{ "$schema": "https://json-schema.org/draft/2020-12/schema", "$id": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--aws-ec2-verifiedaccesstrustprovider.json", "title": "AWSEC2VerifiedAccessTrustProviderProperties", "description": "The AWS::EC2::VerifiedAccessTrustProvider type describes a verified access trust provider. Source:- ", "x-lintel": { "source": "https://raw.githubusercontent.com/lalcebo/json-schema/master/serverless/resources/cloudformation-modified/aws-ec2-verifiedaccesstrustprovider.json", "sourceSha256": "1554fd4d2c556002a98c54a41cb266b517471466505ef49dfc40c7051f9f967b" }, "type": "object", "properties": { "TrustProviderType": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "Type of trust provider. Possible values: user|device" }, "DeviceTrustProviderType": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The type of device-based trust provider. Possible values: jamf|crowdstrike" }, "UserTrustProviderType": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The type of device-based trust provider. Possible values: oidc|iam-identity-center" }, "OidcOptions": { "$ref": "#/$defs/OidcOptions" }, "DeviceOptions": { "$ref": "#/$defs/DeviceOptions" }, "PolicyReferenceName": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The identifier to be used when working with policy rules." }, "Description": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "A description for the Amazon Web Services Verified Access trust provider." }, "Tags": { "description": "An array of key-value pairs to apply to this resource.", "type": "array", "uniqueItems": true, "insertionOrder": false, "items": { "$ref": "#/$defs/Tag" } } }, "typeName": "AWS::EC2::VerifiedAccessTrustProvider", "tagging": { "taggable": true, "tagOnCreate": true, "tagUpdatable": true, "cloudFormationSystemTags": false, "tagProperty": "/properties/Tags" }, "sourceUrl": "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-ec2-verified-access.aws-ec2-verifiedaccesstrustprovider", "additionalProperties": false, "primaryIdentifier": [ "/properties/VerifiedAccessTrustProviderId" ], "$defs": { "OidcOptions": { "description": "The OpenID Connect details for an oidc -type, user-identity based trust provider.", "type": "object", "properties": { "Issuer": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The OIDC issuer." }, "AuthorizationEndpoint": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The OIDC authorization endpoint." }, "TokenEndpoint": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The OIDC token endpoint." }, "UserInfoEndpoint": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The OIDC user info endpoint." }, "ClientId": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The client identifier." }, "ClientSecret": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The client secret." }, "Scope": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes." } }, "title": "AWSEC2VerifiedAccessTrustProviderOidcOptionsDefinition", "additionalProperties": false }, "DeviceOptions": { "description": "The options for device identity based trust providers.", "type": "object", "properties": { "TenantId": { "oneOf": [ { "type": "string" }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The ID of the tenant application with the device-identity provider." } }, "title": "AWSEC2VerifiedAccessTrustProviderDeviceOptionsDefinition", "additionalProperties": false }, "Tag": { "description": "A key-value pair to associate with a resource.", "type": "object", "properties": { "Key": { "oneOf": [ { "type": "string", "minLength": 1, "maxLength": 128 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -." }, "Value": { "oneOf": [ { "type": "string", "minLength": 0, "maxLength": 256 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -." } }, "required": [ "Key", "Value" ], "title": "AWSEC2VerifiedAccessTrustProviderTagDefinition", "additionalProperties": false } }, "required": [ "TrustProviderType", "PolicyReferenceName" ], "readOnlyProperties": [ "/properties/VerifiedAccessTrustProviderId", "/properties/CreationTime", "/properties/LastUpdatedTime" ], "createOnlyProperties": [ "/properties/PolicyReferenceName", "/properties/DeviceOptions", "/properties/DeviceTrustProviderType", "/properties/TrustProviderType", "/properties/UserTrustProviderType" ] }