Documentation ¶
Overview ¶
Package iam provides a client for AWS Identity and Access Management.
Index ¶
- type AccessKey
- type AccessKeyLastUsed
- type AccessKeyMetadata
- type AddClientIDToOpenIDConnectProviderInput
- type AddClientIDToOpenIDConnectProviderOutput
- type AddRoleToInstanceProfileInput
- type AddRoleToInstanceProfileOutput
- type AddUserToGroupInput
- type AddUserToGroupOutput
- type AttachGroupPolicyInput
- type AttachGroupPolicyOutput
- type AttachRolePolicyInput
- type AttachRolePolicyOutput
- type AttachUserPolicyInput
- type AttachUserPolicyOutput
- type AttachedPolicy
- type ChangePasswordInput
- type ChangePasswordOutput
- type CreateAccessKeyInput
- type CreateAccessKeyOutput
- type CreateAccountAliasInput
- type CreateAccountAliasOutput
- type CreateGroupInput
- type CreateGroupOutput
- type CreateInstanceProfileInput
- type CreateInstanceProfileOutput
- type CreateLoginProfileInput
- type CreateLoginProfileOutput
- type CreateOpenIDConnectProviderInput
- type CreateOpenIDConnectProviderOutput
- type CreatePolicyInput
- type CreatePolicyOutput
- type CreatePolicyVersionInput
- type CreatePolicyVersionOutput
- type CreateRoleInput
- type CreateRoleOutput
- type CreateSAMLProviderInput
- type CreateSAMLProviderOutput
- type CreateUserInput
- type CreateUserOutput
- type CreateVirtualMFADeviceInput
- type CreateVirtualMFADeviceOutput
- type DeactivateMFADeviceInput
- type DeactivateMFADeviceOutput
- type DeleteAccessKeyInput
- type DeleteAccessKeyOutput
- type DeleteAccountAliasInput
- type DeleteAccountAliasOutput
- type DeleteAccountPasswordPolicyInput
- type DeleteAccountPasswordPolicyOutput
- type DeleteGroupInput
- type DeleteGroupOutput
- type DeleteGroupPolicyInput
- type DeleteGroupPolicyOutput
- type DeleteInstanceProfileInput
- type DeleteInstanceProfileOutput
- type DeleteLoginProfileInput
- type DeleteLoginProfileOutput
- type DeleteOpenIDConnectProviderInput
- type DeleteOpenIDConnectProviderOutput
- type DeletePolicyInput
- type DeletePolicyOutput
- type DeletePolicyVersionInput
- type DeletePolicyVersionOutput
- type DeleteRoleInput
- type DeleteRoleOutput
- type DeleteRolePolicyInput
- type DeleteRolePolicyOutput
- type DeleteSAMLProviderInput
- type DeleteSAMLProviderOutput
- type DeleteServerCertificateInput
- type DeleteServerCertificateOutput
- type DeleteSigningCertificateInput
- type DeleteSigningCertificateOutput
- type DeleteUserInput
- type DeleteUserOutput
- type DeleteUserPolicyInput
- type DeleteUserPolicyOutput
- type DeleteVirtualMFADeviceInput
- type DeleteVirtualMFADeviceOutput
- type DetachGroupPolicyInput
- type DetachGroupPolicyOutput
- type DetachRolePolicyInput
- type DetachRolePolicyOutput
- type DetachUserPolicyInput
- type DetachUserPolicyOutput
- type EnableMFADeviceInput
- type EnableMFADeviceOutput
- type GenerateCredentialReportInput
- type GenerateCredentialReportOutput
- type GetAccessKeyLastUsedInput
- type GetAccessKeyLastUsedOutput
- type GetAccountAuthorizationDetailsInput
- type GetAccountAuthorizationDetailsOutput
- type GetAccountPasswordPolicyInput
- type GetAccountPasswordPolicyOutput
- type GetAccountSummaryInput
- type GetAccountSummaryOutput
- type GetCredentialReportInput
- type GetCredentialReportOutput
- type GetGroupInput
- type GetGroupOutput
- type GetGroupPolicyInput
- type GetGroupPolicyOutput
- type GetInstanceProfileInput
- type GetInstanceProfileOutput
- type GetLoginProfileInput
- type GetLoginProfileOutput
- type GetOpenIDConnectProviderInput
- type GetOpenIDConnectProviderOutput
- type GetPolicyInput
- type GetPolicyOutput
- type GetPolicyVersionInput
- type GetPolicyVersionOutput
- type GetRoleInput
- type GetRoleOutput
- type GetRolePolicyInput
- type GetRolePolicyOutput
- type GetSAMLProviderInput
- type GetSAMLProviderOutput
- type GetServerCertificateInput
- type GetServerCertificateOutput
- type GetUserInput
- type GetUserOutput
- type GetUserPolicyInput
