VerifiedPermissions / Client / update_identity_source



Updates the specified identity source to use a new identity provider (IdP) source, or to change the mapping of identities from the IdP to a different principal entity type.


Verified Permissions is eventually consistent . It can take a few seconds for a new or changed element to be propagate through the service and be visible in the results of other Verified Permissions operations.

See also: AWS API Documentation

Request Syntax

response = client.update_identity_source(
        'cognitoUserPoolConfiguration': {
            'userPoolArn': 'string',
            'clientIds': [
  • policyStoreId (string) –


    Specifies the ID of the policy store that contains the identity source that you want to update.

  • identitySourceId (string) –


    Specifies the ID of the identity source that you want to update.

  • updateConfiguration (dict) –


    Specifies the details required to communicate with the identity provider (IdP) associated with this identity source.


    At this time, the only valid member of this structure is a Amazon Cognito user pool configuration.

    You must specify a userPoolArn, and optionally, a ClientId.


    This is a Tagged Union structure. Only one of the following top level keys can be set: cognitoUserPoolConfiguration.

    • cognitoUserPoolConfiguration (dict) –

      Contains configuration details of a Amazon Cognito user pool.

      • userPoolArn (string) – [REQUIRED]

        The Amazon Resource Name (ARN) of the Amazon Cognito user pool associated with this identity source.

      • clientIds (list) –

        The client ID of an app client that is configured for the specified Amazon Cognito user pool.

        • (string) –

  • principalEntityType (string) – Specifies the data type of principals generated for identities authenticated by the identity source.

Return type:



Response Syntax

    'createdDate': datetime(2015, 1, 1),
    'identitySourceId': 'string',
    'lastUpdatedDate': datetime(2015, 1, 1),
    'policyStoreId': 'string'

Response Structure

  • (dict) –

    • createdDate (datetime) –

      The date and time that the updated identity source was originally created.

    • identitySourceId (string) –

      The ID of the updated identity source.

    • lastUpdatedDate (datetime) –

      The date and time that the identity source was most recently updated.

    • policyStoreId (string) –

      The ID of the policy store that contains the updated identity source.