Docs Packages
  1. Packages
  2. AWS Native
  3. API Docs
  4. cognito
  5. getUserPoolRiskConfigurationAttachment

AWS Native is in preview. AWS Classic is fully supported.

AWS Native v0.112.0 published on Wednesday, Jul 24, 2024 by Pulumi
pulumi/pulumi-aws-native

aws-native.cognito.getUserPoolRiskConfigurationAttachment

Explore with Pulumi AI

aws-native logo

AWS Native is in preview. AWS Classic is fully supported.

AWS Native v0.112.0 published on Wednesday, Jul 24, 2024 by Pulumi
pulumi/pulumi-aws-native

    Resource Type definition for AWS::Cognito::UserPoolRiskConfigurationAttachment

    Using getUserPoolRiskConfigurationAttachment

    Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

    function getUserPoolRiskConfigurationAttachment(args: GetUserPoolRiskConfigurationAttachmentArgs, opts?: InvokeOptions): Promise<GetUserPoolRiskConfigurationAttachmentResult>
function getUserPoolRiskConfigurationAttachmentOutput(args: GetUserPoolRiskConfigurationAttachmentOutputArgs, opts?: InvokeOptions): Output<GetUserPoolRiskConfigurationAttachmentResult>
    def get_user_pool_risk_configuration_attachment(client_id: Optional[str] = None,
                                                user_pool_id: Optional[str] = None,
                                                opts: Optional[InvokeOptions] = None) -> GetUserPoolRiskConfigurationAttachmentResult
def get_user_pool_risk_configuration_attachment_output(client_id: Optional[pulumi.Input[str]] = None,
                                                user_pool_id: Optional[pulumi.Input[str]] = None,
                                                opts: Optional[InvokeOptions] = None) -> Output[GetUserPoolRiskConfigurationAttachmentResult]
    func LookupUserPoolRiskConfigurationAttachment(ctx *Context, args *LookupUserPoolRiskConfigurationAttachmentArgs, opts ...InvokeOption) (*LookupUserPoolRiskConfigurationAttachmentResult, error)
func LookupUserPoolRiskConfigurationAttachmentOutput(ctx *Context, args *LookupUserPoolRiskConfigurationAttachmentOutputArgs, opts ...InvokeOption) LookupUserPoolRiskConfigurationAttachmentResultOutput

    > Note: This function is named LookupUserPoolRiskConfigurationAttachment in the Go SDK.

    public static class GetUserPoolRiskConfigurationAttachment 
{
    public static Task<GetUserPoolRiskConfigurationAttachmentResult> InvokeAsync(GetUserPoolRiskConfigurationAttachmentArgs args, InvokeOptions? opts = null)
    public static Output<GetUserPoolRiskConfigurationAttachmentResult> Invoke(GetUserPoolRiskConfigurationAttachmentInvokeArgs args, InvokeOptions? opts = null)
}
    public static CompletableFuture<GetUserPoolRiskConfigurationAttachmentResult> getUserPoolRiskConfigurationAttachment(GetUserPoolRiskConfigurationAttachmentArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet

    fn::invoke:
  function: aws-native:cognito:getUserPoolRiskConfigurationAttachment
  arguments:
    # arguments dictionary

    The following arguments are supported:

    ClientId string
    The app client ID. You can specify the risk configuration for a single client (with a specific ClientId) or for all clients (by setting the ClientId to ALL ).
    UserPoolId string
    The user pool ID.
    ClientId string
    The app client ID. You can specify the risk configuration for a single client (with a specific ClientId) or for all clients (by setting the ClientId to ALL ).
    UserPoolId string
    The user pool ID.
    clientId String
    The app client ID. You can specify the risk configuration for a single client (with a specific ClientId) or for all clients (by setting the ClientId to ALL ).
    userPoolId String
    The user pool ID.
    clientId string
    The app client ID. You can specify the risk configuration for a single client (with a specific ClientId) or for all clients (by setting the ClientId to ALL ).
    userPoolId string
    The user pool ID.
    client_id str
    The app client ID. You can specify the risk configuration for a single client (with a specific ClientId) or for all clients (by setting the ClientId to ALL ).
    user_pool_id str
    The user pool ID.
    clientId String
    The app client ID. You can specify the risk configuration for a single client (with a specific ClientId) or for all clients (by setting the ClientId to ALL ).
    userPoolId String
    The user pool ID.

