Docs
PackagesAWS Native is in preview. AWS Classic is fully supported.
aws-native.sso.getPermissionSet
Explore with Pulumi AI
AWS Native is in preview. AWS Classic is fully supported.
Resource Type definition for SSO PermissionSet
Using getPermissionSet
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getPermissionSet(args: GetPermissionSetArgs, opts?: InvokeOptions): Promise<GetPermissionSetResult>
function getPermissionSetOutput(args: GetPermissionSetOutputArgs, opts?: InvokeOptions): Output<GetPermissionSetResult>def get_permission_set(instance_arn: Optional[str] = None,
permission_set_arn: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetPermissionSetResult
def get_permission_set_output(instance_arn: Optional[pulumi.Input[str]] = None,
permission_set_arn: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetPermissionSetResult]func LookupPermissionSet(ctx *Context, args *LookupPermissionSetArgs, opts ...InvokeOption) (*LookupPermissionSetResult, error)
func LookupPermissionSetOutput(ctx *Context, args *LookupPermissionSetOutputArgs, opts ...InvokeOption) LookupPermissionSetResultOutput> Note: This function is named LookupPermissionSet in the Go SDK.
public static class GetPermissionSet
{
public static Task<GetPermissionSetResult> InvokeAsync(GetPermissionSetArgs args, InvokeOptions? opts = null)
public static Output<GetPermissionSetResult> Invoke(GetPermissionSetInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetPermissionSetResult> getPermissionSet(GetPermissionSetArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
function: aws-native:sso:getPermissionSet
arguments:
# arguments dictionaryThe following arguments are supported:
- Instance
Arn string - The sso instance arn that the permission set is owned.
- Permission
Set stringArn - The permission set that the policy will be attached to
- Instance
Arn string - The sso instance arn that the permission set is owned.
- Permission
Set stringArn - The permission set that the policy will be attached to
- instance
Arn String - The sso instance arn that the permission set is owned.
- permission
Set StringArn - The permission set that the policy will be attached to
- instance
Arn string - The sso instance arn that the permission set is owned.
- permission
Set stringArn - The permission set that the policy will be attached to
- instance_
arn str - The sso instance arn that the permission set is owned.
- permission_
set_ strarn - The permission set that the policy will be attached to
- instance
Arn String - The sso instance arn that the permission set is owned.
- permission
Set StringArn - The permission set that the policy will be attached to
getPermissionSet Result
The following output properties are available:
- Customer
Managed List<Pulumi.Policy References Aws Native. Sso. Outputs. Permission Set Customer Managed Policy Reference> - Specifies the names and paths of the customer managed policies that you have attached to your permission set.
- Description string
- The permission set description.
- Inline
Policy object The inline policy to put in permission set.
Search the CloudFormation User Guide for
AWS::SSO::PermissionSetfor more information about the expected schema for this property.- Managed
Policies List<string> - A structure that stores the details of the AWS managed policy.
- Permission
Set stringArn - The permission set that the policy will be attached to
- Permissions
Boundary Pulumi.Aws Native. Sso. Outputs. Permission Set Permissions Boundary Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary. Specify either
CustomerManagedPolicyReferenceto use the name and path of a customer managed policy, orManagedPolicyArnto use the ARN of an AWS managed policy. A permissions boundary represents the maximum permissions that any policy can grant your role. For more information, see Permissions boundaries for IAM entities in the IAM User Guide .Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see IAM JSON policy evaluation logic in the IAM User Guide .
- Relay
State stringType - The relay state URL that redirect links to any service in the AWS Management Console.
- Session
Duration string - The length of time that a user can be signed in to an AWS account.
-
List<Pulumi.
Aws Native. Outputs. Tag> - The tags to attach to the new
PermissionSet.
- Customer
Managed []PermissionPolicy References Set Customer Managed Policy Reference - Specifies the names and paths of the customer managed policies that you have attached to your permission set.
- Description string
- The permission set description.
- Inline
Policy interface{} The inline policy to put in permission set.
Search the CloudFormation User Guide for
AWS::SSO::PermissionSetfor more information about the expected schema for this property.- Managed
Policies []string - A structure that stores the details of the AWS managed policy.
