This project contains infrastructure setup that might be required by multiple applications and therefore cannot be placed in one of the application-specific stacks.
This stack creates permissions sets and permission set assignments resources in IAM Identity Center (previously known as AWS SSO). Since permissions are app-dependant, for each app, a configuration class must be implemented (AppConfig) in order to:
- provide the desired policies
- provide the group display name in IAM Identity Center to which attach the policies
- provide the target account IDs which the permission sets should be enabled for
cdk lslist all stacks in the appcdk synthemits the synthesized CloudFormation templatecdk deploydeploy this stack to your default AWS account/regioncdk diffcompare deployed stack with current statecdk docsopen CDK documentation