pulumi-aws-kotlin/com.pulumi.aws.rolesanywhere.kotlin/ProfileArgs

ProfileArgs

data class ProfileArgs(val durationSeconds: Output<Int>? = null, val enabled: Output<Boolean>? = null, val managedPolicyArns: Output<List<String>>? = null, val name: Output<String>? = null, val requireInstanceProperties: Output<Boolean>? = null, val roleArns: Output<List<String>>? = null, val sessionPolicy: Output<String>? = null, val tags: Output<Map<String, String>>? = null) : ConvertibleToJava<ProfileArgs>

Resource for managing a Roles Anywhere Profile.

Example Usage

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.iam.Role;
import com.pulumi.aws.iam.RoleArgs;
import com.pulumi.aws.rolesanywhere.Profile;
import com.pulumi.aws.rolesanywhere.ProfileArgs;
import static com.pulumi.codegen.internal.Serialization.*;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var testRole = new Role("testRole", RoleArgs.builder()
            .path("/")
            .assumeRolePolicy(serializeJson(
                jsonObject(
                    jsonProperty("Version", "2012-10-17"),
                    jsonProperty("Statement", jsonArray(jsonObject(
                        jsonProperty("Action", jsonArray(
                            "sts:AssumeRole",
                            "sts:TagSession",
                            "sts:SetSourceIdentity"
                        )),
                        jsonProperty("Principal", jsonObject(
                            jsonProperty("Service", "rolesanywhere.amazonaws.com")
                        )),
                        jsonProperty("Effect", "Allow"),
                        jsonProperty("Sid", "")
                    )))
                )))
            .build());
        var testProfile = new Profile("testProfile", ProfileArgs.builder()
            .roleArns(testRole.arn())
            .build());
    }
}
Content copied to clipboard

Import

aws_rolesanywhere_profile can be imported using its id, e.g.

$ pulumi import aws:rolesanywhere/profile:Profile example db138a85-8925-4f9f-a409-08231233cacf
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(durationSeconds: Output<Int>? = null, enabled: Output<Boolean>? = null, managedPolicyArns: Output<List<String>>? = null, name: Output<String>? = null, requireInstanceProperties: Output<Boolean>? = null, roleArns: Output<List<String>>? = null, sessionPolicy: Output<String>? = null, tags: Output<Map<String, String>>? = null)

Properties

Link copied to clipboard
val durationSeconds: Output<Int>? = null

The number of seconds the vended session credentials are valid for. Defaults to 3600.

Link copied to clipboard
val enabled: Output<Boolean>? = null

Whether or not the Profile is enabled.

Link copied to clipboard
val managedPolicyArns: Output<List<String>>? = null

A list of managed policy ARNs that apply to the vended session credentials.

Link copied to clipboard
val name: Output<String>? = null

The name of the Profile.

Link copied to clipboard
val requireInstanceProperties: Output<Boolean>? = null

Specifies whether instance properties are required in CreateSession requests with this profile.

Link copied to clipboard
val roleArns: Output<List<String>>? = null

A list of IAM roles that this profile can assume

Link copied to clipboard
val sessionPolicy: Output<String>? = null

A session policy that applies to the trust boundary of the vended session credentials.

Link copied to clipboard
val tags: Output<Map<String, String>>? = null

A map of tags to assign to the resource. If configured with a provider default_tags configuration block present, tags with matching keys will overwrite those defined at the provider-level.

Functions

Link copied to clipboard
open override fun toJava(): ProfileArgs