AWS::VerifiedPermissions::IdentitySource CognitoUserPoolConfiguration - AWS CloudFormation
SyntaxProperties
Services or capabilities described in AWS documentation might vary by Region. To see the differences applicable to the AWS European Sovereign Cloud Region, see the AWS European Sovereign Cloud User Guide.

This is the new CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the AWS CloudFormation User Guide.

AWS::VerifiedPermissions::IdentitySource CognitoUserPoolConfiguration

A structure that contains configuration information used when creating or updating an identity source that represents a connection to an Amazon Cognito user pool used as an identity provider for Verified Permissions.

Syntax

To declare this entity in your CloudFormation template, use the following syntax:

JSON

{
  "ClientIds" : [ String, ... ],
  "GroupConfiguration" : CognitoGroupConfiguration,
  "UserPoolArn" : String
}

Properties

ClientIds

The unique application client IDs that are associated with the specified Amazon Cognito user pool.

Example: "ClientIds": ["&ExampleCogClientId;"]

Required: No

Type: Array of String

Minimum: 1 | 0

Maximum: 255 | 1000

Update requires: No interruption

GroupConfiguration

The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.

Required: No

Type: CognitoGroupConfiguration

Update requires: No interruption

UserPoolArn

The Amazon Resource Name (ARN) of the Amazon Cognito user pool that contains the identities to be authorized.

Required: Yes

Type: String

Pattern: ^arn:[a-zA-Z0-9-]+:cognito-idp:(([a-zA-Z0-9-]+:\d{12}:userpool/[\w-]+_[0-9a-zA-Z]+))$

Minimum: 1

Maximum: 255

Update requires: No interruption