(aws-sso): Context Provider for SSO Instances. #26477
Labels
@aws-cdk/aws-sso
Related to the @aws-cdk/aws-sso package
effort/medium
Medium work item – several days of effort
feature-request
A feature should be added or improved.
p2
Describe the feature
A context provider that will return the id of the identity source for SSO.
Use Case
An Identity Center Group, requires the Id of the identity Store to create a Group.
Currently this can be provided, manually by providing a value in cdk.json, or a slightly anti-pattern custom resource lookup.
Groups are at the heart of creating policy for Verified Permissions and Verified Access.
Proposed Solution
Implement a IdentityCenterStore Id Context Procider Plugin.. The can follow the pattern of other providers, such as hosted-zones
Other Information
A custom resource can be used to get the value, but this has the possiblity of non determinism if the value changed, so is anti-pattern.
The value can be provided manually in cdk.context.
Acknowledgements
CDK version used
2.85.0
Environment details (OS name and version, etc.)
any
The text was updated successfully, but these errors were encountered: