ssoadmin

package
v1.44.249 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 24, 2023 License: Apache-2.0 Imports: 10 Imported by: 25

Documentation

Overview

Package ssoadmin provides the client and types for making API requests to AWS Single Sign-On Admin.

AWS IAM Identity Center (successor to AWS Single Sign-On) helps you securely create, or connect, your workforce identities and manage their access centrally across AWS accounts and applications. IAM Identity Center is the recommended approach for workforce authentication and authorization in AWS, for organizations of any size and type.

Although AWS Single Sign-On was renamed, the sso and identitystore API namespaces will continue to retain their original name for backward compatibility purposes. For more information, see IAM Identity Center rename (https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html#renamed).

This reference guide provides information on single sign-on operations which could be used for access management of AWS accounts. For information about IAM Identity Center features, see the IAM Identity Center User Guide (https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html).

Many operations in the IAM Identity Center APIs rely on identifiers for users and groups, known as principals. For more information about how to work with principals and principal IDs in IAM Identity Center, see the Identity Store API Reference (https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/welcome.html).

AWS provides SDKs that consist of libraries and sample code for various programming languages and platforms (Java, Ruby, .Net, iOS, Android, and more). The SDKs provide a convenient way to create programmatic access to IAM Identity Center and other AWS services. For more information about the AWS SDKs, including how to download and install them, see Tools for Amazon Web Services (http://aws.amazon.com/tools/).

See https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20 for more information on this service.

See ssoadmin package documentation for more information. https://docs.aws.amazon.com/sdk-for-go/api/service/ssoadmin/

Using the Client

To contact AWS Single Sign-On Admin with the SDK use the New function to create a new service client. With that client you can make API requests to the service. These clients are safe to use concurrently.

See the SDK's documentation for more information on how to use the SDK. https://docs.aws.amazon.com/sdk-for-go/api/

See aws.Config documentation for more information on configuring SDK clients. https://docs.aws.amazon.com/sdk-for-go/api/aws/#Config

See the AWS Single Sign-On Admin client SSOAdmin for more information on creating client for this service. https://docs.aws.amazon.com/sdk-for-go/api/service/ssoadmin/#New

Index

Constants

View Source 
const (
	// InstanceAccessControlAttributeConfigurationStatusEnabled is a InstanceAccessControlAttributeConfigurationStatus enum value
	InstanceAccessControlAttributeConfigurationStatusEnabled = "ENABLED"

	// InstanceAccessControlAttributeConfigurationStatusCreationInProgress is a InstanceAccessControlAttributeConfigurationStatus enum value
	InstanceAccessControlAttributeConfigurationStatusCreationInProgress = "CREATION_IN_PROGRESS"

	// InstanceAccessControlAttributeConfigurationStatusCreationFailed is a InstanceAccessControlAttributeConfigurationStatus enum value
	InstanceAccessControlAttributeConfigurationStatusCreationFailed = "CREATION_FAILED"
)
View Source 
const (
	// PrincipalTypeUser is a PrincipalType enum value
	PrincipalTypeUser = "USER"

	// PrincipalTypeGroup is a PrincipalType enum value
	PrincipalTypeGroup = "GROUP"
)
View Source 
const (
	// ProvisionTargetTypeAwsAccount is a ProvisionTargetType enum value
	ProvisionTargetTypeAwsAccount = "AWS_ACCOUNT"

	// ProvisionTargetTypeAllProvisionedAccounts is a ProvisionTargetType enum value
	ProvisionTargetTypeAllProvisionedAccounts = "ALL_PROVISIONED_ACCOUNTS"
)
View Source 
const (
	// ProvisioningStatusLatestPermissionSetProvisioned is a ProvisioningStatus enum value
	ProvisioningStatusLatestPermissionSetProvisioned = "LATEST_PERMISSION_SET_PROVISIONED"

	// ProvisioningStatusLatestPermissionSetNotProvisioned is a ProvisioningStatus enum value
	ProvisioningStatusLatestPermissionSetNotProvisioned = "LATEST_PERMISSION_SET_NOT_PROVISIONED"
)
View Source 
const (
	// StatusValuesInProgress is a StatusValues enum value
	StatusValuesInProgress = "IN_PROGRESS"

	// StatusValuesFailed is a StatusValues enum value
	StatusValuesFailed = "FAILED"

	// StatusValuesSucceeded is a StatusValues enum value
	StatusValuesSucceeded = "SUCCEEDED"
)
View Source 
const (

	// ErrCodeAccessDeniedException for service response error code
	// "AccessDeniedException".
	//
	// You do not have sufficient access to perform this action.
	ErrCodeAccessDeniedException = "AccessDeniedException"

	// ErrCodeConflictException for service response error code
	// "ConflictException".
	//
	// Occurs when a conflict with a previous successful write is detected. This
	// generally occurs when the previous write did not have time to propagate to
	// the host serving the current request. A retry (with appropriate backoff logic)
	// is the recommended response to this exception.
	ErrCodeConflictException = "ConflictException"

	// ErrCodeInternalServerException for service response error code
	// "InternalServerException".
	//
	// The request processing has failed because of an unknown error, exception,
	// or failure with an internal server.
	ErrCodeInternalServerException = "InternalServerException"

	// ErrCodeResourceNotFoundException for service response error code
	// "ResourceNotFoundException".
	//
	// Indicates that a requested resource is not found.
	ErrCodeResourceNotFoundException = "ResourceNotFoundException"

	// ErrCodeServiceQuotaExceededException for service response error code
	// "ServiceQuotaExceededException".
	//
	// Indicates that the principal has crossed the permitted number of resources
	// that can be created.
	ErrCodeServiceQuotaExceededException = "ServiceQuotaExceededException"

	// ErrCodeThrottlingException for service response error code
	// "ThrottlingException".
	//
	// Indicates that the principal has crossed the throttling limits of the API
	// operations.
	ErrCodeThrottlingException = "ThrottlingException"

	// ErrCodeValidationException for service response error code
	// "ValidationException".
	//
	// The request failed because it contains a syntax error.
	ErrCodeValidationException = "ValidationException"
)
View Source 
const (
	ServiceName = "SSO Admin" // Name of service.
	EndpointsID = "sso"       // ID to lookup a service endpoint with.
	ServiceID   = "SSO Admin" // ServiceID is a unique identifier of a specific service.
)

Service information constants

View Source 
const (
	// TargetTypeAwsAccount is a TargetType enum value
	TargetTypeAwsAccount = "AWS_ACCOUNT"
)

Variables

This section is empty.

Functions

func InstanceAccessControlAttributeConfigurationStatus_Values added in v1.35.34 

func InstanceAccessControlAttributeConfigurationStatus_Values() []string

InstanceAccessControlAttributeConfigurationStatus_Values returns all elements of the InstanceAccessControlAttributeConfigurationStatus enum

func PrincipalType_Values 

func PrincipalType_Values() []string

PrincipalType_Values returns all elements of the PrincipalType enum

func ProvisionTargetType_Values 

func ProvisionTargetType_Values() []string

ProvisionTargetType_Values returns all elements of the ProvisionTargetType enum

func ProvisioningStatus_Values 

func ProvisioningStatus_Values() []string

ProvisioningStatus_Values returns all elements of the ProvisioningStatus enum

func StatusValues_Values 

func StatusValues_Values() []string

StatusValues_Values returns all elements of the StatusValues enum

func TargetType_Values 

func TargetType_Values() []string

TargetType_Values returns all elements of the TargetType enum

Types

type AccessControlAttribute added in v1.35.34 

type AccessControlAttribute struct {

	// The name of the attribute associated with your identities in your identity
	// source. This is used to map a specified attribute in your identity source
	// with an attribute in IAM Identity Center.
	//
	// Key is a required field
	Key *string `min:"1" type:"string" required:"true"`

	// The value used for mapping a specified attribute to an identity source.
	//
	// Value is a required field
	Value *AccessControlAttributeValue `type:"structure" required:"true"`
	// contains filtered or unexported fields
}

These are IAM Identity Center identity store attributes that you can configure for use in attributes-based access control (ABAC). You can create permissions policies that determine who can access your AWS resources based upon the configured attribute values. When you enable ABAC and specify AccessControlAttributes, IAM Identity Center passes the attribute values of the authenticated user into IAM for use in policy evaluation.

func (AccessControlAttribute) GoString added in v1.35.34 

func (s AccessControlAttribute) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AccessControlAttribute) SetKey added in v1.35.34 

func (s *AccessControlAttribute) SetKey(v string) *AccessControlAttribute

SetKey sets the Key field's value.

func (*AccessControlAttribute) SetValue added in v1.35.34 

func (s *AccessControlAttribute) SetValue(v *AccessControlAttributeValue) *AccessControlAttribute

SetValue sets the Value field's value.

func (AccessControlAttribute) String added in v1.35.34 

func (s AccessControlAttribute) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AccessControlAttribute) Validate added in v1.35.34 

func (s *AccessControlAttribute) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type AccessControlAttributeValue added in v1.35.34 

type AccessControlAttributeValue struct {

	// The identity source to use when mapping a specified attribute to IAM Identity
	// Center.
	//
	// Source is a required field
	Source []*string `min:"1" type:"list" required:"true"`
	// contains filtered or unexported fields
}

The value used for mapping a specified attribute to an identity source. For more information, see Attribute mappings (https://docs.aws.amazon.com/singlesignon/latest/userguide/attributemappingsconcept.html) in the IAM Identity Center User Guide.

func (AccessControlAttributeValue) GoString added in v1.35.34 

func (s AccessControlAttributeValue) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AccessControlAttributeValue) SetSource added in v1.35.34 

func (s *AccessControlAttributeValue) SetSource(v []*string) *AccessControlAttributeValue

SetSource sets the Source field's value.

func (AccessControlAttributeValue) String added in v1.35.34 

func (s AccessControlAttributeValue) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AccessControlAttributeValue) Validate added in v1.35.34 

func (s *AccessControlAttributeValue) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type AccessDeniedException 

type AccessDeniedException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"Message" type:"string"`
	// contains filtered or unexported fields
}

You do not have sufficient access to perform this action.

func (*AccessDeniedException) Code 

func (s *AccessDeniedException) Code() string

Code returns the exception type name.

func (*AccessDeniedException) Error 

func (s *AccessDeniedException) Error() string

func (AccessDeniedException) GoString 

func (s AccessDeniedException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AccessDeniedException) Message 

func (s *AccessDeniedException) Message() string

Message returns the exception's message.

func (*AccessDeniedException) OrigErr 

func (s *AccessDeniedException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*AccessDeniedException) RequestID 

func (s *AccessDeniedException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*AccessDeniedException) StatusCode 

func (s *AccessDeniedException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (AccessDeniedException) String 

func (s AccessDeniedException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type AccountAssignment 

type AccountAssignment struct {

	// The identifier of the AWS account.
	AccountId *string `min:"12" type:"string"`

	// The ARN of the permission set. For more information about ARNs, see Amazon
	// Resource Names (ARNs) and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	PermissionSetArn *string `min:"10" type:"string"`

	// An identifier for an object in IAM Identity Center, such as a user or group.
	// PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6).
	// For more information about PrincipalIds in IAM Identity Center, see the IAM
	// Identity Center Identity Store API Reference (/singlesignon/latest/IdentityStoreAPIReference/welcome.html).
	PrincipalId *string `min:"1" type:"string"`

	// The entity type for which the assignment will be created.
	PrincipalType *string `type:"string" enum:"PrincipalType"`
	// contains filtered or unexported fields
}

The assignment that indicates a principal's limited access to a specified AWS account with a specified permission set.

The term principal here refers to a user or group that is defined in IAM Identity Center.

func (AccountAssignment) GoString 

func (s AccountAssignment) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AccountAssignment) SetAccountId 

func (s *AccountAssignment) SetAccountId(v string) *AccountAssignment

SetAccountId sets the AccountId field's value.

func (*AccountAssignment) SetPermissionSetArn 

func (s *AccountAssignment) SetPermissionSetArn(v string) *AccountAssignment

SetPermissionSetArn sets the PermissionSetArn field's value.

func (*AccountAssignment) SetPrincipalId 

func (s *AccountAssignment) SetPrincipalId(v string) *AccountAssignment

SetPrincipalId sets the PrincipalId field's value.

func (*AccountAssignment) SetPrincipalType 

func (s *AccountAssignment) SetPrincipalType(v string) *AccountAssignment

SetPrincipalType sets the PrincipalType field's value.

func (AccountAssignment) String 

func (s AccountAssignment) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type AccountAssignmentOperationStatus 

type AccountAssignmentOperationStatus struct {

	// The date that the permission set was created.
	CreatedDate *time.Time `type:"timestamp"`

	// The message that contains an error or exception in case of an operation failure.
	FailureReason *string `type:"string"`

	// The ARN of the permission set. For more information about ARNs, see Amazon
	// Resource Names (ARNs) and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	PermissionSetArn *string `min:"10" type:"string"`

	// An identifier for an object in IAM Identity Center, such as a user or group.
	// PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6).
	// For more information about PrincipalIds in IAM Identity Center, see the IAM
	// Identity Center Identity Store API Reference (/singlesignon/latest/IdentityStoreAPIReference/welcome.html).
	PrincipalId *string `min:"1" type:"string"`

	// The entity type for which the assignment will be created.
	PrincipalType *string `type:"string" enum:"PrincipalType"`

	// The identifier for tracking the request operation that is generated by the
	// universally unique identifier (UUID) workflow.
	RequestId *string `min:"36" type:"string"`

	// The status of the permission set provisioning process.
	Status *string `type:"string" enum:"StatusValues"`

	// TargetID is an AWS account identifier, typically a 10-12 digit string (For
	// example, 123456789012).
	TargetId *string `min:"12" type:"string"`

	// The entity type for which the assignment will be created.
	TargetType *string `type:"string" enum:"TargetType"`
	// contains filtered or unexported fields
}

The status of the creation or deletion operation of an assignment that a principal needs to access an account.

func (AccountAssignmentOperationStatus) GoString 

func (s AccountAssignmentOperationStatus) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AccountAssignmentOperationStatus) SetCreatedDate 

func (s *AccountAssignmentOperationStatus) SetCreatedDate(v time.Time) *AccountAssignmentOperationStatus

SetCreatedDate sets the CreatedDate field's value.

func (*AccountAssignmentOperationStatus) SetFailureReason 

func (s *AccountAssignmentOperationStatus) SetFailureReason(v string) *AccountAssignmentOperationStatus

SetFailureReason sets the FailureReason field's value.

func (*AccountAssignmentOperationStatus) SetPermissionSetArn 

func (s *AccountAssignmentOperationStatus) SetPermissionSetArn(v string) *AccountAssignmentOperationStatus

SetPermissionSetArn sets the PermissionSetArn field's value.

func (*AccountAssignmentOperationStatus) SetPrincipalId 

func (s *AccountAssignmentOperationStatus) SetPrincipalId(v string) *AccountAssignmentOperationStatus

SetPrincipalId sets the PrincipalId field's value.

func (*AccountAssignmentOperationStatus) SetPrincipalType 

func (s *AccountAssignmentOperationStatus) SetPrincipalType(v string) *AccountAssignmentOperationStatus

SetPrincipalType sets the PrincipalType field's value.

func (*AccountAssignmentOperationStatus) SetRequestId 

func (s *AccountAssignmentOperationStatus) SetRequestId(v string) *AccountAssignmentOperationStatus

SetRequestId sets the RequestId field's value.

func (*AccountAssignmentOperationStatus) SetStatus 

func (s *AccountAssignmentOperationStatus) SetStatus(v string) *AccountAssignmentOperationStatus

SetStatus sets the Status field's value.

func (*AccountAssignmentOperationStatus) SetTargetId 

func (s *AccountAssignmentOperationStatus) SetTargetId(v string) *AccountAssignmentOperationStatus

SetTargetId sets the TargetId field's value.

func (*AccountAssignmentOperationStatus) SetTargetType 

func (s *AccountAssignmentOperationStatus) SetTargetType(v string) *AccountAssignmentOperationStatus

SetTargetType sets the TargetType field's value.

func (AccountAssignmentOperationStatus) String 

func (s AccountAssignmentOperationStatus) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type AccountAssignmentOperationStatusMetadata 

type AccountAssignmentOperationStatusMetadata struct {

	// The date that the permission set was created.
	CreatedDate *time.Time `type:"timestamp"`

	// The identifier for tracking the request operation that is generated by the
	// universally unique identifier (UUID) workflow.
	RequestId *string `min:"36" type:"string"`

	// The status of the permission set provisioning process.
	Status *string `type:"string" enum:"StatusValues"`
	// contains filtered or unexported fields
}

Provides information about the AccountAssignment creation request.

func (AccountAssignmentOperationStatusMetadata) GoString 

func (s AccountAssignmentOperationStatusMetadata) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AccountAssignmentOperationStatusMetadata) SetCreatedDate 

func (s *AccountAssignmentOperationStatusMetadata) SetCreatedDate(v time.Time) *AccountAssignmentOperationStatusMetadata

SetCreatedDate sets the CreatedDate field's value.

func (*AccountAssignmentOperationStatusMetadata) SetRequestId 

func (s *AccountAssignmentOperationStatusMetadata) SetRequestId(v string) *AccountAssignmentOperationStatusMetadata

SetRequestId sets the RequestId field's value.

func (*AccountAssignmentOperationStatusMetadata) SetStatus 

func (s *AccountAssignmentOperationStatusMetadata) SetStatus(v string) *AccountAssignmentOperationStatusMetadata

SetStatus sets the Status field's value.

func (AccountAssignmentOperationStatusMetadata) String 

func (s AccountAssignmentOperationStatusMetadata) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type AttachCustomerManagedPolicyReferenceToPermissionSetInput added in v1.44.57 

type AttachCustomerManagedPolicyReferenceToPermissionSetInput struct {

	// Specifies the name and path of a customer managed policy. You must have an
	// IAM policy that matches the name and path in each AWS account where you want
	// to deploy your permission set.
	//
	// CustomerManagedPolicyReference is a required field
	CustomerManagedPolicyReference *CustomerManagedPolicyReference `type:"structure" required:"true"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the PermissionSet.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (AttachCustomerManagedPolicyReferenceToPermissionSetInput) GoString added in v1.44.57 

func (s AttachCustomerManagedPolicyReferenceToPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AttachCustomerManagedPolicyReferenceToPermissionSetInput) SetCustomerManagedPolicyReference added in v1.44.57 

func (s *AttachCustomerManagedPolicyReferenceToPermissionSetInput) SetCustomerManagedPolicyReference(v *CustomerManagedPolicyReference) *AttachCustomerManagedPolicyReferenceToPermissionSetInput

SetCustomerManagedPolicyReference sets the CustomerManagedPolicyReference field's value.

func (*AttachCustomerManagedPolicyReferenceToPermissionSetInput) SetInstanceArn added in v1.44.57 

func (s *AttachCustomerManagedPolicyReferenceToPermissionSetInput) SetInstanceArn(v string) *AttachCustomerManagedPolicyReferenceToPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*AttachCustomerManagedPolicyReferenceToPermissionSetInput) SetPermissionSetArn added in v1.44.57 

func (s *AttachCustomerManagedPolicyReferenceToPermissionSetInput) SetPermissionSetArn(v string) *AttachCustomerManagedPolicyReferenceToPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (AttachCustomerManagedPolicyReferenceToPermissionSetInput) String added in v1.44.57 

func (s AttachCustomerManagedPolicyReferenceToPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AttachCustomerManagedPolicyReferenceToPermissionSetInput) Validate added in v1.44.57 

func (s *AttachCustomerManagedPolicyReferenceToPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type AttachCustomerManagedPolicyReferenceToPermissionSetOutput added in v1.44.57 

type AttachCustomerManagedPolicyReferenceToPermissionSetOutput struct {
	// contains filtered or unexported fields
}

func (AttachCustomerManagedPolicyReferenceToPermissionSetOutput) GoString added in v1.44.57 

func (s AttachCustomerManagedPolicyReferenceToPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (AttachCustomerManagedPolicyReferenceToPermissionSetOutput) String added in v1.44.57 

func (s AttachCustomerManagedPolicyReferenceToPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type AttachManagedPolicyToPermissionSetInput 

type AttachManagedPolicyToPermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The AWS managed policy ARN to be attached to a permission set.
	//
	// ManagedPolicyArn is a required field
	ManagedPolicyArn *string `min:"20" type:"string" required:"true"`

	// The ARN of the PermissionSet that the managed policy should be attached to.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (AttachManagedPolicyToPermissionSetInput) GoString 

func (s AttachManagedPolicyToPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AttachManagedPolicyToPermissionSetInput) SetInstanceArn 

func (s *AttachManagedPolicyToPermissionSetInput) SetInstanceArn(v string) *AttachManagedPolicyToPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*AttachManagedPolicyToPermissionSetInput) SetManagedPolicyArn 

func (s *AttachManagedPolicyToPermissionSetInput) SetManagedPolicyArn(v string) *AttachManagedPolicyToPermissionSetInput

SetManagedPolicyArn sets the ManagedPolicyArn field's value.

func (*AttachManagedPolicyToPermissionSetInput) SetPermissionSetArn 

func (s *AttachManagedPolicyToPermissionSetInput) SetPermissionSetArn(v string) *AttachManagedPolicyToPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (AttachManagedPolicyToPermissionSetInput) String 

func (s AttachManagedPolicyToPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AttachManagedPolicyToPermissionSetInput) Validate 

func (s *AttachManagedPolicyToPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type AttachManagedPolicyToPermissionSetOutput 

type AttachManagedPolicyToPermissionSetOutput struct {
	// contains filtered or unexported fields
}

func (AttachManagedPolicyToPermissionSetOutput) GoString 

func (s AttachManagedPolicyToPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (AttachManagedPolicyToPermissionSetOutput) String 

func (s AttachManagedPolicyToPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type AttachedManagedPolicy 

type AttachedManagedPolicy struct {

	// The ARN of the AWS managed policy. For more information about ARNs, see Amazon
	// Resource Names (ARNs) and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	Arn *string `min:"20" type:"string"`

	// The name of the AWS managed policy.
	Name *string `min:"1" type:"string"`
	// contains filtered or unexported fields
}

A structure that stores the details of the AWS managed policy.

func (AttachedManagedPolicy) GoString 

func (s AttachedManagedPolicy) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*AttachedManagedPolicy) SetArn 

func (s *AttachedManagedPolicy) SetArn(v string) *AttachedManagedPolicy

SetArn sets the Arn field's value.

func (*AttachedManagedPolicy) SetName 

func (s *AttachedManagedPolicy) SetName(v string) *AttachedManagedPolicy

SetName sets the Name field's value.

func (AttachedManagedPolicy) String 

func (s AttachedManagedPolicy) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ConflictException 

type ConflictException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"Message" type:"string"`
	// contains filtered or unexported fields
}

Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

func (*ConflictException) Code 

func (s *ConflictException) Code() string

Code returns the exception type name.

func (*ConflictException) Error 

func (s *ConflictException) Error() string

func (ConflictException) GoString 

func (s ConflictException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ConflictException) Message 

func (s *ConflictException) Message() string

Message returns the exception's message.

func (*ConflictException) OrigErr 

func (s *ConflictException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*ConflictException) RequestID 

func (s *ConflictException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*ConflictException) StatusCode 

func (s *ConflictException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (ConflictException) String 

func (s ConflictException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type CreateAccountAssignmentInput 

type CreateAccountAssignmentInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the permission set that the admin wants to grant the principal
	// access to.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`

	// An identifier for an object in IAM Identity Center, such as a user or group.
	// PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6).
	// For more information about PrincipalIds in IAM Identity Center, see the IAM
	// Identity Center Identity Store API Reference (/singlesignon/latest/IdentityStoreAPIReference/welcome.html).
	//
	// PrincipalId is a required field
	PrincipalId *string `min:"1" type:"string" required:"true"`

	// The entity type for which the assignment will be created.
	//
	// PrincipalType is a required field
	PrincipalType *string `type:"string" required:"true" enum:"PrincipalType"`

