMessage("Your code is {####}")
            .smsConfiguration(UserPoolSmsConfigurationArgs.builder()
                .externalId("example")
                .snsCallerArn(aws_iam_role.example().arn())
                .snsRegion("us-east-1")
                .build())
            .softwareTokenMfaConfiguration(UserPoolSoftwareTokenMfaConfigurationArgs.builder()
                .enabled(true)
                .build())
            .build());
    }
}
Content copied to clipboard

Using Account Recovery Setting

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.cognito.UserPool;
import com.pulumi.aws.cognito.UserPoolArgs;
import com.pulumi.aws.cognito.inputs.UserPoolAccountRecoverySettingArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var test = new UserPool("test", UserPoolArgs.builder()
            .accountRecoverySetting(UserPoolAccountRecoverySettingArgs.builder()
                .recoveryMechanisms(
                    UserPoolAccountRecoverySettingRecoveryMechanismArgs.builder()
                        .name("verified_email")
                        .priority(1)
                        .build(),
                    UserPoolAccountRecoverySettingRecoveryMechanismArgs.builder()
                        .name("verified_phone_number")
                        .priority(2)
                        .build())
                .build())
            .build());
    }
}
Content copied to clipboard

Import

Cognito User Pools can be imported using the id, e.g.,

$ pulumi import aws:cognito/userPool:UserPool pool us-west-2_abc123
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(accountRecoverySetting: Output<UserPoolAccountRecoverySettingArgs>? = null, adminCreateUserConfig: Output<UserPoolAdminCreateUserConfigArgs>? = null, aliasAttributes: Output<List<String>>? = null, autoVerifiedAttributes: Output<List<String>>? = null, deletionProtection: Output<String>? = null, deviceConfiguration: Output<UserPoolDeviceConfigurationArgs>? = null, emailConfiguration: Output<UserPoolEmailConfigurationArgs>? = null, emailVerificationMessage: Output<String>? = null, emailVerificationSubject: Output<String>? = null, lambdaConfig: Output<UserPoolLambdaConfigArgs>? = null, mfaConfiguration: Output<String>? = null, name: Output<String>? = null, passwordPolicy: Output<UserPoolPasswordPolicyArgs>? = null, schemas: Output<List<UserPoolSchemaArgs>>? = null, smsAuthenticationMessage: Output<String>? = null, smsConfiguration: Output<UserPoolSmsConfigurationArgs>? = null, smsVerificationMessage: Output<String>? = null, softwareTokenMfaConfiguration: Output<UserPoolSoftwareTokenMfaConfigurationArgs>? = null, tags: Output<Map<String, String>>? = null, userAttributeUpdateSettings: Output<UserPoolUserAttributeUpdateSettingsArgs>? = null, userPoolAddOns: Output<UserPoolUserPoolAddOnsArgs>? = null, usernameAttributes: Output<List<String>>? = null, usernameConfiguration: Output<UserPoolUsernameConfigurationArgs>? = null, verificationMessageTemplate: Output<UserPoolVerificationMessageTemplateArgs>? = null)

Properties

Link copied to clipboard
val accountRecoverySetting: Output<UserPoolAccountRecoverySettingArgs>? = null

Configuration block to define which verified available method a user can use to recover their forgotten password. Detailed below.

Link copied to clipboard
val adminCreateUserConfig: Output<UserPoolAdminCreateUserConfigArgs>? = null

Configuration block for creating a new user profile. Detailed below.

Link copied to clipboard
val aliasAttributes: Output<List<String>>? = null

Attributes supported as an alias for this user pool. Valid values: phone_number, email, or preferred_username. Conflicts with username_attributes.

Link copied to clipboard
val autoVerifiedAttributes: Output<List<String>>? = null

Attributes to be auto-verified. Valid values: email, phone_number.

Link copied to clipboard
val deletionProtection: Output<String>? = null

When active, DeletionProtection prevents accidental deletion of your user pool. Before you can delete a user pool that you have protected against deletion, you must deactivate this feature. Valid values are ACTIVE and INACTIVE, Default value is INACTIVE.

