Client library for AWS Single Sign-On Admin
npm install --save @datafire/amazonaws_sso_adminlet amazonaws_sso_admin = require('@datafire/amazonaws_sso_admin').create({
accessKeyId: "",
secretAccessKey: "",
region: ""
});
.then(data => {
console.log(data);
});amazonaws_sso_admin.AttachManagedPolicyToPermissionSet({
"InstanceArn": null,
"PermissionSetArn": null,
"ManagedPolicyArn": null
}, context)- input
object- InstanceArn required
- ManagedPolicyArn required
- PermissionSetArn required
amazonaws_sso_admin.CreateAccountAssignment({
"InstanceArn": null,
"TargetId": null,
"TargetType": null,
"PermissionSetArn": null,
"PrincipalType": null,
"PrincipalId": null
}, context)- input
object- InstanceArn required
- PermissionSetArn required
- PrincipalId required
- PrincipalType required
- TargetId required
- TargetType required
amazonaws_sso_admin.CreateInstanceAccessControlAttributeConfiguration({
"InstanceArn": null,
"InstanceAccessControlAttributeConfiguration": null
}, context)- input
object- InstanceAccessControlAttributeConfiguration required
- AccessControlAttributes required
- items AccessControlAttribute
- AccessControlAttributes required
- InstanceArn required
- InstanceAccessControlAttributeConfiguration required
amazonaws_sso_admin.CreatePermissionSet({
"Name": null,
"InstanceArn": null
}, context)- input
object- Description
- InstanceArn required
- Name required
- RelayState
- SessionDuration
- Tags
- items Tag
- output CreatePermissionSetResponse
amazonaws_sso_admin.DeleteAccountAssignment({
"InstanceArn": null,
"TargetId": null,
"TargetType": null,
"PermissionSetArn": null,
"PrincipalType": null,
"PrincipalId": null
}, context)- input
object- InstanceArn required
- PermissionSetArn required
- PrincipalId required
- PrincipalType required
- TargetId required
- TargetType required
amazonaws_sso_admin.DeleteInlinePolicyFromPermissionSet({
"InstanceArn": null,
"PermissionSetArn": null
}, context)- input
object- InstanceArn required
- PermissionSetArn required
amazonaws_sso_admin.DeleteInstanceAccessControlAttributeConfiguration({
"InstanceArn": null
}, context)- input
object- InstanceArn required
amazonaws_sso_admin.DeletePermissionSet({
"InstanceArn": null,
"PermissionSetArn": null
}, context)- input
object- InstanceArn required
- PermissionSetArn required
- output DeletePermissionSetResponse
amazonaws_sso_admin.DescribeAccountAssignmentCreationStatus({
"InstanceArn": null,
"AccountAssignmentCreationRequestId": null
}, context)- input
object- AccountAssignmentCreationRequestId required
- InstanceArn required
amazonaws_sso_admin.DescribeAccountAssignmentDeletionStatus({
"InstanceArn": null,
"AccountAssignmentDeletionRequestId": null
}, context)- input
object- AccountAssignmentDeletionRequestId required
- InstanceArn required
amazonaws_sso_admin.DescribeInstanceAccessControlAttributeConfiguration({
"InstanceArn": null
}, context)- input
object- InstanceArn required
amazonaws_sso_admin.DescribePermissionSet({
"InstanceArn": null,
"PermissionSetArn": null
}, context)- input
object- InstanceArn required
- PermissionSetArn required
amazonaws_sso_admin.DescribePermissionSetProvisioningStatus({
"InstanceArn": null,
"ProvisionPermissionSetRequestId": null
}, context)- input
object- InstanceArn required
- ProvisionPermissionSetRequestId required
amazonaws_sso_admin.DetachManagedPolicyFromPermissionSet({
"InstanceArn": null,
"PermissionSetArn": null,
"ManagedPolicyArn": null
}, context)- input
object- InstanceArn required
- ManagedPolicyArn required
- PermissionSetArn required
amazonaws_sso_admin.GetInlinePolicyForPermissionSet({
"InstanceArn": null,
"PermissionSetArn": null
}, context)- input
object- InstanceArn required
- PermissionSetArn required
amazonaws_sso_admin.ListAccountAssignmentCreationStatus({
"InstanceArn": null
}, context)- input
object- MaxResults
string - NextToken
string - Filter
- Status
- InstanceArn required
- MaxResults
- NextToken
- MaxResults
amazonaws_sso_admin.ListAccountAssignmentDeletionStatus({
"InstanceArn": null
}, context)- input
object- MaxResults
string - NextToken
string - Filter
- Status
- InstanceArn required
- MaxResults
- NextToken
- MaxResults
amazonaws_sso_admin.ListAccountAssignments({
"InstanceArn": null,
"AccountId": null,
"PermissionSetArn": null
}, context)- input