	// TargetID is an AWS account identifier, typically a 10-12 digit string (For
	// example, 123456789012).
	//
	// TargetId is a required field
	TargetId *string `min:"12" type:"string" required:"true"`

	// The entity type for which the assignment will be created.
	//
	// TargetType is a required field
	TargetType *string `type:"string" required:"true" enum:"TargetType"`
	// contains filtered or unexported fields
}

func (CreateAccountAssignmentInput) GoString 

func (s CreateAccountAssignmentInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*CreateAccountAssignmentInput) SetInstanceArn 

func (s *CreateAccountAssignmentInput) SetInstanceArn(v string) *CreateAccountAssignmentInput

SetInstanceArn sets the InstanceArn field's value.

func (*CreateAccountAssignmentInput) SetPermissionSetArn 

func (s *CreateAccountAssignmentInput) SetPermissionSetArn(v string) *CreateAccountAssignmentInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (*CreateAccountAssignmentInput) SetPrincipalId 

func (s *CreateAccountAssignmentInput) SetPrincipalId(v string) *CreateAccountAssignmentInput

SetPrincipalId sets the PrincipalId field's value.

func (*CreateAccountAssignmentInput) SetPrincipalType 

func (s *CreateAccountAssignmentInput) SetPrincipalType(v string) *CreateAccountAssignmentInput

SetPrincipalType sets the PrincipalType field's value.

func (*CreateAccountAssignmentInput) SetTargetId 

func (s *CreateAccountAssignmentInput) SetTargetId(v string) *CreateAccountAssignmentInput

SetTargetId sets the TargetId field's value.

func (*CreateAccountAssignmentInput) SetTargetType 

func (s *CreateAccountAssignmentInput) SetTargetType(v string) *CreateAccountAssignmentInput

SetTargetType sets the TargetType field's value.

func (CreateAccountAssignmentInput) String 

func (s CreateAccountAssignmentInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*CreateAccountAssignmentInput) Validate 

func (s *CreateAccountAssignmentInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type CreateAccountAssignmentOutput 

type CreateAccountAssignmentOutput struct {

	// The status object for the account assignment creation operation.
	AccountAssignmentCreationStatus *AccountAssignmentOperationStatus `type:"structure"`
	// contains filtered or unexported fields
}

func (CreateAccountAssignmentOutput) GoString 

func (s CreateAccountAssignmentOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*CreateAccountAssignmentOutput) SetAccountAssignmentCreationStatus 

func (s *CreateAccountAssignmentOutput) SetAccountAssignmentCreationStatus(v *AccountAssignmentOperationStatus) *CreateAccountAssignmentOutput

SetAccountAssignmentCreationStatus sets the AccountAssignmentCreationStatus field's value.

func (CreateAccountAssignmentOutput) String 

func (s CreateAccountAssignmentOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type CreateInstanceAccessControlAttributeConfigurationInput added in v1.35.34 

type CreateInstanceAccessControlAttributeConfigurationInput struct {

	// Specifies the IAM Identity Center identity store attributes to add to your
	// ABAC configuration. When using an external identity provider as an identity
	// source, you can pass attributes through the SAML assertion. Doing so provides
	// an alternative to configuring attributes from the IAM Identity Center identity
	// store. If a SAML assertion passes any of these attributes, IAM Identity Center
	// will replace the attribute value with the value from the IAM Identity Center
	// identity store.
	//
	// InstanceAccessControlAttributeConfiguration is a required field
	InstanceAccessControlAttributeConfiguration *InstanceAccessControlAttributeConfiguration `type:"structure" required:"true"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (CreateInstanceAccessControlAttributeConfigurationInput) GoString added in v1.35.34 

func (s CreateInstanceAccessControlAttributeConfigurationInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*CreateInstanceAccessControlAttributeConfigurationInput) SetInstanceAccessControlAttributeConfiguration added in v1.35.34 

func (s *CreateInstanceAccessControlAttributeConfigurationInput) SetInstanceAccessControlAttributeConfiguration(v *InstanceAccessControlAttributeConfiguration) *CreateInstanceAccessControlAttributeConfigurationInput

SetInstanceAccessControlAttributeConfiguration sets the InstanceAccessControlAttributeConfiguration field's value.

func (*CreateInstanceAccessControlAttributeConfigurationInput) SetInstanceArn added in v1.35.34 

func (s *CreateInstanceAccessControlAttributeConfigurationInput) SetInstanceArn(v string) *CreateInstanceAccessControlAttributeConfigurationInput

SetInstanceArn sets the InstanceArn field's value.

func (CreateInstanceAccessControlAttributeConfigurationInput) String added in v1.35.34 

func (s CreateInstanceAccessControlAttributeConfigurationInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*CreateInstanceAccessControlAttributeConfigurationInput) Validate added in v1.35.34 

func (s *CreateInstanceAccessControlAttributeConfigurationInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type CreateInstanceAccessControlAttributeConfigurationOutput added in v1.35.34 

type CreateInstanceAccessControlAttributeConfigurationOutput struct {
	// contains filtered or unexported fields
}

func (CreateInstanceAccessControlAttributeConfigurationOutput) GoString added in v1.35.34 

func (s CreateInstanceAccessControlAttributeConfigurationOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (CreateInstanceAccessControlAttributeConfigurationOutput) String added in v1.35.34 

func (s CreateInstanceAccessControlAttributeConfigurationOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type CreatePermissionSetInput 

type CreatePermissionSetInput struct {

	// The description of the PermissionSet.
	Description *string `min:"1" type:"string"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The name of the PermissionSet.
	//
	// Name is a required field
	Name *string `min:"1" type:"string" required:"true"`

	// Used to redirect users within the application during the federation authentication
	// process.
	RelayState *string `min:"1" type:"string"`

	// The length of time that the application user sessions are valid in the ISO-8601
	// standard.
	SessionDuration *string `min:"1" type:"string"`

	// The tags to attach to the new PermissionSet.
	Tags []*Tag `type:"list"`
	// contains filtered or unexported fields
}

func (CreatePermissionSetInput) GoString 

func (s CreatePermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*CreatePermissionSetInput) SetDescription 

func (s *CreatePermissionSetInput) SetDescription(v string) *CreatePermissionSetInput

SetDescription sets the Description field's value.

func (*CreatePermissionSetInput) SetInstanceArn 

func (s *CreatePermissionSetInput) SetInstanceArn(v string) *CreatePermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*CreatePermissionSetInput) SetName 

func (s *CreatePermissionSetInput) SetName(v string) *CreatePermissionSetInput

SetName sets the Name field's value.

func (*CreatePermissionSetInput) SetRelayState 

func (s *CreatePermissionSetInput) SetRelayState(v string) *CreatePermissionSetInput

SetRelayState sets the RelayState field's value.

func (*CreatePermissionSetInput) SetSessionDuration 

func (s *CreatePermissionSetInput) SetSessionDuration(v string) *CreatePermissionSetInput

SetSessionDuration sets the SessionDuration field's value.

func (*CreatePermissionSetInput) SetTags 

func (s *CreatePermissionSetInput) SetTags(v []*Tag) *CreatePermissionSetInput

SetTags sets the Tags field's value.

func (CreatePermissionSetInput) String 

func (s CreatePermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*CreatePermissionSetInput) Validate 

func (s *CreatePermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type CreatePermissionSetOutput 

type CreatePermissionSetOutput struct {

	// Defines the level of access on an AWS account.
	PermissionSet *PermissionSet `type:"structure"`
	// contains filtered or unexported fields
}

func (CreatePermissionSetOutput) GoString 

func (s CreatePermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*CreatePermissionSetOutput) SetPermissionSet 

func (s *CreatePermissionSetOutput) SetPermissionSet(v *PermissionSet) *CreatePermissionSetOutput

SetPermissionSet sets the PermissionSet field's value.

func (CreatePermissionSetOutput) String 

func (s CreatePermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type CustomerManagedPolicyReference added in v1.44.57 

type CustomerManagedPolicyReference struct {

	// The name of the IAM policy that you have configured in each account where
	// you want to deploy your permission set.
	//
	// Name is a required field
	Name *string `min:"1" type:"string" required:"true"`

	// The path to the IAM policy that you have configured in each account where
	// you want to deploy your permission set. The default is /. For more information,
	// see Friendly names and paths (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_identifiers.html#identifiers-friendly-names)
	// in the IAM User Guide.
	Path *string `min:"1" type:"string"`
	// contains filtered or unexported fields
}

Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.

func (CustomerManagedPolicyReference) GoString added in v1.44.57 

func (s CustomerManagedPolicyReference) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*CustomerManagedPolicyReference) SetName added in v1.44.57 

func (s *CustomerManagedPolicyReference) SetName(v string) *CustomerManagedPolicyReference

SetName sets the Name field's value.

func (*CustomerManagedPolicyReference) SetPath added in v1.44.57 

func (s *CustomerManagedPolicyReference) SetPath(v string) *CustomerManagedPolicyReference

SetPath sets the Path field's value.

func (CustomerManagedPolicyReference) String added in v1.44.57 

func (s CustomerManagedPolicyReference) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*CustomerManagedPolicyReference) Validate added in v1.44.57 

func (s *CustomerManagedPolicyReference) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeleteAccountAssignmentInput 

type DeleteAccountAssignmentInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the permission set that will be used to remove access.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`

	// An identifier for an object in IAM Identity Center, such as a user or group.
	// PrincipalIds are GUIDs (For example, f81d4fae-7dec-11d0-a765-00a0c91e6bf6).
	// For more information about PrincipalIds in IAM Identity Center, see the IAM
	// Identity Center Identity Store API Reference (/singlesignon/latest/IdentityStoreAPIReference/welcome.html).
	//
	// PrincipalId is a required field
	PrincipalId *string `min:"1" type:"string" required:"true"`

	// The entity type for which the assignment will be deleted.
	//
	// PrincipalType is a required field
	PrincipalType *string `type:"string" required:"true" enum:"PrincipalType"`

	// TargetID is an AWS account identifier, typically a 10-12 digit string (For
	// example, 123456789012).
	//
	// TargetId is a required field
	TargetId *string `min:"12" type:"string" required:"true"`

	// The entity type for which the assignment will be deleted.
	//
	// TargetType is a required field
	TargetType *string `type:"string" required:"true" enum:"TargetType"`
	// contains filtered or unexported fields
}

func (DeleteAccountAssignmentInput) GoString 

func (s DeleteAccountAssignmentInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DeleteAccountAssignmentInput) SetInstanceArn 

func (s *DeleteAccountAssignmentInput) SetInstanceArn(v string) *DeleteAccountAssignmentInput

SetInstanceArn sets the InstanceArn field's value.

func (*DeleteAccountAssignmentInput) SetPermissionSetArn 

func (s *DeleteAccountAssignmentInput) SetPermissionSetArn(v string) *DeleteAccountAssignmentInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (*DeleteAccountAssignmentInput) SetPrincipalId 

func (s *DeleteAccountAssignmentInput) SetPrincipalId(v string) *DeleteAccountAssignmentInput

SetPrincipalId sets the PrincipalId field's value.

func (*DeleteAccountAssignmentInput) SetPrincipalType 

func (s *DeleteAccountAssignmentInput) SetPrincipalType(v string) *DeleteAccountAssignmentInput

SetPrincipalType sets the PrincipalType field's value.

func (*DeleteAccountAssignmentInput) SetTargetId 

func (s *DeleteAccountAssignmentInput) SetTargetId(v string) *DeleteAccountAssignmentInput

SetTargetId sets the TargetId field's value.

func (*DeleteAccountAssignmentInput) SetTargetType 

func (s *DeleteAccountAssignmentInput) SetTargetType(v string) *DeleteAccountAssignmentInput

SetTargetType sets the TargetType field's value.

func (DeleteAccountAssignmentInput) String 

func (s DeleteAccountAssignmentInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DeleteAccountAssignmentInput) Validate 

func (s *DeleteAccountAssignmentInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeleteAccountAssignmentOutput 

type DeleteAccountAssignmentOutput struct {

	// The status object for the account assignment deletion operation.
	AccountAssignmentDeletionStatus *AccountAssignmentOperationStatus `type:"structure"`
	// contains filtered or unexported fields
}

func (DeleteAccountAssignmentOutput) GoString 

func (s DeleteAccountAssignmentOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DeleteAccountAssignmentOutput) SetAccountAssignmentDeletionStatus 

func (s *DeleteAccountAssignmentOutput) SetAccountAssignmentDeletionStatus(v *AccountAssignmentOperationStatus) *DeleteAccountAssignmentOutput

SetAccountAssignmentDeletionStatus sets the AccountAssignmentDeletionStatus field's value.

func (DeleteAccountAssignmentOutput) String 

func (s DeleteAccountAssignmentOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DeleteInlinePolicyFromPermissionSetInput 

type DeleteInlinePolicyFromPermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the permission set that will be used to remove access.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DeleteInlinePolicyFromPermissionSetInput) GoString 

func (s DeleteInlinePolicyFromPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DeleteInlinePolicyFromPermissionSetInput) SetInstanceArn 

func (s *DeleteInlinePolicyFromPermissionSetInput) SetInstanceArn(v string) *DeleteInlinePolicyFromPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*DeleteInlinePolicyFromPermissionSetInput) SetPermissionSetArn 

func (s *DeleteInlinePolicyFromPermissionSetInput) SetPermissionSetArn(v string) *DeleteInlinePolicyFromPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (DeleteInlinePolicyFromPermissionSetInput) String 

func (s DeleteInlinePolicyFromPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DeleteInlinePolicyFromPermissionSetInput) Validate 

func (s *DeleteInlinePolicyFromPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeleteInlinePolicyFromPermissionSetOutput 

type DeleteInlinePolicyFromPermissionSetOutput struct {
	// contains filtered or unexported fields
}

func (DeleteInlinePolicyFromPermissionSetOutput) GoString 

func (s DeleteInlinePolicyFromPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (DeleteInlinePolicyFromPermissionSetOutput) String 

func (s DeleteInlinePolicyFromPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DeleteInstanceAccessControlAttributeConfigurationInput added in v1.35.34 

type DeleteInstanceAccessControlAttributeConfigurationInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DeleteInstanceAccessControlAttributeConfigurationInput) GoString added in v1.35.34 

func (s DeleteInstanceAccessControlAttributeConfigurationInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DeleteInstanceAccessControlAttributeConfigurationInput) SetInstanceArn added in v1.35.34 

func (s *DeleteInstanceAccessControlAttributeConfigurationInput) SetInstanceArn(v string) *DeleteInstanceAccessControlAttributeConfigurationInput

SetInstanceArn sets the InstanceArn field's value.

func (DeleteInstanceAccessControlAttributeConfigurationInput) String added in v1.35.34 

func (s DeleteInstanceAccessControlAttributeConfigurationInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DeleteInstanceAccessControlAttributeConfigurationInput) Validate added in v1.35.34 

func (s *DeleteInstanceAccessControlAttributeConfigurationInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeleteInstanceAccessControlAttributeConfigurationOutput added in v1.35.34 

type DeleteInstanceAccessControlAttributeConfigurationOutput struct {
	// contains filtered or unexported fields
}

func (DeleteInstanceAccessControlAttributeConfigurationOutput) GoString added in v1.35.34 

func (s DeleteInstanceAccessControlAttributeConfigurationOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (DeleteInstanceAccessControlAttributeConfigurationOutput) String added in v1.35.34 

func (s DeleteInstanceAccessControlAttributeConfigurationOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DeletePermissionSetInput 

type DeletePermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the permission set that should be deleted.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DeletePermissionSetInput) GoString 

func (s DeletePermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DeletePermissionSetInput) SetInstanceArn 

func (s *DeletePermissionSetInput) SetInstanceArn(v string) *DeletePermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*DeletePermissionSetInput) SetPermissionSetArn 

func (s *DeletePermissionSetInput) SetPermissionSetArn(v string) *DeletePermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (DeletePermissionSetInput) String 

func (s DeletePermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DeletePermissionSetInput) Validate 

func (s *DeletePermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeletePermissionSetOutput 

type DeletePermissionSetOutput struct {
	// contains filtered or unexported fields
}

func (DeletePermissionSetOutput) GoString 

func (s DeletePermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (DeletePermissionSetOutput) String 

func (s DeletePermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DeletePermissionsBoundaryFromPermissionSetInput added in v1.44.57 

type DeletePermissionsBoundaryFromPermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the PermissionSet.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DeletePermissionsBoundaryFromPermissionSetInput) GoString added in v1.44.57 

func (s DeletePermissionsBoundaryFromPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DeletePermissionsBoundaryFromPermissionSetInput) SetInstanceArn added in v1.44.57 

func (s *DeletePermissionsBoundaryFromPermissionSetInput) SetInstanceArn(v string) *DeletePermissionsBoundaryFromPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*DeletePermissionsBoundaryFromPermissionSetInput) SetPermissionSetArn added in v1.44.57 

func (s *DeletePermissionsBoundaryFromPermissionSetInput) SetPermissionSetArn(v string) *DeletePermissionsBoundaryFromPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (DeletePermissionsBoundaryFromPermissionSetInput) String added in v1.44.57 

func (s DeletePermissionsBoundaryFromPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DeletePermissionsBoundaryFromPermissionSetInput) Validate added in v1.44.57 

func (s *DeletePermissionsBoundaryFromPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DeletePermissionsBoundaryFromPermissionSetOutput added in v1.44.57 

type DeletePermissionsBoundaryFromPermissionSetOutput struct {
	// contains filtered or unexported fields
}

func (DeletePermissionsBoundaryFromPermissionSetOutput) GoString added in v1.44.57 

func (s DeletePermissionsBoundaryFromPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (DeletePermissionsBoundaryFromPermissionSetOutput) String added in v1.44.57 

func (s DeletePermissionsBoundaryFromPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DescribeAccountAssignmentCreationStatusInput 

type DescribeAccountAssignmentCreationStatusInput struct {

	// The identifier that is used to track the request operation progress.
	//
	// AccountAssignmentCreationRequestId is a required field
	AccountAssignmentCreationRequestId *string `min:"36" type:"string" required:"true"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DescribeAccountAssignmentCreationStatusInput) GoString 

func (s DescribeAccountAssignmentCreationStatusInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribeAccountAssignmentCreationStatusInput) SetAccountAssignmentCreationRequestId 

func (s *DescribeAccountAssignmentCreationStatusInput) SetAccountAssignmentCreationRequestId(v string) *DescribeAccountAssignmentCreationStatusInput

SetAccountAssignmentCreationRequestId sets the AccountAssignmentCreationRequestId field's value.

func (*DescribeAccountAssignmentCreationStatusInput) SetInstanceArn 

func (s *DescribeAccountAssignmentCreationStatusInput) SetInstanceArn(v string) *DescribeAccountAssignmentCreationStatusInput

SetInstanceArn sets the InstanceArn field's value.

func (DescribeAccountAssignmentCreationStatusInput) String 

func (s DescribeAccountAssignmentCreationStatusInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribeAccountAssignmentCreationStatusInput) Validate 

func (s *DescribeAccountAssignmentCreationStatusInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DescribeAccountAssignmentCreationStatusOutput 

type DescribeAccountAssignmentCreationStatusOutput struct {

	// The status object for the account assignment creation operation.
	AccountAssignmentCreationStatus *AccountAssignmentOperationStatus `type:"structure"`
	// contains filtered or unexported fields
}

func (DescribeAccountAssignmentCreationStatusOutput) GoString 

func (s DescribeAccountAssignmentCreationStatusOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribeAccountAssignmentCreationStatusOutput) SetAccountAssignmentCreationStatus 

func (s *DescribeAccountAssignmentCreationStatusOutput) SetAccountAssignmentCreationStatus(v *AccountAssignmentOperationStatus) *DescribeAccountAssignmentCreationStatusOutput

SetAccountAssignmentCreationStatus sets the AccountAssignmentCreationStatus field's value.

func (DescribeAccountAssignmentCreationStatusOutput) String 

func (s DescribeAccountAssignmentCreationStatusOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DescribeAccountAssignmentDeletionStatusInput 

type DescribeAccountAssignmentDeletionStatusInput struct {

	// The identifier that is used to track the request operation progress.
	//
	// AccountAssignmentDeletionRequestId is a required field
	AccountAssignmentDeletionRequestId *string `min:"36" type:"string" required:"true"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DescribeAccountAssignmentDeletionStatusInput) GoString 

func (s DescribeAccountAssignmentDeletionStatusInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribeAccountAssignmentDeletionStatusInput) SetAccountAssignmentDeletionRequestId 

func (s *DescribeAccountAssignmentDeletionStatusInput) SetAccountAssignmentDeletionRequestId(v string) *DescribeAccountAssignmentDeletionStatusInput

SetAccountAssignmentDeletionRequestId sets the AccountAssignmentDeletionRequestId field's value.

func (*DescribeAccountAssignmentDeletionStatusInput) SetInstanceArn 

func (s *DescribeAccountAssignmentDeletionStatusInput) SetInstanceArn(v string) *DescribeAccountAssignmentDeletionStatusInput

SetInstanceArn sets the InstanceArn field's value.

func (DescribeAccountAssignmentDeletionStatusInput) String 

func (s DescribeAccountAssignmentDeletionStatusInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribeAccountAssignmentDeletionStatusInput) Validate 

func (s *DescribeAccountAssignmentDeletionStatusInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DescribeAccountAssignmentDeletionStatusOutput 

type DescribeAccountAssignmentDeletionStatusOutput struct {

	// The status object for the account assignment deletion operation.
	AccountAssignmentDeletionStatus *AccountAssignmentOperationStatus `type:"structure"`
	// contains filtered or unexported fields
}

func (DescribeAccountAssignmentDeletionStatusOutput) GoString 

func (s DescribeAccountAssignmentDeletionStatusOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribeAccountAssignmentDeletionStatusOutput) SetAccountAssignmentDeletionStatus 

func (s *DescribeAccountAssignmentDeletionStatusOutput) SetAccountAssignmentDeletionStatus(v *AccountAssignmentOperationStatus) *DescribeAccountAssignmentDeletionStatusOutput

SetAccountAssignmentDeletionStatus sets the AccountAssignmentDeletionStatus field's value.

func (DescribeAccountAssignmentDeletionStatusOutput) String 

func (s DescribeAccountAssignmentDeletionStatusOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DescribeInstanceAccessControlAttributeConfigurationInput added in v1.35.34 

type DescribeInstanceAccessControlAttributeConfigurationInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DescribeInstanceAccessControlAttributeConfigurationInput) GoString added in v1.35.34 

func (s DescribeInstanceAccessControlAttributeConfigurationInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribeInstanceAccessControlAttributeConfigurationInput) SetInstanceArn added in v1.35.34 

func (s *DescribeInstanceAccessControlAttributeConfigurationInput) SetInstanceArn(v string) *DescribeInstanceAccessControlAttributeConfigurationInput

SetInstanceArn sets the InstanceArn field's value.

func (DescribeInstanceAccessControlAttributeConfigurationInput) String added in v1.35.34 

func (s DescribeInstanceAccessControlAttributeConfigurationInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribeInstanceAccessControlAttributeConfigurationInput) Validate added in v1.35.34 

func (s *DescribeInstanceAccessControlAttributeConfigurationInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DescribeInstanceAccessControlAttributeConfigurationOutput added in v1.35.34 

type DescribeInstanceAccessControlAttributeConfigurationOutput struct {

	// Gets the list of IAM Identity Center identity store attributes that have
	// been added to your ABAC configuration.
	InstanceAccessControlAttributeConfiguration *InstanceAccessControlAttributeConfiguration `type:"structure"`

	// The status of the attribute configuration process.
	Status *string `type:"string" enum:"InstanceAccessControlAttributeConfigurationStatus"`

	// Provides more details about the current status of the specified attribute.
	StatusReason *string `type:"string"`
	// contains filtered or unexported fields
}

func (DescribeInstanceAccessControlAttributeConfigurationOutput) GoString added in v1.35.34 

func (s DescribeInstanceAccessControlAttributeConfigurationOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribeInstanceAccessControlAttributeConfigurationOutput) SetInstanceAccessControlAttributeConfiguration added in v1.35.34 

func (s *DescribeInstanceAccessControlAttributeConfigurationOutput) SetInstanceAccessControlAttributeConfiguration(v *InstanceAccessControlAttributeConfiguration) *DescribeInstanceAccessControlAttributeConfigurationOutput

