Docs Home
AWS v6.74.0 published on Wednesday, Mar 26, 2025 by Pulumi
aws.identitystore.getGroup
Explore with Pulumi AI
Use this data source to get an Identity Store Group.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const example = aws.ssoadmin.getInstances({});
const exampleGetGroup = example.then(example => aws.identitystore.getGroup({
identityStoreId: example.identityStoreIds?.[0],
alternateIdentifier: {
uniqueAttribute: {
attributePath: "DisplayName",
attributeValue: "ExampleGroup",
},
},
}));
export const groupId = exampleGetGroup.then(exampleGetGroup => exampleGetGroup.groupId);
import pulumi
import pulumi_aws as aws
example = aws.ssoadmin.get_instances()
example_get_group = aws.identitystore.get_group(identity_store_id=example.identity_store_ids[0],
alternate_identifier={
"unique_attribute": {
"attribute_path": "DisplayName",
"attribute_value": "ExampleGroup",
},
})
pulumi.export("groupId", example_get_group.group_id)
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/identitystore"
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/ssoadmin"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := ssoadmin.GetInstances(ctx, map[string]interface{}{}, nil)
if err != nil {
return err
}
exampleGetGroup, err := identitystore.LookupGroup(ctx, &identitystore.LookupGroupArgs{
IdentityStoreId: example.IdentityStoreIds[0],
AlternateIdentifier: identitystore.GetGroupAlternateIdentifier{
UniqueAttribute: identitystore.GetGroupAlternateIdentifierUniqueAttribute{
AttributePath: "DisplayName",
AttributeValue: "ExampleGroup",
},
},
}, nil)
if err != nil {
return err
}
ctx.Export("groupId", exampleGetGroup.GroupId)
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var example = Aws.SsoAdmin.GetInstances.Invoke();
var exampleGetGroup = Aws.IdentityStore.GetGroup.Invoke(new()
{
IdentityStoreId = example.Apply(getInstancesResult => getInstancesResult.IdentityStoreIds[0]),
AlternateIdentifier = new Aws.IdentityStore.Inputs.GetGroupAlternateIdentifierInputArgs
{
UniqueAttribute = new Aws.IdentityStore.Inputs.GetGroupAlternateIdentifierUniqueAttributeInputArgs
{
AttributePath = "DisplayName",
AttributeValue = "ExampleGroup",
},
},
});
return new Dictionary<string, object?>
{
["groupId"] = exampleGetGroup.Apply(getGroupResult => getGroupResult.GroupId),
};
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.ssoadmin.SsoadminFunctions;
import com.pulumi.aws.identitystore.IdentitystoreFunctions;
import com.pulumi.aws.identitystore.inputs.GetGroupArgs;
import com.pulumi.aws.identitystore.inputs.GetGroupAlternateIdentifierArgs;
import com.pulumi.aws.identitystore.inputs.GetGroupAlternateIdentifierUniqueAttributeArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var example = SsoadminFunctions.getInstances();
final var exampleGetGroup = IdentitystoreFunctions.getGroup(GetGroupArgs.builder()
.identityStoreId(example.applyValue(getInstancesResult -> getInstancesResult.identityStoreIds()[0]))
.alternateIdentifier(GetGroupAlternateIdentifierArgs.builder()
.uniqueAttribute(GetGroupAlternateIdentifierUniqueAttributeArgs.builder()
.attributePath("DisplayName")
.attributeValue("ExampleGroup")
.build())
.build())
.build());
ctx.export("groupId", exampleGetGroup.applyValue(getGroupResult -> getGroupResult.groupId()));
}
}
variables:
example:
fn::invoke:
function: aws:ssoadmin:getInstances
arguments: {}
exampleGetGroup:
fn::invoke:
function: aws:identitystore:getGroup
arguments:
identityStoreId: ${example.identityStoreIds[0]}
alternateIdentifier:
uniqueAttribute:
attributePath: DisplayName
attributeValue: ExampleGroup
outputs:
groupId: ${exampleGetGroup.groupId}
Using getGroup
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getGroup(args: GetGroupArgs, opts?: InvokeOptions): Promise<GetGroupResult>
function getGroupOutput(args: GetGroupOutputArgs, opts?: InvokeOptions): Output<GetGroupResult>def get_group(alternate_identifier: Optional[GetGroupAlternateIdentifier] = None,
filter: Optional[GetGroupFilter] = None,
group_id: Optional[str] = None,
identity_store_id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetGroupResult
def get_group_output(alternate_identifier: Optional[pulumi.Input[GetGroupAlternateIdentifierArgs]] = None,
filter: Optional[pulumi.Input[GetGroupFilterArgs]] = None,
group_id: Optional[pulumi.Input[str]] = None,
identity_store_id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetGroupResult]func LookupGroup(ctx *Context, args *LookupGroupArgs, opts ...InvokeOption) (*LookupGroupResult, error)
func LookupGroupOutput(ctx *Context, args *LookupGroupOutputArgs, opts ...InvokeOption) LookupGroupResultOutput> Note: This function is named LookupGroup in the Go SDK.
public static class GetGroup
{
public static Task<GetGroupResult> InvokeAsync(GetGroupArgs args, InvokeOptions? opts = null)
public static Output<GetGroupResult> Invoke(GetGroupInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetGroupResult> getGroup(GetGroupArgs args, InvokeOptions options)
public static Output<GetGroupResult> getGroup(GetGroupArgs args, InvokeOptions options)
fn::invoke:
function: aws:identitystore/getGroup:getGroup
arguments:
# arguments dictionaryThe following arguments are supported:
- Identity
Store Id This property is required. string Identity Store ID associated with the Single Sign-On Instance.