- type GetUserPolicyOutput
- type Group
- type GroupDetail
- type IAM
- func (c *IAM) AddClientIDToOpenIDConnectProvider(input *AddClientIDToOpenIDConnectProviderInput) (*AddClientIDToOpenIDConnectProviderOutput, error)
- func (c *IAM) AddClientIDToOpenIDConnectProviderRequest(input *AddClientIDToOpenIDConnectProviderInput) (req *aws.Request, output *AddClientIDToOpenIDConnectProviderOutput)
- func (c *IAM) AddRoleToInstanceProfile(input *AddRoleToInstanceProfileInput) (*AddRoleToInstanceProfileOutput, error)
- func (c *IAM) AddRoleToInstanceProfileRequest(input *AddRoleToInstanceProfileInput) (req *aws.Request, output *AddRoleToInstanceProfileOutput)
- func (c *IAM) AddUserToGroup(input *AddUserToGroupInput) (*AddUserToGroupOutput, error)
- func (c *IAM) AddUserToGroupRequest(input *AddUserToGroupInput) (req *aws.Request, output *AddUserToGroupOutput)
- func (c *IAM) AttachGroupPolicy(input *AttachGroupPolicyInput) (*AttachGroupPolicyOutput, error)
- func (c *IAM) AttachGroupPolicyRequest(input *AttachGroupPolicyInput) (req *aws.Request, output *AttachGroupPolicyOutput)
- func (c *IAM) AttachRolePolicy(input *AttachRolePolicyInput) (*AttachRolePolicyOutput, error)
- func (c *IAM) AttachRolePolicyRequest(input *AttachRolePolicyInput) (req *aws.Request, output *AttachRolePolicyOutput)
- func (c *IAM) AttachUserPolicy(input *AttachUserPolicyInput) (*AttachUserPolicyOutput, error)
- func (c *IAM) AttachUserPolicyRequest(input *AttachUserPolicyInput) (req *aws.Request, output *AttachUserPolicyOutput)
- func (c *IAM) ChangePassword(input *ChangePasswordInput) (*ChangePasswordOutput, error)
- func (c *IAM) ChangePasswordRequest(input *ChangePasswordInput) (req *aws.Request, output *ChangePasswordOutput)
- func (c *IAM) CreateAccessKey(input *CreateAccessKeyInput) (*CreateAccessKeyOutput, error)
- func (c *IAM) CreateAccessKeyRequest(input *CreateAccessKeyInput) (req *aws.Request, output *CreateAccessKeyOutput)
- func (c *IAM) CreateAccountAlias(input *CreateAccountAliasInput) (*CreateAccountAliasOutput, error)
- func (c *IAM) CreateAccountAliasRequest(input *CreateAccountAliasInput) (req *aws.Request, output *CreateAccountAliasOutput)
- func (c *IAM) CreateGroup(input *CreateGroupInput) (*CreateGroupOutput, error)
- func (c *IAM) CreateGroupRequest(input *CreateGroupInput) (req *aws.Request, output *CreateGroupOutput)
- func (c *IAM) CreateInstanceProfile(input *CreateInstanceProfileInput) (*CreateInstanceProfileOutput, error)
- func (c *IAM) CreateInstanceProfileRequest(input *CreateInstanceProfileInput) (req *aws.Request, output *CreateInstanceProfileOutput)
- func (c *IAM) CreateLoginProfile(input *CreateLoginProfileInput) (*CreateLoginProfileOutput, error)
- func (c *IAM) CreateLoginProfileRequest(input *CreateLoginProfileInput) (req *aws.Request, output *CreateLoginProfileOutput)
- func (c *IAM) CreateOpenIDConnectProvider(input *CreateOpenIDConnectProviderInput) (*CreateOpenIDConnectProviderOutput, error)
- func (c *IAM) CreateOpenIDConnectProviderRequest(input *CreateOpenIDConnectProviderInput) (req *aws.Request, output *CreateOpenIDConnectProviderOutput)
- func (c *IAM) CreatePolicy(input *CreatePolicyInput) (*CreatePolicyOutput, error)
- func (c *IAM) CreatePolicyRequest(input *CreatePolicyInput) (req *aws.Request, output *CreatePolicyOutput)
- func (c *IAM) CreatePolicyVersion(input *CreatePolicyVersionInput) (*CreatePolicyVersionOutput, error)
- func (c *IAM) CreatePolicyVersionRequest(input *CreatePolicyVersionInput) (req *aws.Request, output *CreatePolicyVersionOutput)
- func (c *IAM) CreateRole(input *CreateRoleInput) (*CreateRoleOutput, error)
- func (c *IAM) CreateRoleRequest(input *CreateRoleInput) (req *aws.Request, output *CreateRoleOutput)
- func (c *IAM) CreateSAMLProvider(input *CreateSAMLProviderInput) (*CreateSAMLProviderOutput, error)
- func (c *IAM) CreateSAMLProviderRequest(input *CreateSAMLProviderInput) (req *aws.Request, output *CreateSAMLProviderOutput)
