{-# LANGUAGE DeriveGeneric #-}
{-# LANGUAGE DuplicateRecordFields #-}
{-# LANGUAGE NamedFieldPuns #-}
{-# LANGUAGE OverloadedStrings #-}
{-# LANGUAGE RecordWildCards #-}
{-# LANGUAGE StrictData #-}
{-# LANGUAGE NoImplicitPrelude #-}
{-# OPTIONS_GHC -fno-warn-unused-imports #-}
{-# OPTIONS_GHC -fno-warn-unused-matches #-}

-- Derived from AWS service descriptions, licensed under Apache 2.0.

-- |
-- Module      : Amazonka.WorkSpacesWeb.Types.IdentityProvider
-- Copyright   : (c) 2013-2023 Brendan Hay
-- License     : Mozilla Public License, v. 2.0.
-- Maintainer  : Brendan Hay
-- Stability   : auto-generated
-- Portability : non-portable (GHC extensions)
module Amazonka.WorkSpacesWeb.Types.IdentityProvider where

import qualified Amazonka.Core as Core
import qualified Amazonka.Core.Lens.Internal as Lens
import qualified Amazonka.Data as Data
import qualified Amazonka.Prelude as Prelude
import Amazonka.WorkSpacesWeb.Types.IdentityProviderType

-- | The identity provider.
--
-- /See:/ 'newIdentityProvider' smart constructor.
data IdentityProvider = IdentityProvider'
  { -- | The identity provider details. The following list describes the provider
    -- detail keys for each identity provider type.
    --
    -- -   For Google and Login with Amazon:
    --
    --     -   @client_id@
    --
    --     -   @client_secret@
    --
    --     -   @authorize_scopes@
    --
    -- -   For Facebook:
    --
    --     -   @client_id@
    --
    --     -   @client_secret@
    --
    --     -   @authorize_scopes@
    --
    --     -   @api_version@
    --
    -- -   For Sign in with Apple:
    --
    --     -   @client_id@
    --
    --     -   @team_id@
    --
    --     -   @key_id@
    --
    --     -   @private_key@
    --
    --     -   @authorize_scopes@
    --
    -- -   For OIDC providers:
    --
    --     -   @client_id@
    --
    --     -   @client_secret@
    --
    --     -   @attributes_request_method@
    --
    --     -   @oidc_issuer@
    --
    --     -   @authorize_scopes@
    --
    --     -   @authorize_url@ /if not available from discovery URL specified
    --         by oidc_issuer key/
    --
    --     -   @token_url@ /if not available from discovery URL specified by
    --         oidc_issuer key/
    --
    --     -   @attributes_url@ /if not available from discovery URL specified
    --         by oidc_issuer key/
    --
    --     -   @jwks_uri@ /if not available from discovery URL specified by
    --         oidc_issuer key/
    --
    -- -   For SAML providers:
    --
    --     -   @MetadataFile@ OR @MetadataURL@
    --
    --     -   @IDPSignout@ /optional/
    IdentityProvider -> Maybe (Sensitive (HashMap Text Text))
identityProviderDetails :: Prelude.Maybe (Data.Sensitive (Prelude.HashMap Prelude.Text Prelude.Text)),
    -- | The identity provider name.
    IdentityProvider -> Maybe (Sensitive Text)
identityProviderName :: Prelude.Maybe (Data.Sensitive Prelude.Text),
    -- | The identity provider type.
    IdentityProvider -> Maybe IdentityProviderType
identityProviderType :: Prelude.Maybe IdentityProviderType,
    -- | The ARN of the identity provider.
    IdentityProvider -> Text
identityProviderArn :: Prelude.Text
  }
  deriving (IdentityProvider -> IdentityProvider -> Bool
forall a. (a -> a -> Bool) -> (a -> a -> Bool) -> Eq a
/= :: IdentityProvider -> IdentityProvider -> Bool
$c/= :: IdentityProvider -> IdentityProvider -> Bool
== :: IdentityProvider -> IdentityProvider -> Bool
$c== :: IdentityProvider -> IdentityProvider -> Bool
Prelude.Eq, Int -> IdentityProvider -> ShowS
[IdentityProvider] -> ShowS
IdentityProvider -> String
forall a.
(Int -> a -> ShowS) -> (a -> String) -> ([a] -> ShowS) -> Show a
showList :: [IdentityProvider] -> ShowS
$cshowList :: [IdentityProvider] -> ShowS
show :: IdentityProvider -> String
$cshow :: IdentityProvider -> String
showsPrec :: Int -> IdentityProvider -> ShowS
$cshowsPrec :: Int -> IdentityProvider -> ShowS
Prelude.Show, forall x. Rep IdentityProvider x -> IdentityProvider
forall x. IdentityProvider -> Rep IdentityProvider x
forall a.
(forall x. a -> Rep a x) -> (forall x. Rep a x -> a) -> Generic a
$cto :: forall x. Rep IdentityProvider x -> IdentityProvider
$cfrom :: forall x. IdentityProvider -> Rep IdentityProvider x
Prelude.Generic)

