Package com.cloudforgeci.api.security

Class IdentityCenterSamlFactory

java.lang.Object
software.amazon.jsii.JsiiObject
software.constructs.Construct
com.cloudforgeci.api.core.annotation.BaseFactory
com.cloudforgeci.api.security.IdentityCenterSamlFactory
All Implemented Interfaces:
software.amazon.jsii.JsiiSerializable, software.constructs.IConstruct, software.constructs.IDependable
public class IdentityCenterSamlFactory extends BaseFactory
IAM Identity Center SAML Factory for automated SAML 2.0 application provisioning.

This factory creates a SAML 2.0 application in AWS IAM Identity Center (formerly AWS SSO) and configures it for use with applications like Mattermost that support SAML authentication.

Quick Start:

 {
   "authMode": "application-oidc",
   "autoProvisionIdentityCenter": true,
   "ssoInstanceArn": "arn:aws:sso:::instance/ssoins-xxxxxxxxxxxx"
 }

What Gets Created:

  • SAML 2.0 application in IAM Identity Center
  • Attribute mappings (email, firstName, lastName, groups)
  • IdP certificate stored in Secrets Manager
  • SAML metadata URL for automatic configuration

Prerequisites:

  • AWS Organizations enabled in the account
  • IAM Identity Center enabled and configured
  • SSO Instance ARN available (Settings page in Identity Center console)

Post-Deployment:

  1. Assign users/groups to the application in IAM Identity Center console
  2. Users can then sign in using "Sign in with AWS IAM Identity Center"
See Also:

  • Nested Class Summary

    Nested classes/interfaces inherited from class software.amazon.jsii.JsiiObject

    software.amazon.jsii.JsiiObject.InitializationMode

    Nested classes/interfaces inherited from interface software.constructs.IConstruct

    software.constructs.IConstruct.Jsii$Default, software.constructs.IConstruct.Jsii$Proxy

  • Field Summary

    Fields inherited from class com.cloudforgeci.api.core.annotation.BaseFactory

    cfc, config, ctx

  • Constructor Summary

    Constructors
    Constructor
    Description
    IdentityCenterSamlFactory(software.constructs.Construct scope, String id)
     

  • Method Summary

    Modifier and Type
    Method
    Description
    void
    create()
    Abstract method that must be implemented by all factory subclasses.

    Methods inherited from class com.cloudforgeci.api.core.annotation.BaseFactory

    getDeploymentContext, getSecurityProfileConfiguration, getSystemContext

    Methods inherited from class software.constructs.Construct

    getNode, isConstruct, toString

    Methods inherited from class software.amazon.jsii.JsiiObject

    jsiiAsyncCall, jsiiAsyncCall, jsiiCall, jsiiCall, jsiiGet, jsiiGet, jsiiSet, jsiiStaticCall, jsiiStaticCall, jsiiStaticGet, jsiiStaticGet, jsiiStaticSet, jsiiStaticSet

    Methods inherited from class java.lang.Object

    clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

    Methods inherited from interface software.amazon.jsii.JsiiSerializable

    $jsii$toJson

  • Constructor Details

    • IdentityCenterSamlFactory

      public IdentityCenterSamlFactory(software.constructs.Construct scope, String id)

  • Method Details

    • create

      public void create()
      Description copied from class: BaseFactory
      Abstract method that must be implemented by all factory subclasses. This method should contain the actual infrastructure creation logic.
      Specified by:
      create in class BaseFactory