AccessControlAttribute
import type { AccessControlAttribute } from "https://aws-api.deno.dev/v0.4/services/ssoadmin.ts?docs=full";
These are IAM Identity Center identity store attributes that you can configure for use in attributes-based access control (ABAC).
You can create permissions policies that determine who can access your AWS resources based upon the configured attribute values.
When you enable ABAC and specify AccessControlAttributes
, IAM Identity Center passes the attribute values of the authenticated user into IAM for use in policy evaluation.