AWS Cloud Control v1.9.0, Nov 18 24

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.9.0 published on Monday, Nov 18, 2024 by Pulumi

pulumi/pulumi-aws-native

aws-native.transfer.getUser

Explore with Pulumi AI

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.9.0 published on Monday, Nov 18, 2024 by Pulumi

pulumi/pulumi-aws-native

Using getUser

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getUser(args: GetUserArgs, opts?: InvokeOptions): Promise<GetUserResult>
function getUserOutput(args: GetUserOutputArgs, opts?: InvokeOptions): Output<GetUserResult>

def get_user(arn: Optional[str] = None,
             opts: Optional[InvokeOptions] = None) -> GetUserResult
def get_user_output(arn: Optional[pulumi.Input[str]] = None,
             opts: Optional[InvokeOptions] = None) -> Output[GetUserResult]

func LookupUser(ctx *Context, args *LookupUserArgs, opts ...InvokeOption) (*LookupUserResult, error)
func LookupUserOutput(ctx *Context, args *LookupUserOutputArgs, opts ...InvokeOption) LookupUserResultOutput

> Note: This function is named LookupUser in the Go SDK.

public static class GetUser 
{
    public static Task<GetUserResult> InvokeAsync(GetUserArgs args, InvokeOptions? opts = null)
    public static Output<GetUserResult> Invoke(GetUserInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetUserResult> getUser(GetUserArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet

fn::invoke:
  function: aws-native:transfer:getUser
  arguments:
    # arguments dictionary

The following arguments are supported:

Arn string

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

Arn string

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

arn String

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

arn string

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

arn str

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

arn String

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

getUser Result

The following output properties are available:

Arn string

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

HomeDirectory string

The landing directory (folder) for a user when they log in to the server using the client.

A HomeDirectory example is /bucket_name/home/mydirectory .

The HomeDirectory parameter is only used if HomeDirectoryType is set to PATH .

HomeDirectoryMappings List<Pulumi.AwsNative.Transfer.Outputs.UserHomeDirectoryMapEntry>

Logical directory mappings that specify what Amazon S3 or Amazon EFS paths and keys should be visible to your user and how you want to make them visible. You must specify the Entry and Target pair, where Entry shows how the path is made visible and Target is the actual Amazon S3 or Amazon EFS path. If you only specify a target, it is displayed as is. You also must ensure that your AWS Identity and Access Management (IAM) role provides access to paths in Target . This value can be set only when HomeDirectoryType is set to LOGICAL .

The following is an Entry and Target pair example.

[ { "Entry": "/directory1", "Target": "/bucket_name/home/mydirectory" } ]

In most cases, you can use this value instead of the session policy to lock your user down to the designated home directory (" chroot "). To do this, you can set Entry to / and set Target to the value the user should see for their home directory when they log in.

The following is an Entry and Target pair example for chroot .

[ { "Entry": "/", "Target": "/bucket_name/home/mydirectory" } ]

HomeDirectoryType Pulumi.AwsNative.Transfer.UserHomeDirectoryType

The type of landing directory (folder) that you want your users' home directory to be when they log in to the server. If you set it to PATH , the user will see the absolute Amazon S3 bucket or Amazon EFS path as is in their file transfer protocol clients. If you set it to LOGICAL , you need to provide mappings in the HomeDirectoryMappings for how you want to make Amazon S3 or Amazon EFS paths visible to your users.

If HomeDirectoryType is LOGICAL , you must provide mappings, using the HomeDirectoryMappings parameter. If, on the other hand, HomeDirectoryType is PATH , you provide an absolute path using the HomeDirectory parameter. You cannot have both HomeDirectory and HomeDirectoryMappings in your template.

Policy string

A session policy for your user so you can use the same IAM role across multiple users. This policy restricts user access to portions of their Amazon S3 bucket. Variables that you can use inside this policy include ${Transfer:UserName} , ${Transfer:HomeDirectory} , and ${Transfer:HomeBucket} .

For session policies, AWS Transfer Family stores the policy as a JSON blob, instead of the Amazon Resource Name (ARN) of the policy. You save the policy as a JSON blob and pass it in the Policy argument.
For an example of a session policy, see Example session policy .
For more information, see AssumeRole in the AWS Security Token Service API Reference .