The following arguments are optional:
- Alternate
Identifier GetGroup Alternate Identifier - A unique identifier for the group that is not the primary identifier. Conflicts with
group_idandfilter. Detailed below. - Filter
Get
Group Filter - Configuration block for filtering by a unique attribute of the group. Detailed below.
- Group
Id string The identifier for a group in the Identity Store.
Exactly one of the above arguments must be provided. Passing both
filterandgroup_idis allowed for backwards compatibility.
- Identity
Store Id This property is required. string Identity Store ID associated with the Single Sign-On Instance.
The following arguments are optional:
- Alternate
Identifier GetGroup Alternate Identifier - A unique identifier for the group that is not the primary identifier. Conflicts with
group_idandfilter. Detailed below. - Filter
Get
Group Filter - Configuration block for filtering by a unique attribute of the group. Detailed below.
- Group
Id string The identifier for a group in the Identity Store.
Exactly one of the above arguments must be provided. Passing both
filterandgroup_idis allowed for backwards compatibility.
- identity
Store Id This property is required. String Identity Store ID associated with the Single Sign-On Instance.
The following arguments are optional:
- alternate
Identifier GetGroup Alternate Identifier - A unique identifier for the group that is not the primary identifier. Conflicts with
group_idandfilter. Detailed below. - filter
Get
Group Filter - Configuration block for filtering by a unique attribute of the group. Detailed below.
- group
Id String The identifier for a group in the Identity Store.
Exactly one of the above arguments must be provided. Passing both
filterandgroup_idis allowed for backwards compatibility.
- identity
Store Id This property is required. string Identity Store ID associated with the Single Sign-On Instance.
The following arguments are optional:
- alternate
Identifier GetGroup Alternate Identifier - A unique identifier for the group that is not the primary identifier. Conflicts with
group_idandfilter. Detailed below. - filter
Get
Group Filter - Configuration block for filtering by a unique attribute of the group. Detailed below.
- group
Id string The identifier for a group in the Identity Store.
Exactly one of the above arguments must be provided. Passing both
filterandgroup_idis allowed for backwards compatibility.
- identity_
store_ id This property is required. str Identity Store ID associated with the Single Sign-On Instance.
The following arguments are optional:
- alternate_
identifier GetGroup Alternate Identifier - A unique identifier for the group that is not the primary identifier. Conflicts with
group_idandfilter. Detailed below. - filter
Get
Group Filter - Configuration block for filtering by a unique attribute of the group. Detailed below.
- group_
id str The identifier for a group in the Identity Store.
Exactly one of the above arguments must be provided. Passing both
filterandgroup_idis allowed for backwards compatibility.
- identity
Store Id This property is required. String Identity Store ID associated with the Single Sign-On Instance.
The following arguments are optional:
- alternate
Identifier Property Map - A unique identifier for the group that is not the primary identifier. Conflicts with
group_idandfilter. Detailed below. - filter Property Map
- Configuration block for filtering by a unique attribute of the group. Detailed below.
- group
Id String The identifier for a group in the Identity Store.
Exactly one of the above arguments must be provided. Passing both
filterandgroup_idis allowed for backwards compatibility.
getGroup Result
The following output properties are available:
- Description string
- Description of the specified group.
- Display
Name string - Group's display name value.
- External
Ids List<GetGroup External Id> - List of identifiers issued to this resource by an external identity provider.
- Group
Id string - Id string
- The provider-assigned unique ID for this managed resource.
- Identity
Store stringId - Alternate
Identifier GetGroup Alternate Identifier - Filter
Get
Group Filter
- Description string
- Description of the specified group.
- Display
Name string - Group's display name value.
- External
Ids []GetGroup External Id - List of identifiers issued to this resource by an external identity provider.
- Group
Id string - Id string
- The provider-assigned unique ID for this managed resource.
- Identity
Store stringId - Alternate
Identifier GetGroup Alternate Identifier - Filter
Get
Group Filter
- description String
- Description of the specified group.
- display
Name String - Group's display name value.
- external
Ids List<GetGroup External Id> - List of identifiers issued to this resource by an external identity provider.
- group
Id String - id String
- The provider-assigned unique ID for this managed resource.
- identity
Store StringId - alternate
Identifier GetGroup Alternate Identifier - filter
Get
Group Filter
- description string
- Description of the specified group.
- display
Name string - Group's display name value.
- external
Ids GetGroup External Id[] - List of identifiers issued to this resource by an external identity provider.
- group
Id string - id string
- The provider-assigned unique ID for this managed resource.