SetInstanceAccessControlAttributeConfiguration sets the InstanceAccessControlAttributeConfiguration field's value.

func (*DescribeInstanceAccessControlAttributeConfigurationOutput) SetStatus added in v1.35.34 

func (s *DescribeInstanceAccessControlAttributeConfigurationOutput) SetStatus(v string) *DescribeInstanceAccessControlAttributeConfigurationOutput

SetStatus sets the Status field's value.

func (*DescribeInstanceAccessControlAttributeConfigurationOutput) SetStatusReason added in v1.35.34 

func (s *DescribeInstanceAccessControlAttributeConfigurationOutput) SetStatusReason(v string) *DescribeInstanceAccessControlAttributeConfigurationOutput

SetStatusReason sets the StatusReason field's value.

func (DescribeInstanceAccessControlAttributeConfigurationOutput) String added in v1.35.34 

func (s DescribeInstanceAccessControlAttributeConfigurationOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DescribePermissionSetInput 

type DescribePermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the permission set.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DescribePermissionSetInput) GoString 

func (s DescribePermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribePermissionSetInput) SetInstanceArn 

func (s *DescribePermissionSetInput) SetInstanceArn(v string) *DescribePermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*DescribePermissionSetInput) SetPermissionSetArn 

func (s *DescribePermissionSetInput) SetPermissionSetArn(v string) *DescribePermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (DescribePermissionSetInput) String 

func (s DescribePermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribePermissionSetInput) Validate 

func (s *DescribePermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DescribePermissionSetOutput 

type DescribePermissionSetOutput struct {

	// Describes the level of access on an AWS account.
	PermissionSet *PermissionSet `type:"structure"`
	// contains filtered or unexported fields
}

func (DescribePermissionSetOutput) GoString 

func (s DescribePermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribePermissionSetOutput) SetPermissionSet 

func (s *DescribePermissionSetOutput) SetPermissionSet(v *PermissionSet) *DescribePermissionSetOutput

SetPermissionSet sets the PermissionSet field's value.

func (DescribePermissionSetOutput) String 

func (s DescribePermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DescribePermissionSetProvisioningStatusInput 

type DescribePermissionSetProvisioningStatusInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The identifier that is provided by the ProvisionPermissionSet call to retrieve
	// the current status of the provisioning workflow.
	//
	// ProvisionPermissionSetRequestId is a required field
	ProvisionPermissionSetRequestId *string `min:"36" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DescribePermissionSetProvisioningStatusInput) GoString 

func (s DescribePermissionSetProvisioningStatusInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribePermissionSetProvisioningStatusInput) SetInstanceArn 

func (s *DescribePermissionSetProvisioningStatusInput) SetInstanceArn(v string) *DescribePermissionSetProvisioningStatusInput

SetInstanceArn sets the InstanceArn field's value.

func (*DescribePermissionSetProvisioningStatusInput) SetProvisionPermissionSetRequestId 

func (s *DescribePermissionSetProvisioningStatusInput) SetProvisionPermissionSetRequestId(v string) *DescribePermissionSetProvisioningStatusInput

SetProvisionPermissionSetRequestId sets the ProvisionPermissionSetRequestId field's value.

func (DescribePermissionSetProvisioningStatusInput) String 

func (s DescribePermissionSetProvisioningStatusInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribePermissionSetProvisioningStatusInput) Validate 

func (s *DescribePermissionSetProvisioningStatusInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DescribePermissionSetProvisioningStatusOutput 

type DescribePermissionSetProvisioningStatusOutput struct {

	// The status object for the permission set provisioning operation.
	PermissionSetProvisioningStatus *PermissionSetProvisioningStatus `type:"structure"`
	// contains filtered or unexported fields
}

func (DescribePermissionSetProvisioningStatusOutput) GoString 

func (s DescribePermissionSetProvisioningStatusOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DescribePermissionSetProvisioningStatusOutput) SetPermissionSetProvisioningStatus 

func (s *DescribePermissionSetProvisioningStatusOutput) SetPermissionSetProvisioningStatus(v *PermissionSetProvisioningStatus) *DescribePermissionSetProvisioningStatusOutput

SetPermissionSetProvisioningStatus sets the PermissionSetProvisioningStatus field's value.

func (DescribePermissionSetProvisioningStatusOutput) String 

func (s DescribePermissionSetProvisioningStatusOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DetachCustomerManagedPolicyReferenceFromPermissionSetInput added in v1.44.57 

type DetachCustomerManagedPolicyReferenceFromPermissionSetInput struct {

	// Specifies the name and path of a customer managed policy. You must have an
	// IAM policy that matches the name and path in each AWS account where you want
	// to deploy your permission set.
	//
	// CustomerManagedPolicyReference is a required field
	CustomerManagedPolicyReference *CustomerManagedPolicyReference `type:"structure" required:"true"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the PermissionSet.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DetachCustomerManagedPolicyReferenceFromPermissionSetInput) GoString added in v1.44.57 

func (s DetachCustomerManagedPolicyReferenceFromPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DetachCustomerManagedPolicyReferenceFromPermissionSetInput) SetCustomerManagedPolicyReference added in v1.44.57 

func (s *DetachCustomerManagedPolicyReferenceFromPermissionSetInput) SetCustomerManagedPolicyReference(v *CustomerManagedPolicyReference) *DetachCustomerManagedPolicyReferenceFromPermissionSetInput

SetCustomerManagedPolicyReference sets the CustomerManagedPolicyReference field's value.

func (*DetachCustomerManagedPolicyReferenceFromPermissionSetInput) SetInstanceArn added in v1.44.57 

func (s *DetachCustomerManagedPolicyReferenceFromPermissionSetInput) SetInstanceArn(v string) *DetachCustomerManagedPolicyReferenceFromPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*DetachCustomerManagedPolicyReferenceFromPermissionSetInput) SetPermissionSetArn added in v1.44.57 

func (s *DetachCustomerManagedPolicyReferenceFromPermissionSetInput) SetPermissionSetArn(v string) *DetachCustomerManagedPolicyReferenceFromPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (DetachCustomerManagedPolicyReferenceFromPermissionSetInput) String added in v1.44.57 

func (s DetachCustomerManagedPolicyReferenceFromPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DetachCustomerManagedPolicyReferenceFromPermissionSetInput) Validate added in v1.44.57 

func (s *DetachCustomerManagedPolicyReferenceFromPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DetachCustomerManagedPolicyReferenceFromPermissionSetOutput added in v1.44.57 

type DetachCustomerManagedPolicyReferenceFromPermissionSetOutput struct {
	// contains filtered or unexported fields
}

func (DetachCustomerManagedPolicyReferenceFromPermissionSetOutput) GoString added in v1.44.57 

func (s DetachCustomerManagedPolicyReferenceFromPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (DetachCustomerManagedPolicyReferenceFromPermissionSetOutput) String added in v1.44.57 

func (s DetachCustomerManagedPolicyReferenceFromPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type DetachManagedPolicyFromPermissionSetInput 

type DetachManagedPolicyFromPermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The AWS managed policy ARN to be detached from a permission set.
	//
	// ManagedPolicyArn is a required field
	ManagedPolicyArn *string `min:"20" type:"string" required:"true"`

	// The ARN of the PermissionSet from which the policy should be detached.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (DetachManagedPolicyFromPermissionSetInput) GoString 

func (s DetachManagedPolicyFromPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DetachManagedPolicyFromPermissionSetInput) SetInstanceArn 

func (s *DetachManagedPolicyFromPermissionSetInput) SetInstanceArn(v string) *DetachManagedPolicyFromPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*DetachManagedPolicyFromPermissionSetInput) SetManagedPolicyArn 

func (s *DetachManagedPolicyFromPermissionSetInput) SetManagedPolicyArn(v string) *DetachManagedPolicyFromPermissionSetInput

SetManagedPolicyArn sets the ManagedPolicyArn field's value.

func (*DetachManagedPolicyFromPermissionSetInput) SetPermissionSetArn 

func (s *DetachManagedPolicyFromPermissionSetInput) SetPermissionSetArn(v string) *DetachManagedPolicyFromPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (DetachManagedPolicyFromPermissionSetInput) String 

func (s DetachManagedPolicyFromPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*DetachManagedPolicyFromPermissionSetInput) Validate 

func (s *DetachManagedPolicyFromPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type DetachManagedPolicyFromPermissionSetOutput 

type DetachManagedPolicyFromPermissionSetOutput struct {
	// contains filtered or unexported fields
}

func (DetachManagedPolicyFromPermissionSetOutput) GoString 

func (s DetachManagedPolicyFromPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (DetachManagedPolicyFromPermissionSetOutput) String 

func (s DetachManagedPolicyFromPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type GetInlinePolicyForPermissionSetInput 

type GetInlinePolicyForPermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the permission set.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (GetInlinePolicyForPermissionSetInput) GoString 

func (s GetInlinePolicyForPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetInlinePolicyForPermissionSetInput) SetInstanceArn 

func (s *GetInlinePolicyForPermissionSetInput) SetInstanceArn(v string) *GetInlinePolicyForPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*GetInlinePolicyForPermissionSetInput) SetPermissionSetArn 

func (s *GetInlinePolicyForPermissionSetInput) SetPermissionSetArn(v string) *GetInlinePolicyForPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (GetInlinePolicyForPermissionSetInput) String 

func (s GetInlinePolicyForPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetInlinePolicyForPermissionSetInput) Validate 

func (s *GetInlinePolicyForPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetInlinePolicyForPermissionSetOutput 

type GetInlinePolicyForPermissionSetOutput struct {

	// The inline policy that is attached to the permission set.
	InlinePolicy *string `min:"1" type:"string"`
	// contains filtered or unexported fields
}

func (GetInlinePolicyForPermissionSetOutput) GoString 

func (s GetInlinePolicyForPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetInlinePolicyForPermissionSetOutput) SetInlinePolicy 

func (s *GetInlinePolicyForPermissionSetOutput) SetInlinePolicy(v string) *GetInlinePolicyForPermissionSetOutput

SetInlinePolicy sets the InlinePolicy field's value.

func (GetInlinePolicyForPermissionSetOutput) String 

func (s GetInlinePolicyForPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type GetPermissionsBoundaryForPermissionSetInput added in v1.44.57 

type GetPermissionsBoundaryForPermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the PermissionSet.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (GetPermissionsBoundaryForPermissionSetInput) GoString added in v1.44.57 

func (s GetPermissionsBoundaryForPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetPermissionsBoundaryForPermissionSetInput) SetInstanceArn added in v1.44.57 

func (s *GetPermissionsBoundaryForPermissionSetInput) SetInstanceArn(v string) *GetPermissionsBoundaryForPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*GetPermissionsBoundaryForPermissionSetInput) SetPermissionSetArn added in v1.44.57 

func (s *GetPermissionsBoundaryForPermissionSetInput) SetPermissionSetArn(v string) *GetPermissionsBoundaryForPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (GetPermissionsBoundaryForPermissionSetInput) String added in v1.44.57 

func (s GetPermissionsBoundaryForPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetPermissionsBoundaryForPermissionSetInput) Validate added in v1.44.57 

func (s *GetPermissionsBoundaryForPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type GetPermissionsBoundaryForPermissionSetOutput added in v1.44.57 

type GetPermissionsBoundaryForPermissionSetOutput struct {

	// The permissions boundary attached to the specified permission set.
	PermissionsBoundary *PermissionsBoundary `type:"structure"`
	// contains filtered or unexported fields
}

func (GetPermissionsBoundaryForPermissionSetOutput) GoString added in v1.44.57 

func (s GetPermissionsBoundaryForPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*GetPermissionsBoundaryForPermissionSetOutput) SetPermissionsBoundary added in v1.44.57 

func (s *GetPermissionsBoundaryForPermissionSetOutput) SetPermissionsBoundary(v *PermissionsBoundary) *GetPermissionsBoundaryForPermissionSetOutput

SetPermissionsBoundary sets the PermissionsBoundary field's value.

func (GetPermissionsBoundaryForPermissionSetOutput) String added in v1.44.57 

func (s GetPermissionsBoundaryForPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type InstanceAccessControlAttributeConfiguration added in v1.35.34 

type InstanceAccessControlAttributeConfiguration struct {

	// Lists the attributes that are configured for ABAC in the specified IAM Identity
	// Center instance.
	//
	// AccessControlAttributes is a required field
	AccessControlAttributes []*AccessControlAttribute `type:"list" required:"true"`
	// contains filtered or unexported fields
}

Specifies the attributes to add to your attribute-based access control (ABAC) configuration.

func (InstanceAccessControlAttributeConfiguration) GoString added in v1.35.34 

func (s InstanceAccessControlAttributeConfiguration) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*InstanceAccessControlAttributeConfiguration) SetAccessControlAttributes added in v1.35.34 

func (s *InstanceAccessControlAttributeConfiguration) SetAccessControlAttributes(v []*AccessControlAttribute) *InstanceAccessControlAttributeConfiguration

SetAccessControlAttributes sets the AccessControlAttributes field's value.

func (InstanceAccessControlAttributeConfiguration) String added in v1.35.34 

func (s InstanceAccessControlAttributeConfiguration) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*InstanceAccessControlAttributeConfiguration) Validate added in v1.35.34 

func (s *InstanceAccessControlAttributeConfiguration) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type InstanceMetadata 

type InstanceMetadata struct {

	// The identifier of the identity store that is connected to the IAM Identity
	// Center instance.
	IdentityStoreId *string `min:"1" type:"string"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	InstanceArn *string `min:"10" type:"string"`
	// contains filtered or unexported fields
}

Provides information about the IAM Identity Center instance.

func (InstanceMetadata) GoString 

func (s InstanceMetadata) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*InstanceMetadata) SetIdentityStoreId 

func (s *InstanceMetadata) SetIdentityStoreId(v string) *InstanceMetadata

SetIdentityStoreId sets the IdentityStoreId field's value.

func (*InstanceMetadata) SetInstanceArn 

func (s *InstanceMetadata) SetInstanceArn(v string) *InstanceMetadata

SetInstanceArn sets the InstanceArn field's value.

func (InstanceMetadata) String 

func (s InstanceMetadata) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type InternalServerException 

type InternalServerException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"Message" type:"string"`
	// contains filtered or unexported fields
}

The request processing has failed because of an unknown error, exception, or failure with an internal server.

func (*InternalServerException) Code 

func (s *InternalServerException) Code() string

Code returns the exception type name.

func (*InternalServerException) Error 

func (s *InternalServerException) Error() string

func (InternalServerException) GoString 

func (s InternalServerException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*InternalServerException) Message 

func (s *InternalServerException) Message() string

Message returns the exception's message.

func (*InternalServerException) OrigErr 

func (s *InternalServerException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*InternalServerException) RequestID 

func (s *InternalServerException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*InternalServerException) StatusCode 

func (s *InternalServerException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (InternalServerException) String 

func (s InternalServerException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListAccountAssignmentCreationStatusInput 

type ListAccountAssignmentCreationStatusInput struct {

	// Filters results based on the passed attribute value.
	Filter *OperationStatusFilter `type:"structure"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The maximum number of results to display for the assignment.
	MaxResults *int64 `min:"1" type:"integer"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListAccountAssignmentCreationStatusInput) GoString 

func (s ListAccountAssignmentCreationStatusInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountAssignmentCreationStatusInput) SetFilter 

func (s *ListAccountAssignmentCreationStatusInput) SetFilter(v *OperationStatusFilter) *ListAccountAssignmentCreationStatusInput

SetFilter sets the Filter field's value.

func (*ListAccountAssignmentCreationStatusInput) SetInstanceArn 

func (s *ListAccountAssignmentCreationStatusInput) SetInstanceArn(v string) *ListAccountAssignmentCreationStatusInput

SetInstanceArn sets the InstanceArn field's value.

func (*ListAccountAssignmentCreationStatusInput) SetMaxResults 

func (s *ListAccountAssignmentCreationStatusInput) SetMaxResults(v int64) *ListAccountAssignmentCreationStatusInput

SetMaxResults sets the MaxResults field's value.

func (*ListAccountAssignmentCreationStatusInput) SetNextToken 

func (s *ListAccountAssignmentCreationStatusInput) SetNextToken(v string) *ListAccountAssignmentCreationStatusInput

SetNextToken sets the NextToken field's value.

func (ListAccountAssignmentCreationStatusInput) String 

func (s ListAccountAssignmentCreationStatusInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountAssignmentCreationStatusInput) Validate 

func (s *ListAccountAssignmentCreationStatusInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListAccountAssignmentCreationStatusOutput 

type ListAccountAssignmentCreationStatusOutput struct {

	// The status object for the account assignment creation operation.
	AccountAssignmentsCreationStatus []*AccountAssignmentOperationStatusMetadata `type:"list"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListAccountAssignmentCreationStatusOutput) GoString 

func (s ListAccountAssignmentCreationStatusOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountAssignmentCreationStatusOutput) SetAccountAssignmentsCreationStatus 

func (s *ListAccountAssignmentCreationStatusOutput) SetAccountAssignmentsCreationStatus(v []*AccountAssignmentOperationStatusMetadata) *ListAccountAssignmentCreationStatusOutput

SetAccountAssignmentsCreationStatus sets the AccountAssignmentsCreationStatus field's value.

func (*ListAccountAssignmentCreationStatusOutput) SetNextToken 

func (s *ListAccountAssignmentCreationStatusOutput) SetNextToken(v string) *ListAccountAssignmentCreationStatusOutput

SetNextToken sets the NextToken field's value.

func (ListAccountAssignmentCreationStatusOutput) String 

func (s ListAccountAssignmentCreationStatusOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListAccountAssignmentDeletionStatusInput 

type ListAccountAssignmentDeletionStatusInput struct {

	// Filters results based on the passed attribute value.
	Filter *OperationStatusFilter `type:"structure"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The maximum number of results to display for the assignment.
	MaxResults *int64 `min:"1" type:"integer"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListAccountAssignmentDeletionStatusInput) GoString 

func (s ListAccountAssignmentDeletionStatusInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountAssignmentDeletionStatusInput) SetFilter 

func (s *ListAccountAssignmentDeletionStatusInput) SetFilter(v *OperationStatusFilter) *ListAccountAssignmentDeletionStatusInput

SetFilter sets the Filter field's value.

func (*ListAccountAssignmentDeletionStatusInput) SetInstanceArn 

func (s *ListAccountAssignmentDeletionStatusInput) SetInstanceArn(v string) *ListAccountAssignmentDeletionStatusInput

SetInstanceArn sets the InstanceArn field's value.

func (*ListAccountAssignmentDeletionStatusInput) SetMaxResults 

func (s *ListAccountAssignmentDeletionStatusInput) SetMaxResults(v int64) *ListAccountAssignmentDeletionStatusInput

SetMaxResults sets the MaxResults field's value.

func (*ListAccountAssignmentDeletionStatusInput) SetNextToken 

func (s *ListAccountAssignmentDeletionStatusInput) SetNextToken(v string) *ListAccountAssignmentDeletionStatusInput

SetNextToken sets the NextToken field's value.

func (ListAccountAssignmentDeletionStatusInput) String 

func (s ListAccountAssignmentDeletionStatusInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountAssignmentDeletionStatusInput) Validate 

func (s *ListAccountAssignmentDeletionStatusInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListAccountAssignmentDeletionStatusOutput 

type ListAccountAssignmentDeletionStatusOutput struct {

	// The status object for the account assignment deletion operation.
	AccountAssignmentsDeletionStatus []*AccountAssignmentOperationStatusMetadata `type:"list"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListAccountAssignmentDeletionStatusOutput) GoString 

func (s ListAccountAssignmentDeletionStatusOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountAssignmentDeletionStatusOutput) SetAccountAssignmentsDeletionStatus 

func (s *ListAccountAssignmentDeletionStatusOutput) SetAccountAssignmentsDeletionStatus(v []*AccountAssignmentOperationStatusMetadata) *ListAccountAssignmentDeletionStatusOutput

SetAccountAssignmentsDeletionStatus sets the AccountAssignmentsDeletionStatus field's value.

func (*ListAccountAssignmentDeletionStatusOutput) SetNextToken 

func (s *ListAccountAssignmentDeletionStatusOutput) SetNextToken(v string) *ListAccountAssignmentDeletionStatusOutput

SetNextToken sets the NextToken field's value.

func (ListAccountAssignmentDeletionStatusOutput) String 

func (s ListAccountAssignmentDeletionStatusOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListAccountAssignmentsInput 

type ListAccountAssignmentsInput struct {

	// The identifier of the AWS account from which to list the assignments.
	//
	// AccountId is a required field
	AccountId *string `min:"12" type:"string" required:"true"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The maximum number of results to display for the assignment.
	MaxResults *int64 `min:"1" type:"integer"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`

	// The ARN of the permission set from which to list assignments.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (ListAccountAssignmentsInput) GoString 

func (s ListAccountAssignmentsInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountAssignmentsInput) SetAccountId 

func (s *ListAccountAssignmentsInput) SetAccountId(v string) *ListAccountAssignmentsInput

SetAccountId sets the AccountId field's value.

func (*ListAccountAssignmentsInput) SetInstanceArn 

func (s *ListAccountAssignmentsInput) SetInstanceArn(v string) *ListAccountAssignmentsInput

SetInstanceArn sets the InstanceArn field's value.

func (*ListAccountAssignmentsInput) SetMaxResults 

func (s *ListAccountAssignmentsInput) SetMaxResults(v int64) *ListAccountAssignmentsInput

SetMaxResults sets the MaxResults field's value.

func (*ListAccountAssignmentsInput) SetNextToken 

func (s *ListAccountAssignmentsInput) SetNextToken(v string) *ListAccountAssignmentsInput

SetNextToken sets the NextToken field's value.

func (*ListAccountAssignmentsInput) SetPermissionSetArn 

func (s *ListAccountAssignmentsInput) SetPermissionSetArn(v string) *ListAccountAssignmentsInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (ListAccountAssignmentsInput) String 

func (s ListAccountAssignmentsInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountAssignmentsInput) Validate 

func (s *ListAccountAssignmentsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListAccountAssignmentsOutput 

type ListAccountAssignmentsOutput struct {

	// The list of assignments that match the input AWS account and permission set.
	AccountAssignments []*AccountAssignment `type:"list"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListAccountAssignmentsOutput) GoString 

func (s ListAccountAssignmentsOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountAssignmentsOutput) SetAccountAssignments 

func (s *ListAccountAssignmentsOutput) SetAccountAssignments(v []*AccountAssignment) *ListAccountAssignmentsOutput

SetAccountAssignments sets the AccountAssignments field's value.

func (*ListAccountAssignmentsOutput) SetNextToken 

func (s *ListAccountAssignmentsOutput) SetNextToken(v string) *ListAccountAssignmentsOutput

SetNextToken sets the NextToken field's value.

func (ListAccountAssignmentsOutput) String 

func (s ListAccountAssignmentsOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListAccountsForProvisionedPermissionSetInput 

type ListAccountsForProvisionedPermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The maximum number of results to display for the PermissionSet.
	MaxResults *int64 `min:"1" type:"integer"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`

	// The ARN of the PermissionSet from which the associated AWS accounts will
	// be listed.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`

	// The permission set provisioning status for an AWS account.
	ProvisioningStatus *string `type:"string" enum:"ProvisioningStatus"`
	// contains filtered or unexported fields
}

func (ListAccountsForProvisionedPermissionSetInput) GoString 

func (s ListAccountsForProvisionedPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountsForProvisionedPermissionSetInput) SetInstanceArn 

func (s *ListAccountsForProvisionedPermissionSetInput) SetInstanceArn(v string) *ListAccountsForProvisionedPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*ListAccountsForProvisionedPermissionSetInput) SetMaxResults 

func (s *ListAccountsForProvisionedPermissionSetInput) SetMaxResults(v int64) *ListAccountsForProvisionedPermissionSetInput

