Package com.hashicorp.cdktf.providers.google.iam_workforce_pool_provider

Class IamWorkforcePoolProviderOidcWebSsoConfig.Builder

    • Constructor Detail

      • Builder

        public Builder()

    • Method Detail

      • assertionClaimsBehavior

        @Stability(Stable)
public IamWorkforcePoolProviderOidcWebSsoConfig.Builder assertionClaimsBehavior​(String assertionClaimsBehavior)
        Sets the value of IamWorkforcePoolProviderOidcWebSsoConfig.getAssertionClaimsBehavior()
        Parameters:
        assertionClaimsBehavior - The behavior for how OIDC Claims are included in the 'assertion' object used for attribute mapping and attribute condition. This parameter is required. * MERGE_USER_INFO_OVER_ID_TOKEN_CLAIMS: Merge the UserInfo Endpoint Claims with ID Token Claims, preferring UserInfo Claim Values for the same Claim Name. This option is available only for the Authorization Code Flow. * ONLY_ID_TOKEN_CLAIMS: Only include ID Token Claims. Possible values: ["MERGE_USER_INFO_OVER_ID_TOKEN_CLAIMS", "ONLY_ID_TOKEN_CLAIMS"] Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/iam_workforce_pool_provider#assertion_claims_behavior IamWorkforcePoolProvider#assertion_claims_behavior}
        Returns:
        this

      • responseType

        @Stability(Stable)
public IamWorkforcePoolProviderOidcWebSsoConfig.Builder responseType​(String responseType)
        Sets the value of IamWorkforcePoolProviderOidcWebSsoConfig.getResponseType()
        Parameters:
        responseType - The Response Type to request for in the OIDC Authorization Request for web sign-in. This parameter is required. The 'CODE' Response Type is recommended to avoid the Implicit Flow, for security reasons. * CODE: The 'response_type=code' selection uses the Authorization Code Flow for web sign-in. Requires a configured client secret. * ID_TOKEN: The 'response_type=id_token' selection uses the Implicit Flow for web sign-in. Possible values: ["CODE", "ID_TOKEN"] Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/iam_workforce_pool_provider#response_type IamWorkforcePoolProvider#response_type}
        Returns:
        this

      • additionalScopes

        @Stability(Stable)
public IamWorkforcePoolProviderOidcWebSsoConfig.Builder additionalScopes​(List<String> additionalScopes)
        Sets the value of IamWorkforcePoolProviderOidcWebSsoConfig.getAdditionalScopes()
        Parameters:
        additionalScopes - Additional scopes to request for in the OIDC authentication request on top of scopes requested by default. By default, the 'openid', 'profile' and 'email' scopes that are supported by the identity provider are requested. Each additional scope may be at most 256 characters. A maximum of 10 additional scopes may be configured. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/iam_workforce_pool_provider#additional_scopes IamWorkforcePoolProvider#additional_scopes}
        Returns:
        this