Resource: aws_ssoadmin_instance_access_control_attributes

Provides a Single Sign-On (SSO) ABAC Resource: https://docs.aws.amazon.com/singlesignon/latest/userguide/abac.html

Example Usage

data "aws_ssoadmin_instances" "example" {}

resource "aws_ssoadmin_instance_access_control_attributes" "example" {
  instance_arn = tolist(data.aws_ssoadmin_instances.example.arns)[0]
  attribute {
    key = "name"
    value {
      source = ["$${path:name.givenName}"]
    }
  }
  attribute {
    key = "last"
    value {
      source = ["$${path:name.familyName}"]
    }
  }
}

Argument Reference

This resource supports the following arguments:

AccessControlAttribute

AccessControlAttributeValue

Attribute Reference

This resource exports the following attributes in addition to the arguments above:

Import

In Terraform v1.5.0 and later, use an import block to import SSO Account Assignments using the instance_arn. For example:

import {
  to = aws_ssoadmin_instance_access_control_attributes.example
  id = "arn:aws:sso:::instance/ssoins-0123456789abcdef"
}

Using terraform import, import SSO Account Assignments using the instance_arn. For example:

% terraform import aws_ssoadmin_instance_access_control_attributes.example arn:aws:sso:::instance/ssoins-0123456789abcdef