-- |
-- Create a value of 'IdentityProvider' with all optional fields omitted.
--
-- Use <https://hackage.haskell.org/package/generic-lens generic-lens> or <https://hackage.haskell.org/package/optics optics> to modify other optional fields.
--
-- The following record fields are available, with the corresponding lenses provided
-- for backwards compatibility:
--
-- 'identityProviderDetails', 'identityProvider_identityProviderDetails' - The identity provider details. The following list describes the provider
-- detail keys for each identity provider type.
--
-- -   For Google and Login with Amazon:
--
--     -   @client_id@
--
--     -   @client_secret@
--
--     -   @authorize_scopes@
--
-- -   For Facebook:
--
--     -   @client_id@
--
--     -   @client_secret@
--
--     -   @authorize_scopes@
--
--     -   @api_version@
--
-- -   For Sign in with Apple:
--
--     -   @client_id@
--
--     -   @team_id@
--
--     -   @key_id@
--
--     -   @private_key@
--
--     -   @authorize_scopes@
--
-- -   For OIDC providers:
--
--     -   @client_id@
--
--     -   @client_secret@
--
--     -   @attributes_request_method@
--
--     -   @oidc_issuer@
--
--     -   @authorize_scopes@
--
--     -   @authorize_url@ /if not available from discovery URL specified
--         by oidc_issuer key/
--
--     -   @token_url@ /if not available from discovery URL specified by
--         oidc_issuer key/
--
--     -   @attributes_url@ /if not available from discovery URL specified
--         by oidc_issuer key/
--
--     -   @jwks_uri@ /if not available from discovery URL specified by
--         oidc_issuer key/
--
-- -   For SAML providers:
--
--     -   @MetadataFile@ OR @MetadataURL@
--
--     -   @IDPSignout@ /optional/
--
-- 'identityProviderName', 'identityProvider_identityProviderName' - The identity provider name.
--
-- 'identityProviderType', 'identityProvider_identityProviderType' - The identity provider type.
--
-- 'identityProviderArn', 'identityProvider_identityProviderArn' - The ARN of the identity provider.
newIdentityProvider ::
  -- | 'identityProviderArn'
  Prelude.Text ->
  IdentityProvider
newIdentityProvider :: Text -> IdentityProvider
newIdentityProvider Text
pIdentityProviderArn_ =
  IdentityProvider'
    { $sel:identityProviderDetails:IdentityProvider' :: Maybe (Sensitive (HashMap Text Text))
identityProviderDetails =
        forall a. Maybe a
Prelude.Nothing,
      $sel:identityProviderName:IdentityProvider' :: Maybe (Sensitive Text)
identityProviderName = forall a. Maybe a
Prelude.Nothing,
      $sel:identityProviderType:IdentityProvider' :: Maybe IdentityProviderType
identityProviderType = forall a. Maybe a
Prelude.Nothing,
      $sel:identityProviderArn:IdentityProvider' :: Text
identityProviderArn = Text
pIdentityProviderArn_
    }

