samlSettings.typescript.md

samlSettings Submodule

Constructs

SamlSettings

Represents a {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings tfe_saml_settings}.

Initializers

import { samlSettings } from '@cdktf/provider-tfe'

new samlSettings.SamlSettings(scope: Construct, id: string, config: SamlSettingsConfig)

Name	Type	Description
scope	constructs.Construct	The scope in which to define this construct.
id	string	The scoped construct ID.
config	SamlSettingsConfig	No description.

---

scope^Required

• Type: constructs.Construct

The scope in which to define this construct.

---

id^Required

• Type: string

The scoped construct ID.

Must be unique amongst siblings in the same scope

---

config^Required

• Type: SamlSettingsConfig

---

Methods

Name	Description
toString	Returns a string representation of this construct.
addOverride	No description.
overrideLogicalId	Overrides the auto-generated logical ID with a specific ID.
resetOverrideLogicalId	Resets a previously passed logical Id to use the auto-generated logical id again.
toHclTerraform	No description.
toMetadata	No description.
toTerraform	Adds this resource to the terraform JSON output.
addMoveTarget	Adds a user defined moveTarget string to this resource to be later used in .moveTo(moveTarget) to resolve the location of the move.
getAnyMapAttribute	No description.
getBooleanAttribute	No description.
getBooleanMapAttribute	No description.
getListAttribute	No description.
getNumberAttribute	No description.
getNumberListAttribute	No description.
getNumberMapAttribute	No description.
getStringAttribute	No description.
getStringMapAttribute	No description.
hasResourceMove	No description.
importFrom	No description.
interpolationForAttribute	No description.
moveFromId	Move the resource corresponding to "id" to this resource.
moveTo	Moves this resource to the target resource given by moveTarget.
moveToId	Moves this resource to the resource corresponding to "id".
resetAttrGroups	No description.
resetAttrSiteAdmin	No description.
resetAttrUsername	No description.
resetAuthnRequestsSigned	No description.
resetCertificate	No description.
resetDebug	No description.
resetPrivateKey	No description.
resetSignatureDigestMethod	No description.
resetSignatureSigningMethod	No description.
resetSiteAdminRole	No description.
resetSsoApiTokenSessionTimeout	No description.
resetTeamManagementEnabled	No description.
resetWantAssertionsSigned	No description.

---

toString

public toString(): string

Returns a string representation of this construct.

addOverride

public addOverride(path: string, value: any): void

path^Required

• Type: string

---

value^Required

• Type: any

---

overrideLogicalId

public overrideLogicalId(newLogicalId: string): void

Overrides the auto-generated logical ID with a specific ID.

newLogicalId^Required

• Type: string

The new logical ID to use for this stack element.

---

resetOverrideLogicalId

public resetOverrideLogicalId(): void

Resets a previously passed logical Id to use the auto-generated logical id again.

toHclTerraform

public toHclTerraform(): any

toMetadata

public toMetadata(): any

toTerraform

public toTerraform(): any

Adds this resource to the terraform JSON output.

addMoveTarget

public addMoveTarget(moveTarget: string): void

Adds a user defined moveTarget string to this resource to be later used in .moveTo(moveTarget) to resolve the location of the move.

moveTarget^Required

• Type: string

The string move target that will correspond to this resource.

---

getAnyMapAttribute

public getAnyMapAttribute(terraformAttribute: string): {[ key: string ]: any}

terraformAttribute^Required

• Type: string

---

getBooleanAttribute

public getBooleanAttribute(terraformAttribute: string): IResolvable

terraformAttribute^Required

• Type: string

---

getBooleanMapAttribute

public getBooleanMapAttribute(terraformAttribute: string): {[ key: string ]: boolean}

terraformAttribute^Required

• Type: string

---

getListAttribute

public getListAttribute(terraformAttribute: string): string[]

terraformAttribute^Required

• Type: string

---

getNumberAttribute

public getNumberAttribute(terraformAttribute: string): number

terraformAttribute^Required

• Type: string

---

getNumberListAttribute

public getNumberListAttribute(terraformAttribute: string): number[]