object- MaxResults
string - NextToken
string - AccountId required
- InstanceArn required
- MaxResults
- NextToken
- PermissionSetArn required
- MaxResults
amazonaws_sso_admin.ListAccountsForProvisionedPermissionSet({
"InstanceArn": null,
"PermissionSetArn": null
}, context)- input
object- MaxResults
string - NextToken
string - InstanceArn required
- MaxResults
- NextToken
- PermissionSetArn required
- ProvisioningStatus
- MaxResults
amazonaws_sso_admin.ListInstances({}, context)- input
object- MaxResults
string - NextToken
string - MaxResults
- NextToken
- MaxResults
- output ListInstancesResponse
amazonaws_sso_admin.ListManagedPoliciesInPermissionSet({
"InstanceArn": null,
"PermissionSetArn": null
}, context)- input
object- MaxResults
string - NextToken
string - InstanceArn required
- MaxResults
- NextToken
- PermissionSetArn required
- MaxResults
amazonaws_sso_admin.ListPermissionSetProvisioningStatus({
"InstanceArn": null
}, context)- input
object- MaxResults
string - NextToken
string - Filter
- Status
- InstanceArn required
- MaxResults
- NextToken
- MaxResults
amazonaws_sso_admin.ListPermissionSets({
"InstanceArn": null
}, context)- input
object- MaxResults
string - NextToken
string - InstanceArn required
- MaxResults
- NextToken
- MaxResults
- output ListPermissionSetsResponse
amazonaws_sso_admin.ListPermissionSetsProvisionedToAccount({
"InstanceArn": null,
"AccountId": null
}, context)- input
object- MaxResults
string - NextToken
string - AccountId required
- InstanceArn required
- MaxResults
- NextToken
- ProvisioningStatus
- MaxResults
amazonaws_sso_admin.ListTagsForResource({
"InstanceArn": null,
"ResourceArn": null
}, context)- input
object- NextToken
string - InstanceArn required
- NextToken
- ResourceArn required
- NextToken
- output ListTagsForResourceResponse
amazonaws_sso_admin.ProvisionPermissionSet({
"InstanceArn": null,
"PermissionSetArn": null,
"TargetType": null
}, context)- input
object- InstanceArn required
- PermissionSetArn required
- TargetId
- TargetType required
amazonaws_sso_admin.PutInlinePolicyToPermissionSet({
"InstanceArn": null,
"PermissionSetArn": null,
"InlinePolicy": null
}, context)- input
object- InlinePolicy required
- InstanceArn required
- PermissionSetArn required
amazonaws_sso_admin.TagResource({
"InstanceArn": null,
"ResourceArn": null,
"Tags": null
}, context)- input
object- InstanceArn required
- ResourceArn required
- Tags required
- items Tag
- output TagResourceResponse
amazonaws_sso_admin.UntagResource({
"InstanceArn": null,
"ResourceArn": null,
"TagKeys": null
}, context)- input
object- InstanceArn required
- ResourceArn required
- TagKeys required
- items TagKey
- output UntagResourceResponse
amazonaws_sso_admin.UpdateInstanceAccessControlAttributeConfiguration({
"InstanceArn": null,
"InstanceAccessControlAttributeConfiguration": null
}, context)- input
object- InstanceAccessControlAttributeConfiguration required
- AccessControlAttributes required
- items AccessControlAttribute
- AccessControlAttributes required
- InstanceArn required
- InstanceAccessControlAttributeConfiguration required
amazonaws_sso_admin.UpdatePermissionSet({
"InstanceArn": null,
"PermissionSetArn": null
}, context)- input
object- Description
- InstanceArn required
- PermissionSetArn required
- RelayState
- SessionDuration
- output UpdatePermissionSetResponse
- AccessControlAttribute
object: These are AWS SSO identity store attributes that you can configure for use in attributes-based access control (ABAC). You can create permission policies that determine who can access your AWS resources based upon the configured attribute value(s). When you enable ABAC and specify AccessControlAttributes, AWS SSO passes the attribute(s) value of the authenticated user into IAM for use in policy evaluation.- Key required
- Value required
- Source required
- AccessControlAttributeKey
string
- AccessControlAttributeList
array- items AccessControlAttribute
- AccessControlAttributeValue
object: The value used for mapping a specified attribute to an identity source.- Source required
- AccessControlAttributeValueSource
string
- AccessControlAttributeValueSourceList
array
- AccountAssignment
object:The assignment that indicates a principal's limited access to a specified AWS account with a specified permission set.
