-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathconfluentcloud-iam-serviceaccount.json
76 lines (76 loc) · 1.79 KB
/
confluentcloud-iam-serviceaccount.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
{
"typeName": "ConfluentCloud::IAM::ServiceAccount",
"$schema": "http://json-schema.org/draft-07/schema#",
"description": "Service Account as defined in Confluent Cloud IAM v2 API.",
"sourceUrl": "https://github.com/JohnPreston/aws-cfn-confluentcloud-iam-serviceaccount",
"definitions": {
"ConfluentCloudAPISecrets": {
"type": "object",
"properties": {
"ApiKey": {
"description": "Confluent Cloud API Key",
"type": "string"
},
"ApiSecret": {
"description": "Confluent Cloud API Secret",
"type": "string"
}
},
"additionalProperties": false
}
},
"properties": {
"Description": {
"type": "string",
"description": "The description associated with the Service Account",
"pattern": "^[\\x20-\\x7E]+$"
},
"Name": {
"type": "string",
"pattern": "^[a-zA-Z0-9-_.]+$"
},
"ServiceAccountId": {
"type": "string",
"description": "Service Account in Confluent Cloud (sa-xxxx)"
},
"ConfluentCloudCredentials": {
"$ref": "#/definitions/ConfluentCloudAPISecrets"
}
},
"required": [
"Name",
"ConfluentCloudCredentials"
],
"additionalProperties": false,
"readOnlyProperties": [
"/properties/ServiceAccountId"
],
"primaryIdentifier": [
"/properties/ServiceAccountId"
],
"createOnlyProperties": [
"/properties/Name"
],
"handlers": {
"create": {
"permissions": [
"secretsmanager:GetSecretValue"
]
},
"read": {
"permissions": [
"secretsmanager:GetSecretValue"
]
},
"update": {
"permissions": [
"secretsmanager:GetSecretValue"
]
},
"delete": {
"permissions": [
"secretsmanager:GetSecretValue"
]
}
}
}