- identity
Store stringId - alternate
Identifier GetGroup Alternate Identifier - filter
Get
Group Filter
- description str
- Description of the specified group.
- display_
name str - Group's display name value.
- external_
ids Sequence[GetGroup External Id] - List of identifiers issued to this resource by an external identity provider.
- group_
id str - id str
- The provider-assigned unique ID for this managed resource.
- identity_
store_ strid - alternate_
identifier GetGroup Alternate Identifier - filter
Get
Group Filter
- description String
- Description of the specified group.
- display
Name String - Group's display name value.
- external
Ids List<Property Map> - List of identifiers issued to this resource by an external identity provider.
- group
Id String - id String
- The provider-assigned unique ID for this managed resource.
- identity
Store StringId - alternate
Identifier Property Map - filter Property Map
Supporting Types
GetGroupAlternateIdentifier
- External
Id GetGroup Alternate Identifier External Id - Configuration block for filtering by the identifier issued by an external identity provider. Detailed below.
- Unique
Attribute GetGroup Alternate Identifier Unique Attribute An entity attribute that's unique to a specific entity. Detailed below.
Exactly one of the above arguments must be provided.
- External
Id GetGroup Alternate Identifier External Id - Configuration block for filtering by the identifier issued by an external identity provider. Detailed below.
- Unique
Attribute GetGroup Alternate Identifier Unique Attribute An entity attribute that's unique to a specific entity. Detailed below.
Exactly one of the above arguments must be provided.
- external
Id GetGroup Alternate Identifier External Id - Configuration block for filtering by the identifier issued by an external identity provider. Detailed below.
- unique
Attribute GetGroup Alternate Identifier Unique Attribute An entity attribute that's unique to a specific entity. Detailed below.
Exactly one of the above arguments must be provided.
- external
Id GetGroup Alternate Identifier External Id - Configuration block for filtering by the identifier issued by an external identity provider. Detailed below.
- unique
Attribute GetGroup Alternate Identifier Unique Attribute An entity attribute that's unique to a specific entity. Detailed below.
Exactly one of the above arguments must be provided.
- external_
id GetGroup Alternate Identifier External Id - Configuration block for filtering by the identifier issued by an external identity provider. Detailed below.
- unique_
attribute GetGroup Alternate Identifier Unique Attribute An entity attribute that's unique to a specific entity. Detailed below.
Exactly one of the above arguments must be provided.
- external
Id Property Map - Configuration block for filtering by the identifier issued by an external identity provider. Detailed below.
- unique
Attribute Property Map An entity attribute that's unique to a specific entity. Detailed below.
Exactly one of the above arguments must be provided.
GetGroupAlternateIdentifierExternalId
GetGroupAlternateIdentifierUniqueAttribute
- Attribute
Path This property is required. string - Attribute path that is used to specify which attribute name to search. For example:
DisplayName. Refer to the Group data type. - Attribute
Value This property is required. string - Value for an attribute.
- Attribute
Path This property is required. string - Attribute path that is used to specify which attribute name to search. For example:
DisplayName. Refer to the Group data type. - Attribute
Value This property is required. string - Value for an attribute.
- attribute
Path This property is required. String - Attribute path that is used to specify which attribute name to search. For example:
DisplayName. Refer to the Group data type. - attribute
Value This property is required. String - Value for an attribute.
- attribute
Path This property is required. string - Attribute path that is used to specify which attribute name to search. For example:
DisplayName. Refer to the Group data type. - attribute
Value This property is required. string - Value for an attribute.
- attribute_
path This property is required. str - Attribute path that is used to specify which attribute name to search. For example:
DisplayName. Refer to the Group data type. - attribute_
value This property is required. str - Value for an attribute.
- attribute
Path This property is required. String - Attribute path that is used to specify which attribute name to search. For example:
DisplayName. Refer to the Group data type. - attribute
Value This property is required. String - Value for an attribute.
GetGroupExternalId
GetGroupFilter
- Attribute
Path This property is required. string - Attribute path that is used to specify which attribute name to search. Currently,
DisplayNameis the only valid attribute path. - Attribute
Value This property is required. string - Value for an attribute.
- Attribute
Path This property is required. string - Attribute path that is used to specify which attribute name to search. Currently,
DisplayNameis the only valid attribute path. - Attribute
Value This property is required. string - Value for an attribute.
- attribute
Path This property is required. String - Attribute path that is used to specify which attribute name to search. Currently,
DisplayNameis the only valid attribute path. - attribute
Value This property is required. String - Value for an attribute.
- attribute
Path This property is required. string - Attribute path that is used to specify which attribute name to search. Currently,
DisplayNameis the only valid attribute path. - attribute
Value This property is required. string - Value for an attribute.
- attribute_
path This property is required. str - Attribute path that is used to specify which attribute name to search. Currently,
DisplayNameis the only valid attribute path. - attribute_
value This property is required. str - Value for an attribute.
- attribute
Path This property is required. String - Attribute path that is used to specify which attribute name to search. Currently,
DisplayNameis the only valid attribute path. - attribute
Value This property is required. String - Value for an attribute.
Package Details
- Repository
- AWS Classic pulumi/pulumi-aws
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
awsTerraform Provider.