PosixProfile Pulumi.AwsNative.Transfer.Outputs.UserPosixProfile

Specifies the full POSIX identity, including user ID ( Uid ), group ID ( Gid ), and any secondary groups IDs ( SecondaryGids ), that controls your users' access to your Amazon Elastic File System (Amazon EFS) file systems. The POSIX permissions that are set on files and directories in your file system determine the level of access your users get when transferring files into and out of your Amazon EFS file systems.

Role string

The Amazon Resource Name (ARN) of the AWS Identity and Access Management (IAM) role that controls your users' access to your Amazon S3 bucket or Amazon EFS file system. The policies attached to this role determine the level of access that you want to provide your users when transferring files into and out of your Amazon S3 bucket or Amazon EFS file system. The IAM role should also contain a trust relationship that allows the server to access your resources when servicing your users' transfer requests.

SshPublicKeys List<string>

This represents the SSH User Public Keys for CloudFormation resource

Tags List<Pulumi.AwsNative.Outputs.Tag>

Key-value pairs that can be used to group and search for users. Tags are metadata attached to users for any purpose.

Arn string

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

HomeDirectory string

The landing directory (folder) for a user when they log in to the server using the client.

A HomeDirectory example is /bucket_name/home/mydirectory .

The HomeDirectory parameter is only used if HomeDirectoryType is set to PATH .

HomeDirectoryMappings []UserHomeDirectoryMapEntry

The following is an Entry and Target pair example.

[ { "Entry": "/directory1", "Target": "/bucket_name/home/mydirectory" } ]

The following is an Entry and Target pair example for chroot .

[ { "Entry": "/", "Target": "/bucket_name/home/mydirectory" } ]

HomeDirectoryType UserHomeDirectoryType

If HomeDirectoryType is LOGICAL , you must provide mappings, using the HomeDirectoryMappings parameter. If, on the other hand, HomeDirectoryType is PATH , you provide an absolute path using the HomeDirectory parameter. You cannot have both HomeDirectory and HomeDirectoryMappings in your template.

Policy string

For session policies, AWS Transfer Family stores the policy as a JSON blob, instead of the Amazon Resource Name (ARN) of the policy. You save the policy as a JSON blob and pass it in the Policy argument.
For an example of a session policy, see Example session policy .
For more information, see AssumeRole in the AWS Security Token Service API Reference .

PosixProfile UserPosixProfile

Role string

SshPublicKeys []string

This represents the SSH User Public Keys for CloudFormation resource

Tags Tag

Key-value pairs that can be used to group and search for users. Tags are metadata attached to users for any purpose.

arn String

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

homeDirectory String

The landing directory (folder) for a user when they log in to the server using the client.

A HomeDirectory example is /bucket_name/home/mydirectory .

The HomeDirectory parameter is only used if HomeDirectoryType is set to PATH .

homeDirectoryMappings List<UserHomeDirectoryMapEntry>

The following is an Entry and Target pair example.

[ { "Entry": "/directory1", "Target": "/bucket_name/home/mydirectory" } ]

The following is an Entry and Target pair example for chroot .

[ { "Entry": "/", "Target": "/bucket_name/home/mydirectory" } ]

homeDirectoryType UserHomeDirectoryType

If HomeDirectoryType is LOGICAL , you must provide mappings, using the HomeDirectoryMappings parameter. If, on the other hand, HomeDirectoryType is PATH , you provide an absolute path using the HomeDirectory parameter. You cannot have both HomeDirectory and HomeDirectoryMappings in your template.

policy String

For session policies, AWS Transfer Family stores the policy as a JSON blob, instead of the Amazon Resource Name (ARN) of the policy. You save the policy as a JSON blob and pass it in the Policy argument.
For an example of a session policy, see Example session policy .
For more information, see AssumeRole in the AWS Security Token Service API Reference .

posixProfile UserPosixProfile

role String

sshPublicKeys List<String>

This represents the SSH User Public Keys for CloudFormation resource

tags List<Tag>

Key-value pairs that can be used to group and search for users. Tags are metadata attached to users for any purpose.

arn string

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

homeDirectory string

The landing directory (folder) for a user when they log in to the server using the client.

A HomeDirectory example is /bucket_name/home/mydirectory .

The HomeDirectory parameter is only used if HomeDirectoryType is set to PATH .

homeDirectoryMappings UserHomeDirectoryMapEntry[]

The following is an Entry and Target pair example.

[ { "Entry": "/directory1", "Target": "/bucket_name/home/mydirectory" } ]

The following is an Entry and Target pair example for chroot .

