Skip to main content
← back to extensions

@swamp/aws/sso

v2026.04.07.1

AWS SSO infrastructure models

Platforms

linux-x86_64linux-aarch64darwin-x86_64darwin-aarch64

Labels

awsssocloudinfrastructure

Contents

models

Install

$ swamp extension pull @swamp/aws/sso

Release Notes

  • Updated: assignment, instance_access_control_attribute_configuration, permission_set

@swamp/aws/sso/applicationv2026.04.03.3application.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
NamestringThe name you want to assign to this Identity Center (SSO) Application
Description?stringThe description information for the Identity Center (SSO) Application
InstanceArnstringThe ARN of the instance of IAM Identity Center under which the operation will run
ApplicationProviderArnstringThe ARN of the application provider under which the operation will run
Status?enumSpecifies whether the application is enabled or disabled
PortalOptions?objectA structure that describes the options for the portal associated with an application
Tags?array
createCreate a SSO Application
getGet a SSO Application
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO Application
updateUpdate a SSO Application
deleteDelete a SSO Application
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO Application
syncSync SSO Application state from AWS

Resources

state(infinite)— SSO Application resource state
@swamp/aws/sso/application-assignmentv2026.04.03.3application_assignment.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
ApplicationArnstringThe ARN of the application.
PrincipalTypeenumThe entity type for which the assignment will be created.
PrincipalIdstringAn identifier for an object in IAM Identity Center, such as a user or group
createCreate a SSO ApplicationAssignment
getGet a SSO ApplicationAssignment
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO ApplicationAssignment
deleteDelete a SSO ApplicationAssignment
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO ApplicationAssignment
syncSync SSO ApplicationAssignment state from AWS

Resources

state(infinite)— SSO ApplicationAssignment resource state
@swamp/aws/sso/assignmentv2026.04.07.1assignment.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
InstanceArnstringThe sso instance that the permission set is owned.
TargetIdstringThe account id to be provisioned.
TargetTypeenumThe type of resource to be provisioned to, only aws account now
PermissionSetArnstringThe permission set that the assignment will be assigned
PrincipalTypeenumThe assignee's type, user/group
PrincipalIdstringThe assignee's identifier, user id/group id
createCreate a SSO Assignment
getGet a SSO Assignment
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO Assignment
deleteDelete a SSO Assignment
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO Assignment
syncSync SSO Assignment state from AWS

Resources

state(infinite)— SSO Assignment resource state
@swamp/aws/sso/instancev2026.04.03.2instance.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
Name?stringThe name you want to assign to this Identity Center (SSO) Instance
Tags?array
createCreate a SSO Instance
getGet a SSO Instance
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO Instance
updateUpdate a SSO Instance
deleteDelete a SSO Instance
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO Instance
syncSync SSO Instance state from AWS

Resources

state(infinite)— SSO Instance resource state
@swamp/aws/sso/instance-access-control-attribute-configurationv2026.04.07.1instance_access_control_attribute_configuration.ts

Global Arguments

ArgumentTypeDescription
InstanceArnstringThe ARN of the AWS SSO instance under which the operation will be executed.
InstanceAccessControlAttributeConfiguration?objectThe InstanceAccessControlAttributeConfiguration property has been deprecated but is still supported for backwards compatibility purposes. We recomend that you use AccessControlAttributes property instead.
AccessControlAttributes?array
createCreate a SSO InstanceAccessControlAttributeConfiguration
getGet a SSO InstanceAccessControlAttributeConfiguration
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO InstanceAccessControlAttributeConfiguration
updateUpdate a SSO InstanceAccessControlAttributeConfiguration
deleteDelete a SSO InstanceAccessControlAttributeConfiguration
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO InstanceAccessControlAttributeConfiguration
syncSync SSO InstanceAccessControlAttributeConfiguration state from AWS

Resources

state(infinite)— SSO InstanceAccessControlAttributeConfiguration resource state
@swamp/aws/sso/permission-setv2026.04.07.1permission_set.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
NamestringThe name you want to assign to this permission set.
Description?stringThe permission set description.
InstanceArnstringThe sso instance arn that the permission set is owned.
SessionDuration?stringThe length of time that a user can be signed in to an AWS account.
RelayStateType?stringThe relay state URL that redirect links to any service in the AWS Management Console.
ManagedPolicies?array
InlinePolicy?stringThe inline policy to put in permission set.
Tags?array
CustomerManagedPolicyReferences?array
PermissionsBoundary?object
createCreate a SSO PermissionSet
getGet a SSO PermissionSet
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO PermissionSet
updateUpdate a SSO PermissionSet
deleteDelete a SSO PermissionSet
ArgumentTypeDescription
identifierstringThe primary identifier of the SSO PermissionSet
syncSync SSO PermissionSet state from AWS

Resources

state(infinite)— SSO PermissionSet resource state