terraformAttribute^Required

• Type: string

---

getNumberMapAttribute

public getNumberMapAttribute(terraformAttribute: string): {[ key: string ]: number}

terraformAttribute^Required

• Type: string

---

getStringAttribute

public getStringAttribute(terraformAttribute: string): string

terraformAttribute^Required

• Type: string

---

getStringMapAttribute

public getStringMapAttribute(terraformAttribute: string): {[ key: string ]: string}

terraformAttribute^Required

• Type: string

---

hasResourceMove

public hasResourceMove(): TerraformResourceMoveByTarget | TerraformResourceMoveById

importFrom

public importFrom(id: string, provider?: TerraformProvider): void

id^Required

• Type: string

---

provider^Optional

• Type: cdktf.TerraformProvider

---

interpolationForAttribute

public interpolationForAttribute(terraformAttribute: string): IResolvable

terraformAttribute^Required

• Type: string

---

moveFromId

public moveFromId(id: string): void

Move the resource corresponding to "id" to this resource.

Note that the resource being moved from must be marked as moved using it's instance function.

id^Required

• Type: string

Full id of resource being moved from, e.g. "aws_s3_bucket.example".

---

moveTo

public moveTo(moveTarget: string, index?: string | number): void

Moves this resource to the target resource given by moveTarget.

moveTarget^Required

• Type: string

The previously set user defined string set by .addMoveTarget() corresponding to the resource to move to.

---

index^Optional

• Type: string | number

Optional The index corresponding to the key the resource is to appear in the foreach of a resource to move to.

---

moveToId

public moveToId(id: string): void

Moves this resource to the resource corresponding to "id".

id^Required

• Type: string

Full id of resource to move to, e.g. "aws_s3_bucket.example".

---

resetAttrGroups

public resetAttrGroups(): void

resetAttrSiteAdmin

public resetAttrSiteAdmin(): void

resetAttrUsername

public resetAttrUsername(): void

resetAuthnRequestsSigned

public resetAuthnRequestsSigned(): void

resetCertificate

public resetCertificate(): void

resetDebug

public resetDebug(): void

resetPrivateKey

public resetPrivateKey(): void

resetSignatureDigestMethod

public resetSignatureDigestMethod(): void

resetSignatureSigningMethod

public resetSignatureSigningMethod(): void

resetSiteAdminRole

public resetSiteAdminRole(): void

resetSsoApiTokenSessionTimeout

public resetSsoApiTokenSessionTimeout(): void

resetTeamManagementEnabled

public resetTeamManagementEnabled(): void

resetWantAssertionsSigned

public resetWantAssertionsSigned(): void

Static Functions

Name	Description
isConstruct	Checks if x is a construct.
isTerraformElement	No description.
isTerraformResource	No description.
generateConfigForImport	Generates CDKTF code for importing a SamlSettings resource upon running "cdktf plan ".

---

isConstruct

import { samlSettings } from '@cdktf/provider-tfe'

samlSettings.SamlSettings.isConstruct(x: any)

Checks if x is a construct.

Use this method instead of instanceof to properly detect Construct instances, even when the construct library is symlinked.

Explanation: in JavaScript, multiple copies of the constructs library on disk are seen as independent, completely different libraries. As a consequence, the class Construct in each copy of the constructs library is seen as a different class, and an instance of one class will not test as instanceof the other class. npm install will not create installations like this, but users may manually symlink construct libraries together or use a monorepo tool: in those cases, multiple copies of the constructs library can be accidentally installed, and instanceof will behave unpredictably. It is safest to avoid using instanceof, and using this type-testing method instead.

x^Required

• Type: any

Any object.