    getUserPoolRiskConfigurationAttachment Result

    The following output properties are available:

    AccountTakeoverRiskConfiguration Pulumi.AwsNative.Cognito.Outputs.UserPoolRiskConfigurationAttachmentAccountTakeoverRiskConfigurationType
    The account takeover risk configuration object, including the NotifyConfiguration object and Actions to take if there is an account takeover.
    CompromisedCredentialsRiskConfiguration Pulumi.AwsNative.Cognito.Outputs.UserPoolRiskConfigurationAttachmentCompromisedCredentialsRiskConfigurationType
    The compromised credentials risk configuration object, including the EventFilter and the EventAction .
    RiskExceptionConfiguration Pulumi.AwsNative.Cognito.Outputs.UserPoolRiskConfigurationAttachmentRiskExceptionConfigurationType
    The configuration to override the risk decision.
    AccountTakeoverRiskConfiguration UserPoolRiskConfigurationAttachmentAccountTakeoverRiskConfigurationType
    The account takeover risk configuration object, including the NotifyConfiguration object and Actions to take if there is an account takeover.
    CompromisedCredentialsRiskConfiguration UserPoolRiskConfigurationAttachmentCompromisedCredentialsRiskConfigurationType
    The compromised credentials risk configuration object, including the EventFilter and the EventAction .
    RiskExceptionConfiguration UserPoolRiskConfigurationAttachmentRiskExceptionConfigurationType
    The configuration to override the risk decision.
    accountTakeoverRiskConfiguration UserPoolRiskConfigurationAttachmentAccountTakeoverRiskConfigurationType
    The account takeover risk configuration object, including the NotifyConfiguration object and Actions to take if there is an account takeover.
    compromisedCredentialsRiskConfiguration UserPoolRiskConfigurationAttachmentCompromisedCredentialsRiskConfigurationType
    The compromised credentials risk configuration object, including the EventFilter and the EventAction .
    riskExceptionConfiguration UserPoolRiskConfigurationAttachmentRiskExceptionConfigurationType
    The configuration to override the risk decision.
    accountTakeoverRiskConfiguration UserPoolRiskConfigurationAttachmentAccountTakeoverRiskConfigurationType
    The account takeover risk configuration object, including the NotifyConfiguration object and Actions to take if there is an account takeover.
    compromisedCredentialsRiskConfiguration UserPoolRiskConfigurationAttachmentCompromisedCredentialsRiskConfigurationType
    The compromised credentials risk configuration object, including the EventFilter and the EventAction .
    riskExceptionConfiguration UserPoolRiskConfigurationAttachmentRiskExceptionConfigurationType
    The configuration to override the risk decision.
    account_takeover_risk_configuration UserPoolRiskConfigurationAttachmentAccountTakeoverRiskConfigurationType
    The account takeover risk configuration object, including the NotifyConfiguration object and Actions to take if there is an account takeover.
    compromised_credentials_risk_configuration UserPoolRiskConfigurationAttachmentCompromisedCredentialsRiskConfigurationType
    The compromised credentials risk configuration object, including the EventFilter and the EventAction .
    risk_exception_configuration UserPoolRiskConfigurationAttachmentRiskExceptionConfigurationType
    The configuration to override the risk decision.
    accountTakeoverRiskConfiguration Property Map
    The account takeover risk configuration object, including the NotifyConfiguration object and Actions to take if there is an account takeover.
    compromisedCredentialsRiskConfiguration Property Map
    The compromised credentials risk configuration object, including the EventFilter and the EventAction .
    riskExceptionConfiguration Property Map
    The configuration to override the risk decision.

    Supporting Types

    UserPoolRiskConfigurationAttachmentAccountTakeoverActionType

    EventAction string
    The action to take in response to the account takeover action. Valid values are as follows:

    • BLOCK Choosing this action will block the request.
    • MFA_IF_CONFIGURED Present an MFA challenge if user has configured it, else allow the request.
    • MFA_REQUIRED Present an MFA challenge if user has configured it, else block the request.
    • NO_ACTION Allow the user to sign in.
    Notify bool
    Flag specifying whether to send a notification.
    EventAction string
    The action to take in response to the account takeover action. Valid values are as follows:

    • BLOCK Choosing this action will block the request.
    • MFA_IF_CONFIGURED Present an MFA challenge if user has configured it, else allow the request.
    • MFA_REQUIRED Present an MFA challenge if user has configured it, else block the request.
    • NO_ACTION Allow the user to sign in.
    Notify bool
    Flag specifying whether to send a notification.
    eventAction String
    The action to take in response to the account takeover action. Valid values are as follows:

    • BLOCK Choosing this action will block the request.
    • MFA_IF_CONFIGURED Present an MFA challenge if user has configured it, else allow the request.
    • MFA_REQUIRED Present an MFA challenge if user has configured it, else block the request.
    • NO_ACTION Allow the user to sign in.
    notify_ Boolean
    Flag specifying whether to send a notification.
    eventAction string
    The action to take in response to the account takeover action. Valid values are as follows:

    • BLOCK Choosing this action will block the request.
    • MFA_IF_CONFIGURED Present an MFA challenge if user has configured it, else allow the request.
    • MFA_REQUIRED Present an MFA challenge if user has configured it, else block the request.
    • NO_ACTION Allow the user to sign in.
    notify boolean
    Flag specifying whether to send a notification.
    event_action str
    The action to take in response to the account takeover action. Valid values are as follows:

    • BLOCK Choosing this action will block the request.
    • MFA_IF_CONFIGURED Present an MFA challenge if user has configured it, else allow the request.
    • MFA_REQUIRED Present an MFA challenge if user has configured it, else block the request.
    • NO_ACTION Allow the user to sign in.
    notify bool
    Flag specifying whether to send a notification.
    eventAction String
    The action to take in response to the account takeover action. Valid values are as follows:

    • BLOCK Choosing this action will block the request.
    • MFA_IF_CONFIGURED Present an MFA challenge if user has configured it, else allow the request.
    • MFA_REQUIRED Present an MFA challenge if user has configured it, else block the request.
    • NO_ACTION Allow the user to sign in.
    notify Boolean
    Flag specifying whether to send a notification.

    UserPoolRiskConfigurationAttachmentAccountTakeoverActionsType

    highAction Property Map
    Action to take for a high risk.
    lowAction Property Map
    Action to take for a low risk.
    mediumAction Property Map
    Action to take for a medium risk.

    UserPoolRiskConfigurationAttachmentAccountTakeoverRiskConfigurationType

    Actions UserPoolRiskConfigurationAttachmentAccountTakeoverActionsType
    Account takeover risk configuration actions.
    NotifyConfiguration UserPoolRiskConfigurationAttachmentNotifyConfigurationType
    The notify configuration used to construct email notifications.
    actions UserPoolRiskConfigurationAttachmentAccountTakeoverActionsType
    Account takeover risk configuration actions.
    notifyConfiguration UserPoolRiskConfigurationAttachmentNotifyConfigurationType
    The notify configuration used to construct email notifications.
    actions UserPoolRiskConfigurationAttachmentAccountTakeoverActionsType
    Account takeover risk configuration actions.
    notifyConfiguration UserPoolRiskConfigurationAttachmentNotifyConfigurationType
    The notify configuration used to construct email notifications.
    actions UserPoolRiskConfigurationAttachmentAccountTakeoverActionsType
    Account takeover risk configuration actions.
    notify_configuration UserPoolRiskConfigurationAttachmentNotifyConfigurationType
    The notify configuration used to construct email notifications.
    actions Property Map
    Account takeover risk configuration actions.
    notifyConfiguration Property Map
    The notify configuration used to construct email notifications.

    UserPoolRiskConfigurationAttachmentCompromisedCredentialsActionsType

    EventAction string
    The event action.
    EventAction string
    The event action.
    eventAction String
    The event action.
    eventAction string
    The event action.
    event_action str
    The event action.
    eventAction String
    The event action.

