Provide support in CDK for Cognito SAML signing and encryption

[rcoundon]

Describe the feature

With this announcement Cognito began to support Cognito SAML signing and encryption.
However, this isn't yet available in Cloudformation or CDK

Use Case

1. If I do set these values in the console, each deployment that makes a change to the UserPoolIdentityProviderSaml resets the options back to false so we can’t really use the feature without remembering to reset it manually after each deployment.

Proposed Solution

Provide flags in UserPoolIdentityProviderSaml to enable these features

Other Information

No response

Acknowledgements

• I may be able to implement this feature request
• This feature might incur a breaking change

CDK version used

2.132.1

Environment details (OS name and version, etc.)

TypeScript CDK

[tim-finnigan]

Thanks for the feature request - it looks like this is supported in CloudFormation, saw a recent issue in the coverage roadmap repository: aws-cloudformation/cloudformation-coverage-roadmap#1963.

Documentation for reference: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-userpoolidentityprovider.html#cfn-cognito-userpoolidentityprovider-providerdetails

[rcoundon]

Great - I didn't find that documentation when I looked. I'm not too familiar with using the Cfn constructs in CDK and with ProviderDetails being typed as any I overlooked it. Thanks, this gets me what I need and I'll update when the CDK specific construct gets updated.