Resource: aws_ssoadmin_trusted_token_issuer

Terraform resource for managing an AWS SSO Admin Trusted Token Issuer.

Example Usage

Basic Usage

data "aws_ssoadmin_instances" "example" {}

resource "aws_ssoadmin_trusted_token_issuer" "example" {
  name                      = "example"
  instance_arn              = tolist(data.aws_ssoadmin_instances.example.arns)[0]
  trusted_token_issuer_type = "OIDC_JWT"

  trusted_token_issuer_configuration {
    oidc_jwt_configuration {
      claim_attribute_path          = "email"
      identity_store_attribute_path = "emails.value"
      issuer_url                    = "https://example.com"
      jwks_retrieval_option         = "OPEN_ID_DISCOVERY"
    }
  }
}

Argument Reference

The following arguments are required:

The following arguments are optional:

trusted_token_issuer_configuration Argument Reference

oidc_jwt_configuration Argument Reference

Attribute Reference

This resource exports the following attributes in addition to the arguments above:

Import

In Terraform v1.5.0 and later, use an import block to import SSO Admin Trusted Token Issuer using the id. For example:

import {
  to = aws_ssoadmin_trusted_token_issuer.example
  id = "arn:aws:sso::012345678901:trustedTokenIssuer/ssoins-lu1ye3gew4mbc7ju/tti-2657c556-9707-11ee-b9d1-0242ac120002"
}

Using terraform import, import SSO Admin Trusted Token Issuer using the id. For example:

% terraform import aws_ssoadmin_trusted_token_issuer.example arn:aws:sso::012345678901:trustedTokenIssuer/ssoins-lu1ye3gew4mbc7ju/tti-2657c556-9707-11ee-b9d1-0242ac120002