- Permission
Set stringArn - The permission set that the policy will be attached to
- Permissions
Boundary PermissionSet Permissions Boundary Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary. Specify either
CustomerManagedPolicyReferenceto use the name and path of a customer managed policy, orManagedPolicyArnto use the ARN of an AWS managed policy. A permissions boundary represents the maximum permissions that any policy can grant your role. For more information, see Permissions boundaries for IAM entities in the IAM User Guide .Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see IAM JSON policy evaluation logic in the IAM User Guide .
- Relay
State stringType - The relay state URL that redirect links to any service in the AWS Management Console.
- Session
Duration string - The length of time that a user can be signed in to an AWS account.
- Tag
- The tags to attach to the new
PermissionSet.
- customer
Managed List<PermissionPolicy References Set Customer Managed Policy Reference> - Specifies the names and paths of the customer managed policies that you have attached to your permission set.
- description String
- The permission set description.
- inline
Policy Object The inline policy to put in permission set.
Search the CloudFormation User Guide for
AWS::SSO::PermissionSetfor more information about the expected schema for this property.- managed
Policies List<String> - A structure that stores the details of the AWS managed policy.
- permission
Set StringArn - The permission set that the policy will be attached to
- permissions
Boundary PermissionSet Permissions Boundary Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary. Specify either
CustomerManagedPolicyReferenceto use the name and path of a customer managed policy, orManagedPolicyArnto use the ARN of an AWS managed policy. A permissions boundary represents the maximum permissions that any policy can grant your role. For more information, see Permissions boundaries for IAM entities in the IAM User Guide .Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see IAM JSON policy evaluation logic in the IAM User Guide .
- relay
State StringType - The relay state URL that redirect links to any service in the AWS Management Console.
- session
Duration String - The length of time that a user can be signed in to an AWS account.
- List<Tag>
- The tags to attach to the new
PermissionSet.
- customer
Managed PermissionPolicy References Set Customer Managed Policy Reference[] - Specifies the names and paths of the customer managed policies that you have attached to your permission set.
- description string
- The permission set description.
- inline
Policy any The inline policy to put in permission set.
Search the CloudFormation User Guide for
AWS::SSO::PermissionSetfor more information about the expected schema for this property.- managed
Policies string[] - A structure that stores the details of the AWS managed policy.
- permission
Set stringArn - The permission set that the policy will be attached to
- permissions
Boundary PermissionSet Permissions Boundary Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary. Specify either
CustomerManagedPolicyReferenceto use the name and path of a customer managed policy, orManagedPolicyArnto use the ARN of an AWS managed policy. A permissions boundary represents the maximum permissions that any policy can grant your role. For more information, see Permissions boundaries for IAM entities in the IAM User Guide .Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see IAM JSON policy evaluation logic in the IAM User Guide .
- relay
State stringType - The relay state URL that redirect links to any service in the AWS Management Console.
- session
Duration string - The length of time that a user can be signed in to an AWS account.
- Tag[]
- The tags to attach to the new
PermissionSet.
- customer_
managed_ Sequence[Permissionpolicy_ references Set Customer Managed Policy Reference] - Specifies the names and paths of the customer managed policies that you have attached to your permission set.
- description str
- The permission set description.
- inline_
policy Any The inline policy to put in permission set.
Search the CloudFormation User Guide for
AWS::SSO::PermissionSetfor more information about the expected schema for this property.- managed_
policies Sequence[str] - A structure that stores the details of the AWS managed policy.
- permission_
set_ strarn - The permission set that the policy will be attached to
- permissions_
boundary PermissionSet Permissions Boundary Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary. Specify either
CustomerManagedPolicyReferenceto use the name and path of a customer managed policy, orManagedPolicyArnto use the ARN of an AWS managed policy. A permissions boundary represents the maximum permissions that any policy can grant your role. For more information, see Permissions boundaries for IAM entities in the IAM User Guide .Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see IAM JSON policy evaluation logic in the IAM User Guide .
- relay_
state_ strtype - The relay state URL that redirect links to any service in the AWS Management Console.
- session_
duration str - The length of time that a user can be signed in to an AWS account.