    UserPoolRiskConfigurationAttachmentCompromisedCredentialsRiskConfigurationType

    Actions Pulumi.AwsNative.Cognito.Inputs.UserPoolRiskConfigurationAttachmentCompromisedCredentialsActionsType
    The compromised credentials risk configuration actions.
    EventFilter List<string>
    Perform the action for these events. The default is to perform all events if no event filter is specified.
    Actions UserPoolRiskConfigurationAttachmentCompromisedCredentialsActionsType
    The compromised credentials risk configuration actions.
    EventFilter []string
    Perform the action for these events. The default is to perform all events if no event filter is specified.
    actions UserPoolRiskConfigurationAttachmentCompromisedCredentialsActionsType
    The compromised credentials risk configuration actions.
    eventFilter List<String>
    Perform the action for these events. The default is to perform all events if no event filter is specified.
    actions UserPoolRiskConfigurationAttachmentCompromisedCredentialsActionsType
    The compromised credentials risk configuration actions.
    eventFilter string[]
    Perform the action for these events. The default is to perform all events if no event filter is specified.
    actions UserPoolRiskConfigurationAttachmentCompromisedCredentialsActionsType
    The compromised credentials risk configuration actions.
    event_filter Sequence[str]
    Perform the action for these events. The default is to perform all events if no event filter is specified.
    actions Property Map
    The compromised credentials risk configuration actions.
    eventFilter List<String>
    Perform the action for these events. The default is to perform all events if no event filter is specified.

    UserPoolRiskConfigurationAttachmentNotifyConfigurationType

    SourceArn string
    The Amazon Resource Name (ARN) of the identity that is associated with the sending authorization policy. This identity permits Amazon Cognito to send for the email address specified in the From parameter.
    BlockEmail Pulumi.AwsNative.Cognito.Inputs.UserPoolRiskConfigurationAttachmentNotifyEmailType
    Email template used when a detected risk event is blocked.
    From string
    The email address that is sending the email. The address must be either individually verified with Amazon Simple Email Service, or from a domain that has been verified with Amazon SES.
    MfaEmail Pulumi.AwsNative.Cognito.Inputs.UserPoolRiskConfigurationAttachmentNotifyEmailType
    The multi-factor authentication (MFA) email template used when MFA is challenged as part of a detected risk.
    NoActionEmail Pulumi.AwsNative.Cognito.Inputs.UserPoolRiskConfigurationAttachmentNotifyEmailType
    The email template used when a detected risk event is allowed.
    ReplyTo string
    The destination to which the receiver of an email should reply to.
    SourceArn string
    The Amazon Resource Name (ARN) of the identity that is associated with the sending authorization policy. This identity permits Amazon Cognito to send for the email address specified in the From parameter.
    BlockEmail UserPoolRiskConfigurationAttachmentNotifyEmailType
    Email template used when a detected risk event is blocked.
    From string
    The email address that is sending the email. The address must be either individually verified with Amazon Simple Email Service, or from a domain that has been verified with Amazon SES.
    MfaEmail UserPoolRiskConfigurationAttachmentNotifyEmailType
    The multi-factor authentication (MFA) email template used when MFA is challenged as part of a detected risk.
    NoActionEmail UserPoolRiskConfigurationAttachmentNotifyEmailType
    The email template used when a detected risk event is allowed.
    ReplyTo string
    The destination to which the receiver of an email should reply to.
    sourceArn String
    The Amazon Resource Name (ARN) of the identity that is associated with the sending authorization policy. This identity permits Amazon Cognito to send for the email address specified in the From parameter.
    blockEmail UserPoolRiskConfigurationAttachmentNotifyEmailType
    Email template used when a detected risk event is blocked.
    from String
    The email address that is sending the email. The address must be either individually verified with Amazon Simple Email Service, or from a domain that has been verified with Amazon SES.
    mfaEmail UserPoolRiskConfigurationAttachmentNotifyEmailType
    The multi-factor authentication (MFA) email template used when MFA is challenged as part of a detected risk.
    noActionEmail UserPoolRiskConfigurationAttachmentNotifyEmailType
    The email template used when a detected risk event is allowed.
    replyTo String
    The destination to which the receiver of an email should reply to.
    sourceArn string
    The Amazon Resource Name (ARN) of the identity that is associated with the sending authorization policy. This identity permits Amazon Cognito to send for the email address specified in the From parameter.
    blockEmail UserPoolRiskConfigurationAttachmentNotifyEmailType
    Email template used when a detected risk event is blocked.
    from string
    The email address that is sending the email. The address must be either individually verified with Amazon Simple Email Service, or from a domain that has been verified with Amazon SES.
    mfaEmail UserPoolRiskConfigurationAttachmentNotifyEmailType
    The multi-factor authentication (MFA) email template used when MFA is challenged as part of a detected risk.
    noActionEmail UserPoolRiskConfigurationAttachmentNotifyEmailType
    The email template used when a detected risk event is allowed.
    replyTo string
    The destination to which the receiver of an email should reply to.
    source_arn str
    The Amazon Resource Name (ARN) of the identity that is associated with the sending authorization policy. This identity permits Amazon Cognito to send for the email address specified in the From parameter.
    block_email UserPoolRiskConfigurationAttachmentNotifyEmailType
    Email template used when a detected risk event is blocked.
    from_ str
    The email address that is sending the email. The address must be either individually verified with Amazon Simple Email Service, or from a domain that has been verified with Amazon SES.
    mfa_email UserPoolRiskConfigurationAttachmentNotifyEmailType
    The multi-factor authentication (MFA) email template used when MFA is challenged as part of a detected risk.
    no_action_email UserPoolRiskConfigurationAttachmentNotifyEmailType
    The email template used when a detected risk event is allowed.
    reply_to str
    The destination to which the receiver of an email should reply to.
    sourceArn String
    The Amazon Resource Name (ARN) of the identity that is associated with the sending authorization policy. This identity permits Amazon Cognito to send for the email address specified in the From parameter.
    blockEmail Property Map
    Email template used when a detected risk event is blocked.
    from String
    The email address that is sending the email. The address must be either individually verified with Amazon Simple Email Service, or from a domain that has been verified with Amazon SES.
    mfaEmail Property Map
    The multi-factor authentication (MFA) email template used when MFA is challenged as part of a detected risk.
    noActionEmail Property Map
    The email template used when a detected risk event is allowed.
    replyTo String
    The destination to which the receiver of an email should reply to.