---

isTerraformElement

import { samlSettings } from '@cdktf/provider-tfe'

samlSettings.SamlSettings.isTerraformElement(x: any)

x^Required

• Type: any

---

isTerraformResource

import { samlSettings } from '@cdktf/provider-tfe'

samlSettings.SamlSettings.isTerraformResource(x: any)

x^Required

• Type: any

---

generateConfigForImport

import { samlSettings } from '@cdktf/provider-tfe'

samlSettings.SamlSettings.generateConfigForImport(scope: Construct, importToId: string, importFromId: string, provider?: TerraformProvider)

Generates CDKTF code for importing a SamlSettings resource upon running "cdktf plan ".

scope^Required

• Type: constructs.Construct

The scope in which to define this construct.

---

importToId^Required

• Type: string

The construct id used in the generated config for the SamlSettings to import.

---

importFromId^Required

• Type: string

The id of the existing SamlSettings that should be imported.

Refer to the {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#import import section} in the documentation of this resource for the id to use

---

provider^Optional

• Type: cdktf.TerraformProvider

? Optional instance of the provider where the SamlSettings to import is found.

---

Properties

Name	Type	Description
node	constructs.Node	The tree node.
cdktfStack	cdktf.TerraformStack	No description.
fqn	string	No description.
friendlyUniqueId	string	No description.
terraformMetaArguments	{[ key: string ]: any}	No description.
terraformResourceType	string	No description.
terraformGeneratorMetadata	cdktf.TerraformProviderGeneratorMetadata	No description.
connection	cdktf.SSHProvisionerConnection | cdktf.WinrmProvisionerConnection	No description.
count	number | cdktf.TerraformCount	No description.
dependsOn	string[]	No description.
forEach	cdktf.ITerraformIterator	No description.
lifecycle	cdktf.TerraformResourceLifecycle	No description.
provider	cdktf.TerraformProvider	No description.
provisioners	cdktf.FileProvisioner | cdktf.LocalExecProvisioner | cdktf.RemoteExecProvisioner[]	No description.
acsConsumerUrl	string	No description.
enabled	cdktf.IResolvable	No description.
id	string	No description.
metadataUrl	string	No description.
oldIdpCert	string	No description.
attrGroupsInput	string	No description.
attrSiteAdminInput	string	No description.
attrUsernameInput	string	No description.
authnRequestsSignedInput	boolean | cdktf.IResolvable	No description.
certificateInput	string	No description.
debugInput	boolean | cdktf.IResolvable	No description.
idpCertInput	string	No description.
privateKeyInput	string	No description.
signatureDigestMethodInput	string	No description.
signatureSigningMethodInput	string	No description.
siteAdminRoleInput	string	No description.
sloEndpointUrlInput	string	No description.
ssoApiTokenSessionTimeoutInput	number	No description.
ssoEndpointUrlInput	string	No description.
teamManagementEnabledInput	boolean | cdktf.IResolvable	No description.
wantAssertionsSignedInput	boolean | cdktf.IResolvable	No description.
attrGroups	string	No description.
attrSiteAdmin	string	No description.
attrUsername	string	No description.
authnRequestsSigned	boolean | cdktf.IResolvable	No description.
certificate	string	No description.
debug	boolean | cdktf.IResolvable	No description.
idpCert	string	No description.
privateKey	string	No description.
signatureDigestMethod	string	No description.
signatureSigningMethod	string	No description.
siteAdminRole	string	No description.
sloEndpointUrl	string	No description.
ssoApiTokenSessionTimeout	number	No description.
ssoEndpointUrl	string	No description.
teamManagementEnabled	boolean | cdktf.IResolvable	No description.
wantAssertionsSigned	boolean | cdktf.IResolvable	No description.

---

node^Required

public readonly node: Node;

• Type: constructs.Node

The tree node.

