AWS Native is in preview. AWS Classic is fully supported.
aws-native.iot.Authorizer
Explore with Pulumi AI
AWS Native is in preview. AWS Classic is fully supported.
Creates an authorizer.
Create Authorizer Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Authorizer(name: string, args: AuthorizerArgs, opts?: CustomResourceOptions);
@overload
def Authorizer(resource_name: str,
args: AuthorizerArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Authorizer(resource_name: str,
opts: Optional[ResourceOptions] = None,
authorizer_function_arn: Optional[str] = None,
authorizer_name: Optional[str] = None,
enable_caching_for_http: Optional[bool] = None,
signing_disabled: Optional[bool] = None,
status: Optional[AuthorizerStatus] = None,
tags: Optional[Sequence[_root_inputs.TagArgs]] = None,
token_key_name: Optional[str] = None,
token_signing_public_keys: Optional[Mapping[str, str]] = None)
func NewAuthorizer(ctx *Context, name string, args AuthorizerArgs, opts ...ResourceOption) (*Authorizer, error)
public Authorizer(string name, AuthorizerArgs args, CustomResourceOptions? opts = null)
public Authorizer(String name, AuthorizerArgs args)
public Authorizer(String name, AuthorizerArgs args, CustomResourceOptions options)
type: aws-native:iot:Authorizer
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args AuthorizerArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AuthorizerArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AuthorizerArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AuthorizerArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AuthorizerArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Authorizer Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The Authorizer resource accepts the following input properties:
- string
- The authorizer's Lambda function ARN.
- string
- The authorizer name.
- Enable
Caching boolFor Http - When
true
, the result from the authorizer's Lambda function is cached for clients that use persistent HTTP connections. The results are cached for the time specified by the Lambda function inrefreshAfterInSeconds
. This value doesn't affect authorization of clients that use MQTT connections. - Signing
Disabled bool - Specifies whether AWS IoT validates the token signature in an authorization request.
- Status
Pulumi.
Aws Native. Io T. Authorizer Status The status of the authorizer.
Valid values:
ACTIVE
|INACTIVE
- List<Pulumi.
Aws Native. Inputs. Tag> Metadata which can be used to manage the custom authorizer.
For URI Request parameters use format: ...key1=value1&key2=value2...
For the CLI command-line parameter use format: &&tags "key1=value1&key2=value2..."
For the cli-input-json file use format: "tags": "key1=value1&key2=value2..."
- Token
Key stringName - The key used to extract the token from the HTTP headers.
- Token
Signing Dictionary<string, string>Public Keys - The public keys used to validate the token signature returned by your custom authentication service.
- string
- The authorizer's Lambda function ARN.
- string
- The authorizer name.
- Enable
Caching boolFor Http - When
true
, the result from the authorizer's Lambda function is cached for clients that use persistent HTTP connections. The results are cached for the time specified by the Lambda function inrefreshAfterInSeconds
. This value doesn't affect authorization of clients that use MQTT connections. - Signing
Disabled bool - Specifies whether AWS IoT validates the token signature in an authorization request.
- Status
Authorizer
Status The status of the authorizer.
Valid values:
ACTIVE
|INACTIVE
- Tag
Args Metadata which can be used to manage the custom authorizer.
For URI Request parameters use format: ...key1=value1&key2=value2...
For the CLI command-line parameter use format: &&tags "key1=value1&key2=value2..."
For the cli-input-json file use format: "tags": "key1=value1&key2=value2..."
- Token
Key stringName - The key used to extract the token from the HTTP headers.
- Token
Signing map[string]stringPublic Keys - The public keys used to validate the token signature returned by your custom authentication service.
- String
- The authorizer's Lambda function ARN.
- String
- The authorizer name.
- enable
Caching BooleanFor Http - When
true
, the result from the authorizer's Lambda function is cached for clients that use persistent HTTP connections. The results are cached for the time specified by the Lambda function inrefreshAfterInSeconds
. This value doesn't affect authorization of clients that use MQTT connections. - signing
Disabled Boolean - Specifies whether AWS IoT validates the token signature in an authorization request.
- status
Authorizer
Status The status of the authorizer.
Valid values:
ACTIVE
|INACTIVE
- List<Tag>
Metadata which can be used to manage the custom authorizer.