[ { "Entry": "/", "Target": "/bucket_name/home/mydirectory" } ]

homeDirectoryType UserHomeDirectoryType

If HomeDirectoryType is LOGICAL , you must provide mappings, using the HomeDirectoryMappings parameter. If, on the other hand, HomeDirectoryType is PATH , you provide an absolute path using the HomeDirectory parameter. You cannot have both HomeDirectory and HomeDirectoryMappings in your template.

policy string

For session policies, AWS Transfer Family stores the policy as a JSON blob, instead of the Amazon Resource Name (ARN) of the policy. You save the policy as a JSON blob and pass it in the Policy argument.
For an example of a session policy, see Example session policy .
For more information, see AssumeRole in the AWS Security Token Service API Reference .

posixProfile UserPosixProfile

role string

sshPublicKeys string[]

This represents the SSH User Public Keys for CloudFormation resource

tags Tag[]

Key-value pairs that can be used to group and search for users. Tags are metadata attached to users for any purpose.

arn str

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

home_directory str

The landing directory (folder) for a user when they log in to the server using the client.

A HomeDirectory example is /bucket_name/home/mydirectory .

The HomeDirectory parameter is only used if HomeDirectoryType is set to PATH .

home_directory_mappings Sequence[UserHomeDirectoryMapEntry]

The following is an Entry and Target pair example.

[ { "Entry": "/directory1", "Target": "/bucket_name/home/mydirectory" } ]

The following is an Entry and Target pair example for chroot .

[ { "Entry": "/", "Target": "/bucket_name/home/mydirectory" } ]

home_directory_type UserHomeDirectoryType

If HomeDirectoryType is LOGICAL , you must provide mappings, using the HomeDirectoryMappings parameter. If, on the other hand, HomeDirectoryType is PATH , you provide an absolute path using the HomeDirectory parameter. You cannot have both HomeDirectory and HomeDirectoryMappings in your template.

policy str

For session policies, AWS Transfer Family stores the policy as a JSON blob, instead of the Amazon Resource Name (ARN) of the policy. You save the policy as a JSON blob and pass it in the Policy argument.
For an example of a session policy, see Example session policy .
For more information, see AssumeRole in the AWS Security Token Service API Reference .

posix_profile UserPosixProfile

role str

ssh_public_keys Sequence[str]

This represents the SSH User Public Keys for CloudFormation resource

tags Sequence[root_Tag]

Key-value pairs that can be used to group and search for users. Tags are metadata attached to users for any purpose.

arn String

The Amazon Resource Name associated with the user, in the form arn:aws:transfer:region: *account-id* :user/ *server-id* / *username* .

An example of a user ARN is: arn:aws:transfer:us-east-1:123456789012:user/user1 .

homeDirectory String

The landing directory (folder) for a user when they log in to the server using the client.

A HomeDirectory example is /bucket_name/home/mydirectory .

The HomeDirectory parameter is only used if HomeDirectoryType is set to PATH .

homeDirectoryMappings List<Property Map>

The following is an Entry and Target pair example.

[ { "Entry": "/directory1", "Target": "/bucket_name/home/mydirectory" } ]

The following is an Entry and Target pair example for chroot .

[ { "Entry": "/", "Target": "/bucket_name/home/mydirectory" } ]

homeDirectoryType "PATH" | "LOGICAL"

If HomeDirectoryType is LOGICAL , you must provide mappings, using the HomeDirectoryMappings parameter. If, on the other hand, HomeDirectoryType is PATH , you provide an absolute path using the HomeDirectory parameter. You cannot have both HomeDirectory and HomeDirectoryMappings in your template.

policy String

For session policies, AWS Transfer Family stores the policy as a JSON blob, instead of the Amazon Resource Name (ARN) of the policy. You save the policy as a JSON blob and pass it in the Policy argument.
For an example of a session policy, see Example session policy .
For more information, see AssumeRole in the AWS Security Token Service API Reference .

posixProfile Property Map

role String

sshPublicKeys List<String>

This represents the SSH User Public Keys for CloudFormation resource

tags List<Property Map>

Key-value pairs that can be used to group and search for users. Tags are metadata attached to users for any purpose.

