AWS::Grafana::Workspace SamlConfiguration

A structure containing information about how this workspace works with SAML.

Syntax

To declare this entity in your Amazon CloudFormation template, use the following syntax:

JSON


{
  "AllowedOrganizations" : [ String, ... ],
  "AssertionAttributes" : AssertionAttributes,
  "IdpMetadata" : IdpMetadata,
  "LoginValidityDuration" : Double,
  "RoleValues" : RoleValues
}

YAML


  AllowedOrganizations: 
    - String
  AssertionAttributes: 
    AssertionAttributes
  IdpMetadata: 
    IdpMetadata
  LoginValidityDuration: Double
  RoleValues: 
    RoleValues

Properties

AllowedOrganizations

Lists which organizations defined in the SAML assertion are allowed to use the Amazon Managed Grafana workspace. If this is empty, all organizations in the assertion attribute have access.

Required: No

Type: List of String

Update requires: No interruption

AssertionAttributes

A structure that defines which attributes in the SAML assertion are to be used to define information about the users authenticated by that IdP to use the workspace.

Required: No

Type: AssertionAttributes

Update requires: No interruption

IdpMetadata

A structure containing the identity provider (IdP) metadata used to integrate the identity provider with this workspace.

Required: Yes

Type: IdpMetadata

Update requires: No interruption

LoginValidityDuration

How long a sign-on session by a SAML user is valid, before the user has to sign on again.

Required: No

Type: Double

Update requires: No interruption

RoleValues

A structure containing arrays that map group names in the SAML assertion to the Grafana Admin and Editor roles in the workspace.

Required: No

Type: RoleValues

Update requires: No interruption

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

RoleValues

VpcConfiguration