SetMaxResults sets the MaxResults field's value.

func (*ListAccountsForProvisionedPermissionSetInput) SetNextToken 

func (s *ListAccountsForProvisionedPermissionSetInput) SetNextToken(v string) *ListAccountsForProvisionedPermissionSetInput

SetNextToken sets the NextToken field's value.

func (*ListAccountsForProvisionedPermissionSetInput) SetPermissionSetArn 

func (s *ListAccountsForProvisionedPermissionSetInput) SetPermissionSetArn(v string) *ListAccountsForProvisionedPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (*ListAccountsForProvisionedPermissionSetInput) SetProvisioningStatus 

func (s *ListAccountsForProvisionedPermissionSetInput) SetProvisioningStatus(v string) *ListAccountsForProvisionedPermissionSetInput

SetProvisioningStatus sets the ProvisioningStatus field's value.

func (ListAccountsForProvisionedPermissionSetInput) String 

func (s ListAccountsForProvisionedPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountsForProvisionedPermissionSetInput) Validate 

func (s *ListAccountsForProvisionedPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListAccountsForProvisionedPermissionSetOutput 

type ListAccountsForProvisionedPermissionSetOutput struct {

	// The list of AWS AccountIds.
	AccountIds []*string `type:"list"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListAccountsForProvisionedPermissionSetOutput) GoString 

func (s ListAccountsForProvisionedPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListAccountsForProvisionedPermissionSetOutput) SetAccountIds 

func (s *ListAccountsForProvisionedPermissionSetOutput) SetAccountIds(v []*string) *ListAccountsForProvisionedPermissionSetOutput

SetAccountIds sets the AccountIds field's value.

func (*ListAccountsForProvisionedPermissionSetOutput) SetNextToken 

func (s *ListAccountsForProvisionedPermissionSetOutput) SetNextToken(v string) *ListAccountsForProvisionedPermissionSetOutput

SetNextToken sets the NextToken field's value.

func (ListAccountsForProvisionedPermissionSetOutput) String 

func (s ListAccountsForProvisionedPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListCustomerManagedPolicyReferencesInPermissionSetInput added in v1.44.57 

type ListCustomerManagedPolicyReferencesInPermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The maximum number of results to display for the list call.
	MaxResults *int64 `min:"1" type:"integer"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`

	// The ARN of the PermissionSet.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (ListCustomerManagedPolicyReferencesInPermissionSetInput) GoString added in v1.44.57 

func (s ListCustomerManagedPolicyReferencesInPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListCustomerManagedPolicyReferencesInPermissionSetInput) SetInstanceArn added in v1.44.57 

func (s *ListCustomerManagedPolicyReferencesInPermissionSetInput) SetInstanceArn(v string) *ListCustomerManagedPolicyReferencesInPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*ListCustomerManagedPolicyReferencesInPermissionSetInput) SetMaxResults added in v1.44.57 

func (s *ListCustomerManagedPolicyReferencesInPermissionSetInput) SetMaxResults(v int64) *ListCustomerManagedPolicyReferencesInPermissionSetInput

SetMaxResults sets the MaxResults field's value.

func (*ListCustomerManagedPolicyReferencesInPermissionSetInput) SetNextToken added in v1.44.57 

func (s *ListCustomerManagedPolicyReferencesInPermissionSetInput) SetNextToken(v string) *ListCustomerManagedPolicyReferencesInPermissionSetInput

SetNextToken sets the NextToken field's value.

func (*ListCustomerManagedPolicyReferencesInPermissionSetInput) SetPermissionSetArn added in v1.44.57 

func (s *ListCustomerManagedPolicyReferencesInPermissionSetInput) SetPermissionSetArn(v string) *ListCustomerManagedPolicyReferencesInPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (ListCustomerManagedPolicyReferencesInPermissionSetInput) String added in v1.44.57 

func (s ListCustomerManagedPolicyReferencesInPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListCustomerManagedPolicyReferencesInPermissionSetInput) Validate added in v1.44.57 

func (s *ListCustomerManagedPolicyReferencesInPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListCustomerManagedPolicyReferencesInPermissionSetOutput added in v1.44.57 

type ListCustomerManagedPolicyReferencesInPermissionSetOutput struct {

	// Specifies the names and paths of the customer managed policies that you have
	// attached to your permission set.
	CustomerManagedPolicyReferences []*CustomerManagedPolicyReference `type:"list"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListCustomerManagedPolicyReferencesInPermissionSetOutput) GoString added in v1.44.57 

func (s ListCustomerManagedPolicyReferencesInPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListCustomerManagedPolicyReferencesInPermissionSetOutput) SetCustomerManagedPolicyReferences added in v1.44.57 

func (s *ListCustomerManagedPolicyReferencesInPermissionSetOutput) SetCustomerManagedPolicyReferences(v []*CustomerManagedPolicyReference) *ListCustomerManagedPolicyReferencesInPermissionSetOutput

SetCustomerManagedPolicyReferences sets the CustomerManagedPolicyReferences field's value.

func (*ListCustomerManagedPolicyReferencesInPermissionSetOutput) SetNextToken added in v1.44.57 

func (s *ListCustomerManagedPolicyReferencesInPermissionSetOutput) SetNextToken(v string) *ListCustomerManagedPolicyReferencesInPermissionSetOutput

SetNextToken sets the NextToken field's value.

func (ListCustomerManagedPolicyReferencesInPermissionSetOutput) String added in v1.44.57 

func (s ListCustomerManagedPolicyReferencesInPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListInstancesInput 

type ListInstancesInput struct {

	// The maximum number of results to display for the instance.
	MaxResults *int64 `min:"1" type:"integer"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListInstancesInput) GoString 

func (s ListInstancesInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListInstancesInput) SetMaxResults 

func (s *ListInstancesInput) SetMaxResults(v int64) *ListInstancesInput

SetMaxResults sets the MaxResults field's value.

func (*ListInstancesInput) SetNextToken 

func (s *ListInstancesInput) SetNextToken(v string) *ListInstancesInput

SetNextToken sets the NextToken field's value.

func (ListInstancesInput) String 

func (s ListInstancesInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListInstancesInput) Validate 

func (s *ListInstancesInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListInstancesOutput 

type ListInstancesOutput struct {

	// Lists the IAM Identity Center instances that the caller has access to.
	Instances []*InstanceMetadata `type:"list"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListInstancesOutput) GoString 

func (s ListInstancesOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListInstancesOutput) SetInstances 

func (s *ListInstancesOutput) SetInstances(v []*InstanceMetadata) *ListInstancesOutput

SetInstances sets the Instances field's value.

func (*ListInstancesOutput) SetNextToken 

func (s *ListInstancesOutput) SetNextToken(v string) *ListInstancesOutput

SetNextToken sets the NextToken field's value.

func (ListInstancesOutput) String 

func (s ListInstancesOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListManagedPoliciesInPermissionSetInput 

type ListManagedPoliciesInPermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The maximum number of results to display for the PermissionSet.
	MaxResults *int64 `min:"1" type:"integer"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`

	// The ARN of the PermissionSet whose managed policies will be listed.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (ListManagedPoliciesInPermissionSetInput) GoString 

func (s ListManagedPoliciesInPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListManagedPoliciesInPermissionSetInput) SetInstanceArn 

func (s *ListManagedPoliciesInPermissionSetInput) SetInstanceArn(v string) *ListManagedPoliciesInPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*ListManagedPoliciesInPermissionSetInput) SetMaxResults 

func (s *ListManagedPoliciesInPermissionSetInput) SetMaxResults(v int64) *ListManagedPoliciesInPermissionSetInput

SetMaxResults sets the MaxResults field's value.

func (*ListManagedPoliciesInPermissionSetInput) SetNextToken 

func (s *ListManagedPoliciesInPermissionSetInput) SetNextToken(v string) *ListManagedPoliciesInPermissionSetInput

SetNextToken sets the NextToken field's value.

func (*ListManagedPoliciesInPermissionSetInput) SetPermissionSetArn 

func (s *ListManagedPoliciesInPermissionSetInput) SetPermissionSetArn(v string) *ListManagedPoliciesInPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (ListManagedPoliciesInPermissionSetInput) String 

func (s ListManagedPoliciesInPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListManagedPoliciesInPermissionSetInput) Validate 

func (s *ListManagedPoliciesInPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListManagedPoliciesInPermissionSetOutput 

type ListManagedPoliciesInPermissionSetOutput struct {

	// An array of the AttachedManagedPolicy data type object.
	AttachedManagedPolicies []*AttachedManagedPolicy `type:"list"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListManagedPoliciesInPermissionSetOutput) GoString 

func (s ListManagedPoliciesInPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListManagedPoliciesInPermissionSetOutput) SetAttachedManagedPolicies 

func (s *ListManagedPoliciesInPermissionSetOutput) SetAttachedManagedPolicies(v []*AttachedManagedPolicy) *ListManagedPoliciesInPermissionSetOutput

SetAttachedManagedPolicies sets the AttachedManagedPolicies field's value.

func (*ListManagedPoliciesInPermissionSetOutput) SetNextToken 

func (s *ListManagedPoliciesInPermissionSetOutput) SetNextToken(v string) *ListManagedPoliciesInPermissionSetOutput

SetNextToken sets the NextToken field's value.

func (ListManagedPoliciesInPermissionSetOutput) String 

func (s ListManagedPoliciesInPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListPermissionSetProvisioningStatusInput 

type ListPermissionSetProvisioningStatusInput struct {

	// Filters results based on the passed attribute value.
	Filter *OperationStatusFilter `type:"structure"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The maximum number of results to display for the assignment.
	MaxResults *int64 `min:"1" type:"integer"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListPermissionSetProvisioningStatusInput) GoString 

func (s ListPermissionSetProvisioningStatusInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListPermissionSetProvisioningStatusInput) SetFilter 

func (s *ListPermissionSetProvisioningStatusInput) SetFilter(v *OperationStatusFilter) *ListPermissionSetProvisioningStatusInput

SetFilter sets the Filter field's value.

func (*ListPermissionSetProvisioningStatusInput) SetInstanceArn 

func (s *ListPermissionSetProvisioningStatusInput) SetInstanceArn(v string) *ListPermissionSetProvisioningStatusInput

SetInstanceArn sets the InstanceArn field's value.

func (*ListPermissionSetProvisioningStatusInput) SetMaxResults 

func (s *ListPermissionSetProvisioningStatusInput) SetMaxResults(v int64) *ListPermissionSetProvisioningStatusInput

SetMaxResults sets the MaxResults field's value.

func (*ListPermissionSetProvisioningStatusInput) SetNextToken 

func (s *ListPermissionSetProvisioningStatusInput) SetNextToken(v string) *ListPermissionSetProvisioningStatusInput

SetNextToken sets the NextToken field's value.

func (ListPermissionSetProvisioningStatusInput) String 

func (s ListPermissionSetProvisioningStatusInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListPermissionSetProvisioningStatusInput) Validate 

func (s *ListPermissionSetProvisioningStatusInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListPermissionSetProvisioningStatusOutput 

type ListPermissionSetProvisioningStatusOutput struct {

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`

	// The status object for the permission set provisioning operation.
	PermissionSetsProvisioningStatus []*PermissionSetProvisioningStatusMetadata `type:"list"`
	// contains filtered or unexported fields
}

func (ListPermissionSetProvisioningStatusOutput) GoString 

func (s ListPermissionSetProvisioningStatusOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListPermissionSetProvisioningStatusOutput) SetNextToken 

func (s *ListPermissionSetProvisioningStatusOutput) SetNextToken(v string) *ListPermissionSetProvisioningStatusOutput

SetNextToken sets the NextToken field's value.

func (*ListPermissionSetProvisioningStatusOutput) SetPermissionSetsProvisioningStatus 

func (s *ListPermissionSetProvisioningStatusOutput) SetPermissionSetsProvisioningStatus(v []*PermissionSetProvisioningStatusMetadata) *ListPermissionSetProvisioningStatusOutput

SetPermissionSetsProvisioningStatus sets the PermissionSetsProvisioningStatus field's value.

func (ListPermissionSetProvisioningStatusOutput) String 

func (s ListPermissionSetProvisioningStatusOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListPermissionSetsInput 

type ListPermissionSetsInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The maximum number of results to display for the assignment.
	MaxResults *int64 `min:"1" type:"integer"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`
	// contains filtered or unexported fields
}

func (ListPermissionSetsInput) GoString 

func (s ListPermissionSetsInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListPermissionSetsInput) SetInstanceArn 

func (s *ListPermissionSetsInput) SetInstanceArn(v string) *ListPermissionSetsInput

SetInstanceArn sets the InstanceArn field's value.

func (*ListPermissionSetsInput) SetMaxResults 

func (s *ListPermissionSetsInput) SetMaxResults(v int64) *ListPermissionSetsInput

SetMaxResults sets the MaxResults field's value.

func (*ListPermissionSetsInput) SetNextToken 

func (s *ListPermissionSetsInput) SetNextToken(v string) *ListPermissionSetsInput

SetNextToken sets the NextToken field's value.

func (ListPermissionSetsInput) String 

func (s ListPermissionSetsInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListPermissionSetsInput) Validate 

func (s *ListPermissionSetsInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListPermissionSetsOutput 

type ListPermissionSetsOutput struct {

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`

	// Defines the level of access on an AWS account.
	PermissionSets []*string `type:"list"`
	// contains filtered or unexported fields
}

func (ListPermissionSetsOutput) GoString 

func (s ListPermissionSetsOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListPermissionSetsOutput) SetNextToken 

func (s *ListPermissionSetsOutput) SetNextToken(v string) *ListPermissionSetsOutput

SetNextToken sets the NextToken field's value.

func (*ListPermissionSetsOutput) SetPermissionSets 

func (s *ListPermissionSetsOutput) SetPermissionSets(v []*string) *ListPermissionSetsOutput

SetPermissionSets sets the PermissionSets field's value.

func (ListPermissionSetsOutput) String 

func (s ListPermissionSetsOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListPermissionSetsProvisionedToAccountInput 

type ListPermissionSetsProvisionedToAccountInput struct {

	// The identifier of the AWS account from which to list the assignments.
	//
	// AccountId is a required field
	AccountId *string `min:"12" type:"string" required:"true"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The maximum number of results to display for the assignment.
	MaxResults *int64 `min:"1" type:"integer"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`

	// The status object for the permission set provisioning operation.
	ProvisioningStatus *string `type:"string" enum:"ProvisioningStatus"`
	// contains filtered or unexported fields
}

func (ListPermissionSetsProvisionedToAccountInput) GoString 

func (s ListPermissionSetsProvisionedToAccountInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListPermissionSetsProvisionedToAccountInput) SetAccountId 

func (s *ListPermissionSetsProvisionedToAccountInput) SetAccountId(v string) *ListPermissionSetsProvisionedToAccountInput

SetAccountId sets the AccountId field's value.

func (*ListPermissionSetsProvisionedToAccountInput) SetInstanceArn 

func (s *ListPermissionSetsProvisionedToAccountInput) SetInstanceArn(v string) *ListPermissionSetsProvisionedToAccountInput

SetInstanceArn sets the InstanceArn field's value.

func (*ListPermissionSetsProvisionedToAccountInput) SetMaxResults 

func (s *ListPermissionSetsProvisionedToAccountInput) SetMaxResults(v int64) *ListPermissionSetsProvisionedToAccountInput

SetMaxResults sets the MaxResults field's value.

func (*ListPermissionSetsProvisionedToAccountInput) SetNextToken 

func (s *ListPermissionSetsProvisionedToAccountInput) SetNextToken(v string) *ListPermissionSetsProvisionedToAccountInput

SetNextToken sets the NextToken field's value.

func (*ListPermissionSetsProvisionedToAccountInput) SetProvisioningStatus 

func (s *ListPermissionSetsProvisionedToAccountInput) SetProvisioningStatus(v string) *ListPermissionSetsProvisionedToAccountInput

SetProvisioningStatus sets the ProvisioningStatus field's value.

func (ListPermissionSetsProvisionedToAccountInput) String 

func (s ListPermissionSetsProvisionedToAccountInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListPermissionSetsProvisionedToAccountInput) Validate 

func (s *ListPermissionSetsProvisionedToAccountInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListPermissionSetsProvisionedToAccountOutput 

type ListPermissionSetsProvisionedToAccountOutput struct {

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`

	// Defines the level of access that an AWS account has.
	PermissionSets []*string `type:"list"`
	// contains filtered or unexported fields
}

func (ListPermissionSetsProvisionedToAccountOutput) GoString 

func (s ListPermissionSetsProvisionedToAccountOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListPermissionSetsProvisionedToAccountOutput) SetNextToken 

func (s *ListPermissionSetsProvisionedToAccountOutput) SetNextToken(v string) *ListPermissionSetsProvisionedToAccountOutput

SetNextToken sets the NextToken field's value.

func (*ListPermissionSetsProvisionedToAccountOutput) SetPermissionSets 

func (s *ListPermissionSetsProvisionedToAccountOutput) SetPermissionSets(v []*string) *ListPermissionSetsProvisionedToAccountOutput

SetPermissionSets sets the PermissionSets field's value.

func (ListPermissionSetsProvisionedToAccountOutput) String 

func (s ListPermissionSetsProvisionedToAccountOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ListTagsForResourceInput 

type ListTagsForResourceInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`

	// The ARN of the resource with the tags to be listed.
	//
	// ResourceArn is a required field
	ResourceArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (ListTagsForResourceInput) GoString 

func (s ListTagsForResourceInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListTagsForResourceInput) SetInstanceArn 

func (s *ListTagsForResourceInput) SetInstanceArn(v string) *ListTagsForResourceInput

SetInstanceArn sets the InstanceArn field's value.

func (*ListTagsForResourceInput) SetNextToken 

func (s *ListTagsForResourceInput) SetNextToken(v string) *ListTagsForResourceInput

SetNextToken sets the NextToken field's value.

func (*ListTagsForResourceInput) SetResourceArn 

func (s *ListTagsForResourceInput) SetResourceArn(v string) *ListTagsForResourceInput

SetResourceArn sets the ResourceArn field's value.

func (ListTagsForResourceInput) String 

func (s ListTagsForResourceInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListTagsForResourceInput) Validate 

func (s *ListTagsForResourceInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ListTagsForResourceOutput 

type ListTagsForResourceOutput struct {

	// The pagination token for the list API. Initially the value is null. Use the
	// output of previous API calls to make subsequent calls.
	NextToken *string `type:"string"`

	// A set of key-value pairs that are used to manage the resource.
	Tags []*Tag `type:"list"`
	// contains filtered or unexported fields
}

func (ListTagsForResourceOutput) GoString 

func (s ListTagsForResourceOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ListTagsForResourceOutput) SetNextToken 

func (s *ListTagsForResourceOutput) SetNextToken(v string) *ListTagsForResourceOutput

SetNextToken sets the NextToken field's value.

func (*ListTagsForResourceOutput) SetTags 

func (s *ListTagsForResourceOutput) SetTags(v []*Tag) *ListTagsForResourceOutput

SetTags sets the Tags field's value.

func (ListTagsForResourceOutput) String 

func (s ListTagsForResourceOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type OperationStatusFilter 

type OperationStatusFilter struct {

	// Filters the list operations result based on the status attribute.
	Status *string `type:"string" enum:"StatusValues"`
	// contains filtered or unexported fields
}

Filters he operation status list based on the passed attribute value.

func (OperationStatusFilter) GoString 

func (s OperationStatusFilter) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*OperationStatusFilter) SetStatus 

func (s *OperationStatusFilter) SetStatus(v string) *OperationStatusFilter

SetStatus sets the Status field's value.

func (OperationStatusFilter) String 

func (s OperationStatusFilter) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type PermissionSet 

type PermissionSet struct {

	// The date that the permission set was created.
	CreatedDate *time.Time `type:"timestamp"`

	// The description of the PermissionSet.
	Description *string `min:"1" type:"string"`

	// The name of the permission set.
	Name *string `min:"1" type:"string"`

	// The ARN of the permission set. For more information about ARNs, see Amazon
	// Resource Names (ARNs) and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	PermissionSetArn *string `min:"10" type:"string"`

	// Used to redirect users within the application during the federation authentication
	// process.
	RelayState *string `min:"1" type:"string"`

	// The length of time that the application user sessions are valid for in the
	// ISO-8601 standard.
	SessionDuration *string `min:"1" type:"string"`
	// contains filtered or unexported fields
}

An entity that contains IAM policies.

func (PermissionSet) GoString 

func (s PermissionSet) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*PermissionSet) SetCreatedDate 

func (s *PermissionSet) SetCreatedDate(v time.Time) *PermissionSet

SetCreatedDate sets the CreatedDate field's value.

func (*PermissionSet) SetDescription 

func (s *PermissionSet) SetDescription(v string) *PermissionSet

SetDescription sets the Description field's value.

func (*PermissionSet) SetName 

func (s *PermissionSet) SetName(v string) *PermissionSet

SetName sets the Name field's value.

func (*PermissionSet) SetPermissionSetArn 

func (s *PermissionSet) SetPermissionSetArn(v string) *PermissionSet

SetPermissionSetArn sets the PermissionSetArn field's value.

func (*PermissionSet) SetRelayState 

func (s *PermissionSet) SetRelayState(v string) *PermissionSet

SetRelayState sets the RelayState field's value.

func (*PermissionSet) SetSessionDuration 

func (s *PermissionSet) SetSessionDuration(v string) *PermissionSet

SetSessionDuration sets the SessionDuration field's value.

func (PermissionSet) String 

func (s PermissionSet) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type PermissionSetProvisioningStatus 

type PermissionSetProvisioningStatus struct {

	// The identifier of the AWS account from which to list the assignments.
	AccountId *string `min:"12" type:"string"`

	// The date that the permission set was created.
	CreatedDate *time.Time `type:"timestamp"`

	// The message that contains an error or exception in case of an operation failure.
	FailureReason *string `type:"string"`

	// The ARN of the permission set that is being provisioned. For more information
	// about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	PermissionSetArn *string `min:"10" type:"string"`

	// The identifier for tracking the request operation that is generated by the
	// universally unique identifier (UUID) workflow.
	RequestId *string `min:"36" type:"string"`

	// The status of the permission set provisioning process.
	Status *string `type:"string" enum:"StatusValues"`
	// contains filtered or unexported fields
}

A structure that is used to provide the status of the provisioning operation for a specified permission set.

func (PermissionSetProvisioningStatus) GoString 

func (s PermissionSetProvisioningStatus) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*PermissionSetProvisioningStatus) SetAccountId 

func (s *PermissionSetProvisioningStatus) SetAccountId(v string) *PermissionSetProvisioningStatus

SetAccountId sets the AccountId field's value.

func (*PermissionSetProvisioningStatus) SetCreatedDate 

func (s *PermissionSetProvisioningStatus) SetCreatedDate(v time.Time) *PermissionSetProvisioningStatus

SetCreatedDate sets the CreatedDate field's value.

func (*PermissionSetProvisioningStatus) SetFailureReason 

func (s *PermissionSetProvisioningStatus) SetFailureReason(v string) *PermissionSetProvisioningStatus

SetFailureReason sets the FailureReason field's value.

func (*PermissionSetProvisioningStatus) SetPermissionSetArn 

func (s *PermissionSetProvisioningStatus) SetPermissionSetArn(v string) *PermissionSetProvisioningStatus

SetPermissionSetArn sets the PermissionSetArn field's value.

func (*PermissionSetProvisioningStatus) SetRequestId 

func (s *PermissionSetProvisioningStatus) SetRequestId(v string) *PermissionSetProvisioningStatus

SetRequestId sets the RequestId field's value.

func (*PermissionSetProvisioningStatus) SetStatus 

func (s *PermissionSetProvisioningStatus) SetStatus(v string) *PermissionSetProvisioningStatus

SetStatus sets the Status field's value.

func (PermissionSetProvisioningStatus) String 

func (s PermissionSetProvisioningStatus) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type PermissionSetProvisioningStatusMetadata 

type PermissionSetProvisioningStatusMetadata struct {

	// The date that the permission set was created.
	CreatedDate *time.Time `type:"timestamp"`

	// The identifier for tracking the request operation that is generated by the
	// universally unique identifier (UUID) workflow.
	RequestId *string `min:"36" type:"string"`

	// The status of the permission set provisioning process.
	Status *string `type:"string" enum:"StatusValues"`
	// contains filtered or unexported fields
}

Provides information about the permission set provisioning status.

func (PermissionSetProvisioningStatusMetadata) GoString 

func (s PermissionSetProvisioningStatusMetadata) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*PermissionSetProvisioningStatusMetadata) SetCreatedDate 

func (s *PermissionSetProvisioningStatusMetadata) SetCreatedDate(v time.Time) *PermissionSetProvisioningStatusMetadata

SetCreatedDate sets the CreatedDate field's value.

func (*PermissionSetProvisioningStatusMetadata) SetRequestId 

func (s *PermissionSetProvisioningStatusMetadata) SetRequestId(v string) *PermissionSetProvisioningStatusMetadata

SetRequestId sets the RequestId field's value.

func (*PermissionSetProvisioningStatusMetadata) SetStatus 

func (s *PermissionSetProvisioningStatusMetadata) SetStatus(v string) *PermissionSetProvisioningStatusMetadata

SetStatus sets the Status field's value.

func (PermissionSetProvisioningStatusMetadata) String 

func (s PermissionSetProvisioningStatusMetadata) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type PermissionsBoundary added in v1.44.57 

type PermissionsBoundary struct {

	// Specifies the name and path of a customer managed policy. You must have an
	// IAM policy that matches the name and path in each AWS account where you want
	// to deploy your permission set.
	CustomerManagedPolicyReference *CustomerManagedPolicyReference `type:"structure"`

	// The AWS managed policy ARN that you want to attach to a permission set as
	// a permissions boundary.
	ManagedPolicyArn *string `min:"20" type:"string"`
	// contains filtered or unexported fields
}

Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary. Specify either CustomerManagedPolicyReference to use the name and path of a customer managed policy, or ManagedPolicyArn to use the ARN of an AWS managed policy. A permissions boundary represents the maximum permissions that any policy can grant your role. For more information, see Permissions boundaries for IAM entities (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html) in the IAM User Guide.

Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see IAM JSON policy evaluation logic (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html) in the IAM User Guide.

func (PermissionsBoundary) GoString added in v1.44.57 

func (s PermissionsBoundary) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*PermissionsBoundary) SetCustomerManagedPolicyReference added in v1.44.57 

func (s *PermissionsBoundary) SetCustomerManagedPolicyReference(v *CustomerManagedPolicyReference) *PermissionsBoundary

SetCustomerManagedPolicyReference sets the CustomerManagedPolicyReference field's value.

func (*PermissionsBoundary) SetManagedPolicyArn added in v1.44.57 

func (s *PermissionsBoundary) SetManagedPolicyArn(v string) *PermissionsBoundary

SetManagedPolicyArn sets the ManagedPolicyArn field's value.

func (PermissionsBoundary) String added in v1.44.57 

func (s PermissionsBoundary) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*PermissionsBoundary) Validate added in v1.44.57 

func (s *PermissionsBoundary) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ProvisionPermissionSetInput 

type ProvisionPermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the permission set.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`

	// TargetID is an AWS account identifier, typically a 10-12 digit string (For
	// example, 123456789012).
	TargetId *string `min:"12" type:"string"`

	// The entity type for which the assignment will be created.
	//
	// TargetType is a required field
	TargetType *string `type:"string" required:"true" enum:"ProvisionTargetType"`
	// contains filtered or unexported fields
}

func (ProvisionPermissionSetInput) GoString 

func (s ProvisionPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ProvisionPermissionSetInput) SetInstanceArn 

func (s *ProvisionPermissionSetInput) SetInstanceArn(v string) *ProvisionPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*ProvisionPermissionSetInput) SetPermissionSetArn 

func (s *ProvisionPermissionSetInput) SetPermissionSetArn(v string) *ProvisionPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (*ProvisionPermissionSetInput) SetTargetId 

func (s *ProvisionPermissionSetInput) SetTargetId(v string) *ProvisionPermissionSetInput

SetTargetId sets the TargetId field's value.

func (*ProvisionPermissionSetInput) SetTargetType 

func (s *ProvisionPermissionSetInput) SetTargetType(v string) *ProvisionPermissionSetInput

SetTargetType sets the TargetType field's value.

func (ProvisionPermissionSetInput) String 

func (s ProvisionPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ProvisionPermissionSetInput) Validate 

func (s *ProvisionPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type ProvisionPermissionSetOutput 

type ProvisionPermissionSetOutput struct {

	// The status object for the permission set provisioning operation.
	PermissionSetProvisioningStatus *PermissionSetProvisioningStatus `type:"structure"`
	// contains filtered or unexported fields
}

func (ProvisionPermissionSetOutput) GoString 

func (s ProvisionPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ProvisionPermissionSetOutput) SetPermissionSetProvisioningStatus 

func (s *ProvisionPermissionSetOutput) SetPermissionSetProvisioningStatus(v *PermissionSetProvisioningStatus) *ProvisionPermissionSetOutput

SetPermissionSetProvisioningStatus sets the PermissionSetProvisioningStatus field's value.

func (ProvisionPermissionSetOutput) String 

func (s ProvisionPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type PutInlinePolicyToPermissionSetInput 

type PutInlinePolicyToPermissionSetInput struct {

	// The inline policy to attach to a PermissionSet.
	//
	// InlinePolicy is a required field
	InlinePolicy *string `min:"1" type:"string" required:"true"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the permission set.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (PutInlinePolicyToPermissionSetInput) GoString 

func (s PutInlinePolicyToPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*PutInlinePolicyToPermissionSetInput) SetInlinePolicy 

func (s *PutInlinePolicyToPermissionSetInput) SetInlinePolicy(v string) *PutInlinePolicyToPermissionSetInput

SetInlinePolicy sets the InlinePolicy field's value.

func (*PutInlinePolicyToPermissionSetInput) SetInstanceArn 

func (s *PutInlinePolicyToPermissionSetInput) SetInstanceArn(v string) *PutInlinePolicyToPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*PutInlinePolicyToPermissionSetInput) SetPermissionSetArn 

func (s *PutInlinePolicyToPermissionSetInput) SetPermissionSetArn(v string) *PutInlinePolicyToPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (PutInlinePolicyToPermissionSetInput) String 

func (s PutInlinePolicyToPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*PutInlinePolicyToPermissionSetInput) Validate 

func (s *PutInlinePolicyToPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type PutInlinePolicyToPermissionSetOutput 

type PutInlinePolicyToPermissionSetOutput struct {
	// contains filtered or unexported fields
}

func (PutInlinePolicyToPermissionSetOutput) GoString 

func (s PutInlinePolicyToPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (PutInlinePolicyToPermissionSetOutput) String 

func (s PutInlinePolicyToPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type PutPermissionsBoundaryToPermissionSetInput added in v1.44.57 

type PutPermissionsBoundaryToPermissionSetInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the PermissionSet.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`

	// The permissions boundary that you want to attach to a PermissionSet.
	//
	// PermissionsBoundary is a required field
	PermissionsBoundary *PermissionsBoundary `type:"structure" required:"true"`
	// contains filtered or unexported fields
}

func (PutPermissionsBoundaryToPermissionSetInput) GoString added in v1.44.57 

func (s PutPermissionsBoundaryToPermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*PutPermissionsBoundaryToPermissionSetInput) SetInstanceArn added in v1.44.57 

func (s *PutPermissionsBoundaryToPermissionSetInput) SetInstanceArn(v string) *PutPermissionsBoundaryToPermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*PutPermissionsBoundaryToPermissionSetInput) SetPermissionSetArn added in v1.44.57 

func (s *PutPermissionsBoundaryToPermissionSetInput) SetPermissionSetArn(v string) *PutPermissionsBoundaryToPermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (*PutPermissionsBoundaryToPermissionSetInput) SetPermissionsBoundary added in v1.44.57 

func (s *PutPermissionsBoundaryToPermissionSetInput) SetPermissionsBoundary(v *PermissionsBoundary) *PutPermissionsBoundaryToPermissionSetInput

SetPermissionsBoundary sets the PermissionsBoundary field's value.

func (PutPermissionsBoundaryToPermissionSetInput) String added in v1.44.57 

func (s PutPermissionsBoundaryToPermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*PutPermissionsBoundaryToPermissionSetInput) Validate added in v1.44.57 

func (s *PutPermissionsBoundaryToPermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type PutPermissionsBoundaryToPermissionSetOutput added in v1.44.57 

type PutPermissionsBoundaryToPermissionSetOutput struct {
	// contains filtered or unexported fields
}

func (PutPermissionsBoundaryToPermissionSetOutput) GoString added in v1.44.57 

func (s PutPermissionsBoundaryToPermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (PutPermissionsBoundaryToPermissionSetOutput) String added in v1.44.57 

func (s PutPermissionsBoundaryToPermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ResourceNotFoundException 

type ResourceNotFoundException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"Message" type:"string"`
	// contains filtered or unexported fields
}

Indicates that a requested resource is not found.

func (*ResourceNotFoundException) Code 

func (s *ResourceNotFoundException) Code() string

Code returns the exception type name.

func (*ResourceNotFoundException) Error 

func (s *ResourceNotFoundException) Error() string

func (ResourceNotFoundException) GoString 

func (s ResourceNotFoundException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ResourceNotFoundException) Message 

func (s *ResourceNotFoundException) Message() string

Message returns the exception's message.

func (*ResourceNotFoundException) OrigErr 

func (s *ResourceNotFoundException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*ResourceNotFoundException) RequestID 

func (s *ResourceNotFoundException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*ResourceNotFoundException) StatusCode 

func (s *ResourceNotFoundException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (ResourceNotFoundException) String 

func (s ResourceNotFoundException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type SSOAdmin 

type SSOAdmin struct {
	*client.Client
}

SSOAdmin provides the API operation methods for making requests to AWS Single Sign-On Admin. See this package's package overview docs for details on the service.

SSOAdmin methods are safe to use concurrently. It is not safe to modify mutate any of the struct's properties though.

func New 

func New(p client.ConfigProvider, cfgs ...*aws.Config) *SSOAdmin

New creates a new instance of the SSOAdmin client with a session. If additional configuration is needed for the client instance use the optional aws.Config parameter to add your extra config.

Example: 

mySession := session.Must(session.NewSession())

// Create a SSOAdmin client from just a session.
svc := ssoadmin.New(mySession)

// Create a SSOAdmin client with additional configuration
svc := ssoadmin.New(mySession, aws.NewConfig().WithRegion("us-west-2"))

func (*SSOAdmin) AttachCustomerManagedPolicyReferenceToPermissionSet added in v1.44.57 

func (c *SSOAdmin) AttachCustomerManagedPolicyReferenceToPermissionSet(input *AttachCustomerManagedPolicyReferenceToPermissionSetInput) (*AttachCustomerManagedPolicyReferenceToPermissionSetOutput, error)

AttachCustomerManagedPolicyReferenceToPermissionSet API operation for AWS Single Sign-On Admin.

Attaches the specified customer managed policy to the specified PermissionSet.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation AttachCustomerManagedPolicyReferenceToPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ServiceQuotaExceededException Indicates that the principal has crossed the permitted number of resources that can be created.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/AttachCustomerManagedPolicyReferenceToPermissionSet

func (*SSOAdmin) AttachCustomerManagedPolicyReferenceToPermissionSetRequest added in v1.44.57 

func (c *SSOAdmin) AttachCustomerManagedPolicyReferenceToPermissionSetRequest(input *AttachCustomerManagedPolicyReferenceToPermissionSetInput) (req *request.Request, output *AttachCustomerManagedPolicyReferenceToPermissionSetOutput)

AttachCustomerManagedPolicyReferenceToPermissionSetRequest generates a "aws/request.Request" representing the client's request for the AttachCustomerManagedPolicyReferenceToPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See AttachCustomerManagedPolicyReferenceToPermissionSet for more information on using the AttachCustomerManagedPolicyReferenceToPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the AttachCustomerManagedPolicyReferenceToPermissionSetRequest method.
req, resp := client.AttachCustomerManagedPolicyReferenceToPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/AttachCustomerManagedPolicyReferenceToPermissionSet

func (*SSOAdmin) AttachCustomerManagedPolicyReferenceToPermissionSetWithContext added in v1.44.57 

func (c *SSOAdmin) AttachCustomerManagedPolicyReferenceToPermissionSetWithContext(ctx aws.Context, input *AttachCustomerManagedPolicyReferenceToPermissionSetInput, opts ...request.Option) (*AttachCustomerManagedPolicyReferenceToPermissionSetOutput, error)

AttachCustomerManagedPolicyReferenceToPermissionSetWithContext is the same as AttachCustomerManagedPolicyReferenceToPermissionSet with the addition of the ability to pass a context and additional request options.

See AttachCustomerManagedPolicyReferenceToPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) AttachManagedPolicyToPermissionSet 

func (c *SSOAdmin) AttachManagedPolicyToPermissionSet(input *AttachManagedPolicyToPermissionSetInput) (*AttachManagedPolicyToPermissionSetOutput, error)

AttachManagedPolicyToPermissionSet API operation for AWS Single Sign-On Admin.

Attaches an AWS managed policy ARN to a permission set.

If the permission set is already referenced by one or more account assignments, you will need to call ProvisionPermissionSet after this operation. Calling ProvisionPermissionSet applies the corresponding IAM policy updates to all assigned accounts.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation AttachManagedPolicyToPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ServiceQuotaExceededException Indicates that the principal has crossed the permitted number of resources that can be created.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/AttachManagedPolicyToPermissionSet

func (*SSOAdmin) AttachManagedPolicyToPermissionSetRequest 

func (c *SSOAdmin) AttachManagedPolicyToPermissionSetRequest(input *AttachManagedPolicyToPermissionSetInput) (req *request.Request, output *AttachManagedPolicyToPermissionSetOutput)

AttachManagedPolicyToPermissionSetRequest generates a "aws/request.Request" representing the client's request for the AttachManagedPolicyToPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See AttachManagedPolicyToPermissionSet for more information on using the AttachManagedPolicyToPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the AttachManagedPolicyToPermissionSetRequest method.
req, resp := client.AttachManagedPolicyToPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/AttachManagedPolicyToPermissionSet

func (*SSOAdmin) AttachManagedPolicyToPermissionSetWithContext 

func (c *SSOAdmin) AttachManagedPolicyToPermissionSetWithContext(ctx aws.Context, input *AttachManagedPolicyToPermissionSetInput, opts ...request.Option) (*AttachManagedPolicyToPermissionSetOutput, error)

AttachManagedPolicyToPermissionSetWithContext is the same as AttachManagedPolicyToPermissionSet with the addition of the ability to pass a context and additional request options.

See AttachManagedPolicyToPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) CreateAccountAssignment 

func (c *SSOAdmin) CreateAccountAssignment(input *CreateAccountAssignmentInput) (*CreateAccountAssignmentOutput, error)

CreateAccountAssignment API operation for AWS Single Sign-On Admin.

Assigns access to a principal for a specified AWS account using a specified permission set.

The term principal here refers to a user or group that is defined in IAM Identity Center.

As part of a successful CreateAccountAssignment call, the specified permission set will automatically be provisioned to the account in the form of an IAM policy. That policy is attached to the IAM role created in IAM Identity Center. If the permission set is subsequently updated, the corresponding IAM policies attached to roles in your accounts will not be updated automatically. In this case, you must call ProvisionPermissionSet to make these updates.

After a successful response, call DescribeAccountAssignmentCreationStatus to describe the status of an assignment creation request.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation CreateAccountAssignment for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ServiceQuotaExceededException Indicates that the principal has crossed the permitted number of resources that can be created.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/CreateAccountAssignment

func (*SSOAdmin) CreateAccountAssignmentRequest 

func (c *SSOAdmin) CreateAccountAssignmentRequest(input *CreateAccountAssignmentInput) (req *request.Request, output *CreateAccountAssignmentOutput)

CreateAccountAssignmentRequest generates a "aws/request.Request" representing the client's request for the CreateAccountAssignment operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See CreateAccountAssignment for more information on using the CreateAccountAssignment API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the CreateAccountAssignmentRequest method.
req, resp := client.CreateAccountAssignmentRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/CreateAccountAssignment

func (*SSOAdmin) CreateAccountAssignmentWithContext 

func (c *SSOAdmin) CreateAccountAssignmentWithContext(ctx aws.Context, input *CreateAccountAssignmentInput, opts ...request.Option) (*CreateAccountAssignmentOutput, error)

CreateAccountAssignmentWithContext is the same as CreateAccountAssignment with the addition of the ability to pass a context and additional request options.

See CreateAccountAssignment for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) CreateInstanceAccessControlAttributeConfiguration added in v1.35.34 

func (c *SSOAdmin) CreateInstanceAccessControlAttributeConfiguration(input *CreateInstanceAccessControlAttributeConfigurationInput) (*CreateInstanceAccessControlAttributeConfigurationOutput, error)

CreateInstanceAccessControlAttributeConfiguration API operation for AWS Single Sign-On Admin.

Enables the attributes-based access control (ABAC) feature for the specified IAM Identity Center instance. You can also specify new attributes to add to your ABAC configuration during the enabling process. For more information about ABAC, see Attribute-Based Access Control (/singlesignon/latest/userguide/abac.html) in the IAM Identity Center User Guide.

After a successful response, call DescribeInstanceAccessControlAttributeConfiguration to validate that InstanceAccessControlAttributeConfiguration was created.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation CreateInstanceAccessControlAttributeConfiguration for usage and error information.

Returned Error Types:

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/CreateInstanceAccessControlAttributeConfiguration

func (*SSOAdmin) CreateInstanceAccessControlAttributeConfigurationRequest added in v1.35.34 

func (c *SSOAdmin) CreateInstanceAccessControlAttributeConfigurationRequest(input *CreateInstanceAccessControlAttributeConfigurationInput) (req *request.Request, output *CreateInstanceAccessControlAttributeConfigurationOutput)

CreateInstanceAccessControlAttributeConfigurationRequest generates a "aws/request.Request" representing the client's request for the CreateInstanceAccessControlAttributeConfiguration operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See CreateInstanceAccessControlAttributeConfiguration for more information on using the CreateInstanceAccessControlAttributeConfiguration API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the CreateInstanceAccessControlAttributeConfigurationRequest method.
req, resp := client.CreateInstanceAccessControlAttributeConfigurationRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/CreateInstanceAccessControlAttributeConfiguration

func (*SSOAdmin) CreateInstanceAccessControlAttributeConfigurationWithContext added in v1.35.34 

func (c *SSOAdmin) CreateInstanceAccessControlAttributeConfigurationWithContext(ctx aws.Context, input *CreateInstanceAccessControlAttributeConfigurationInput, opts ...request.Option) (*CreateInstanceAccessControlAttributeConfigurationOutput, error)

CreateInstanceAccessControlAttributeConfigurationWithContext is the same as CreateInstanceAccessControlAttributeConfiguration with the addition of the ability to pass a context and additional request options.

See CreateInstanceAccessControlAttributeConfiguration for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) CreatePermissionSet 

func (c *SSOAdmin) CreatePermissionSet(input *CreatePermissionSetInput) (*CreatePermissionSetOutput, error)

CreatePermissionSet API operation for AWS Single Sign-On Admin.

Creates a permission set within a specified IAM Identity Center instance.

To grant users and groups access to AWS account resources, use CreateAccountAssignment .

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation CreatePermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ServiceQuotaExceededException Indicates that the principal has crossed the permitted number of resources that can be created.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/CreatePermissionSet

func (*SSOAdmin) CreatePermissionSetRequest 

func (c *SSOAdmin) CreatePermissionSetRequest(input *CreatePermissionSetInput) (req *request.Request, output *CreatePermissionSetOutput)

CreatePermissionSetRequest generates a "aws/request.Request" representing the client's request for the CreatePermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See CreatePermissionSet for more information on using the CreatePermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the CreatePermissionSetRequest method.
req, resp := client.CreatePermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/CreatePermissionSet

func (*SSOAdmin) CreatePermissionSetWithContext 

func (c *SSOAdmin) CreatePermissionSetWithContext(ctx aws.Context, input *CreatePermissionSetInput, opts ...request.Option) (*CreatePermissionSetOutput, error)

CreatePermissionSetWithContext is the same as CreatePermissionSet with the addition of the ability to pass a context and additional request options.

See CreatePermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DeleteAccountAssignment 

func (c *SSOAdmin) DeleteAccountAssignment(input *DeleteAccountAssignmentInput) (*DeleteAccountAssignmentOutput, error)

DeleteAccountAssignment API operation for AWS Single Sign-On Admin.

Deletes a principal's access from a specified AWS account using a specified permission set.

After a successful response, call DescribeAccountAssignmentCreationStatus to describe the status of an assignment deletion request.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DeleteAccountAssignment for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeleteAccountAssignment

func (*SSOAdmin) DeleteAccountAssignmentRequest 

func (c *SSOAdmin) DeleteAccountAssignmentRequest(input *DeleteAccountAssignmentInput) (req *request.Request, output *DeleteAccountAssignmentOutput)

DeleteAccountAssignmentRequest generates a "aws/request.Request" representing the client's request for the DeleteAccountAssignment operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DeleteAccountAssignment for more information on using the DeleteAccountAssignment API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DeleteAccountAssignmentRequest method.
req, resp := client.DeleteAccountAssignmentRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeleteAccountAssignment

func (*SSOAdmin) DeleteAccountAssignmentWithContext 

func (c *SSOAdmin) DeleteAccountAssignmentWithContext(ctx aws.Context, input *DeleteAccountAssignmentInput, opts ...request.Option) (*DeleteAccountAssignmentOutput, error)

DeleteAccountAssignmentWithContext is the same as DeleteAccountAssignment with the addition of the ability to pass a context and additional request options.

See DeleteAccountAssignment for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DeleteInlinePolicyFromPermissionSet 

func (c *SSOAdmin) DeleteInlinePolicyFromPermissionSet(input *DeleteInlinePolicyFromPermissionSetInput) (*DeleteInlinePolicyFromPermissionSetOutput, error)

DeleteInlinePolicyFromPermissionSet API operation for AWS Single Sign-On Admin.

Deletes the inline policy from a specified permission set.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DeleteInlinePolicyFromPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeleteInlinePolicyFromPermissionSet

func (*SSOAdmin) DeleteInlinePolicyFromPermissionSetRequest 

func (c *SSOAdmin) DeleteInlinePolicyFromPermissionSetRequest(input *DeleteInlinePolicyFromPermissionSetInput) (req *request.Request, output *DeleteInlinePolicyFromPermissionSetOutput)

DeleteInlinePolicyFromPermissionSetRequest generates a "aws/request.Request" representing the client's request for the DeleteInlinePolicyFromPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DeleteInlinePolicyFromPermissionSet for more information on using the DeleteInlinePolicyFromPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DeleteInlinePolicyFromPermissionSetRequest method.
req, resp := client.DeleteInlinePolicyFromPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeleteInlinePolicyFromPermissionSet

func (*SSOAdmin) DeleteInlinePolicyFromPermissionSetWithContext 

func (c *SSOAdmin) DeleteInlinePolicyFromPermissionSetWithContext(ctx aws.Context, input *DeleteInlinePolicyFromPermissionSetInput, opts ...request.Option) (*DeleteInlinePolicyFromPermissionSetOutput, error)

DeleteInlinePolicyFromPermissionSetWithContext is the same as DeleteInlinePolicyFromPermissionSet with the addition of the ability to pass a context and additional request options.

See DeleteInlinePolicyFromPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DeleteInstanceAccessControlAttributeConfiguration added in v1.35.34 

func (c *SSOAdmin) DeleteInstanceAccessControlAttributeConfiguration(input *DeleteInstanceAccessControlAttributeConfigurationInput) (*DeleteInstanceAccessControlAttributeConfigurationOutput, error)

DeleteInstanceAccessControlAttributeConfiguration API operation for AWS Single Sign-On Admin.

Disables the attributes-based access control (ABAC) feature for the specified IAM Identity Center instance and deletes all of the attribute mappings that have been configured. Once deleted, any attributes that are received from an identity source and any custom attributes you have previously configured will not be passed. For more information about ABAC, see Attribute-Based Access Control (/singlesignon/latest/userguide/abac.html) in the IAM Identity Center User Guide.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DeleteInstanceAccessControlAttributeConfiguration for usage and error information.

Returned Error Types:

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeleteInstanceAccessControlAttributeConfiguration

func (*SSOAdmin) DeleteInstanceAccessControlAttributeConfigurationRequest added in v1.35.34 

func (c *SSOAdmin) DeleteInstanceAccessControlAttributeConfigurationRequest(input *DeleteInstanceAccessControlAttributeConfigurationInput) (req *request.Request, output *DeleteInstanceAccessControlAttributeConfigurationOutput)

DeleteInstanceAccessControlAttributeConfigurationRequest generates a "aws/request.Request" representing the client's request for the DeleteInstanceAccessControlAttributeConfiguration operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DeleteInstanceAccessControlAttributeConfiguration for more information on using the DeleteInstanceAccessControlAttributeConfiguration API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DeleteInstanceAccessControlAttributeConfigurationRequest method.
req, resp := client.DeleteInstanceAccessControlAttributeConfigurationRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeleteInstanceAccessControlAttributeConfiguration

func (*SSOAdmin) DeleteInstanceAccessControlAttributeConfigurationWithContext added in v1.35.34 

func (c *SSOAdmin) DeleteInstanceAccessControlAttributeConfigurationWithContext(ctx aws.Context, input *DeleteInstanceAccessControlAttributeConfigurationInput, opts ...request.Option) (*DeleteInstanceAccessControlAttributeConfigurationOutput, error)

DeleteInstanceAccessControlAttributeConfigurationWithContext is the same as DeleteInstanceAccessControlAttributeConfiguration with the addition of the ability to pass a context and additional request options.

See DeleteInstanceAccessControlAttributeConfiguration for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DeletePermissionSet 

func (c *SSOAdmin) DeletePermissionSet(input *DeletePermissionSetInput) (*DeletePermissionSetOutput, error)

DeletePermissionSet API operation for AWS Single Sign-On Admin.

Deletes the specified permission set.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DeletePermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeletePermissionSet

func (*SSOAdmin) DeletePermissionSetRequest 

func (c *SSOAdmin) DeletePermissionSetRequest(input *DeletePermissionSetInput) (req *request.Request, output *DeletePermissionSetOutput)

DeletePermissionSetRequest generates a "aws/request.Request" representing the client's request for the DeletePermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DeletePermissionSet for more information on using the DeletePermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DeletePermissionSetRequest method.
req, resp := client.DeletePermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeletePermissionSet

func (*SSOAdmin) DeletePermissionSetWithContext 

func (c *SSOAdmin) DeletePermissionSetWithContext(ctx aws.Context, input *DeletePermissionSetInput, opts ...request.Option) (*DeletePermissionSetOutput, error)

DeletePermissionSetWithContext is the same as DeletePermissionSet with the addition of the ability to pass a context and additional request options.

See DeletePermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DeletePermissionsBoundaryFromPermissionSet added in v1.44.57 

func (c *SSOAdmin) DeletePermissionsBoundaryFromPermissionSet(input *DeletePermissionsBoundaryFromPermissionSetInput) (*DeletePermissionsBoundaryFromPermissionSetOutput, error)

DeletePermissionsBoundaryFromPermissionSet API operation for AWS Single Sign-On Admin.

Deletes the permissions boundary from a specified PermissionSet.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DeletePermissionsBoundaryFromPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeletePermissionsBoundaryFromPermissionSet

func (*SSOAdmin) DeletePermissionsBoundaryFromPermissionSetRequest added in v1.44.57 

func (c *SSOAdmin) DeletePermissionsBoundaryFromPermissionSetRequest(input *DeletePermissionsBoundaryFromPermissionSetInput) (req *request.Request, output *DeletePermissionsBoundaryFromPermissionSetOutput)

DeletePermissionsBoundaryFromPermissionSetRequest generates a "aws/request.Request" representing the client's request for the DeletePermissionsBoundaryFromPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DeletePermissionsBoundaryFromPermissionSet for more information on using the DeletePermissionsBoundaryFromPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DeletePermissionsBoundaryFromPermissionSetRequest method.
req, resp := client.DeletePermissionsBoundaryFromPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeletePermissionsBoundaryFromPermissionSet

func (*SSOAdmin) DeletePermissionsBoundaryFromPermissionSetWithContext added in v1.44.57 

func (c *SSOAdmin) DeletePermissionsBoundaryFromPermissionSetWithContext(ctx aws.Context, input *DeletePermissionsBoundaryFromPermissionSetInput, opts ...request.Option) (*DeletePermissionsBoundaryFromPermissionSetOutput, error)

DeletePermissionsBoundaryFromPermissionSetWithContext is the same as DeletePermissionsBoundaryFromPermissionSet with the addition of the ability to pass a context and additional request options.

See DeletePermissionsBoundaryFromPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DescribeAccountAssignmentCreationStatus 

func (c *SSOAdmin) DescribeAccountAssignmentCreationStatus(input *DescribeAccountAssignmentCreationStatusInput) (*DescribeAccountAssignmentCreationStatusOutput, error)

DescribeAccountAssignmentCreationStatus API operation for AWS Single Sign-On Admin.

Describes the status of the assignment creation request.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DescribeAccountAssignmentCreationStatus for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribeAccountAssignmentCreationStatus

func (*SSOAdmin) DescribeAccountAssignmentCreationStatusRequest 

func (c *SSOAdmin) DescribeAccountAssignmentCreationStatusRequest(input *DescribeAccountAssignmentCreationStatusInput) (req *request.Request, output *DescribeAccountAssignmentCreationStatusOutput)

DescribeAccountAssignmentCreationStatusRequest generates a "aws/request.Request" representing the client's request for the DescribeAccountAssignmentCreationStatus operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DescribeAccountAssignmentCreationStatus for more information on using the DescribeAccountAssignmentCreationStatus API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DescribeAccountAssignmentCreationStatusRequest method.
req, resp := client.DescribeAccountAssignmentCreationStatusRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribeAccountAssignmentCreationStatus

func (*SSOAdmin) DescribeAccountAssignmentCreationStatusWithContext 

func (c *SSOAdmin) DescribeAccountAssignmentCreationStatusWithContext(ctx aws.Context, input *DescribeAccountAssignmentCreationStatusInput, opts ...request.Option) (*DescribeAccountAssignmentCreationStatusOutput, error)

DescribeAccountAssignmentCreationStatusWithContext is the same as DescribeAccountAssignmentCreationStatus with the addition of the ability to pass a context and additional request options.

See DescribeAccountAssignmentCreationStatus for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DescribeAccountAssignmentDeletionStatus 

func (c *SSOAdmin) DescribeAccountAssignmentDeletionStatus(input *DescribeAccountAssignmentDeletionStatusInput) (*DescribeAccountAssignmentDeletionStatusOutput, error)

DescribeAccountAssignmentDeletionStatus API operation for AWS Single Sign-On Admin.

Describes the status of the assignment deletion request.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DescribeAccountAssignmentDeletionStatus for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribeAccountAssignmentDeletionStatus

func (*SSOAdmin) DescribeAccountAssignmentDeletionStatusRequest 

func (c *SSOAdmin) DescribeAccountAssignmentDeletionStatusRequest(input *DescribeAccountAssignmentDeletionStatusInput) (req *request.Request, output *DescribeAccountAssignmentDeletionStatusOutput)

DescribeAccountAssignmentDeletionStatusRequest generates a "aws/request.Request" representing the client's request for the DescribeAccountAssignmentDeletionStatus operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DescribeAccountAssignmentDeletionStatus for more information on using the DescribeAccountAssignmentDeletionStatus API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DescribeAccountAssignmentDeletionStatusRequest method.
req, resp := client.DescribeAccountAssignmentDeletionStatusRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribeAccountAssignmentDeletionStatus

func (*SSOAdmin) DescribeAccountAssignmentDeletionStatusWithContext 

func (c *SSOAdmin) DescribeAccountAssignmentDeletionStatusWithContext(ctx aws.Context, input *DescribeAccountAssignmentDeletionStatusInput, opts ...request.Option) (*DescribeAccountAssignmentDeletionStatusOutput, error)

DescribeAccountAssignmentDeletionStatusWithContext is the same as DescribeAccountAssignmentDeletionStatus with the addition of the ability to pass a context and additional request options.

See DescribeAccountAssignmentDeletionStatus for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DescribeInstanceAccessControlAttributeConfiguration added in v1.35.34 

func (c *SSOAdmin) DescribeInstanceAccessControlAttributeConfiguration(input *DescribeInstanceAccessControlAttributeConfigurationInput) (*DescribeInstanceAccessControlAttributeConfigurationOutput, error)

DescribeInstanceAccessControlAttributeConfiguration API operation for AWS Single Sign-On Admin.

Returns the list of IAM Identity Center identity store attributes that have been configured to work with attributes-based access control (ABAC) for the specified IAM Identity Center instance. This will not return attributes configured and sent by an external identity provider. For more information about ABAC, see Attribute-Based Access Control (/singlesignon/latest/userguide/abac.html) in the IAM Identity Center User Guide.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DescribeInstanceAccessControlAttributeConfiguration for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribeInstanceAccessControlAttributeConfiguration

func (*SSOAdmin) DescribeInstanceAccessControlAttributeConfigurationRequest added in v1.35.34 

func (c *SSOAdmin) DescribeInstanceAccessControlAttributeConfigurationRequest(input *DescribeInstanceAccessControlAttributeConfigurationInput) (req *request.Request, output *DescribeInstanceAccessControlAttributeConfigurationOutput)

DescribeInstanceAccessControlAttributeConfigurationRequest generates a "aws/request.Request" representing the client's request for the DescribeInstanceAccessControlAttributeConfiguration operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DescribeInstanceAccessControlAttributeConfiguration for more information on using the DescribeInstanceAccessControlAttributeConfiguration API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DescribeInstanceAccessControlAttributeConfigurationRequest method.
req, resp := client.DescribeInstanceAccessControlAttributeConfigurationRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribeInstanceAccessControlAttributeConfiguration

func (*SSOAdmin) DescribeInstanceAccessControlAttributeConfigurationWithContext added in v1.35.34 

func (c *SSOAdmin) DescribeInstanceAccessControlAttributeConfigurationWithContext(ctx aws.Context, input *DescribeInstanceAccessControlAttributeConfigurationInput, opts ...request.Option) (*DescribeInstanceAccessControlAttributeConfigurationOutput, error)

DescribeInstanceAccessControlAttributeConfigurationWithContext is the same as DescribeInstanceAccessControlAttributeConfiguration with the addition of the ability to pass a context and additional request options.

See DescribeInstanceAccessControlAttributeConfiguration for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DescribePermissionSet 

func (c *SSOAdmin) DescribePermissionSet(input *DescribePermissionSetInput) (*DescribePermissionSetOutput, error)

DescribePermissionSet API operation for AWS Single Sign-On Admin.

Gets the details of the permission set.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DescribePermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribePermissionSet

func (*SSOAdmin) DescribePermissionSetProvisioningStatus 

func (c *SSOAdmin) DescribePermissionSetProvisioningStatus(input *DescribePermissionSetProvisioningStatusInput) (*DescribePermissionSetProvisioningStatusOutput, error)

DescribePermissionSetProvisioningStatus API operation for AWS Single Sign-On Admin.

Describes the status for the given permission set provisioning request.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DescribePermissionSetProvisioningStatus for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribePermissionSetProvisioningStatus

func (*SSOAdmin) DescribePermissionSetProvisioningStatusRequest 

func (c *SSOAdmin) DescribePermissionSetProvisioningStatusRequest(input *DescribePermissionSetProvisioningStatusInput) (req *request.Request, output *DescribePermissionSetProvisioningStatusOutput)

DescribePermissionSetProvisioningStatusRequest generates a "aws/request.Request" representing the client's request for the DescribePermissionSetProvisioningStatus operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DescribePermissionSetProvisioningStatus for more information on using the DescribePermissionSetProvisioningStatus API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DescribePermissionSetProvisioningStatusRequest method.
req, resp := client.DescribePermissionSetProvisioningStatusRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribePermissionSetProvisioningStatus

func (*SSOAdmin) DescribePermissionSetProvisioningStatusWithContext 

func (c *SSOAdmin) DescribePermissionSetProvisioningStatusWithContext(ctx aws.Context, input *DescribePermissionSetProvisioningStatusInput, opts ...request.Option) (*DescribePermissionSetProvisioningStatusOutput, error)

DescribePermissionSetProvisioningStatusWithContext is the same as DescribePermissionSetProvisioningStatus with the addition of the ability to pass a context and additional request options.

See DescribePermissionSetProvisioningStatus for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DescribePermissionSetRequest 

func (c *SSOAdmin) DescribePermissionSetRequest(input *DescribePermissionSetInput) (req *request.Request, output *DescribePermissionSetOutput)

DescribePermissionSetRequest generates a "aws/request.Request" representing the client's request for the DescribePermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DescribePermissionSet for more information on using the DescribePermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DescribePermissionSetRequest method.
req, resp := client.DescribePermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribePermissionSet

func (*SSOAdmin) DescribePermissionSetWithContext 

func (c *SSOAdmin) DescribePermissionSetWithContext(ctx aws.Context, input *DescribePermissionSetInput, opts ...request.Option) (*DescribePermissionSetOutput, error)

DescribePermissionSetWithContext is the same as DescribePermissionSet with the addition of the ability to pass a context and additional request options.

See DescribePermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DetachCustomerManagedPolicyReferenceFromPermissionSet added in v1.44.57 

func (c *SSOAdmin) DetachCustomerManagedPolicyReferenceFromPermissionSet(input *DetachCustomerManagedPolicyReferenceFromPermissionSetInput) (*DetachCustomerManagedPolicyReferenceFromPermissionSetOutput, error)

DetachCustomerManagedPolicyReferenceFromPermissionSet API operation for AWS Single Sign-On Admin.

Detaches the specified customer managed policy from the specified PermissionSet.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DetachCustomerManagedPolicyReferenceFromPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DetachCustomerManagedPolicyReferenceFromPermissionSet

func (*SSOAdmin) DetachCustomerManagedPolicyReferenceFromPermissionSetRequest added in v1.44.57 

func (c *SSOAdmin) DetachCustomerManagedPolicyReferenceFromPermissionSetRequest(input *DetachCustomerManagedPolicyReferenceFromPermissionSetInput) (req *request.Request, output *DetachCustomerManagedPolicyReferenceFromPermissionSetOutput)

DetachCustomerManagedPolicyReferenceFromPermissionSetRequest generates a "aws/request.Request" representing the client's request for the DetachCustomerManagedPolicyReferenceFromPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DetachCustomerManagedPolicyReferenceFromPermissionSet for more information on using the DetachCustomerManagedPolicyReferenceFromPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DetachCustomerManagedPolicyReferenceFromPermissionSetRequest method.
req, resp := client.DetachCustomerManagedPolicyReferenceFromPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DetachCustomerManagedPolicyReferenceFromPermissionSet

func (*SSOAdmin) DetachCustomerManagedPolicyReferenceFromPermissionSetWithContext added in v1.44.57 

func (c *SSOAdmin) DetachCustomerManagedPolicyReferenceFromPermissionSetWithContext(ctx aws.Context, input *DetachCustomerManagedPolicyReferenceFromPermissionSetInput, opts ...request.Option) (*DetachCustomerManagedPolicyReferenceFromPermissionSetOutput, error)

DetachCustomerManagedPolicyReferenceFromPermissionSetWithContext is the same as DetachCustomerManagedPolicyReferenceFromPermissionSet with the addition of the ability to pass a context and additional request options.

See DetachCustomerManagedPolicyReferenceFromPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) DetachManagedPolicyFromPermissionSet 

func (c *SSOAdmin) DetachManagedPolicyFromPermissionSet(input *DetachManagedPolicyFromPermissionSetInput) (*DetachManagedPolicyFromPermissionSetOutput, error)

DetachManagedPolicyFromPermissionSet API operation for AWS Single Sign-On Admin.

Detaches the attached AWS managed policy ARN from the specified permission set.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation DetachManagedPolicyFromPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DetachManagedPolicyFromPermissionSet

func (*SSOAdmin) DetachManagedPolicyFromPermissionSetRequest 

func (c *SSOAdmin) DetachManagedPolicyFromPermissionSetRequest(input *DetachManagedPolicyFromPermissionSetInput) (req *request.Request, output *DetachManagedPolicyFromPermissionSetOutput)

DetachManagedPolicyFromPermissionSetRequest generates a "aws/request.Request" representing the client's request for the DetachManagedPolicyFromPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See DetachManagedPolicyFromPermissionSet for more information on using the DetachManagedPolicyFromPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the DetachManagedPolicyFromPermissionSetRequest method.
req, resp := client.DetachManagedPolicyFromPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DetachManagedPolicyFromPermissionSet

func (*SSOAdmin) DetachManagedPolicyFromPermissionSetWithContext 

func (c *SSOAdmin) DetachManagedPolicyFromPermissionSetWithContext(ctx aws.Context, input *DetachManagedPolicyFromPermissionSetInput, opts ...request.Option) (*DetachManagedPolicyFromPermissionSetOutput, error)

DetachManagedPolicyFromPermissionSetWithContext is the same as DetachManagedPolicyFromPermissionSet with the addition of the ability to pass a context and additional request options.

See DetachManagedPolicyFromPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) GetInlinePolicyForPermissionSet 

func (c *SSOAdmin) GetInlinePolicyForPermissionSet(input *GetInlinePolicyForPermissionSetInput) (*GetInlinePolicyForPermissionSetOutput, error)

GetInlinePolicyForPermissionSet API operation for AWS Single Sign-On Admin.

Obtains the inline policy assigned to the permission set.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation GetInlinePolicyForPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/GetInlinePolicyForPermissionSet

func (*SSOAdmin) GetInlinePolicyForPermissionSetRequest 

func (c *SSOAdmin) GetInlinePolicyForPermissionSetRequest(input *GetInlinePolicyForPermissionSetInput) (req *request.Request, output *GetInlinePolicyForPermissionSetOutput)

GetInlinePolicyForPermissionSetRequest generates a "aws/request.Request" representing the client's request for the GetInlinePolicyForPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See GetInlinePolicyForPermissionSet for more information on using the GetInlinePolicyForPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the GetInlinePolicyForPermissionSetRequest method.
req, resp := client.GetInlinePolicyForPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/GetInlinePolicyForPermissionSet

func (*SSOAdmin) GetInlinePolicyForPermissionSetWithContext 

func (c *SSOAdmin) GetInlinePolicyForPermissionSetWithContext(ctx aws.Context, input *GetInlinePolicyForPermissionSetInput, opts ...request.Option) (*GetInlinePolicyForPermissionSetOutput, error)

GetInlinePolicyForPermissionSetWithContext is the same as GetInlinePolicyForPermissionSet with the addition of the ability to pass a context and additional request options.

See GetInlinePolicyForPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) GetPermissionsBoundaryForPermissionSet added in v1.44.57 

func (c *SSOAdmin) GetPermissionsBoundaryForPermissionSet(input *GetPermissionsBoundaryForPermissionSetInput) (*GetPermissionsBoundaryForPermissionSetOutput, error)

GetPermissionsBoundaryForPermissionSet API operation for AWS Single Sign-On Admin.

Obtains the permissions boundary for a specified PermissionSet.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation GetPermissionsBoundaryForPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/GetPermissionsBoundaryForPermissionSet

func (*SSOAdmin) GetPermissionsBoundaryForPermissionSetRequest added in v1.44.57 

func (c *SSOAdmin) GetPermissionsBoundaryForPermissionSetRequest(input *GetPermissionsBoundaryForPermissionSetInput) (req *request.Request, output *GetPermissionsBoundaryForPermissionSetOutput)

GetPermissionsBoundaryForPermissionSetRequest generates a "aws/request.Request" representing the client's request for the GetPermissionsBoundaryForPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See GetPermissionsBoundaryForPermissionSet for more information on using the GetPermissionsBoundaryForPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the GetPermissionsBoundaryForPermissionSetRequest method.
req, resp := client.GetPermissionsBoundaryForPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/GetPermissionsBoundaryForPermissionSet

func (*SSOAdmin) GetPermissionsBoundaryForPermissionSetWithContext added in v1.44.57 

func (c *SSOAdmin) GetPermissionsBoundaryForPermissionSetWithContext(ctx aws.Context, input *GetPermissionsBoundaryForPermissionSetInput, opts ...request.Option) (*GetPermissionsBoundaryForPermissionSetOutput, error)

GetPermissionsBoundaryForPermissionSetWithContext is the same as GetPermissionsBoundaryForPermissionSet with the addition of the ability to pass a context and additional request options.

See GetPermissionsBoundaryForPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListAccountAssignmentCreationStatus 

func (c *SSOAdmin) ListAccountAssignmentCreationStatus(input *ListAccountAssignmentCreationStatusInput) (*ListAccountAssignmentCreationStatusOutput, error)

ListAccountAssignmentCreationStatus API operation for AWS Single Sign-On Admin.

Lists the status of the AWS account assignment creation requests for a specified IAM Identity Center instance.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ListAccountAssignmentCreationStatus for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignmentCreationStatus

func (*SSOAdmin) ListAccountAssignmentCreationStatusPages 

func (c *SSOAdmin) ListAccountAssignmentCreationStatusPages(input *ListAccountAssignmentCreationStatusInput, fn func(*ListAccountAssignmentCreationStatusOutput, bool) bool) error

ListAccountAssignmentCreationStatusPages iterates over the pages of a ListAccountAssignmentCreationStatus operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListAccountAssignmentCreationStatus method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListAccountAssignmentCreationStatus operation.
pageNum := 0
err := client.ListAccountAssignmentCreationStatusPages(params,
    func(page *ssoadmin.ListAccountAssignmentCreationStatusOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*SSOAdmin) ListAccountAssignmentCreationStatusPagesWithContext 

func (c *SSOAdmin) ListAccountAssignmentCreationStatusPagesWithContext(ctx aws.Context, input *ListAccountAssignmentCreationStatusInput, fn func(*ListAccountAssignmentCreationStatusOutput, bool) bool, opts ...request.Option) error

ListAccountAssignmentCreationStatusPagesWithContext same as ListAccountAssignmentCreationStatusPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListAccountAssignmentCreationStatusRequest 

func (c *SSOAdmin) ListAccountAssignmentCreationStatusRequest(input *ListAccountAssignmentCreationStatusInput) (req *request.Request, output *ListAccountAssignmentCreationStatusOutput)

ListAccountAssignmentCreationStatusRequest generates a "aws/request.Request" representing the client's request for the ListAccountAssignmentCreationStatus operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListAccountAssignmentCreationStatus for more information on using the ListAccountAssignmentCreationStatus API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListAccountAssignmentCreationStatusRequest method.
req, resp := client.ListAccountAssignmentCreationStatusRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignmentCreationStatus

func (*SSOAdmin) ListAccountAssignmentCreationStatusWithContext 

func (c *SSOAdmin) ListAccountAssignmentCreationStatusWithContext(ctx aws.Context, input *ListAccountAssignmentCreationStatusInput, opts ...request.Option) (*ListAccountAssignmentCreationStatusOutput, error)

ListAccountAssignmentCreationStatusWithContext is the same as ListAccountAssignmentCreationStatus with the addition of the ability to pass a context and additional request options.

