feat(chatbot): configure userRoleRequired for the SlackChannelConfiguration (aws#30420)

### Issue # (if applicable)

Closes aws#30403.

### Reason for this change

`chatbot.SlackChannelConfiguration` does not support for configuring `userRoleRequired` prop.

### Description of changes

Add `userRoleRequired` to `SlackChannelConfigurationProps`

### Description of how you validated changes

Add both unit and integ tests

### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Author: badmintoncryer

packages/@aws-cdk-testing/framework-integ/test/aws-chatbot/test/integ.chatbot-user-role-required.js.snapshot/ChatbotInteg.assets.json

@@ -0,0 +1,70 @@
+{
+ "Resources": {
+  "MySlackChannelConfigurationRole1D3F23AE": {
+   "Type": "AWS::IAM::Role",
+   "Properties": {
+    "AssumeRolePolicyDocument": {
+     "Statement": [
+      {
+       "Action": "sts:AssumeRole",
+       "Effect": "Allow",
+       "Principal": {
+        "Service": "chatbot.amazonaws.com"
+       }
+      }
+     ],
+     "Version": "2012-10-17"
+    }
+   }
+  },
+  "MySlackChannelA8E0B56C": {
+   "Type": "AWS::Chatbot::SlackChannelConfiguration",
+   "Properties": {
+    "ConfigurationName": "test-channel",
+    "IamRoleArn": {
+     "Fn::GetAtt": [
+      "MySlackChannelConfigurationRole1D3F23AE",
+      "Arn"
+     ]
+    },
+    "SlackChannelId": "C07639U21PW",
+    "SlackWorkspaceId": "T075XU2GKBP",
+    "UserRoleRequired": true
+   }
+  }
+ },
+ "Parameters": {
+  "BootstrapVersion": {
+   "Type": "AWS::SSM::Parameter::Value<String>",
+   "Default": "/cdk-bootstrap/hnb659fds/version",
+   "Description": "Version of the CDK Bootstrap resources in this environment, automatically retrieved from SSM Parameter Store. [cdk:skip]"
+  }
+ },
+ "Rules": {
+  "CheckBootstrapVersion": {
+   "Assertions": [
+    {
+     "Assert": {
+      "Fn::Not": [
+       {
+        "Fn::Contains": [
+         [
+          "1",
+          "2",
+          "3",
+          "4",
+          "5"
+         ],
+         {
+          "Ref": "BootstrapVersion"
+         }
+        ]
+       }
+      ]
+     },
+     "AssertDescription": "CDK bootstrap stack version 6 required. Please run 'cdk bootstrap' with a recent version of the CDK CLI."
+    }
+   ]
+  }
+ }
+}

packages/@aws-cdk-testing/framework-integ/test/aws-chatbot/test/integ.chatbot-user-role-required.js.snapshot/ChatbotInteg.template.json

@@ -0,0 +1,16 @@
+import * as cdk from 'aws-cdk-lib';
+import * as chatbot from 'aws-cdk-lib/aws-chatbot';
+import { IntegTest } from '@aws-cdk/integ-tests-alpha';
+
+const app = new cdk.App();
+const testStack = new cdk.Stack(app, 'ChatbotInteg');
+new chatbot.SlackChannelConfiguration(testStack, 'MySlackChannel', {
+  slackChannelConfigurationName: 'test-channel',
+  slackWorkspaceId: 'T075XU2GKBP',
+  slackChannelId: 'C07639U21PW',
+  userRoleRequired: true,
+});
+
+new IntegTest(app, 'integ-chatbot-user-role-required', {
+  testCases: [testStack],
+});

packages/@aws-cdk-testing/framework-integ/test/aws-chatbot/test/integ.chatbot-user-role-required.js.snapshot/cdk.out

@@ -47,3 +47,20 @@ correct log retention period (never expire, by default).
 
 By default slack channel will use `AdministratorAccess` managed policy as guardrail policy.
 The `guardrailPolicies` property can be used to set a different set of managed policies.
+
+## User Role Requirement
+
+Administrators can [require user roles](https://docs.aws.amazon.com/chatbot/latest/adminguide/understanding-permissions.html#user-role-requirement) for all current channel members and channels and all channels created in the future by enabling a user role requirement.
+
+You can configure this feature by setting the `userRoleRequired` property.
+
+```ts
+import * as chatbot from 'aws-cdk-lib/aws-chatbot';
+
+const slackChannel = new chatbot.SlackChannelConfiguration(this, 'MySlackChannel', {
+  slackChannelConfigurationName: 'YOUR_CHANNEL_NAME',
+  slackWorkspaceId: 'YOUR_SLACK_WORKSPACE_ID',
+  slackChannelId: 'YOUR_SLACK_CHANNEL_ID',
+  userRoleRequired: true,
+});
+```

packages/@aws-cdk-testing/framework-integ/test/aws-chatbot/test/integ.chatbot-user-role-required.js.snapshot/integ.json

@@ -87,6 +87,13 @@ export interface SlackChannelConfigurationProps {
    * @default - The AWS managed 'AdministratorAccess' policy is applied as a default if this is not set.
    */
   readonly guardrailPolicies?: iam.IManagedPolicy[];
+
+  /**
+   * Enables use of a user role requirement in your chat configuration.
+   *
+   * @default false
+   */
+  readonly userRoleRequired?: boolean;
 }
 
 /**
@@ -300,6 +307,7 @@ export class SlackChannelConfiguration extends SlackChannelConfigurationBase {
       snsTopicArns: cdk.Lazy.list({ produce: () => this.notificationTopics.map(topic => topic.topicArn) }, { omitEmpty: true } ),
       loggingLevel: props.loggingLevel?.toString(),
       guardrailPolicies: cdk.Lazy.list({ produce: () => props.guardrailPolicies?.map(policy => policy.managedPolicyArn) }, { omitEmpty: true } ),
+      userRoleRequired: props.userRoleRequired,
     });
 
     // Log retention

packages/@aws-cdk-testing/framework-integ/test/aws-chatbot/test/integ.chatbot-user-role-required.js.snapshot/integchatbotuserrolerequiredDefaultTestDeployAssert995C2DD6.assets.json

@@ -175,6 +175,19 @@ describe('SlackChannelConfiguration', () => {
     });
   });
 
+  test('specifying user role required', () => {
+    new chatbot.SlackChannelConfiguration(stack, 'MySlackChannel', {
+      slackWorkspaceId: 'ABC123',
+      slackChannelId: 'DEF456',
+      slackChannelConfigurationName: 'ConfigurationName',
+      userRoleRequired: true,
+    });
+
+    Template.fromStack(stack).hasResourceProperties('AWS::Chatbot::SlackChannelConfiguration', {
+      UserRoleRequired: true,
+    });
+  });
+
   test('getting configuration metric', () => {
     const slackChannel = new chatbot.SlackChannelConfiguration(stack, 'MySlackChannel', {
       slackWorkspaceId: 'ABC123',