- Sequence[root_Tag]
- The tags to attach to the new
PermissionSet.
- customer
Managed List<Property Map>Policy References - Specifies the names and paths of the customer managed policies that you have attached to your permission set.
- description String
- The permission set description.
- inline
Policy Any The inline policy to put in permission set.
Search the CloudFormation User Guide for
AWS::SSO::PermissionSetfor more information about the expected schema for this property.- managed
Policies List<String> - A structure that stores the details of the AWS managed policy.
- permission
Set StringArn - The permission set that the policy will be attached to
- permissions
Boundary Property Map Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary. Specify either
CustomerManagedPolicyReferenceto use the name and path of a customer managed policy, orManagedPolicyArnto use the ARN of an AWS managed policy. A permissions boundary represents the maximum permissions that any policy can grant your role. For more information, see Permissions boundaries for IAM entities in the IAM User Guide .Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see IAM JSON policy evaluation logic in the IAM User Guide .
- relay
State StringType - The relay state URL that redirect links to any service in the AWS Management Console.
- session
Duration String - The length of time that a user can be signed in to an AWS account.
- List<Property Map>
- The tags to attach to the new
PermissionSet.
Supporting Types
PermissionSetCustomerManagedPolicyReference
- Name string
- The name of the IAM policy that you have configured in each account where you want to deploy your permission set.
- Path string
- The path to the IAM policy that you have configured in each account where you want to deploy your permission set. The default is
/. For more information, see Friendly names and paths in the IAM User Guide .
- Name string
- The name of the IAM policy that you have configured in each account where you want to deploy your permission set.
- Path string
- The path to the IAM policy that you have configured in each account where you want to deploy your permission set. The default is
/. For more information, see Friendly names and paths in the IAM User Guide .
- name String
- The name of the IAM policy that you have configured in each account where you want to deploy your permission set.
- path String
- The path to the IAM policy that you have configured in each account where you want to deploy your permission set. The default is
/. For more information, see Friendly names and paths in the IAM User Guide .
- name string
- The name of the IAM policy that you have configured in each account where you want to deploy your permission set.
- path string
- The path to the IAM policy that you have configured in each account where you want to deploy your permission set. The default is
/. For more information, see Friendly names and paths in the IAM User Guide .
- name str
- The name of the IAM policy that you have configured in each account where you want to deploy your permission set.
- path str
- The path to the IAM policy that you have configured in each account where you want to deploy your permission set. The default is
/. For more information, see Friendly names and paths in the IAM User Guide .
- name String
- The name of the IAM policy that you have configured in each account where you want to deploy your permission set.
- path String
- The path to the IAM policy that you have configured in each account where you want to deploy your permission set. The default is
/. For more information, see Friendly names and paths in the IAM User Guide .
PermissionSetPermissionsBoundary
- Customer
Managed Pulumi.Policy Reference Aws Native. Sso. Inputs. Permission Set Customer Managed Policy Reference - Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.
- Managed
Policy stringArn - The AWS managed policy ARN that you want to attach to a permission set as a permissions boundary.
- Customer
Managed PermissionPolicy Reference Set Customer Managed Policy Reference - Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.
- Managed
Policy stringArn - The AWS managed policy ARN that you want to attach to a permission set as a permissions boundary.
- customer
Managed PermissionPolicy Reference Set Customer Managed Policy Reference - Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.
- managed
Policy StringArn - The AWS managed policy ARN that you want to attach to a permission set as a permissions boundary.
- customer
Managed PermissionPolicy Reference Set Customer Managed Policy Reference - Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.
- managed
Policy stringArn - The AWS managed policy ARN that you want to attach to a permission set as a permissions boundary.
- customer_
managed_ Permissionpolicy_ reference Set Customer Managed Policy Reference - Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.
- managed_
policy_ strarn - The AWS managed policy ARN that you want to attach to a permission set as a permissions boundary.
- customer
Managed Property MapPolicy Reference - Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.
- managed
Policy StringArn - The AWS managed policy ARN that you want to attach to a permission set as a permissions boundary.
Tag
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
AWS Native is in preview. AWS Classic is fully supported.