Supporting Types

UserHomeDirectoryMapEntry

Entry string: Represents an entry for HomeDirectoryMappings .
Target string: Represents the map target that is used in a HomeDirectoryMapEntry .
Type Pulumi.AwsNative.Transfer.UserMapType: Specifies the type of mapping. Set the type to FILE if you want the mapping to point to a file, or DIRECTORY for the directory to point to a directory.
By default, home directory mappings have a Type of DIRECTORY when you create a Transfer Family server. You would need to explicitly set Type to FILE if you want a mapping to have a file target.

Entry string: Represents an entry for HomeDirectoryMappings .
Target string: Represents the map target that is used in a HomeDirectoryMapEntry .
Type UserMapType: Specifies the type of mapping. Set the type to FILE if you want the mapping to point to a file, or DIRECTORY for the directory to point to a directory.
By default, home directory mappings have a Type of DIRECTORY when you create a Transfer Family server. You would need to explicitly set Type to FILE if you want a mapping to have a file target.

entry String: Represents an entry for HomeDirectoryMappings .
target String: Represents the map target that is used in a HomeDirectoryMapEntry .
type UserMapType: Specifies the type of mapping. Set the type to FILE if you want the mapping to point to a file, or DIRECTORY for the directory to point to a directory.
By default, home directory mappings have a Type of DIRECTORY when you create a Transfer Family server. You would need to explicitly set Type to FILE if you want a mapping to have a file target.

entry string: Represents an entry for HomeDirectoryMappings .
target string: Represents the map target that is used in a HomeDirectoryMapEntry .
type UserMapType: Specifies the type of mapping. Set the type to FILE if you want the mapping to point to a file, or DIRECTORY for the directory to point to a directory.
By default, home directory mappings have a Type of DIRECTORY when you create a Transfer Family server. You would need to explicitly set Type to FILE if you want a mapping to have a file target.

entry str: Represents an entry for HomeDirectoryMappings .
target str: Represents the map target that is used in a HomeDirectoryMapEntry .
type UserMapType: Specifies the type of mapping. Set the type to FILE if you want the mapping to point to a file, or DIRECTORY for the directory to point to a directory.
By default, home directory mappings have a Type of DIRECTORY when you create a Transfer Family server. You would need to explicitly set Type to FILE if you want a mapping to have a file target.

entry String: Represents an entry for HomeDirectoryMappings .
target String: Represents the map target that is used in a HomeDirectoryMapEntry .
type "FILE" | "DIRECTORY": Specifies the type of mapping. Set the type to FILE if you want the mapping to point to a file, or DIRECTORY for the directory to point to a directory.
By default, home directory mappings have a Type of DIRECTORY when you create a Transfer Family server. You would need to explicitly set Type to FILE if you want a mapping to have a file target.

UserHomeDirectoryType

UserMapType

UserPosixProfile

Gid double: The POSIX group ID used for all EFS operations by this user.
Uid double: The POSIX user ID used for all EFS operations by this user.
SecondaryGids List<double>: The secondary POSIX group IDs used for all EFS operations by this user.

Gid float64: The POSIX group ID used for all EFS operations by this user.
Uid float64: The POSIX user ID used for all EFS operations by this user.
SecondaryGids []float64: The secondary POSIX group IDs used for all EFS operations by this user.

gid Double: The POSIX group ID used for all EFS operations by this user.
uid Double: The POSIX user ID used for all EFS operations by this user.
secondaryGids List<Double>: The secondary POSIX group IDs used for all EFS operations by this user.

gid number: The POSIX group ID used for all EFS operations by this user.
uid number: The POSIX user ID used for all EFS operations by this user.
secondaryGids number[]: The secondary POSIX group IDs used for all EFS operations by this user.

gid float: The POSIX group ID used for all EFS operations by this user.
uid float: The POSIX user ID used for all EFS operations by this user.
secondary_gids Sequence[float]: The secondary POSIX group IDs used for all EFS operations by this user.

gid Number: The POSIX group ID used for all EFS operations by this user.
uid Number: The POSIX user ID used for all EFS operations by this user.
secondaryGids List<Number>: The secondary POSIX group IDs used for all EFS operations by this user.

Package Details

Repository: AWS Native pulumi/pulumi-aws-native
License: Apache-2.0

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.9.0 published on Monday, Nov 18, 2024 by Pulumi

pulumi/pulumi-aws-native

aws-native.transfer.getUser

On this page

On this page

Using getUser

getUser Result

Supporting Types

Tag

UserHomeDirectoryMapEntry

UserHomeDirectoryType

UserMapType

UserPosixProfile

Package Details

On this page

On this page