Skip to content

UserProvisionProps

Properties for defining a UserProvision.

See https://www.alibabacloud.com/help/ros/developer-reference/aliyun-cloudsso-userprovision

Initializer 

import ros_cdk_cloudsso
ros_cdk_cloudsso.UserProvisionProps(
  deletion_strategy: typing.Union[str, IResolvable],
  directory_id: typing.Union[str, IResolvable],
  duplication_strategy: typing.Union[str, IResolvable],
  principal_id: typing.Union[str, IResolvable],
  principal_type: typing.Union[str, IResolvable],
  target_id: typing.Union[str, IResolvable],
  target_type: typing.Union[str, IResolvable],
  description: typing.Union[str, IResolvable] = None
)

Properties

Name Type Description
deletion_strategy typing.Union[str, ros_cdk_core.IResolvable] Property deletionStrategy: Delete policy.
directory_id typing.Union[str, ros_cdk_core.IResolvable] Property directoryId: The ID of the directory.
duplication_strategy typing.Union[str, ros_cdk_core.IResolvable] Property duplicationStrategy: Conflict policy.
principal_id typing.Union[str, ros_cdk_core.IResolvable] Property principalId: The ID of the principal.
principal_type typing.Union[str, ros_cdk_core.IResolvable] Property principalType: The type of the principal.
target_id typing.Union[str, ros_cdk_core.IResolvable] Property targetId: Target ID for RAM user synchronization.
target_type typing.Union[str, ros_cdk_core.IResolvable] Property targetType: Target type for RAM user synchronization.
description typing.Union[str, ros_cdk_core.IResolvable] Property description: The description of the user.

deletion_strategyRequired 

deletion_strategy: typing.Union[str, IResolvable]
  • Type: typing.Union[str, ros_cdk_core.IResolvable]

Property deletionStrategy: Delete policy.

The treatment strategy for the synchronized RAM users when the RAM user synchronization is removed. Valid values:

  • Delete: Delete When the RAM user synchronization is removed, the RAM users that have been synchronized to the RAM from the cloud SSO are deleted.
  • Keep: When the RAM user synchronization is removed, the RAM users that have been synchronized to the RAM from the cloud SSO are retained.

directory_idRequired 

directory_id: typing.Union[str, IResolvable]
  • Type: typing.Union[str, ros_cdk_core.IResolvable]

Property directoryId: The ID of the directory.

duplication_strategyRequired 

duplication_strategy: typing.Union[str, IResolvable]
  • Type: typing.Union[str, ros_cdk_core.IResolvable]

Property duplicationStrategy: Conflict policy.

When the cloud SSO user is synchronized to the RAM, the processing strategy if there is a user with the same name in the RAM. Valid values:

  • KeepBoth: Keep both of them. When the cloud SSO user is synchronized to RAM, if the RAM already has a user with the same name, it will try to create a RAM user with the user name after adding the suffix _sso to the user name of the cloud SSO user.
  • TakeOver: Take over. When the cloud SSO user is synchronized to the RAM, if the RAM already has a user with the same name, the existing RAM user is directly replaced by the cloud SSO synchronization user.

principal_idRequired 

principal_id: typing.Union[str, IResolvable]
  • Type: typing.Union[str, ros_cdk_core.IResolvable]

Property principalId: The ID of the principal.

Valid values:

  • When the PrincipalType value is Group, the value is the cloud SSO user group ID (g-**).
  • When PrincipalType takes the value User, this value is the cloud SSO user ID (u-**).

principal_typeRequired 

principal_type: typing.Union[str, IResolvable]
  • Type: typing.Union[str, ros_cdk_core.IResolvable]

Property principalType: The type of the principal.

Valid values:

  • User: The principal is a cloud SSO user.
  • Group: The principal is a cloud SSO group.

target_idRequired 

target_id: typing.Union[str, IResolvable]
  • Type: typing.Union[str, ros_cdk_core.IResolvable]

Property targetId: Target ID for RAM user synchronization.

Currently, it is the RD account ID.

target_typeRequired 

target_type: typing.Union[str, IResolvable]
  • Type: typing.Union[str, ros_cdk_core.IResolvable]

Property targetType: Target type for RAM user synchronization.

Currently, it is RD-Account.

descriptionOptional 

description: typing.Union[str, IResolvable]
  • Type: typing.Union[str, ros_cdk_core.IResolvable]

Property description: The description of the user.