The term principal here refers to a user or group that is defined in AWS SSO.
- AccountId
- PermissionSetArn
- PrincipalId
- PrincipalType
- AccountAssignmentList
array- items AccountAssignment
- AccountAssignmentOperationStatus
object: The status of the creation or deletion operation of an assignment that a principal needs to access an account.- CreatedDate
- FailureReason
- PermissionSetArn
- PrincipalId
- PrincipalType
- RequestId
- Status
- TargetId
- TargetType
- AccountAssignmentOperationStatusList
array
- AccountAssignmentOperationStatusMetadata
object: Provides information about the AccountAssignment creation request.- CreatedDate
- RequestId
- Status
- AccountId
string
- AccountList
array- items AccountId
- AttachManagedPolicyToPermissionSetRequest
object- InstanceArn required
- ManagedPolicyArn required
- PermissionSetArn required
- AttachManagedPolicyToPermissionSetResponse
object
- AttachedManagedPolicy
object: A structure that stores the details of the IAM managed policy.- Arn
- Name
- AttachedManagedPolicyList
array- items AttachedManagedPolicy
- CreateAccountAssignmentRequest
object- InstanceArn required
- PermissionSetArn required
- PrincipalId required
- PrincipalType required
- TargetId required
- TargetType required
- CreateAccountAssignmentResponse
object- AccountAssignmentCreationStatus
- CreatedDate
- FailureReason
- PermissionSetArn
- PrincipalId
- PrincipalType
- RequestId
- Status
- TargetId
- TargetType
- AccountAssignmentCreationStatus
- CreateInstanceAccessControlAttributeConfigurationRequest
object- InstanceAccessControlAttributeConfiguration required
- AccessControlAttributes required
- items AccessControlAttribute
- AccessControlAttributes required
- InstanceArn required
- InstanceAccessControlAttributeConfiguration required
- CreateInstanceAccessControlAttributeConfigurationResponse
object
- CreatePermissionSetRequest
object- Description
- InstanceArn required
- Name required
- RelayState
- SessionDuration
- Tags
- items Tag
- CreatePermissionSetResponse
object- PermissionSet
- CreatedDate
- Description
- Name
- PermissionSetArn
- RelayState
- SessionDuration
- PermissionSet
- Date
string
- DeleteAccountAssignmentRequest
object- InstanceArn required
- PermissionSetArn required
- PrincipalId required
- PrincipalType required
- TargetId required
- TargetType required
- DeleteAccountAssignmentResponse
object- AccountAssignmentDeletionStatus
- CreatedDate
- FailureReason
- PermissionSetArn
- PrincipalId
- PrincipalType
- RequestId
- Status
- TargetId
- TargetType
- AccountAssignmentDeletionStatus
- DeleteInlinePolicyFromPermissionSetRequest
object- InstanceArn required
- PermissionSetArn required
- DeleteInlinePolicyFromPermissionSetResponse
object
- DeleteInstanceAccessControlAttributeConfigurationRequest
object- InstanceArn required
- DeleteInstanceAccessControlAttributeConfigurationResponse
object
- DeletePermissionSetRequest
object- InstanceArn required
- PermissionSetArn required
- DeletePermissionSetResponse
object
- DescribeAccountAssignmentCreationStatusRequest
object- AccountAssignmentCreationRequestId required
- InstanceArn required
- DescribeAccountAssignmentCreationStatusResponse
object- AccountAssignmentCreationStatus
- CreatedDate
- FailureReason
- PermissionSetArn
- PrincipalId
- PrincipalType
- RequestId
- Status
- TargetId
- TargetType
- AccountAssignmentCreationStatus
- DescribeAccountAssignmentDeletionStatusRequest
object- AccountAssignmentDeletionRequestId required
- InstanceArn required
- DescribeAccountAssignmentDeletionStatusResponse
object- AccountAssignmentDeletionStatus
- CreatedDate
