latest--aws-grafana-workspace
shared| Type | object |
|---|---|
| Schema URL | https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--aws-grafana-workspace.json |
| Parent schema | serverless-framework-configuration |
Definition of AWS::Grafana::Workspace Resource Type. Source:- No source definition found, add manually please
Properties
List of authentication providers to enable.
These enums represent valid account access types. Specifically these enums determine whether the workspace can access AWS resources in the AWS account only, or whether it can also access resources in other accounts in the same organization. If the value CURRENT_ACCOUNT is used, a workspace role ARN must be provided. If the value is ORGANIZATION, a list of organizational units must be provided.
These enums represent valid permission types to use when creating or configuring a Grafana workspace. The SERVICE_MANAGED permission type means the Managed Grafana service will create a workspace IAM role on your behalf. The CUSTOMER_MANAGED permission type means that the customer is expected to provide an IAM role that the Grafana workspace can use to query data sources.
SAML configuration data associated with an AMG workspace.
5 nested properties
IdP Metadata used to configure SAML authentication in Grafana.
2 nested properties
URL that vends the IdPs metadata.
XML blob of the IdPs metadata.
Maps Grafana friendly names to the IdPs SAML attributes.
6 nested properties
Name of the attribute within the SAML assert to use as the users name in Grafana.
Name of the attribute within the SAML assert to use as the users login handle in Grafana.
Name of the attribute within the SAML assert to use as the users email in Grafana.
Name of the attribute within the SAML assert to use as the users groups in Grafana.
Name of the attribute within the SAML assert to use as the users roles in Grafana.
Name of the attribute within the SAML assert to use as the users organizations in Grafana.
Maps SAML roles to the Grafana Editor and Admin roles.
2 nested properties
List of SAML roles which will be mapped into the Grafana Editor role.
List of SAML roles which will be mapped into the Grafana Admin role.
List of SAML organizations allowed to access Grafana.
The maximum lifetime an authenticated user can be logged in (in minutes) before being required to re-authenticate.
The configuration settings for Network Access Control.
2 nested properties
The list of prefix list IDs. A prefix list is a list of CIDR ranges of IP addresses. The IP addresses specified are allowed to access your workspace. If the list is not included in the configuration then no IP addresses will be allowed to access the workspace.
The list of Amazon VPC endpoint IDs for the workspace. If a NetworkAccessConfiguration is specified then only VPC endpoints specified here will be allowed to access the workspace.
The configuration settings for an Amazon VPC that contains data sources for your Grafana workspace to connect to.
2 nested properties
The list of Amazon EC2 security group IDs attached to the Amazon VPC for your Grafana workspace to connect.
The list of Amazon EC2 subnet IDs created in the Amazon VPC for your Grafana workspace to connect.
A unique, case-sensitive, user-provided identifier to ensure the idempotency of the request.
The version of Grafana to support in your workspace. For region ap-northeast-2, only version 8.4 is supported.
The name of an IAM role that already exists to use with AWS Organizations to access AWS data sources and notification channels in other accounts in an organization.
The name of the AWS CloudFormation stack set to use to generate IAM roles to be used for this workspace.
List of data sources on the service managed IAM role.
Description of a workspace.
The user friendly name of a workspace.
List of notification destinations on the customers service managed IAM role that the Grafana workspace can query.
List of Organizational Units containing AWS accounts the Grafana workspace can pull data from.
IAM Role that will be used to grant the Grafana workspace access to a customers AWS resources.
Definitions
Maps Grafana friendly names to the IdPs SAML attributes.
Name of the attribute within the SAML assert to use as the users name in Grafana.
Name of the attribute within the SAML assert to use as the users login handle in Grafana.
Name of the attribute within the SAML assert to use as the users email in Grafana.
Name of the attribute within the SAML assert to use as the users groups in Grafana.
Name of the attribute within the SAML assert to use as the users roles in Grafana.
Name of the attribute within the SAML assert to use as the users organizations in Grafana.
IdP Metadata used to configure SAML authentication in Grafana.
URL that vends the IdPs metadata.
XML blob of the IdPs metadata.
Maps SAML roles to the Grafana Editor and Admin roles.
List of SAML roles which will be mapped into the Grafana Editor role.
List of SAML roles which will be mapped into the Grafana Admin role.
SAML configuration data associated with an AMG workspace.
IdP Metadata used to configure SAML authentication in Grafana.
2 nested properties
URL that vends the IdPs metadata.
XML blob of the IdPs metadata.
Maps Grafana friendly names to the IdPs SAML attributes.
6 nested properties
Name of the attribute within the SAML assert to use as the users name in Grafana.
Name of the attribute within the SAML assert to use as the users login handle in Grafana.
Name of the attribute within the SAML assert to use as the users email in Grafana.
Name of the attribute within the SAML assert to use as the users groups in Grafana.
Name of the attribute within the SAML assert to use as the users roles in Grafana.
Name of the attribute within the SAML assert to use as the users organizations in Grafana.
Maps SAML roles to the Grafana Editor and Admin roles.
2 nested properties
List of SAML roles which will be mapped into the Grafana Editor role.
List of SAML roles which will be mapped into the Grafana Admin role.
List of SAML organizations allowed to access Grafana.
The maximum lifetime an authenticated user can be logged in (in minutes) before being required to re-authenticate.
The configuration settings for Network Access Control.
The list of prefix list IDs. A prefix list is a list of CIDR ranges of IP addresses. The IP addresses specified are allowed to access your workspace. If the list is not included in the configuration then no IP addresses will be allowed to access the workspace.
The list of Amazon VPC endpoint IDs for the workspace. If a NetworkAccessConfiguration is specified then only VPC endpoints specified here will be allowed to access the workspace.
The configuration settings for an Amazon VPC that contains data sources for your Grafana workspace to connect to.
The list of Amazon EC2 security group IDs attached to the Amazon VPC for your Grafana workspace to connect.
The list of Amazon EC2 subnet IDs created in the Amazon VPC for your Grafana workspace to connect.
These enums represent valid account access types. Specifically these enums determine whether the workspace can access AWS resources in the AWS account only, or whether it can also access resources in other accounts in the same organization. If the value CURRENT_ACCOUNT is used, a workspace role ARN must be provided. If the value is ORGANIZATION, a list of organizational units must be provided.
Valid workspace authentication providers.
These enums represent valid AWS data sources that can be queried via the Grafana workspace. These data sources are primarily used to help customers visualize which data sources have been added to a service managed workspace IAM role.
These enums represent valid AWS notification destinations that the Grafana workspace has permission to use. These notification destinations are primarily used to help customers visualize which destinations have been added to a service managed IAM role.
These enums represent valid permission types to use when creating or configuring a Grafana workspace. The SERVICE_MANAGED permission type means the Managed Grafana service will create a workspace IAM role on your behalf. The CUSTOMER_MANAGED permission type means that the customer is expected to provide an IAM role that the Grafana workspace can use to query data sources.
These enums represent the status of a workspace.
Valid SAML configuration statuses.