---

cdktfStack^Required

public readonly cdktfStack: TerraformStack;

• Type: cdktf.TerraformStack

---

fqn^Required

public readonly fqn: string;

• Type: string

---

friendlyUniqueId^Required

public readonly friendlyUniqueId: string;

• Type: string

---

terraformMetaArguments^Required

public readonly terraformMetaArguments: {[ key: string ]: any};

• Type: {[ key: string ]: any}

---

terraformResourceType^Required

public readonly terraformResourceType: string;

• Type: string

---

terraformGeneratorMetadata^Optional

public readonly terraformGeneratorMetadata: TerraformProviderGeneratorMetadata;

• Type: cdktf.TerraformProviderGeneratorMetadata

---

connection^Optional

public readonly connection: SSHProvisionerConnection | WinrmProvisionerConnection;

• Type: cdktf.SSHProvisionerConnection | cdktf.WinrmProvisionerConnection

---

count^Optional

public readonly count: number | TerraformCount;

• Type: number | cdktf.TerraformCount

---

dependsOn^Optional

public readonly dependsOn: string[];

• Type: string[]

---

forEach^Optional

public readonly forEach: ITerraformIterator;

• Type: cdktf.ITerraformIterator

---

lifecycle^Optional

public readonly lifecycle: TerraformResourceLifecycle;

• Type: cdktf.TerraformResourceLifecycle

---

provider^Optional

public readonly provider: TerraformProvider;

• Type: cdktf.TerraformProvider

---

provisioners^Optional

public readonly provisioners: FileProvisioner | LocalExecProvisioner | RemoteExecProvisioner[];

• Type: cdktf.FileProvisioner | cdktf.LocalExecProvisioner | cdktf.RemoteExecProvisioner[]

---

acsConsumerUrl^Required

public readonly acsConsumerUrl: string;

• Type: string

---

enabled^Required

public readonly enabled: IResolvable;

• Type: cdktf.IResolvable

---

id^Required

public readonly id: string;

• Type: string

---

metadataUrl^Required

public readonly metadataUrl: string;

• Type: string

---

oldIdpCert^Required

public readonly oldIdpCert: string;

• Type: string

---

attrGroupsInput^Optional

public readonly attrGroupsInput: string;

• Type: string

---

attrSiteAdminInput^Optional

public readonly attrSiteAdminInput: string;

• Type: string

---

attrUsernameInput^Optional

public readonly attrUsernameInput: string;

• Type: string

---

authnRequestsSignedInput^Optional

public readonly authnRequestsSignedInput: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

---

certificateInput^Optional

public readonly certificateInput: string;

• Type: string

---

debugInput^Optional

public readonly debugInput: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

---

idpCertInput^Optional

public readonly idpCertInput: string;

• Type: string

---

privateKeyInput^Optional

public readonly privateKeyInput: string;

• Type: string

---

signatureDigestMethodInput^Optional

public readonly signatureDigestMethodInput: string;

• Type: string

---

signatureSigningMethodInput^Optional

public readonly signatureSigningMethodInput: string;

• Type: string

---

siteAdminRoleInput^Optional

public readonly siteAdminRoleInput: string;

• Type: string

---

sloEndpointUrlInput^Optional

public readonly sloEndpointUrlInput: string;

• Type: string

---

ssoApiTokenSessionTimeoutInput^Optional

public readonly ssoApiTokenSessionTimeoutInput: number;

• Type: number

---

ssoEndpointUrlInput^Optional

public readonly ssoEndpointUrlInput: string;

• Type: string

---

teamManagementEnabledInput^Optional

public readonly teamManagementEnabledInput: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

---

wantAssertionsSignedInput^Optional

public readonly wantAssertionsSignedInput: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

---

attrGroups^Required

public readonly attrGroups: string;

• Type: string

---

attrSiteAdmin^Required

public readonly attrSiteAdmin: string;

• Type: string

---

attrUsername^Required

public readonly attrUsername: string;

• Type: string

---

authnRequestsSigned^Required

public readonly authnRequestsSigned: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

---

certificate^Required

public readonly certificate: string;

• Type: string

---

debug^Required

public readonly debug: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

---

idpCert^Required

public readonly idpCert: string;

• Type: string

---

privateKey^Required

public readonly privateKey: string;

• Type: string

---

signatureDigestMethod^Required

public readonly signatureDigestMethod: string;

• Type: string

---

signatureSigningMethod^Required

public readonly signatureSigningMethod: string;