For URI Request parameters use format: ...key1=value1&key2=value2...
For the CLI command-line parameter use format: &&tags "key1=value1&key2=value2..."
For the cli-input-json file use format: "tags": "key1=value1&key2=value2..."
- token
Key StringName - The key used to extract the token from the HTTP headers.
- token
Signing Map<String,String>Public Keys - The public keys used to validate the token signature returned by your custom authentication service.
- string
- The authorizer's Lambda function ARN.
- string
- The authorizer name.
- enable
Caching booleanFor Http - When
true
, the result from the authorizer's Lambda function is cached for clients that use persistent HTTP connections. The results are cached for the time specified by the Lambda function inrefreshAfterInSeconds
. This value doesn't affect authorization of clients that use MQTT connections. - signing
Disabled boolean - Specifies whether AWS IoT validates the token signature in an authorization request.
- status
Authorizer
Status The status of the authorizer.
Valid values:
ACTIVE
|INACTIVE
- Tag[]
Metadata which can be used to manage the custom authorizer.
For URI Request parameters use format: ...key1=value1&key2=value2...
For the CLI command-line parameter use format: &&tags "key1=value1&key2=value2..."
For the cli-input-json file use format: "tags": "key1=value1&key2=value2..."
- token
Key stringName - The key used to extract the token from the HTTP headers.
- token
Signing {[key: string]: string}Public Keys - The public keys used to validate the token signature returned by your custom authentication service.
- str
- The authorizer's Lambda function ARN.
- str
- The authorizer name.
- enable_
caching_ boolfor_ http - When
true
, the result from the authorizer's Lambda function is cached for clients that use persistent HTTP connections. The results are cached for the time specified by the Lambda function inrefreshAfterInSeconds
. This value doesn't affect authorization of clients that use MQTT connections. - signing_
disabled bool - Specifies whether AWS IoT validates the token signature in an authorization request.
- status
Authorizer
Status The status of the authorizer.
Valid values:
ACTIVE
|INACTIVE
- Sequence[Tag
Args] Metadata which can be used to manage the custom authorizer.
For URI Request parameters use format: ...key1=value1&key2=value2...
For the CLI command-line parameter use format: &&tags "key1=value1&key2=value2..."
For the cli-input-json file use format: "tags": "key1=value1&key2=value2..."
- token_
key_ strname - The key used to extract the token from the HTTP headers.
- token_
signing_ Mapping[str, str]public_ keys - The public keys used to validate the token signature returned by your custom authentication service.
- String
- The authorizer's Lambda function ARN.
- String
- The authorizer name.
- enable
Caching BooleanFor Http - When
true
, the result from the authorizer's Lambda function is cached for clients that use persistent HTTP connections. The results are cached for the time specified by the Lambda function inrefreshAfterInSeconds
. This value doesn't affect authorization of clients that use MQTT connections. - signing
Disabled Boolean - Specifies whether AWS IoT validates the token signature in an authorization request.
- status "ACTIVE" | "INACTIVE"
The status of the authorizer.
Valid values:
ACTIVE
|INACTIVE
- List<Property Map>
Metadata which can be used to manage the custom authorizer.
For URI Request parameters use format: ...key1=value1&key2=value2...
For the CLI command-line parameter use format: &&tags "key1=value1&key2=value2..."
For the cli-input-json file use format: "tags": "key1=value1&key2=value2..."
- token
Key StringName - The key used to extract the token from the HTTP headers.
- token
Signing Map<String>Public Keys - The public keys used to validate the token signature returned by your custom authentication service.
Outputs
All input properties are implicitly available as output properties. Additionally, the Authorizer resource produces the following output properties:
Supporting Types
AuthorizerStatus, AuthorizerStatusArgs
- Active
- ACTIVE
- Inactive
- INACTIVE
- Authorizer
Status Active - ACTIVE
- Authorizer
Status Inactive - INACTIVE
- Active
- ACTIVE
- Inactive
- INACTIVE
- Active
- ACTIVE
- Inactive
- INACTIVE
- ACTIVE
- ACTIVE
- INACTIVE
- INACTIVE
- "ACTIVE"
- ACTIVE
- "INACTIVE"
- INACTIVE
Tag, TagArgs
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
AWS Native is in preview. AWS Classic is fully supported.