pulumi-aws-kotlin/com.pulumi.aws.grafana.kotlin/WorkspaceSamlConfigurationArgs

WorkspaceSamlConfigurationArgs

data class WorkspaceSamlConfigurationArgs(val adminRoleValues: Output<List<String>>? = null, val allowedOrganizations: Output<List<String>>? = null, val editorRoleValues: Output<List<String>>? = null, val emailAssertion: Output<String>? = null, val groupsAssertion: Output<String>? = null, val idpMetadataUrl: Output<String>? = null, val idpMetadataXml: Output<String>? = null, val loginAssertion: Output<String>? = null, val loginValidityDuration: Output<Int>? = null, val nameAssertion: Output<String>? = null, val orgAssertion: Output<String>? = null, val roleAssertion: Output<String>? = null, val workspaceId: Output<String>? = null) : ConvertibleToJava<WorkspaceSamlConfigurationArgs>

Provides an Amazon Managed Grafana workspace SAML configuration resource.

Example Usage

Basic configuration

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.iam.Role;
import com.pulumi.aws.iam.RoleArgs;
import com.pulumi.aws.grafana.Workspace;
import com.pulumi.aws.grafana.WorkspaceArgs;
import com.pulumi.aws.grafana.WorkspaceSamlConfiguration;
import com.pulumi.aws.grafana.WorkspaceSamlConfigurationArgs;
import static com.pulumi.codegen.internal.Serialization.*;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var assume = new Role("assume", RoleArgs.builder()
            .assumeRolePolicy(serializeJson(
                jsonObject(
                    jsonProperty("Version", "2012-10-17"),
                    jsonProperty("Statement", jsonArray(jsonObject(
                        jsonProperty("Action", "sts:AssumeRole"),
                        jsonProperty("Effect", "Allow"),
                        jsonProperty("Sid", ""),
                        jsonProperty("Principal", jsonObject(
                            jsonProperty("Service", "grafana.amazonaws.com")
                        ))
                    )))
                )))
            .build());
        var exampleWorkspace = new Workspace("exampleWorkspace", WorkspaceArgs.builder()
            .accountAccessType("CURRENT_ACCOUNT")
            .authenticationProviders("SAML")
            .permissionType("SERVICE_MANAGED")
            .roleArn(assume.arn())
            .build());
        var exampleWorkspaceSamlConfiguration = new WorkspaceSamlConfiguration("exampleWorkspaceSamlConfiguration", WorkspaceSamlConfigurationArgs.builder()
            .editorRoleValues("editor")
            .idpMetadataUrl("https://my_idp_metadata.url")
            .workspaceId(exampleWorkspace.id())
            .build());
    }
}
Content copied to clipboard

Import

Grafana Workspace SAML configuration can be imported using the workspace's id, e.g.,

$ pulumi import aws:grafana/workspaceSamlConfiguration:WorkspaceSamlConfiguration example g-2054c75a02
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(adminRoleValues: Output<List<String>>? = null, allowedOrganizations: Output<List<String>>? = null, editorRoleValues: Output<List<String>>? = null, emailAssertion: Output<String>? = null, groupsAssertion: Output<String>? = null, idpMetadataUrl: Output<String>? = null, idpMetadataXml: Output<String>? = null, loginAssertion: Output<String>? = null, loginValidityDuration: Output<Int>? = null, nameAssertion: Output<String>? = null, orgAssertion: Output<String>? = null, roleAssertion: Output<String>? = null, workspaceId: Output<String>? = null)

Properties

Link copied to clipboard
val adminRoleValues: Output<List<String>>? = null

The admin role values.

Link copied to clipboard
val allowedOrganizations: Output<List<String>>? = null

The allowed organizations.

Link copied to clipboard
val editorRoleValues: Output<List<String>>? = null

The editor role values.

Link copied to clipboard
val emailAssertion: Output<String>? = null

The email assertion.

Link copied to clipboard
val groupsAssertion: Output<String>? = null

The groups assertion.

Link copied to clipboard
val idpMetadataUrl: Output<String>? = null

The IDP Metadata URL. Note that either idp_metadata_url or idp_metadata_xml (but not both) must be specified.

Link copied to clipboard
val idpMetadataXml: Output<String>? = null

The IDP Metadata XML. Note that either idp_metadata_url or idp_metadata_xml (but not both) must be specified.

Link copied to clipboard
val loginAssertion: Output<String>? = null

The login assertion.

Link copied to clipboard
val loginValidityDuration: Output<Int>? = null

The login validity duration.

Link copied to clipboard
val nameAssertion: Output<String>? = null

The name assertion.

Link copied to clipboard
val orgAssertion: Output<String>? = null

The org assertion.

Link copied to clipboard
val roleAssertion: Output<String>? = null

The role assertion.

Link copied to clipboard
val workspaceId: Output<String>? = null

The workspace id. The following arguments are optional:

Functions

Link copied to clipboard
open override fun toJava(): WorkspaceSamlConfigurationArgs