See ListAccountAssignmentCreationStatus for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListAccountAssignmentDeletionStatus 

func (c *SSOAdmin) ListAccountAssignmentDeletionStatus(input *ListAccountAssignmentDeletionStatusInput) (*ListAccountAssignmentDeletionStatusOutput, error)

ListAccountAssignmentDeletionStatus API operation for AWS Single Sign-On Admin.

Lists the status of the AWS account assignment deletion requests for a specified IAM Identity Center instance.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ListAccountAssignmentDeletionStatus for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignmentDeletionStatus

func (*SSOAdmin) ListAccountAssignmentDeletionStatusPages 

func (c *SSOAdmin) ListAccountAssignmentDeletionStatusPages(input *ListAccountAssignmentDeletionStatusInput, fn func(*ListAccountAssignmentDeletionStatusOutput, bool) bool) error

ListAccountAssignmentDeletionStatusPages iterates over the pages of a ListAccountAssignmentDeletionStatus operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListAccountAssignmentDeletionStatus method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListAccountAssignmentDeletionStatus operation.
pageNum := 0
err := client.ListAccountAssignmentDeletionStatusPages(params,
    func(page *ssoadmin.ListAccountAssignmentDeletionStatusOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*SSOAdmin) ListAccountAssignmentDeletionStatusPagesWithContext 

func (c *SSOAdmin) ListAccountAssignmentDeletionStatusPagesWithContext(ctx aws.Context, input *ListAccountAssignmentDeletionStatusInput, fn func(*ListAccountAssignmentDeletionStatusOutput, bool) bool, opts ...request.Option) error

ListAccountAssignmentDeletionStatusPagesWithContext same as ListAccountAssignmentDeletionStatusPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListAccountAssignmentDeletionStatusRequest 

func (c *SSOAdmin) ListAccountAssignmentDeletionStatusRequest(input *ListAccountAssignmentDeletionStatusInput) (req *request.Request, output *ListAccountAssignmentDeletionStatusOutput)

ListAccountAssignmentDeletionStatusRequest generates a "aws/request.Request" representing the client's request for the ListAccountAssignmentDeletionStatus operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListAccountAssignmentDeletionStatus for more information on using the ListAccountAssignmentDeletionStatus API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListAccountAssignmentDeletionStatusRequest method.
req, resp := client.ListAccountAssignmentDeletionStatusRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignmentDeletionStatus

func (*SSOAdmin) ListAccountAssignmentDeletionStatusWithContext 

func (c *SSOAdmin) ListAccountAssignmentDeletionStatusWithContext(ctx aws.Context, input *ListAccountAssignmentDeletionStatusInput, opts ...request.Option) (*ListAccountAssignmentDeletionStatusOutput, error)

ListAccountAssignmentDeletionStatusWithContext is the same as ListAccountAssignmentDeletionStatus with the addition of the ability to pass a context and additional request options.

See ListAccountAssignmentDeletionStatus for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListAccountAssignments 

func (c *SSOAdmin) ListAccountAssignments(input *ListAccountAssignmentsInput) (*ListAccountAssignmentsOutput, error)

ListAccountAssignments API operation for AWS Single Sign-On Admin.

Lists the assignee of the specified AWS account with the specified permission set.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ListAccountAssignments for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignments

func (*SSOAdmin) ListAccountAssignmentsPages 

func (c *SSOAdmin) ListAccountAssignmentsPages(input *ListAccountAssignmentsInput, fn func(*ListAccountAssignmentsOutput, bool) bool) error

ListAccountAssignmentsPages iterates over the pages of a ListAccountAssignments operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListAccountAssignments method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListAccountAssignments operation.
pageNum := 0
err := client.ListAccountAssignmentsPages(params,
    func(page *ssoadmin.ListAccountAssignmentsOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*SSOAdmin) ListAccountAssignmentsPagesWithContext 

func (c *SSOAdmin) ListAccountAssignmentsPagesWithContext(ctx aws.Context, input *ListAccountAssignmentsInput, fn func(*ListAccountAssignmentsOutput, bool) bool, opts ...request.Option) error

ListAccountAssignmentsPagesWithContext same as ListAccountAssignmentsPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListAccountAssignmentsRequest 

func (c *SSOAdmin) ListAccountAssignmentsRequest(input *ListAccountAssignmentsInput) (req *request.Request, output *ListAccountAssignmentsOutput)

ListAccountAssignmentsRequest generates a "aws/request.Request" representing the client's request for the ListAccountAssignments operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListAccountAssignments for more information on using the ListAccountAssignments API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListAccountAssignmentsRequest method.
req, resp := client.ListAccountAssignmentsRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignments

func (*SSOAdmin) ListAccountAssignmentsWithContext 

func (c *SSOAdmin) ListAccountAssignmentsWithContext(ctx aws.Context, input *ListAccountAssignmentsInput, opts ...request.Option) (*ListAccountAssignmentsOutput, error)

ListAccountAssignmentsWithContext is the same as ListAccountAssignments with the addition of the ability to pass a context and additional request options.

See ListAccountAssignments for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListAccountsForProvisionedPermissionSet 

func (c *SSOAdmin) ListAccountsForProvisionedPermissionSet(input *ListAccountsForProvisionedPermissionSetInput) (*ListAccountsForProvisionedPermissionSetOutput, error)

ListAccountsForProvisionedPermissionSet API operation for AWS Single Sign-On Admin.

Lists all the AWS accounts where the specified permission set is provisioned.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ListAccountsForProvisionedPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountsForProvisionedPermissionSet

func (*SSOAdmin) ListAccountsForProvisionedPermissionSetPages 

func (c *SSOAdmin) ListAccountsForProvisionedPermissionSetPages(input *ListAccountsForProvisionedPermissionSetInput, fn func(*ListAccountsForProvisionedPermissionSetOutput, bool) bool) error

ListAccountsForProvisionedPermissionSetPages iterates over the pages of a ListAccountsForProvisionedPermissionSet operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListAccountsForProvisionedPermissionSet method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListAccountsForProvisionedPermissionSet operation.
pageNum := 0
err := client.ListAccountsForProvisionedPermissionSetPages(params,
    func(page *ssoadmin.ListAccountsForProvisionedPermissionSetOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*SSOAdmin) ListAccountsForProvisionedPermissionSetPagesWithContext 

func (c *SSOAdmin) ListAccountsForProvisionedPermissionSetPagesWithContext(ctx aws.Context, input *ListAccountsForProvisionedPermissionSetInput, fn func(*ListAccountsForProvisionedPermissionSetOutput, bool) bool, opts ...request.Option) error

ListAccountsForProvisionedPermissionSetPagesWithContext same as ListAccountsForProvisionedPermissionSetPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListAccountsForProvisionedPermissionSetRequest 

func (c *SSOAdmin) ListAccountsForProvisionedPermissionSetRequest(input *ListAccountsForProvisionedPermissionSetInput) (req *request.Request, output *ListAccountsForProvisionedPermissionSetOutput)

ListAccountsForProvisionedPermissionSetRequest generates a "aws/request.Request" representing the client's request for the ListAccountsForProvisionedPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListAccountsForProvisionedPermissionSet for more information on using the ListAccountsForProvisionedPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListAccountsForProvisionedPermissionSetRequest method.
req, resp := client.ListAccountsForProvisionedPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountsForProvisionedPermissionSet

func (*SSOAdmin) ListAccountsForProvisionedPermissionSetWithContext 

func (c *SSOAdmin) ListAccountsForProvisionedPermissionSetWithContext(ctx aws.Context, input *ListAccountsForProvisionedPermissionSetInput, opts ...request.Option) (*ListAccountsForProvisionedPermissionSetOutput, error)

ListAccountsForProvisionedPermissionSetWithContext is the same as ListAccountsForProvisionedPermissionSet with the addition of the ability to pass a context and additional request options.

See ListAccountsForProvisionedPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSet added in v1.44.57 

func (c *SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSet(input *ListCustomerManagedPolicyReferencesInPermissionSetInput) (*ListCustomerManagedPolicyReferencesInPermissionSetOutput, error)

ListCustomerManagedPolicyReferencesInPermissionSet API operation for AWS Single Sign-On Admin.

Lists all customer managed policies attached to a specified PermissionSet.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ListCustomerManagedPolicyReferencesInPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListCustomerManagedPolicyReferencesInPermissionSet

func (*SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSetPages added in v1.44.57 

func (c *SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSetPages(input *ListCustomerManagedPolicyReferencesInPermissionSetInput, fn func(*ListCustomerManagedPolicyReferencesInPermissionSetOutput, bool) bool) error

ListCustomerManagedPolicyReferencesInPermissionSetPages iterates over the pages of a ListCustomerManagedPolicyReferencesInPermissionSet operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListCustomerManagedPolicyReferencesInPermissionSet method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListCustomerManagedPolicyReferencesInPermissionSet operation.
pageNum := 0
err := client.ListCustomerManagedPolicyReferencesInPermissionSetPages(params,
    func(page *ssoadmin.ListCustomerManagedPolicyReferencesInPermissionSetOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSetPagesWithContext added in v1.44.57 

func (c *SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSetPagesWithContext(ctx aws.Context, input *ListCustomerManagedPolicyReferencesInPermissionSetInput, fn func(*ListCustomerManagedPolicyReferencesInPermissionSetOutput, bool) bool, opts ...request.Option) error

ListCustomerManagedPolicyReferencesInPermissionSetPagesWithContext same as ListCustomerManagedPolicyReferencesInPermissionSetPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSetRequest added in v1.44.57 

func (c *SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSetRequest(input *ListCustomerManagedPolicyReferencesInPermissionSetInput) (req *request.Request, output *ListCustomerManagedPolicyReferencesInPermissionSetOutput)

ListCustomerManagedPolicyReferencesInPermissionSetRequest generates a "aws/request.Request" representing the client's request for the ListCustomerManagedPolicyReferencesInPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListCustomerManagedPolicyReferencesInPermissionSet for more information on using the ListCustomerManagedPolicyReferencesInPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListCustomerManagedPolicyReferencesInPermissionSetRequest method.
req, resp := client.ListCustomerManagedPolicyReferencesInPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListCustomerManagedPolicyReferencesInPermissionSet

func (*SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSetWithContext added in v1.44.57 

func (c *SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSetWithContext(ctx aws.Context, input *ListCustomerManagedPolicyReferencesInPermissionSetInput, opts ...request.Option) (*ListCustomerManagedPolicyReferencesInPermissionSetOutput, error)

ListCustomerManagedPolicyReferencesInPermissionSetWithContext is the same as ListCustomerManagedPolicyReferencesInPermissionSet with the addition of the ability to pass a context and additional request options.

See ListCustomerManagedPolicyReferencesInPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListInstances 

func (c *SSOAdmin) ListInstances(input *ListInstancesInput) (*ListInstancesOutput, error)

ListInstances API operation for AWS Single Sign-On Admin.

Lists the IAM Identity Center instances that the caller has access to.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ListInstances for usage and error information.

Returned Error Types:

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ValidationException The request failed because it contains a syntax error.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListInstances

func (*SSOAdmin) ListInstancesPages 

func (c *SSOAdmin) ListInstancesPages(input *ListInstancesInput, fn func(*ListInstancesOutput, bool) bool) error

ListInstancesPages iterates over the pages of a ListInstances operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListInstances method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListInstances operation.
pageNum := 0
err := client.ListInstancesPages(params,
    func(page *ssoadmin.ListInstancesOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*SSOAdmin) ListInstancesPagesWithContext 

func (c *SSOAdmin) ListInstancesPagesWithContext(ctx aws.Context, input *ListInstancesInput, fn func(*ListInstancesOutput, bool) bool, opts ...request.Option) error

ListInstancesPagesWithContext same as ListInstancesPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListInstancesRequest 

func (c *SSOAdmin) ListInstancesRequest(input *ListInstancesInput) (req *request.Request, output *ListInstancesOutput)

ListInstancesRequest generates a "aws/request.Request" representing the client's request for the ListInstances operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListInstances for more information on using the ListInstances API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListInstancesRequest method.
req, resp := client.ListInstancesRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListInstances

func (*SSOAdmin) ListInstancesWithContext 

func (c *SSOAdmin) ListInstancesWithContext(ctx aws.Context, input *ListInstancesInput, opts ...request.Option) (*ListInstancesOutput, error)

ListInstancesWithContext is the same as ListInstances with the addition of the ability to pass a context and additional request options.

See ListInstances for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListManagedPoliciesInPermissionSet 

func (c *SSOAdmin) ListManagedPoliciesInPermissionSet(input *ListManagedPoliciesInPermissionSetInput) (*ListManagedPoliciesInPermissionSetOutput, error)

ListManagedPoliciesInPermissionSet API operation for AWS Single Sign-On Admin.

Lists the AWS managed policy that is attached to a specified permission set.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ListManagedPoliciesInPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListManagedPoliciesInPermissionSet

func (*SSOAdmin) ListManagedPoliciesInPermissionSetPages 

func (c *SSOAdmin) ListManagedPoliciesInPermissionSetPages(input *ListManagedPoliciesInPermissionSetInput, fn func(*ListManagedPoliciesInPermissionSetOutput, bool) bool) error

ListManagedPoliciesInPermissionSetPages iterates over the pages of a ListManagedPoliciesInPermissionSet operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListManagedPoliciesInPermissionSet method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListManagedPoliciesInPermissionSet operation.
pageNum := 0
err := client.ListManagedPoliciesInPermissionSetPages(params,
    func(page *ssoadmin.ListManagedPoliciesInPermissionSetOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*SSOAdmin) ListManagedPoliciesInPermissionSetPagesWithContext 

func (c *SSOAdmin) ListManagedPoliciesInPermissionSetPagesWithContext(ctx aws.Context, input *ListManagedPoliciesInPermissionSetInput, fn func(*ListManagedPoliciesInPermissionSetOutput, bool) bool, opts ...request.Option) error

ListManagedPoliciesInPermissionSetPagesWithContext same as ListManagedPoliciesInPermissionSetPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListManagedPoliciesInPermissionSetRequest 

func (c *SSOAdmin) ListManagedPoliciesInPermissionSetRequest(input *ListManagedPoliciesInPermissionSetInput) (req *request.Request, output *ListManagedPoliciesInPermissionSetOutput)

ListManagedPoliciesInPermissionSetRequest generates a "aws/request.Request" representing the client's request for the ListManagedPoliciesInPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListManagedPoliciesInPermissionSet for more information on using the ListManagedPoliciesInPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListManagedPoliciesInPermissionSetRequest method.
req, resp := client.ListManagedPoliciesInPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListManagedPoliciesInPermissionSet

func (*SSOAdmin) ListManagedPoliciesInPermissionSetWithContext 

func (c *SSOAdmin) ListManagedPoliciesInPermissionSetWithContext(ctx aws.Context, input *ListManagedPoliciesInPermissionSetInput, opts ...request.Option) (*ListManagedPoliciesInPermissionSetOutput, error)

ListManagedPoliciesInPermissionSetWithContext is the same as ListManagedPoliciesInPermissionSet with the addition of the ability to pass a context and additional request options.

See ListManagedPoliciesInPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListPermissionSetProvisioningStatus 

func (c *SSOAdmin) ListPermissionSetProvisioningStatus(input *ListPermissionSetProvisioningStatusInput) (*ListPermissionSetProvisioningStatusOutput, error)

ListPermissionSetProvisioningStatus API operation for AWS Single Sign-On Admin.

Lists the status of the permission set provisioning requests for a specified IAM Identity Center instance.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ListPermissionSetProvisioningStatus for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListPermissionSetProvisioningStatus

func (*SSOAdmin) ListPermissionSetProvisioningStatusPages 

func (c *SSOAdmin) ListPermissionSetProvisioningStatusPages(input *ListPermissionSetProvisioningStatusInput, fn func(*ListPermissionSetProvisioningStatusOutput, bool) bool) error

ListPermissionSetProvisioningStatusPages iterates over the pages of a ListPermissionSetProvisioningStatus operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListPermissionSetProvisioningStatus method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListPermissionSetProvisioningStatus operation.
pageNum := 0
err := client.ListPermissionSetProvisioningStatusPages(params,
    func(page *ssoadmin.ListPermissionSetProvisioningStatusOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*SSOAdmin) ListPermissionSetProvisioningStatusPagesWithContext 

func (c *SSOAdmin) ListPermissionSetProvisioningStatusPagesWithContext(ctx aws.Context, input *ListPermissionSetProvisioningStatusInput, fn func(*ListPermissionSetProvisioningStatusOutput, bool) bool, opts ...request.Option) error

ListPermissionSetProvisioningStatusPagesWithContext same as ListPermissionSetProvisioningStatusPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListPermissionSetProvisioningStatusRequest 

func (c *SSOAdmin) ListPermissionSetProvisioningStatusRequest(input *ListPermissionSetProvisioningStatusInput) (req *request.Request, output *ListPermissionSetProvisioningStatusOutput)

ListPermissionSetProvisioningStatusRequest generates a "aws/request.Request" representing the client's request for the ListPermissionSetProvisioningStatus operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListPermissionSetProvisioningStatus for more information on using the ListPermissionSetProvisioningStatus API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListPermissionSetProvisioningStatusRequest method.
req, resp := client.ListPermissionSetProvisioningStatusRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListPermissionSetProvisioningStatus

func (*SSOAdmin) ListPermissionSetProvisioningStatusWithContext 

func (c *SSOAdmin) ListPermissionSetProvisioningStatusWithContext(ctx aws.Context, input *ListPermissionSetProvisioningStatusInput, opts ...request.Option) (*ListPermissionSetProvisioningStatusOutput, error)

ListPermissionSetProvisioningStatusWithContext is the same as ListPermissionSetProvisioningStatus with the addition of the ability to pass a context and additional request options.

See ListPermissionSetProvisioningStatus for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListPermissionSets 

func (c *SSOAdmin) ListPermissionSets(input *ListPermissionSetsInput) (*ListPermissionSetsOutput, error)

ListPermissionSets API operation for AWS Single Sign-On Admin.

Lists the PermissionSets in an IAM Identity Center instance.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ListPermissionSets for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListPermissionSets

func (*SSOAdmin) ListPermissionSetsPages 

func (c *SSOAdmin) ListPermissionSetsPages(input *ListPermissionSetsInput, fn func(*ListPermissionSetsOutput, bool) bool) error

ListPermissionSetsPages iterates over the pages of a ListPermissionSets operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListPermissionSets method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListPermissionSets operation.
pageNum := 0
err := client.ListPermissionSetsPages(params,
    func(page *ssoadmin.ListPermissionSetsOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*SSOAdmin) ListPermissionSetsPagesWithContext 

func (c *SSOAdmin) ListPermissionSetsPagesWithContext(ctx aws.Context, input *ListPermissionSetsInput, fn func(*ListPermissionSetsOutput, bool) bool, opts ...request.Option) error

ListPermissionSetsPagesWithContext same as ListPermissionSetsPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListPermissionSetsProvisionedToAccount 

func (c *SSOAdmin) ListPermissionSetsProvisionedToAccount(input *ListPermissionSetsProvisionedToAccountInput) (*ListPermissionSetsProvisionedToAccountOutput, error)

ListPermissionSetsProvisionedToAccount API operation for AWS Single Sign-On Admin.

Lists all the permission sets that are provisioned to a specified AWS account.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ListPermissionSetsProvisionedToAccount for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListPermissionSetsProvisionedToAccount

func (*SSOAdmin) ListPermissionSetsProvisionedToAccountPages 

func (c *SSOAdmin) ListPermissionSetsProvisionedToAccountPages(input *ListPermissionSetsProvisionedToAccountInput, fn func(*ListPermissionSetsProvisionedToAccountOutput, bool) bool) error

ListPermissionSetsProvisionedToAccountPages iterates over the pages of a ListPermissionSetsProvisionedToAccount operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListPermissionSetsProvisionedToAccount method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListPermissionSetsProvisionedToAccount operation.
pageNum := 0
err := client.ListPermissionSetsProvisionedToAccountPages(params,
    func(page *ssoadmin.ListPermissionSetsProvisionedToAccountOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*SSOAdmin) ListPermissionSetsProvisionedToAccountPagesWithContext 

func (c *SSOAdmin) ListPermissionSetsProvisionedToAccountPagesWithContext(ctx aws.Context, input *ListPermissionSetsProvisionedToAccountInput, fn func(*ListPermissionSetsProvisionedToAccountOutput, bool) bool, opts ...request.Option) error

ListPermissionSetsProvisionedToAccountPagesWithContext same as ListPermissionSetsProvisionedToAccountPages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListPermissionSetsProvisionedToAccountRequest 

func (c *SSOAdmin) ListPermissionSetsProvisionedToAccountRequest(input *ListPermissionSetsProvisionedToAccountInput) (req *request.Request, output *ListPermissionSetsProvisionedToAccountOutput)

ListPermissionSetsProvisionedToAccountRequest generates a "aws/request.Request" representing the client's request for the ListPermissionSetsProvisionedToAccount operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListPermissionSetsProvisionedToAccount for more information on using the ListPermissionSetsProvisionedToAccount API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListPermissionSetsProvisionedToAccountRequest method.
req, resp := client.ListPermissionSetsProvisionedToAccountRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListPermissionSetsProvisionedToAccount

func (*SSOAdmin) ListPermissionSetsProvisionedToAccountWithContext 

func (c *SSOAdmin) ListPermissionSetsProvisionedToAccountWithContext(ctx aws.Context, input *ListPermissionSetsProvisionedToAccountInput, opts ...request.Option) (*ListPermissionSetsProvisionedToAccountOutput, error)

ListPermissionSetsProvisionedToAccountWithContext is the same as ListPermissionSetsProvisionedToAccount with the addition of the ability to pass a context and additional request options.

See ListPermissionSetsProvisionedToAccount for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListPermissionSetsRequest 

func (c *SSOAdmin) ListPermissionSetsRequest(input *ListPermissionSetsInput) (req *request.Request, output *ListPermissionSetsOutput)

ListPermissionSetsRequest generates a "aws/request.Request" representing the client's request for the ListPermissionSets operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListPermissionSets for more information on using the ListPermissionSets API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListPermissionSetsRequest method.
req, resp := client.ListPermissionSetsRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListPermissionSets

func (*SSOAdmin) ListPermissionSetsWithContext 

func (c *SSOAdmin) ListPermissionSetsWithContext(ctx aws.Context, input *ListPermissionSetsInput, opts ...request.Option) (*ListPermissionSetsOutput, error)

ListPermissionSetsWithContext is the same as ListPermissionSets with the addition of the ability to pass a context and additional request options.

See ListPermissionSets for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListTagsForResource 

func (c *SSOAdmin) ListTagsForResource(input *ListTagsForResourceInput) (*ListTagsForResourceOutput, error)

ListTagsForResource API operation for AWS Single Sign-On Admin.

Lists the tags that are attached to a specified resource.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ListTagsForResource for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListTagsForResource

func (*SSOAdmin) ListTagsForResourcePages 

func (c *SSOAdmin) ListTagsForResourcePages(input *ListTagsForResourceInput, fn func(*ListTagsForResourceOutput, bool) bool) error

ListTagsForResourcePages iterates over the pages of a ListTagsForResource operation, calling the "fn" function with the response data for each page. To stop iterating, return false from the fn function.

See ListTagsForResource method for more information on how to use this operation.

Note: This operation can generate multiple requests to a service. 

