search

org-formation / aws-resource-providers

A community driven repository where you can find AWS Resource Type Providers for different purposes (including org-formation ones).
MIT License
88 stars 21 forks source link

Community::IAM::OpenIDConnectProvider #35

Open OlafConijn opened 3 years ago

OlafConijn commented 3 years ago

The Community::IAM::OpenIDConnectProvider allows users to set up a trust with an open id connect provider.

Proposal to do so using the following resource

Type: Community::IAM::OpenIDConnectProvider
Properties: 
  Url: String # The URL of the identity provider
  ClientIdList: List<String> # list of client ids/ audiences
  ThumbprintList: List<String> # list of certificate thumbprints
eduardomourar commented 3 years ago

This is CloudFormation coverage roadmap issue: https://github.com/aws-cloudformation/aws-cloudformation-coverage-roadmap/issues/53.

I believe AWS is already working on this resource type and there is also a custom resource in the CDK project.

zaro0508 commented 3 years ago

I believe AWS OIDC is now an officially supported cloudformation resource, https://docs.amazonaws.cn/en_us/AWSCloudFormation/latest/UserGuide/aws-resource-iam-oidcprovider.html

We should probably just deprecate the Community::IAM::OpenIDConnectProvider