• Type: string

---

siteAdminRole^Required

public readonly siteAdminRole: string;

• Type: string

---

sloEndpointUrl^Required

public readonly sloEndpointUrl: string;

• Type: string

---

ssoApiTokenSessionTimeout^Required

public readonly ssoApiTokenSessionTimeout: number;

• Type: number

---

ssoEndpointUrl^Required

public readonly ssoEndpointUrl: string;

• Type: string

---

teamManagementEnabled^Required

public readonly teamManagementEnabled: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

---

wantAssertionsSigned^Required

public readonly wantAssertionsSigned: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

---

Constants

Name	Type	Description
tfResourceType	string	No description.

---

tfResourceType^Required

public readonly tfResourceType: string;

• Type: string

---

Structs

SamlSettingsConfig

Initializer

import { samlSettings } from '@cdktf/provider-tfe'

const samlSettingsConfig: samlSettings.SamlSettingsConfig = { ... }

Properties

Name	Type	Description
connection	cdktf.SSHProvisionerConnection | cdktf.WinrmProvisionerConnection	No description.
count	number | cdktf.TerraformCount	No description.
dependsOn	cdktf.ITerraformDependable[]	No description.
forEach	cdktf.ITerraformIterator	No description.
lifecycle	cdktf.TerraformResourceLifecycle	No description.
provider	cdktf.TerraformProvider	No description.
provisioners	cdktf.FileProvisioner | cdktf.LocalExecProvisioner | cdktf.RemoteExecProvisioner[]	No description.
idpCert	string	Identity Provider Certificate specifies the PEM encoded X.509 Certificate as provided by the IdP configuration.
sloEndpointUrl	string	Single Log Out URL specifies the HTTPS endpoint on your IdP for single logout requests.
ssoEndpointUrl	string	Single Sign On URL specifies the HTTPS endpoint on your IdP for single sign-on requests.
attrGroups	string	Team Attribute Name specifies the name of the SAML attribute that determines team membership.
attrSiteAdmin	string	Specifies the role for site admin access. Overrides the "Site Admin Role" method.
attrUsername	string	Username Attribute Name specifies the name of the SAML attribute that determines the user's username.
authnRequestsSigned	boolean | cdktf.IResolvable	Ensure that samlp:AuthnRequest messages are signed.
certificate	string	The certificate used for request and assertion signing.
debug	boolean | cdktf.IResolvable	When sign-on fails and this is enabled, the SAMLResponse XML will be displayed on the login page.
privateKey	string	The private key used for request and assertion signing.
signatureDigestMethod	string	Signature Digest Method. Must be either SHA1 or SHA256. Defaults to SHA256.
signatureSigningMethod	string	Signature Signing Method. Must be either SHA1 or SHA256. Defaults to SHA256.
siteAdminRole	string	Specifies the role for site admin access, provided in the list of roles sent in the Team Attribute Name attribute.
ssoApiTokenSessionTimeout	number	Specifies the Single Sign On session timeout in seconds. Defaults to 14 days.
teamManagementEnabled	boolean | cdktf.IResolvable	Set it to false if you would rather use Terraform Enterprise to manage team membership.
wantAssertionsSigned	boolean | cdktf.IResolvable	Ensure that saml:Assertion elements are signed.

---

connection^Optional

public readonly connection: SSHProvisionerConnection | WinrmProvisionerConnection;

• Type: cdktf.SSHProvisionerConnection | cdktf.WinrmProvisionerConnection

---

count^Optional

public readonly count: number | TerraformCount;

• Type: number | cdktf.TerraformCount

---

dependsOn^Optional

public readonly dependsOn: ITerraformDependable[];

• Type: cdktf.ITerraformDependable[]

---

forEach^Optional

public readonly forEach: ITerraformIterator;

• Type: cdktf.ITerraformIterator

---

lifecycle^Optional

public readonly lifecycle: TerraformResourceLifecycle;

• Type: cdktf.TerraformResourceLifecycle

---

provider^Optional

public readonly provider: TerraformProvider;

