Package-level declarations
Types
You don't have sufficient access to perform this action.
Contains information about an action for a request for which an authorization decision is made.
The value of an attribute.
Contains the information about an error resulting from a BatchGetPolicy API call.
Information about a policy that you include in a BatchGetPolicy API request.
Contains information about a policy returned from a BatchGetPolicy API request.
An authorization request that you include in a BatchIsAuthorized API request.
The decision, based on policy evaluation, from an individual authorization request in a BatchIsAuthorized API request.
An authorization request that you include in a BatchIsAuthorizedWithToken API request.
The decision, based on policy evaluation, from an individual authorization request in a BatchIsAuthorizedWithToken API request.
The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.
The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.
The type of entity that a policy store maps to groups from an Amazon Cognito user pool identity source.
The configuration for an identity source that represents a connection to an Amazon Cognito user pool used as an identity provider for Verified Permissions.
The configuration for an identity source that represents a connection to an Amazon Cognito user pool used as an identity provider for Verified Permissions.
The configuration for an identity source that represents a connection to an Amazon Cognito user pool used as an identity provider for Verified Permissions.
Contains configuration information used when creating a new identity source.
Contains configuration information about an identity source.
Contains configuration information about an identity source.
The request failed because another request to modify a resource occurred at the same.
Contains additional details about the context of the request. Verified Permissions evaluates this information in an authorization request as part of the when and unless clauses in a policy.
Contains information about one of the policies that determined an authorization decision.
Contains the list of entities to be considered during an authorization request. This includes all principals, resources, and actions required to successfully evaluate the request.
Contains the identifier of an entity, including its ID and type.
Contains information about an entity that can be referenced in a Cedar policy.
Contains information about a principal or resource that can be referenced in a Cedar policy.
Contains a description of an evaluation error.
A structure that contains configuration of the identity source.
A structure that defines characteristics of an identity source that you can use to filter.
A structure that defines an identity source.
A structure that contains configuration of the identity source.
The request failed because of an internal error. Try your request again later
The policy store can't be deleted because deletion protection is enabled. To delete this policy store, disable deletion protection.
The configuration of an OpenID Connect (OIDC) identity source for handling access token claims. Contains the claim that you want to identify as the principal in an authorization request, and the values of the aud claim, or audiences, that you want to accept.
The configuration of an OpenID Connect (OIDC) identity source for handling access token claims. Contains the claim that you want to identify as the principal in an authorization request, and the values of the aud claim, or audiences, that you want to accept.
The configuration of an OpenID Connect (OIDC) identity source for handling access token claims. Contains the claim that you want to identify as the principal in an authorization request, and the values of the aud claim, or audiences, that you want to accept.
Contains configuration details of an OpenID Connect (OIDC) identity provider, or identity source, that Verified Permissions can use to generate entities from authenticated identities. It specifies the issuer URL, token type that you want to use, and policy store entity details.
Contains configuration details of an OpenID Connect (OIDC) identity provider, or identity source, that Verified Permissions can use to generate entities from authenticated identities. It specifies the issuer URL, token type that you want to use, and policy store entity details.
Contains configuration details of an OpenID Connect (OIDC) identity provider, or identity source, that Verified Permissions can use to generate entities from authenticated identities. It specifies the issuer URL, token type that you want to use, and policy store entity details.
The claim in OIDC identity provider tokens that indicates a user's group membership, and the entity type that you want to map it to. For example, this object can map the contents of a groups claim to MyCorp::UserGroup.
The claim in OIDC identity provider tokens that indicates a user's group membership, and the entity type that you want to map it to. For example, this object can map the contents of a groups claim to MyCorp::UserGroup.
The claim in OIDC identity provider tokens that indicates a user's group membership, and the entity type that you want to map it to. For example, this object can map the contents of a groups claim to MyCorp::UserGroup.
The configuration of an OpenID Connect (OIDC) identity source for handling identity (ID) token claims. Contains the claim that you want to identify as the principal in an authorization request, and the values of the aud claim, or audiences, that you want to accept.
The configuration of an OpenID Connect (OIDC) identity source for handling identity (ID) token claims. Contains the claim that you want to identify as the principal in an authorization request, and the values of the aud claim, or audiences, that you want to accept.
The configuration of an OpenID Connect (OIDC) identity source for handling identity (ID) token claims. Contains the claim that you want to identify as the principal in an authorization request, and the values of the aud claim, or audiences, that you want to accept.
The token type that you want to process from your OIDC identity provider. Your policy store can process either identity (ID) or access tokens from a given OIDC identity source.
The token type that you want to process from your OIDC identity provider. Your policy store can process either identity (ID) or access tokens from a given OIDC identity source.
The token type that you want to process from your OIDC identity provider. Your policy store can process either identity (ID) or access tokens from a given OIDC identity source.
A structure that contains the details for a Cedar policy definition. It includes the policy type, a description, and a policy body. This is a top level data type used to create a policy.
A structure that describes a policy definition. It must always have either an static or a templateLinked element.
A structure that describes a PolicyDefinintion. It will always have either an StaticPolicy or a TemplateLinkedPolicy element.
Contains information about a filter to refine policies returned in a query.
Contains information about a policy.
Contains information about a policy store.
Contains details about a policy template
Contains information about a resource conflict.
The request failed because it references a resource that doesn't exist.
Contains a list of principal types, resource types, and actions that can be specified in policies stored in the same policy store. If the validation mode for the policy store is set to STRICT, then policies that can't be validated by this schema are rejected by Verified Permissions and can't be stored in the policy store.
The request failed because it would cause a service quota to be exceeded.
Contains information about a static policy.
A structure that contains details about a static policy. It includes the description and policy body.
A structure that contains details about a static policy. It includes the description and policy statement.
Contains information about a policy created by instantiating a policy template.
Contains information about a policy that was created by instantiating a policy template.
Contains information about a policy created by instantiating a policy template.
The request failed because it exceeded a throttling quota.
No more tags be added because the limit (50) has been reached. To add new tags, use UntagResource to remove existing tags.
The user group entities from an Amazon Cognito user pool identity source.
Contains configuration details of a Amazon Cognito user pool for use with an identity source.
Contains an update to replace the configuration in an existing identity source.
The configuration of an OpenID Connect (OIDC) identity source for handling access token claims. Contains the claim that you want to identify as the principal in an authorization request, and the values of the aud claim, or audiences, that you want to accept.
Contains configuration details of an OpenID Connect (OIDC) identity provider, or identity source, that Verified Permissions can use to generate entities from authenticated identities. It specifies the issuer URL, token type that you want to use, and policy store entity details.
The claim in OIDC identity provider tokens that indicates a user's group membership, and the entity type that you want to map it to. For example, this object can map the contents of a groups claim to MyCorp::UserGroup.
The configuration of an OpenID Connect (OIDC) identity source for handling identity (ID) token claims. Contains the claim that you want to identify as the principal in an authorization request, and the values of the aud claim, or audiences, that you want to accept.
The token type that you want to process from your OIDC identity provider. Your policy store can process either identity (ID) or access tokens from a given OIDC identity source.
Contains information about updates to be applied to a policy.
Contains information about an update to a static policy.
The request failed because one or more input parameters don't satisfy their constraint requirements. The output is provided as a list of fields and a reason for each field that isn't valid.
Details about a field that failed policy validation.
A structure that contains Cedar policy validation settings for the policy store. The validation mode determines which validation failures that Cedar considers serious enough to block acceptance of a new or edited static policy or policy template.
Base class for all service related exceptions thrown by the VerifiedPermissions client