iam

README

IAM code examples for the SDK for Go V2

Overview

Shows how to use the AWS SDK for Go V2 to work with AWS Identity and Access Management (IAM).

IAM is a web service for securely controlling access to AWS services. With IAM, you can centrally manage permissions in your AWS account.

⚠ Important

• Running this code might result in charges to your AWS account. For more details, see AWS Pricing and Free Tier.
• Running the tests might result in charges to your AWS account.
• We recommend that you grant your code least privilege. At most, grant only the minimum permissions required to perform the task. For more information, see Grant least privilege.
• This code is not tested in every AWS Region. For more information, see AWS Regional Services.

Code examples

Prerequisites

For prerequisites, see the README in the gov2 folder.

Get started

• Hello IAM (ListPolicies)

Basics

Code examples that show you how to perform the essential operations within a service.

• Learn the basics

Single actions

Code excerpts that show you how to call individual service functions.

• AttachRolePolicy
• CreateAccessKey
• CreatePolicy
• CreateRole
• CreateServiceLinkedRole
• CreateUser
• DeleteAccessKey
• DeletePolicy
• DeleteRole
• DeleteServiceLinkedRole
• DeleteUser
• DeleteUserPolicy
• DetachRolePolicy
• GetAccountPasswordPolicy
• GetPolicy
• GetRole
• GetUser
• ListAccessKeys
• ListAttachedRolePolicies
• ListGroups
• ListPolicies
• ListRolePolicies
• ListRoles
• ListSAMLProviders
• ListUserPolicies
• ListUsers
• PutUserPolicy

Run the examples

Instructions

Hello IAM

This example shows you how to get started using IAM.

go run ./hello

Run a scenario

All scenarios can be run with the cmd runner. To get a list of scenarios and to get help for running a scenario, use the following command:

go run ./cmd -h

Learn the basics

This example shows you how to create a user and assume a role.

• Create a user with no permissions.
• Create a role that grants permission to list Amazon S3 buckets for the account.
• Add a policy to let the user assume the role.
• Assume the role and list S3 buckets using temporary credentials, then clean up resources.

Tests

⚠ Running tests might result in charges to your AWS account.

To find instructions for running these tests, see the README in the gov2 folder.

Additional resources

• IAM User Guide
• IAM API Reference
• SDK for Go V2 IAM reference

---

Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.

SPDX-License-Identifier: Apache-2.0