Writing a rule to map a role to a user - for connecting to a cloud environment

Hey everyone! I’m having a hard time understanding the 5th step of “map the AWS role to a user.” (docs linked here: https://auth0.com/docs/integrations/aws/configure-amazon-web-services-for-sso#map-aws-role-to-a-user). I’m just experimenting and I’m not sure what to make the rule do exactly. There are all of these code snippets at the bottom, but am I picking one, adding them together, etc.?

Anyone able to provide perspective of how I write the Auth0 app rule to connect to a cloud environment?

Hi @InterstellarX ,

They are examples trying to show what options you have in your implementation, ranging from the simplest use case where all users are hardcoded to the same AWS role, to dynamically setting one or multiple roles based on the user’s profile.

The last example is just showing how you could also add configuration of the session expiration, and could be combined with any of the above.

I’d recommend starting with the first, hardcoded example for your testing, and once you are happy things are working you can make additional changes to the rule to best fit your use case if needed.