• Type: cdktf.TerraformProvider

---

provisioners^Optional

public readonly provisioners: FileProvisioner | LocalExecProvisioner | RemoteExecProvisioner[];

• Type: cdktf.FileProvisioner | cdktf.LocalExecProvisioner | cdktf.RemoteExecProvisioner[]

---

idpCert^Required

public readonly idpCert: string;

• Type: string

Identity Provider Certificate specifies the PEM encoded X.509 Certificate as provided by the IdP configuration.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#idp_cert SamlSettings#idp_cert}

---

sloEndpointUrl^Required

public readonly sloEndpointUrl: string;

• Type: string

Single Log Out URL specifies the HTTPS endpoint on your IdP for single logout requests.

This value is provided by the IdP configuration

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#slo_endpoint_url SamlSettings#slo_endpoint_url}

---

ssoEndpointUrl^Required

public readonly ssoEndpointUrl: string;

• Type: string

Single Sign On URL specifies the HTTPS endpoint on your IdP for single sign-on requests.

This value is provided by the IdP configuration

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#sso_endpoint_url SamlSettings#sso_endpoint_url}

---

attrGroups^Optional

public readonly attrGroups: string;

• Type: string

Team Attribute Name specifies the name of the SAML attribute that determines team membership.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#attr_groups SamlSettings#attr_groups}

---

attrSiteAdmin^Optional

public readonly attrSiteAdmin: string;

• Type: string

Specifies the role for site admin access. Overrides the "Site Admin Role" method.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#attr_site_admin SamlSettings#attr_site_admin}

---

attrUsername^Optional

public readonly attrUsername: string;

• Type: string

Username Attribute Name specifies the name of the SAML attribute that determines the user's username.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#attr_username SamlSettings#attr_username}

---

authnRequestsSigned^Optional

public readonly authnRequestsSigned: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

Ensure that samlp:AuthnRequest messages are signed.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#authn_requests_signed SamlSettings#authn_requests_signed}

---

certificate^Optional

public readonly certificate: string;

• Type: string

The certificate used for request and assertion signing.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#certificate SamlSettings#certificate}

---

debug^Optional

public readonly debug: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

When sign-on fails and this is enabled, the SAMLResponse XML will be displayed on the login page.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#debug SamlSettings#debug}

---

privateKey^Optional

public readonly privateKey: string;

• Type: string

The private key used for request and assertion signing.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#private_key SamlSettings#private_key}

---

signatureDigestMethod^Optional

public readonly signatureDigestMethod: string;

• Type: string

Signature Digest Method. Must be either SHA1 or SHA256. Defaults to SHA256.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#signature_digest_method SamlSettings#signature_digest_method}

---

signatureSigningMethod^Optional

public readonly signatureSigningMethod: string;

• Type: string

Signature Signing Method. Must be either SHA1 or SHA256. Defaults to SHA256.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#signature_signing_method SamlSettings#signature_signing_method}

---

siteAdminRole^Optional

public readonly siteAdminRole: string;

• Type: string

Specifies the role for site admin access, provided in the list of roles sent in the Team Attribute Name attribute.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#site_admin_role SamlSettings#site_admin_role}

---

ssoApiTokenSessionTimeout^Optional

public readonly ssoApiTokenSessionTimeout: number;

• Type: number

Specifies the Single Sign On session timeout in seconds. Defaults to 14 days.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#sso_api_token_session_timeout SamlSettings#sso_api_token_session_timeout}

---

teamManagementEnabled^Optional

public readonly teamManagementEnabled: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

Set it to false if you would rather use Terraform Enterprise to manage team membership.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#team_management_enabled SamlSettings#team_management_enabled}

---

wantAssertionsSigned^Optional

public readonly wantAssertionsSigned: boolean | IResolvable;

• Type: boolean | cdktf.IResolvable

Ensure that saml:Assertion elements are signed.

Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/tfe/0.63.0/docs/resources/saml_settings#want_assertions_signed SamlSettings#want_assertions_signed}

---