- FailureReason
- PermissionSetArn
- PrincipalId
- PrincipalType
- RequestId
- Status
- TargetId
- TargetType
- AccountAssignmentDeletionStatus
- DescribeInstanceAccessControlAttributeConfigurationRequest
object- InstanceArn required
- DescribeInstanceAccessControlAttributeConfigurationResponse
object- InstanceAccessControlAttributeConfiguration
- AccessControlAttributes required
- items AccessControlAttribute
- AccessControlAttributes required
- Status
- StatusReason
- InstanceAccessControlAttributeConfiguration
- DescribePermissionSetProvisioningStatusRequest
object- InstanceArn required
- ProvisionPermissionSetRequestId required
- DescribePermissionSetProvisioningStatusResponse
object- PermissionSetProvisioningStatus
- AccountId
- CreatedDate
- FailureReason
- PermissionSetArn
- RequestId
- Status
- PermissionSetProvisioningStatus
- DescribePermissionSetRequest
object- InstanceArn required
- PermissionSetArn required
- DescribePermissionSetResponse
object- PermissionSet
- CreatedDate
- Description
- Name
- PermissionSetArn
- RelayState
- SessionDuration
- PermissionSet
- DetachManagedPolicyFromPermissionSetRequest
object- InstanceArn required
- ManagedPolicyArn required
- PermissionSetArn required
- DetachManagedPolicyFromPermissionSetResponse
object
- Duration
string
- GeneralArn
string
- GetInlinePolicyForPermissionSetRequest
object- InstanceArn required
- PermissionSetArn required
- GetInlinePolicyForPermissionSetResponse
object- InlinePolicy
- Id
string
- InstanceAccessControlAttributeConfiguration
object: Specifies the attributes to add to your attribute-based access control (ABAC) configuration.- AccessControlAttributes required
- items AccessControlAttribute
- AccessControlAttributes required
- InstanceAccessControlAttributeConfigurationStatus
string(values: ENABLED, CREATION_IN_PROGRESS, CREATION_FAILED)
- InstanceAccessControlAttributeConfigurationStatusReason
string
- InstanceArn
string
- InstanceList
array- items InstanceMetadata
- InstanceMetadata
object: Provides information about the SSO instance.- IdentityStoreId
- InstanceArn
- ListAccountAssignmentCreationStatusRequest
object- Filter
- Status
- InstanceArn required
- MaxResults
- NextToken
- Filter
- ListAccountAssignmentCreationStatusResponse
object- AccountAssignmentsCreationStatus
- NextToken
- ListAccountAssignmentDeletionStatusRequest
object- Filter
- Status
- InstanceArn required
- MaxResults
- NextToken
- Filter
- ListAccountAssignmentDeletionStatusResponse
object- AccountAssignmentsDeletionStatus
- NextToken
- ListAccountAssignmentsRequest
object- AccountId required
- InstanceArn required
- MaxResults
- NextToken
- PermissionSetArn required
- ListAccountAssignmentsResponse
object- AccountAssignments
- items AccountAssignment
- NextToken
- AccountAssignments
- ListAccountsForProvisionedPermissionSetRequest
object- InstanceArn required
- MaxResults
- NextToken
- PermissionSetArn required
- ProvisioningStatus
- ListAccountsForProvisionedPermissionSetResponse
object- AccountIds
- items AccountId
- NextToken
- AccountIds
- ListInstancesRequest
object- MaxResults
- NextToken
- ListInstancesResponse
object- Instances
- items InstanceMetadata
- NextToken
- Instances
- ListManagedPoliciesInPermissionSetRequest
object- InstanceArn required
- MaxResults
- NextToken
- PermissionSetArn required
- ListManagedPoliciesInPermissionSetResponse
object- AttachedManagedPolicies
- items AttachedManagedPolicy
- NextToken
- AttachedManagedPolicies
- ListPermissionSetProvisioningStatusRequest
object- Filter
- Status
- InstanceArn required
- MaxResults
- NextToken
- Filter
- ListPermissionSetProvisioningStatusResponse
