{ "$schema": "https://json-schema.org/draft/2020-12/schema", "$id": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--aws-sso-permissionset.json", "title": "AWSSSOPermissionSetProperties", "description": "Resource Type definition for SSO PermissionSet. Source:- ", "x-lintel": { "source": "https://raw.githubusercontent.com/lalcebo/json-schema/master/serverless/resources/cloudformation-modified/aws-sso-permissionset.json", "sourceSha256": "25d4e6addde924f85188ddaf943672f4e4eedd1e7ca54b2a8a1b9ff9c6937a50" }, "type": "object", "properties": { "Name": { "oneOf": [ { "type": "string", "pattern": "[\\w+=,.@-]+", "minLength": 1, "maxLength": 32 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The name you want to assign to this permission set." }, "Description": { "oneOf": [ { "type": "string", "pattern": "[\\u0009\\u000A\\u000D\\u0020-\\u007E\\u00A1-\\u00FF]*", "minLength": 1, "maxLength": 700 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The permission set description." }, "InstanceArn": { "oneOf": [ { "type": "string", "pattern": "arn:(aws|aws-us-gov|aws-cn|aws-iso|aws-iso-b):sso:::instance/(sso)?ins-[a-zA-Z0-9-.]{16}", "minLength": 10, "maxLength": 1224 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The sso instance arn that the permission set is owned." }, "SessionDuration": { "oneOf": [ { "type": "string", "pattern": "^(-?)P(?=\\d|T\\d)(?:(\\d+)Y)?(?:(\\d+)M)?(?:(\\d+)([DW]))?(?:T(?:(\\d+)H)?(?:(\\d+)M)?(?:(\\d+(?:\\.\\d+)?)S)?)?$", "minLength": 1, "maxLength": 100 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The length of time that a user can be signed in to an AWS account." }, "RelayStateType": { "oneOf": [ { "type": "string", "pattern": "[a-zA-Z0-9&$@#\\/%?=~\\-_'"|!:,.;*+\\[\\]\\ \\(\\)\\{\\}]+", "minLength": 1, "maxLength": 240 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The relay state URL that redirect links to any service in the AWS Management Console." }, "ManagedPolicies": { "type": "array", "insertionOrder": false, "items": { "$ref": "#/$defs/ManagedPolicyArn" }, "maxItems": 20, "default": [] }, "InlinePolicy": { "description": "The inline policy to put in permission set.", "type": [ "object", "string" ] }, "Tags": { "type": "array", "insertionOrder": false, "items": { "$ref": "#/$defs/Tag" }, "maxItems": 50 }, "CustomerManagedPolicyReferences": { "type": "array", "insertionOrder": false, "items": { "$ref": "#/$defs/CustomerManagedPolicyReference" }, "maxItems": 20, "default": [] }, "PermissionsBoundary": { "$ref": "#/$defs/PermissionsBoundary" } }, "typeName": "AWS::SSO::PermissionSet", "taggable": true, "primaryIdentifier": [ "/properties/InstanceArn", "/properties/PermissionSetArn" ], "sourceUrl": "https://github.com/aws-cloudformation/aws-cloudformation-resource-providers-sso/aws-sso-permissionset", "additionalProperties": false, "readOnlyProperties": [ "/properties/PermissionSetArn" ], "$defs": { "Tag": { "description": "The metadata that you apply to the permission set to help you categorize and organize them.", "type": "object", "properties": { "Key": { "oneOf": [ { "type": "string", "pattern": "[\\w+=,.@-]+", "minLength": 1, "maxLength": 128 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ] }, "Value": { "oneOf": [ { "type": "string", "pattern": "[\\w+=,.@-]+", "minLength": 0, "maxLength": 256 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ] } }, "required": [ "Key", "Value" ], "title": "AWSSSOPermissionSetTagDefinition", "additionalProperties": false }, "ManagedPolicyArn": { "oneOf": [ { "type": "string", "minLength": 20, "maxLength": 2048 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ], "description": "The managed policy to attach.", "title": "AWSSSOPermissionSetManagedPolicyArnDefinition" }, "CustomerManagedPolicyReference": { "type": "object", "properties": { "Name": { "oneOf": [ { "type": "string", "pattern": "[\\w+=,.@-]+", "minLength": 1, "maxLength": 128 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ] }, "Path": { "oneOf": [ { "type": "string", "pattern": "((/[A-Za-z0-9\\.,\\+@=_-]+)*)/", "minLength": 1, "maxLength": 512 }, { "$ref": "https://catalog.lintel.tools/schemas/schemastore/serverless-framework-configuration/_shared/latest--cf.functions.json#/Aws_CF_FunctionString" } ] } }, "required": [ "Name" ], "title": "AWSSSOPermissionSetCustomerManagedPolicyReferenceDefinition", "additionalProperties": false }, "PermissionsBoundary": { "type": "object", "title": "AWSSSOPermissionSetPermissionsBoundaryDefinition", "properties": { "CustomerManagedPolicyReference": { "$ref": "#/$defs/CustomerManagedPolicyReference" }, "ManagedPolicyArn": { "$ref": "#/$defs/ManagedPolicyArn" } }, "additionalProperties": false } }, "required": [ "Name", "InstanceArn" ], "createOnlyProperties": [ "/properties/InstanceArn", "/properties/Name" ] }