    UserPoolRiskConfigurationAttachmentNotifyEmailType

    Subject string
    The email subject.
    HtmlBody string
    The email HTML body.
    TextBody string
    The email text body.
    Subject string
    The email subject.
    HtmlBody string
    The email HTML body.
    TextBody string
    The email text body.
    subject String
    The email subject.
    htmlBody String
    The email HTML body.
    textBody String
    The email text body.
    subject string
    The email subject.
    htmlBody string
    The email HTML body.
    textBody string
    The email text body.
    subject str
    The email subject.
    html_body str
    The email HTML body.
    text_body str
    The email text body.
    subject String
    The email subject.
    htmlBody String
    The email HTML body.
    textBody String
    The email text body.

    UserPoolRiskConfigurationAttachmentRiskExceptionConfigurationType

    BlockedIpRangeList List<string>
    Overrides the risk decision to always block the pre-authentication requests. The IP range is in CIDR notation, a compact representation of an IP address and its routing prefix.
    SkippedIpRangeList List<string>
    Risk detection isn't performed on the IP addresses in this range list. The IP range is in CIDR notation.
    BlockedIpRangeList []string
    Overrides the risk decision to always block the pre-authentication requests. The IP range is in CIDR notation, a compact representation of an IP address and its routing prefix.
    SkippedIpRangeList []string
    Risk detection isn't performed on the IP addresses in this range list. The IP range is in CIDR notation.
    blockedIpRangeList List<String>
    Overrides the risk decision to always block the pre-authentication requests. The IP range is in CIDR notation, a compact representation of an IP address and its routing prefix.
    skippedIpRangeList List<String>
    Risk detection isn't performed on the IP addresses in this range list. The IP range is in CIDR notation.
    blockedIpRangeList string[]
    Overrides the risk decision to always block the pre-authentication requests. The IP range is in CIDR notation, a compact representation of an IP address and its routing prefix.
    skippedIpRangeList string[]
    Risk detection isn't performed on the IP addresses in this range list. The IP range is in CIDR notation.
    blocked_ip_range_list Sequence[str]
    Overrides the risk decision to always block the pre-authentication requests. The IP range is in CIDR notation, a compact representation of an IP address and its routing prefix.
    skipped_ip_range_list Sequence[str]
    Risk detection isn't performed on the IP addresses in this range list. The IP range is in CIDR notation.
    blockedIpRangeList List<String>
    Overrides the risk decision to always block the pre-authentication requests. The IP range is in CIDR notation, a compact representation of an IP address and its routing prefix.
    skippedIpRangeList List<String>
    Risk detection isn't performed on the IP addresses in this range list. The IP range is in CIDR notation.

    Package Details

    Repository
    AWS Native pulumi/pulumi-aws-native
    License
    Apache-2.0
    aws-native logo

    AWS Native is in preview. AWS Classic is fully supported.

    AWS Native v0.112.0 published on Wednesday, Jul 24, 2024 by Pulumi
    pulumi/pulumi-aws-native