-- | The identity provider details. The following list describes the provider
-- detail keys for each identity provider type.
--
-- -   For Google and Login with Amazon:
--
--     -   @client_id@
--
--     -   @client_secret@
--
--     -   @authorize_scopes@
--
-- -   For Facebook:
--
--     -   @client_id@
--
--     -   @client_secret@
--
--     -   @authorize_scopes@
--
--     -   @api_version@
--
-- -   For Sign in with Apple:
--
--     -   @client_id@
--
--     -   @team_id@
--
--     -   @key_id@
--
--     -   @private_key@
--
--     -   @authorize_scopes@
--
-- -   For OIDC providers:
--
--     -   @client_id@
--
--     -   @client_secret@
--
--     -   @attributes_request_method@
--
--     -   @oidc_issuer@
--
--     -   @authorize_scopes@
--
--     -   @authorize_url@ /if not available from discovery URL specified
--         by oidc_issuer key/
--
--     -   @token_url@ /if not available from discovery URL specified by
--         oidc_issuer key/
--
--     -   @attributes_url@ /if not available from discovery URL specified
--         by oidc_issuer key/
--
--     -   @jwks_uri@ /if not available from discovery URL specified by
--         oidc_issuer key/
--
-- -   For SAML providers:
--
--     -   @MetadataFile@ OR @MetadataURL@
--
--     -   @IDPSignout@ /optional/
identityProvider_identityProviderDetails :: Lens.Lens' IdentityProvider (Prelude.Maybe (Prelude.HashMap Prelude.Text Prelude.Text))
identityProvider_identityProviderDetails :: Lens' IdentityProvider (Maybe (HashMap Text Text))
identityProvider_identityProviderDetails = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\IdentityProvider' {Maybe (Sensitive (HashMap Text Text))
identityProviderDetails :: Maybe (Sensitive (HashMap Text Text))
$sel:identityProviderDetails:IdentityProvider' :: IdentityProvider -> Maybe (Sensitive (HashMap Text Text))
identityProviderDetails} -> Maybe (Sensitive (HashMap Text Text))
identityProviderDetails) (\s :: IdentityProvider
s@IdentityProvider' {} Maybe (Sensitive (HashMap Text Text))
a -> IdentityProvider
s {$sel:identityProviderDetails:IdentityProvider' :: Maybe (Sensitive (HashMap Text Text))
identityProviderDetails = Maybe (Sensitive (HashMap Text Text))
a} :: IdentityProvider) forall b c a. (b -> c) -> (a -> b) -> a -> c
Prelude.. forall (f :: * -> *) (g :: * -> *) s t a b.
(Functor f, Functor g) =>
AnIso s t a b -> Iso (f s) (g t) (f a) (g b)
Lens.mapping (forall a. Iso' (Sensitive a) a
Data._Sensitive forall b c a. (b -> c) -> (a -> b) -> a -> c
Prelude.. forall s t a b. (Coercible s a, Coercible t b) => Iso s t a b
Lens.coerced)

-- | The identity provider name.
identityProvider_identityProviderName :: Lens.Lens' IdentityProvider (Prelude.Maybe Prelude.Text)
identityProvider_identityProviderName :: Lens' IdentityProvider (Maybe Text)
identityProvider_identityProviderName = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\IdentityProvider' {Maybe (Sensitive Text)
identityProviderName :: Maybe (Sensitive Text)
$sel:identityProviderName:IdentityProvider' :: IdentityProvider -> Maybe (Sensitive Text)
identityProviderName} -> Maybe (Sensitive Text)
identityProviderName) (\s :: IdentityProvider
s@IdentityProvider' {} Maybe (Sensitive Text)
a -> IdentityProvider
s {$sel:identityProviderName:IdentityProvider' :: Maybe (Sensitive Text)
identityProviderName = Maybe (Sensitive Text)
a} :: IdentityProvider) forall b c a. (b -> c) -> (a -> b) -> a -> c
Prelude.. forall (f :: * -> *) (g :: * -> *) s t a b.
(Functor f, Functor g) =>
AnIso s t a b -> Iso (f s) (g t) (f a) (g b)
Lens.mapping forall a. Iso' (Sensitive a) a
Data._Sensitive

-- | The identity provider type.
identityProvider_identityProviderType :: Lens.Lens' IdentityProvider (Prelude.Maybe IdentityProviderType)
identityProvider_identityProviderType :: Lens' IdentityProvider (Maybe IdentityProviderType)
identityProvider_identityProviderType = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\IdentityProvider' {Maybe IdentityProviderType
identityProviderType :: Maybe IdentityProviderType
$sel:identityProviderType:IdentityProvider' :: IdentityProvider -> Maybe IdentityProviderType
identityProviderType} -> Maybe IdentityProviderType
identityProviderType) (\s :: IdentityProvider
s@IdentityProvider' {} Maybe IdentityProviderType
a -> IdentityProvider
s {$sel:identityProviderType:IdentityProvider' :: Maybe IdentityProviderType
identityProviderType = Maybe IdentityProviderType
a} :: IdentityProvider)