object- NextToken
- PermissionSetsProvisioningStatus
- ListPermissionSetsProvisionedToAccountRequest
object- AccountId required
- InstanceArn required
- MaxResults
- NextToken
- ProvisioningStatus
- ListPermissionSetsProvisionedToAccountResponse
object- NextToken
- PermissionSets
- items PermissionSetArn
- ListPermissionSetsRequest
object- InstanceArn required
- MaxResults
- NextToken
- ListPermissionSetsResponse
object- NextToken
- PermissionSets
- items PermissionSetArn
- ListTagsForResourceRequest
object- InstanceArn required
- NextToken
- ResourceArn required
- ListTagsForResourceResponse
object- NextToken
- Tags
- items Tag
- ManagedPolicyArn
string
- MaxResults
integer
- Name
string
- OperationStatusFilter
object: Filters he operation status list based on the passed attribute value.- Status
- PermissionSet
object: An entity that contains IAM policies.- CreatedDate
- Description
- Name
- PermissionSetArn
- RelayState
- SessionDuration
- PermissionSetArn
string
- PermissionSetDescription
string
- PermissionSetList
array- items PermissionSetArn
- PermissionSetName
string
- PermissionSetPolicyDocument
string
- PermissionSetProvisioningStatus
object: A structure that is used to provide the status of the provisioning operation for a specified permission set.- AccountId
- CreatedDate
- FailureReason
- PermissionSetArn
- RequestId
- Status
- PermissionSetProvisioningStatusList
array
- PermissionSetProvisioningStatusMetadata
object: Provides information about the permission set provisioning status.- CreatedDate
- RequestId
- Status
- PrincipalId
string
- PrincipalType
string(values: USER, GROUP)
- ProvisionPermissionSetRequest
object- InstanceArn required
- PermissionSetArn required
- TargetId
- TargetType required
- ProvisionPermissionSetResponse
object- PermissionSetProvisioningStatus
- AccountId
- CreatedDate
- FailureReason
- PermissionSetArn
- RequestId
- Status
- PermissionSetProvisioningStatus
- ProvisionTargetType
string(values: AWS_ACCOUNT, ALL_PROVISIONED_ACCOUNTS)
- ProvisioningStatus
string(values: LATEST_PERMISSION_SET_PROVISIONED, LATEST_PERMISSION_SET_NOT_PROVISIONED)
- PutInlinePolicyToPermissionSetRequest
object- InlinePolicy required
- InstanceArn required
- PermissionSetArn required
- PutInlinePolicyToPermissionSetResponse
object
- Reason
string
- RelayState
string
- StatusValues
string(values: IN_PROGRESS, FAILED, SUCCEEDED)
- Tag
object: A set of key-value pairs that are used to manage the resource. Tags can only be applied to permission sets and cannot be applied to corresponding roles that AWS SSO creates in AWS accounts.- Key
- Value
- TagKey
string
- TagKeyList
array- items TagKey
- TagList
array- items Tag
- TagResourceRequest
object- InstanceArn required
- ResourceArn required
- Tags required
- items Tag
- TagResourceResponse
object
- TagValue
string
- TargetId
string
- TargetType
string(values: AWS_ACCOUNT)
- Token
string
- UUId
string
- UntagResourceRequest
object- InstanceArn required
- ResourceArn required
- TagKeys required
- items TagKey
- UntagResourceResponse
object
- UpdateInstanceAccessControlAttributeConfigurationRequest
object- InstanceAccessControlAttributeConfiguration required
- AccessControlAttributes required
- items AccessControlAttribute
- AccessControlAttributes required
- InstanceArn required
- InstanceAccessControlAttributeConfiguration required
- UpdateInstanceAccessControlAttributeConfigurationResponse
object
- UpdatePermissionSetRequest
object- Description
- InstanceArn required
- PermissionSetArn required
- RelayState
- SessionDuration
- UpdatePermissionSetResponse
object