aws-cdk-lib.aws_rolesanywhere.CfnProfileProps

interface CfnProfileProps

LanguageType name
.NETAmazon.CDK.AWS.RolesAnywhere.CfnProfileProps
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsrolesanywhere#CfnProfileProps
Javasoftware.amazon.awscdk.services.rolesanywhere.CfnProfileProps
Pythonaws_cdk.aws_rolesanywhere.CfnProfileProps
TypeScript aws-cdk-lib » aws_rolesanywhere » CfnProfileProps

Properties for defining a CfnProfile.

Example

// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
import { aws_rolesanywhere as rolesanywhere } from 'aws-cdk-lib';
const cfnProfileProps: rolesanywhere.CfnProfileProps = {
  name: 'name',
  roleArns: ['roleArns'],

  // the properties below are optional
  durationSeconds: 123,
  enabled: false,
  managedPolicyArns: ['managedPolicyArns'],
  requireInstanceProperties: false,
  sessionPolicy: 'sessionPolicy',
  tags: [{
    key: 'key',
    value: 'value',
  }],
};

Properties

NameTypeDescription
namestringThe name of the profile.
roleArnsstring[]A list of IAM role ARNs.
durationSeconds?numberSets the maximum number of seconds that vended temporary credentials through CreateSession will be valid for, between 900 and 3600.
enabled?boolean | IResolvableIndicates whether the profile is enabled.
managedPolicyArns?string[]A list of managed policy ARNs that apply to the vended session credentials.
requireInstanceProperties?boolean | IResolvableSpecifies whether instance properties are required in temporary credential requests with this profile.
sessionPolicy?stringA session policy that applies to the trust boundary of the vended session credentials.
tags?CfnTag[]The tags to attach to the profile.

name

Type: string

The name of the profile.


roleArns

Type: string[]

A list of IAM role ARNs.

During CreateSession , if a matching role ARN is provided, the properties in this profile will be applied to the intersection session policy.


durationSeconds?

Type: number (optional)

Sets the maximum number of seconds that vended temporary credentials through CreateSession will be valid for, between 900 and 3600.


enabled?

Type: boolean | IResolvable (optional)

Indicates whether the profile is enabled.


managedPolicyArns?

Type: string[] (optional)

A list of managed policy ARNs that apply to the vended session credentials.


requireInstanceProperties?

Type: boolean | IResolvable (optional)

Specifies whether instance properties are required in temporary credential requests with this profile.


sessionPolicy?

Type: string (optional)

A session policy that applies to the trust boundary of the vended session credentials.


tags?

Type: CfnTag[] (optional)

The tags to attach to the profile.