-- | The ARN of the identity provider.
identityProvider_identityProviderArn :: Lens.Lens' IdentityProvider Prelude.Text
identityProvider_identityProviderArn :: Lens' IdentityProvider Text
identityProvider_identityProviderArn = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\IdentityProvider' {Text
identityProviderArn :: Text
$sel:identityProviderArn:IdentityProvider' :: IdentityProvider -> Text
identityProviderArn} -> Text
identityProviderArn) (\s :: IdentityProvider
s@IdentityProvider' {} Text
a -> IdentityProvider
s {$sel:identityProviderArn:IdentityProvider' :: Text
identityProviderArn = Text
a} :: IdentityProvider)

instance Data.FromJSON IdentityProvider where
  parseJSON :: Value -> Parser IdentityProvider
parseJSON =
    forall a. String -> (Object -> Parser a) -> Value -> Parser a
Data.withObject
      String
"IdentityProvider"
      ( \Object
x ->
          Maybe (Sensitive (HashMap Text Text))
-> Maybe (Sensitive Text)
-> Maybe IdentityProviderType
-> Text
-> IdentityProvider
IdentityProvider'
            forall (f :: * -> *) a b. Functor f => (a -> b) -> f a -> f b
Prelude.<$> ( Object
x
                            forall a. FromJSON a => Object -> Key -> Parser (Maybe a)
Data..:? Key
"identityProviderDetails"
                            forall a. Parser (Maybe a) -> a -> Parser a
Data..!= forall a. Monoid a => a
Prelude.mempty
                        )
            forall (f :: * -> *) a b. Applicative f => f (a -> b) -> f a -> f b
Prelude.<*> (Object
x forall a. FromJSON a => Object -> Key -> Parser (Maybe a)
Data..:? Key
"identityProviderName")
            forall (f :: * -> *) a b. Applicative f => f (a -> b) -> f a -> f b
Prelude.<*> (Object
x forall a. FromJSON a => Object -> Key -> Parser (Maybe a)
Data..:? Key
"identityProviderType")
            forall (f :: * -> *) a b. Applicative f => f (a -> b) -> f a -> f b
Prelude.<*> (Object
x forall a. FromJSON a => Object -> Key -> Parser a
Data..: Key
"identityProviderArn")
      )

instance Prelude.Hashable IdentityProvider where
  hashWithSalt :: Int -> IdentityProvider -> Int
hashWithSalt Int
_salt IdentityProvider' {Maybe (Sensitive Text)
Maybe (Sensitive (HashMap Text Text))
Maybe IdentityProviderType
Text
identityProviderArn :: Text
identityProviderType :: Maybe IdentityProviderType
identityProviderName :: Maybe (Sensitive Text)
identityProviderDetails :: Maybe (Sensitive (HashMap Text Text))
$sel:identityProviderArn:IdentityProvider' :: IdentityProvider -> Text
$sel:identityProviderType:IdentityProvider' :: IdentityProvider -> Maybe IdentityProviderType
$sel:identityProviderName:IdentityProvider' :: IdentityProvider -> Maybe (Sensitive Text)
$sel:identityProviderDetails:IdentityProvider' :: IdentityProvider -> Maybe (Sensitive (HashMap Text Text))
..} =
    Int
_salt
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe (Sensitive (HashMap Text Text))
identityProviderDetails
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe (Sensitive Text)
identityProviderName
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe IdentityProviderType
identityProviderType
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Text
identityProviderArn

instance Prelude.NFData IdentityProvider where
  rnf :: IdentityProvider -> ()
rnf IdentityProvider' {Maybe (Sensitive Text)
Maybe (Sensitive (HashMap Text Text))
Maybe IdentityProviderType
Text
identityProviderArn :: Text
identityProviderType :: Maybe IdentityProviderType
identityProviderName :: Maybe (Sensitive Text)
identityProviderDetails :: Maybe (Sensitive (HashMap Text Text))
$sel:identityProviderArn:IdentityProvider' :: IdentityProvider -> Text
$sel:identityProviderType:IdentityProvider' :: IdentityProvider -> Maybe IdentityProviderType
$sel:identityProviderName:IdentityProvider' :: IdentityProvider -> Maybe (Sensitive Text)
$sel:identityProviderDetails:IdentityProvider' :: IdentityProvider -> Maybe (Sensitive (HashMap Text Text))
..} =
    forall a. NFData a => a -> ()
Prelude.rnf Maybe (Sensitive (HashMap Text Text))
identityProviderDetails
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe (Sensitive Text)
identityProviderName
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe IdentityProviderType
identityProviderType
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Text
identityProviderArn