// Example iterating over at most 3 pages of a ListTagsForResource operation.
pageNum := 0
err := client.ListTagsForResourcePages(params,
    func(page *ssoadmin.ListTagsForResourceOutput, lastPage bool) bool {
        pageNum++
        fmt.Println(page)
        return pageNum <= 3
    })

func (*SSOAdmin) ListTagsForResourcePagesWithContext 

func (c *SSOAdmin) ListTagsForResourcePagesWithContext(ctx aws.Context, input *ListTagsForResourceInput, fn func(*ListTagsForResourceOutput, bool) bool, opts ...request.Option) error

ListTagsForResourcePagesWithContext same as ListTagsForResourcePages except it takes a Context and allows setting request options on the pages.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ListTagsForResourceRequest 

func (c *SSOAdmin) ListTagsForResourceRequest(input *ListTagsForResourceInput) (req *request.Request, output *ListTagsForResourceOutput)

ListTagsForResourceRequest generates a "aws/request.Request" representing the client's request for the ListTagsForResource operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ListTagsForResource for more information on using the ListTagsForResource API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ListTagsForResourceRequest method.
req, resp := client.ListTagsForResourceRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListTagsForResource

func (*SSOAdmin) ListTagsForResourceWithContext 

func (c *SSOAdmin) ListTagsForResourceWithContext(ctx aws.Context, input *ListTagsForResourceInput, opts ...request.Option) (*ListTagsForResourceOutput, error)

ListTagsForResourceWithContext is the same as ListTagsForResource with the addition of the ability to pass a context and additional request options.

See ListTagsForResource for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) ProvisionPermissionSet 

func (c *SSOAdmin) ProvisionPermissionSet(input *ProvisionPermissionSetInput) (*ProvisionPermissionSetOutput, error)

ProvisionPermissionSet API operation for AWS Single Sign-On Admin.

The process by which a specified permission set is provisioned to the specified target.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation ProvisionPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ProvisionPermissionSet

func (*SSOAdmin) ProvisionPermissionSetRequest 

func (c *SSOAdmin) ProvisionPermissionSetRequest(input *ProvisionPermissionSetInput) (req *request.Request, output *ProvisionPermissionSetOutput)

ProvisionPermissionSetRequest generates a "aws/request.Request" representing the client's request for the ProvisionPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See ProvisionPermissionSet for more information on using the ProvisionPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the ProvisionPermissionSetRequest method.
req, resp := client.ProvisionPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ProvisionPermissionSet

func (*SSOAdmin) ProvisionPermissionSetWithContext 

func (c *SSOAdmin) ProvisionPermissionSetWithContext(ctx aws.Context, input *ProvisionPermissionSetInput, opts ...request.Option) (*ProvisionPermissionSetOutput, error)

ProvisionPermissionSetWithContext is the same as ProvisionPermissionSet with the addition of the ability to pass a context and additional request options.

See ProvisionPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) PutInlinePolicyToPermissionSet 

func (c *SSOAdmin) PutInlinePolicyToPermissionSet(input *PutInlinePolicyToPermissionSetInput) (*PutInlinePolicyToPermissionSetOutput, error)

PutInlinePolicyToPermissionSet API operation for AWS Single Sign-On Admin.

Attaches an inline policy to a permission set.

If the permission set is already referenced by one or more account assignments, you will need to call ProvisionPermissionSet after this action to apply the corresponding IAM policy updates to all assigned accounts.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation PutInlinePolicyToPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ServiceQuotaExceededException Indicates that the principal has crossed the permitted number of resources that can be created.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/PutInlinePolicyToPermissionSet

func (*SSOAdmin) PutInlinePolicyToPermissionSetRequest 

func (c *SSOAdmin) PutInlinePolicyToPermissionSetRequest(input *PutInlinePolicyToPermissionSetInput) (req *request.Request, output *PutInlinePolicyToPermissionSetOutput)

PutInlinePolicyToPermissionSetRequest generates a "aws/request.Request" representing the client's request for the PutInlinePolicyToPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See PutInlinePolicyToPermissionSet for more information on using the PutInlinePolicyToPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the PutInlinePolicyToPermissionSetRequest method.
req, resp := client.PutInlinePolicyToPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/PutInlinePolicyToPermissionSet

func (*SSOAdmin) PutInlinePolicyToPermissionSetWithContext 

func (c *SSOAdmin) PutInlinePolicyToPermissionSetWithContext(ctx aws.Context, input *PutInlinePolicyToPermissionSetInput, opts ...request.Option) (*PutInlinePolicyToPermissionSetOutput, error)

PutInlinePolicyToPermissionSetWithContext is the same as PutInlinePolicyToPermissionSet with the addition of the ability to pass a context and additional request options.

See PutInlinePolicyToPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) PutPermissionsBoundaryToPermissionSet added in v1.44.57 

func (c *SSOAdmin) PutPermissionsBoundaryToPermissionSet(input *PutPermissionsBoundaryToPermissionSetInput) (*PutPermissionsBoundaryToPermissionSetOutput, error)

PutPermissionsBoundaryToPermissionSet API operation for AWS Single Sign-On Admin.

Attaches an AWS managed or customer managed policy to the specified PermissionSet as a permissions boundary.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation PutPermissionsBoundaryToPermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/PutPermissionsBoundaryToPermissionSet

func (*SSOAdmin) PutPermissionsBoundaryToPermissionSetRequest added in v1.44.57 

func (c *SSOAdmin) PutPermissionsBoundaryToPermissionSetRequest(input *PutPermissionsBoundaryToPermissionSetInput) (req *request.Request, output *PutPermissionsBoundaryToPermissionSetOutput)

PutPermissionsBoundaryToPermissionSetRequest generates a "aws/request.Request" representing the client's request for the PutPermissionsBoundaryToPermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See PutPermissionsBoundaryToPermissionSet for more information on using the PutPermissionsBoundaryToPermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the PutPermissionsBoundaryToPermissionSetRequest method.
req, resp := client.PutPermissionsBoundaryToPermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/PutPermissionsBoundaryToPermissionSet

func (*SSOAdmin) PutPermissionsBoundaryToPermissionSetWithContext added in v1.44.57 

func (c *SSOAdmin) PutPermissionsBoundaryToPermissionSetWithContext(ctx aws.Context, input *PutPermissionsBoundaryToPermissionSetInput, opts ...request.Option) (*PutPermissionsBoundaryToPermissionSetOutput, error)

PutPermissionsBoundaryToPermissionSetWithContext is the same as PutPermissionsBoundaryToPermissionSet with the addition of the ability to pass a context and additional request options.

See PutPermissionsBoundaryToPermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) TagResource 

func (c *SSOAdmin) TagResource(input *TagResourceInput) (*TagResourceOutput, error)

TagResource API operation for AWS Single Sign-On Admin.

Associates a set of tags with a specified resource.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation TagResource for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ServiceQuotaExceededException Indicates that the principal has crossed the permitted number of resources that can be created.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/TagResource

func (*SSOAdmin) TagResourceRequest 

func (c *SSOAdmin) TagResourceRequest(input *TagResourceInput) (req *request.Request, output *TagResourceOutput)

TagResourceRequest generates a "aws/request.Request" representing the client's request for the TagResource operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See TagResource for more information on using the TagResource API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the TagResourceRequest method.
req, resp := client.TagResourceRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/TagResource

func (*SSOAdmin) TagResourceWithContext 

func (c *SSOAdmin) TagResourceWithContext(ctx aws.Context, input *TagResourceInput, opts ...request.Option) (*TagResourceOutput, error)

TagResourceWithContext is the same as TagResource with the addition of the ability to pass a context and additional request options.

See TagResource for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) UntagResource 

func (c *SSOAdmin) UntagResource(input *UntagResourceInput) (*UntagResourceOutput, error)

UntagResource API operation for AWS Single Sign-On Admin.

Disassociates a set of tags from a specified resource.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation UntagResource for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/UntagResource

func (*SSOAdmin) UntagResourceRequest 

func (c *SSOAdmin) UntagResourceRequest(input *UntagResourceInput) (req *request.Request, output *UntagResourceOutput)

UntagResourceRequest generates a "aws/request.Request" representing the client's request for the UntagResource operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See UntagResource for more information on using the UntagResource API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the UntagResourceRequest method.
req, resp := client.UntagResourceRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/UntagResource

func (*SSOAdmin) UntagResourceWithContext 

func (c *SSOAdmin) UntagResourceWithContext(ctx aws.Context, input *UntagResourceInput, opts ...request.Option) (*UntagResourceOutput, error)

UntagResourceWithContext is the same as UntagResource with the addition of the ability to pass a context and additional request options.

See UntagResource for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) UpdateInstanceAccessControlAttributeConfiguration added in v1.35.34 

func (c *SSOAdmin) UpdateInstanceAccessControlAttributeConfiguration(input *UpdateInstanceAccessControlAttributeConfigurationInput) (*UpdateInstanceAccessControlAttributeConfigurationOutput, error)

UpdateInstanceAccessControlAttributeConfiguration API operation for AWS Single Sign-On Admin.

Updates the IAM Identity Center identity store attributes that you can use with the IAM Identity Center instance for attributes-based access control (ABAC). When using an external identity provider as an identity source, you can pass attributes through the SAML assertion as an alternative to configuring attributes from the IAM Identity Center identity store. If a SAML assertion passes any of these attributes, IAM Identity Center replaces the attribute value with the value from the IAM Identity Center identity store. For more information about ABAC, see Attribute-Based Access Control (/singlesignon/latest/userguide/abac.html) in the IAM Identity Center User Guide.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation UpdateInstanceAccessControlAttributeConfiguration for usage and error information.

Returned Error Types:

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/UpdateInstanceAccessControlAttributeConfiguration

func (*SSOAdmin) UpdateInstanceAccessControlAttributeConfigurationRequest added in v1.35.34 

func (c *SSOAdmin) UpdateInstanceAccessControlAttributeConfigurationRequest(input *UpdateInstanceAccessControlAttributeConfigurationInput) (req *request.Request, output *UpdateInstanceAccessControlAttributeConfigurationOutput)

UpdateInstanceAccessControlAttributeConfigurationRequest generates a "aws/request.Request" representing the client's request for the UpdateInstanceAccessControlAttributeConfiguration operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See UpdateInstanceAccessControlAttributeConfiguration for more information on using the UpdateInstanceAccessControlAttributeConfiguration API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the UpdateInstanceAccessControlAttributeConfigurationRequest method.
req, resp := client.UpdateInstanceAccessControlAttributeConfigurationRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/UpdateInstanceAccessControlAttributeConfiguration

func (*SSOAdmin) UpdateInstanceAccessControlAttributeConfigurationWithContext added in v1.35.34 

func (c *SSOAdmin) UpdateInstanceAccessControlAttributeConfigurationWithContext(ctx aws.Context, input *UpdateInstanceAccessControlAttributeConfigurationInput, opts ...request.Option) (*UpdateInstanceAccessControlAttributeConfigurationOutput, error)

UpdateInstanceAccessControlAttributeConfigurationWithContext is the same as UpdateInstanceAccessControlAttributeConfiguration with the addition of the ability to pass a context and additional request options.

See UpdateInstanceAccessControlAttributeConfiguration for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

func (*SSOAdmin) UpdatePermissionSet 

func (c *SSOAdmin) UpdatePermissionSet(input *UpdatePermissionSetInput) (*UpdatePermissionSetOutput, error)

UpdatePermissionSet API operation for AWS Single Sign-On Admin.

Updates an existing permission set.

Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.

See the AWS API reference guide for AWS Single Sign-On Admin's API operation UpdatePermissionSet for usage and error information.

Returned Error Types:

  • ResourceNotFoundException Indicates that a requested resource is not found.

  • InternalServerException The request processing has failed because of an unknown error, exception, or failure with an internal server.

  • ThrottlingException Indicates that the principal has crossed the throttling limits of the API operations.

  • ValidationException The request failed because it contains a syntax error.

  • AccessDeniedException You do not have sufficient access to perform this action.

  • ConflictException Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/UpdatePermissionSet

func (*SSOAdmin) UpdatePermissionSetRequest 

func (c *SSOAdmin) UpdatePermissionSetRequest(input *UpdatePermissionSetInput) (req *request.Request, output *UpdatePermissionSetOutput)

UpdatePermissionSetRequest generates a "aws/request.Request" representing the client's request for the UpdatePermissionSet operation. The "output" return value will be populated with the request's response once the request completes successfully.

Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.

See UpdatePermissionSet for more information on using the UpdatePermissionSet API call, and error handling.

This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic. 

// Example sending a request using the UpdatePermissionSetRequest method.
req, resp := client.UpdatePermissionSetRequest(params)

err := req.Send()
if err == nil { // resp is now filled
    fmt.Println(resp)
}

See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/UpdatePermissionSet

func (*SSOAdmin) UpdatePermissionSetWithContext 

func (c *SSOAdmin) UpdatePermissionSetWithContext(ctx aws.Context, input *UpdatePermissionSetInput, opts ...request.Option) (*UpdatePermissionSetOutput, error)

UpdatePermissionSetWithContext is the same as UpdatePermissionSet with the addition of the ability to pass a context and additional request options.

See UpdatePermissionSet for details on how to use this API operation.

The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.

type ServiceQuotaExceededException 

type ServiceQuotaExceededException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"Message" type:"string"`
	// contains filtered or unexported fields
}

Indicates that the principal has crossed the permitted number of resources that can be created.

func (*ServiceQuotaExceededException) Code 

func (s *ServiceQuotaExceededException) Code() string

Code returns the exception type name.

func (*ServiceQuotaExceededException) Error 

func (s *ServiceQuotaExceededException) Error() string

func (ServiceQuotaExceededException) GoString 

func (s ServiceQuotaExceededException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ServiceQuotaExceededException) Message 

func (s *ServiceQuotaExceededException) Message() string

Message returns the exception's message.

func (*ServiceQuotaExceededException) OrigErr 

func (s *ServiceQuotaExceededException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*ServiceQuotaExceededException) RequestID 

func (s *ServiceQuotaExceededException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*ServiceQuotaExceededException) StatusCode 

func (s *ServiceQuotaExceededException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (ServiceQuotaExceededException) String 

func (s ServiceQuotaExceededException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type Tag 

type Tag struct {

	// The key for the tag.
	//
	// Key is a required field
	Key *string `min:"1" type:"string" required:"true"`

	// The value of the tag.
	//
	// Value is a required field
	Value *string `type:"string" required:"true"`
	// contains filtered or unexported fields
}

A set of key-value pairs that are used to manage the resource. Tags can only be applied to permission sets and cannot be applied to corresponding roles that IAM Identity Center creates in AWS accounts.

func (Tag) GoString 

func (s Tag) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*Tag) SetKey 

func (s *Tag) SetKey(v string) *Tag

SetKey sets the Key field's value.

func (*Tag) SetValue 

func (s *Tag) SetValue(v string) *Tag

SetValue sets the Value field's value.

func (Tag) String 

func (s Tag) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*Tag) Validate 

func (s *Tag) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type TagResourceInput 

type TagResourceInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the resource with the tags to be listed.
	//
	// ResourceArn is a required field
	ResourceArn *string `min:"10" type:"string" required:"true"`

	// A set of key-value pairs that are used to manage the resource.
	//
	// Tags is a required field
	Tags []*Tag `type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (TagResourceInput) GoString 

func (s TagResourceInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*TagResourceInput) SetInstanceArn 

func (s *TagResourceInput) SetInstanceArn(v string) *TagResourceInput

SetInstanceArn sets the InstanceArn field's value.

func (*TagResourceInput) SetResourceArn 

func (s *TagResourceInput) SetResourceArn(v string) *TagResourceInput

SetResourceArn sets the ResourceArn field's value.

func (*TagResourceInput) SetTags 

func (s *TagResourceInput) SetTags(v []*Tag) *TagResourceInput

SetTags sets the Tags field's value.

func (TagResourceInput) String 

func (s TagResourceInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*TagResourceInput) Validate 

func (s *TagResourceInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type TagResourceOutput 

type TagResourceOutput struct {
	// contains filtered or unexported fields
}

func (TagResourceOutput) GoString 

func (s TagResourceOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (TagResourceOutput) String 

func (s TagResourceOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ThrottlingException 

type ThrottlingException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"Message" type:"string"`
	// contains filtered or unexported fields
}

Indicates that the principal has crossed the throttling limits of the API operations.

func (*ThrottlingException) Code 

func (s *ThrottlingException) Code() string

Code returns the exception type name.

func (*ThrottlingException) Error 

func (s *ThrottlingException) Error() string

func (ThrottlingException) GoString 

func (s ThrottlingException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ThrottlingException) Message 

func (s *ThrottlingException) Message() string

Message returns the exception's message.

func (*ThrottlingException) OrigErr 

func (s *ThrottlingException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*ThrottlingException) RequestID 

func (s *ThrottlingException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*ThrottlingException) StatusCode 

func (s *ThrottlingException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (ThrottlingException) String 

func (s ThrottlingException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type UntagResourceInput 

type UntagResourceInput struct {

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the resource with the tags to be listed.
	//
	// ResourceArn is a required field
	ResourceArn *string `min:"10" type:"string" required:"true"`

	// The keys of tags that are attached to the resource.
	//
	// TagKeys is a required field
	TagKeys []*string `min:"1" type:"list" required:"true"`
	// contains filtered or unexported fields
}

func (UntagResourceInput) GoString 

func (s UntagResourceInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*UntagResourceInput) SetInstanceArn 

func (s *UntagResourceInput) SetInstanceArn(v string) *UntagResourceInput

SetInstanceArn sets the InstanceArn field's value.

func (*UntagResourceInput) SetResourceArn 

func (s *UntagResourceInput) SetResourceArn(v string) *UntagResourceInput

SetResourceArn sets the ResourceArn field's value.

func (*UntagResourceInput) SetTagKeys 

func (s *UntagResourceInput) SetTagKeys(v []*string) *UntagResourceInput

SetTagKeys sets the TagKeys field's value.

func (UntagResourceInput) String 

func (s UntagResourceInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*UntagResourceInput) Validate 

func (s *UntagResourceInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type UntagResourceOutput 

type UntagResourceOutput struct {
	// contains filtered or unexported fields
}

func (UntagResourceOutput) GoString 

func (s UntagResourceOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (UntagResourceOutput) String 

func (s UntagResourceOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type UpdateInstanceAccessControlAttributeConfigurationInput added in v1.35.34 

type UpdateInstanceAccessControlAttributeConfigurationInput struct {

	// Updates the attributes for your ABAC configuration.
	//
	// InstanceAccessControlAttributeConfiguration is a required field
	InstanceAccessControlAttributeConfiguration *InstanceAccessControlAttributeConfiguration `type:"structure" required:"true"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`
	// contains filtered or unexported fields
}

func (UpdateInstanceAccessControlAttributeConfigurationInput) GoString added in v1.35.34 

func (s UpdateInstanceAccessControlAttributeConfigurationInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*UpdateInstanceAccessControlAttributeConfigurationInput) SetInstanceAccessControlAttributeConfiguration added in v1.35.34 

func (s *UpdateInstanceAccessControlAttributeConfigurationInput) SetInstanceAccessControlAttributeConfiguration(v *InstanceAccessControlAttributeConfiguration) *UpdateInstanceAccessControlAttributeConfigurationInput

SetInstanceAccessControlAttributeConfiguration sets the InstanceAccessControlAttributeConfiguration field's value.

func (*UpdateInstanceAccessControlAttributeConfigurationInput) SetInstanceArn added in v1.35.34 

func (s *UpdateInstanceAccessControlAttributeConfigurationInput) SetInstanceArn(v string) *UpdateInstanceAccessControlAttributeConfigurationInput

SetInstanceArn sets the InstanceArn field's value.

func (UpdateInstanceAccessControlAttributeConfigurationInput) String added in v1.35.34 

func (s UpdateInstanceAccessControlAttributeConfigurationInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*UpdateInstanceAccessControlAttributeConfigurationInput) Validate added in v1.35.34 

func (s *UpdateInstanceAccessControlAttributeConfigurationInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type UpdateInstanceAccessControlAttributeConfigurationOutput added in v1.35.34 

type UpdateInstanceAccessControlAttributeConfigurationOutput struct {
	// contains filtered or unexported fields
}

func (UpdateInstanceAccessControlAttributeConfigurationOutput) GoString added in v1.35.34 

func (s UpdateInstanceAccessControlAttributeConfigurationOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (UpdateInstanceAccessControlAttributeConfigurationOutput) String added in v1.35.34 

func (s UpdateInstanceAccessControlAttributeConfigurationOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type UpdatePermissionSetInput 

type UpdatePermissionSetInput struct {

	// The description of the PermissionSet.
	Description *string `min:"1" type:"string"`

	// The ARN of the IAM Identity Center instance under which the operation will
	// be executed. For more information about ARNs, see Amazon Resource Names (ARNs)
	// and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html)
	// in the AWS General Reference.
	//
	// InstanceArn is a required field
	InstanceArn *string `min:"10" type:"string" required:"true"`

	// The ARN of the permission set.
	//
	// PermissionSetArn is a required field
	PermissionSetArn *string `min:"10" type:"string" required:"true"`

	// Used to redirect users within the application during the federation authentication
	// process.
	RelayState *string `min:"1" type:"string"`

	// The length of time that the application user sessions are valid for in the
	// ISO-8601 standard.
	SessionDuration *string `min:"1" type:"string"`
	// contains filtered or unexported fields
}

func (UpdatePermissionSetInput) GoString 

func (s UpdatePermissionSetInput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*UpdatePermissionSetInput) SetDescription 

func (s *UpdatePermissionSetInput) SetDescription(v string) *UpdatePermissionSetInput

SetDescription sets the Description field's value.

func (*UpdatePermissionSetInput) SetInstanceArn 

func (s *UpdatePermissionSetInput) SetInstanceArn(v string) *UpdatePermissionSetInput

SetInstanceArn sets the InstanceArn field's value.

func (*UpdatePermissionSetInput) SetPermissionSetArn 

func (s *UpdatePermissionSetInput) SetPermissionSetArn(v string) *UpdatePermissionSetInput

SetPermissionSetArn sets the PermissionSetArn field's value.

func (*UpdatePermissionSetInput) SetRelayState 

func (s *UpdatePermissionSetInput) SetRelayState(v string) *UpdatePermissionSetInput

SetRelayState sets the RelayState field's value.

func (*UpdatePermissionSetInput) SetSessionDuration 

func (s *UpdatePermissionSetInput) SetSessionDuration(v string) *UpdatePermissionSetInput

SetSessionDuration sets the SessionDuration field's value.

func (UpdatePermissionSetInput) String 

func (s UpdatePermissionSetInput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*UpdatePermissionSetInput) Validate 

func (s *UpdatePermissionSetInput) Validate() error

Validate inspects the fields of the type to determine if they are valid.

type UpdatePermissionSetOutput 

type UpdatePermissionSetOutput struct {
	// contains filtered or unexported fields
}

func (UpdatePermissionSetOutput) GoString 

func (s UpdatePermissionSetOutput) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (UpdatePermissionSetOutput) String 

func (s UpdatePermissionSetOutput) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

type ValidationException 

type ValidationException struct {
	RespMetadata protocol.ResponseMetadata `json:"-" xml:"-"`

	Message_ *string `locationName:"Message" type:"string"`
	// contains filtered or unexported fields
}

The request failed because it contains a syntax error.

func (*ValidationException) Code 

func (s *ValidationException) Code() string

Code returns the exception type name.

func (*ValidationException) Error 

func (s *ValidationException) Error() string

func (ValidationException) GoString 

func (s ValidationException) GoString() string

GoString returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

func (*ValidationException) Message 

func (s *ValidationException) Message() string

Message returns the exception's message.

func (*ValidationException) OrigErr 

func (s *ValidationException) OrigErr() error

OrigErr always returns nil, satisfies awserr.Error interface.

func (*ValidationException) RequestID 

func (s *ValidationException) RequestID() string

RequestID returns the service's response RequestID for request.

func (*ValidationException) StatusCode 

func (s *ValidationException) StatusCode() int

Status code returns the HTTP status code for the request's response error.

func (ValidationException) String 

func (s ValidationException) String() string

String returns the string representation.

API parameter values that are decorated as "sensitive" in the API will not be included in the string output. The member name will be present, but the value will be replaced with "sensitive".

Source Files

View all Source files

Directories

Path Synopsis
Package ssoadminiface provides an interface to enable mocking the AWS Single Sign-On Admin service client for testing your code.
 Package ssoadminiface provides an interface to enable mocking the AWS Single Sign-On Admin service client for testing your code.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.