Link copied to clipboard
val deviceConfiguration: Output<UserPoolDeviceConfigurationArgs>? = null

Configuration block for the user pool's device tracking. Detailed below.

Link copied to clipboard
val emailConfiguration: Output<UserPoolEmailConfigurationArgs>? = null

Configuration block for configuring email. Detailed below.

Link copied to clipboard
val emailVerificationMessage: Output<String>? = null

String representing the email verification message. Conflicts with verification_message_template configuration block email_message argument.

Link copied to clipboard
val emailVerificationSubject: Output<String>? = null

String representing the email verification subject. Conflicts with verification_message_template configuration block email_subject argument.

Link copied to clipboard
val lambdaConfig: Output<UserPoolLambdaConfigArgs>? = null

Configuration block for the AWS Lambda triggers associated with the user pool. Detailed below.

Link copied to clipboard
val mfaConfiguration: Output<String>? = null

Multi-Factor Authentication (MFA) configuration for the User Pool. Defaults of OFF. Valid values are OFF (MFA Tokens are not required), ON (MFA is required for all users to sign in; requires at least one of sms_configuration or software_token_mfa_configuration to be configured), or OPTIONAL (MFA Will be required only for individual users who have MFA Enabled; requires at least one of sms_configuration or software_token_mfa_configuration to be configured).

Link copied to clipboard
val name: Output<String>? = null

Name of the user pool. The following arguments are optional:

Link copied to clipboard
val passwordPolicy: Output<UserPoolPasswordPolicyArgs>? = null

Configuration blocked for information about the user pool password policy. Detailed below.

Link copied to clipboard
val schemas: Output<List<UserPoolSchemaArgs>>? = null

Configuration block for the schema attributes of a user pool. Detailed below. Schema attributes from the standard attribute set only need to be specified if they are different from the default configuration. Attributes can be added, but not modified or removed. Maximum of 50 attributes.

Link copied to clipboard
val smsAuthenticationMessage: Output<String>? = null

String representing the SMS authentication message. The Message must contain the {####} placeholder, which will be replaced with the code.

Link copied to clipboard
val smsConfiguration: Output<UserPoolSmsConfigurationArgs>? = null

Configuration block for Short Message Service (SMS) settings. Detailed below. These settings apply to SMS user verification and SMS Multi-Factor Authentication (MFA). Due to Cognito API restrictions, the SMS configuration cannot be removed without recreating the Cognito User Pool. For user data safety, this resource will ignore the removal of this configuration by disabling drift detection.

Link copied to clipboard
val smsVerificationMessage: Output<String>? = null

String representing the SMS verification message. Conflicts with verification_message_template configuration block sms_message argument.

Link copied to clipboard
val softwareTokenMfaConfiguration: Output<UserPoolSoftwareTokenMfaConfigurationArgs>? = null

Configuration block for software token Mult-Factor Authentication (MFA) settings. Detailed below.

Link copied to clipboard
val tags: Output<Map<String, String>>? = null

Map of tags to assign to the User Pool. If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

Link copied to clipboard
val userAttributeUpdateSettings: Output<UserPoolUserAttributeUpdateSettingsArgs>? = null

Configuration block for user attribute update settings. Detailed below.

Link copied to clipboard
val usernameAttributes: Output<List<String>>? = null

Whether email addresses or phone numbers can be specified as usernames when a user signs up. Conflicts with alias_attributes.

Link copied to clipboard
val usernameConfiguration: Output<UserPoolUsernameConfigurationArgs>? = null

Configuration block for username configuration. Detailed below.

Link copied to clipboard
val userPoolAddOns: Output<UserPoolUserPoolAddOnsArgs>? = null

Configuration block for user pool add-ons to enable user pool advanced security mode features. Detailed below.

Link copied to clipboard
val verificationMessageTemplate: Output<UserPoolVerificationMessageTemplateArgs>? = null

Configuration block for verification message templates. Detailed below.

Functions

Link copied to clipboard
open override fun toJava(): UserPoolArgs