- func (c *IAM) CreateUser(input *CreateUserInput) (*CreateUserOutput, error)
- func (c *IAM) CreateUserRequest(input *CreateUserInput) (req *aws.Request, output *CreateUserOutput)
- func (c *IAM) CreateVirtualMFADevice(input *CreateVirtualMFADeviceInput) (*CreateVirtualMFADeviceOutput, error)
- func (c *IAM) CreateVirtualMFADeviceRequest(input *CreateVirtualMFADeviceInput) (req *aws.Request, output *CreateVirtualMFADeviceOutput)
- func (c *IAM) DeactivateMFADevice(input *DeactivateMFADeviceInput) (*DeactivateMFADeviceOutput, error)
- func (c *IAM) DeactivateMFADeviceRequest(input *DeactivateMFADeviceInput) (req *aws.Request, output *DeactivateMFADeviceOutput)
- func (c *IAM) DeleteAccessKey(input *DeleteAccessKeyInput) (*DeleteAccessKeyOutput, error)
- func (c *IAM) DeleteAccessKeyRequest(input *DeleteAccessKeyInput) (req *aws.Request, output *DeleteAccessKeyOutput)
- func (c *IAM) DeleteAccountAlias(input *DeleteAccountAliasInput) (*DeleteAccountAliasOutput, error)
- func (c *IAM) DeleteAccountAliasRequest(input *DeleteAccountAliasInput) (req *aws.Request, output *DeleteAccountAliasOutput)
- func (c *IAM) DeleteAccountPasswordPolicy(input *DeleteAccountPasswordPolicyInput) (*DeleteAccountPasswordPolicyOutput, error)
- func (c *IAM) DeleteAccountPasswordPolicyRequest(input *DeleteAccountPasswordPolicyInput) (req *aws.Request, output *DeleteAccountPasswordPolicyOutput)
- func (c *IAM) DeleteGroup(input *DeleteGroupInput) (*DeleteGroupOutput, error)
- func (c *IAM) DeleteGroupPolicy(input *DeleteGroupPolicyInput) (*DeleteGroupPolicyOutput, error)
- func (c *IAM) DeleteGroupPolicyRequest(input *DeleteGroupPolicyInput) (req *aws.Request, output *DeleteGroupPolicyOutput)
- func (c *IAM) DeleteGroupRequest(input *DeleteGroupInput) (req *aws.Request, output *DeleteGroupOutput)
- func (c *IAM) DeleteInstanceProfile(input *DeleteInstanceProfileInput) (*DeleteInstanceProfileOutput, error)
- func (c *IAM) DeleteInstanceProfileRequest(input *DeleteInstanceProfileInput) (req *aws.Request, output *DeleteInstanceProfileOutput)
- func (c *IAM) DeleteLoginProfile(input *DeleteLoginProfileInput) (*DeleteLoginProfileOutput, error)
- func (c *IAM) DeleteLoginProfileRequest(input *DeleteLoginProfileInput) (req *aws.Request, output *DeleteLoginProfileOutput)
- func (c *IAM) DeleteOpenIDConnectProvider(input *DeleteOpenIDConnectProviderInput) (*DeleteOpenIDConnectProviderOutput, error)
- func (c *IAM) DeleteOpenIDConnectProviderRequest(input *DeleteOpenIDConnectProviderInput) (req *aws.Request, output *DeleteOpenIDConnectProviderOutput)
- func (c *IAM) DeletePolicy(input *DeletePolicyInput) (*DeletePolicyOutput, error)
- func (c *IAM) DeletePolicyRequest(input *DeletePolicyInput) (req *aws.Request, output *DeletePolicyOutput)
- func (c *IAM) DeletePolicyVersion(input *DeletePolicyVersionInput) (*DeletePolicyVersionOutput, error)
- func (c *IAM) DeletePolicyVersionRequest(input *DeletePolicyVersionInput) (req *aws.Request, output *DeletePolicyVersionOutput)
- func (c *IAM) DeleteRole(input *DeleteRoleInput) (*DeleteRoleOutput, error)
- func (c *IAM) DeleteRolePolicy(input *DeleteRolePolicyInput) (*DeleteRolePolicyOutput, error)
- func (c *IAM) DeleteRolePolicyRequest(input *DeleteRolePolicyInput) (req *aws.Request, output *DeleteRolePolicyOutput)
- func (c *IAM) DeleteRoleRequest(input *DeleteRoleInput) (req *aws.Request, output *DeleteRoleOutput)
- func (c *IAM) DeleteSAMLProvider(input *DeleteSAMLProviderInput) (*DeleteSAMLProviderOutput, error)
- func (c *IAM) DeleteSAMLProviderRequest(input *DeleteSAMLProviderInput) (req *aws.Request, output *DeleteSAMLProviderOutput)
- func (c *IAM) DeleteServerCertificate(input *DeleteServerCertificateInput) (*DeleteServerCertificateOutput, error)
- func (c *IAM) DeleteServerCertificateRequest(input *DeleteServerCertificateInput) (req *aws.Request, output *DeleteServerCertificateOutput)
- func (c *IAM) DeleteSigningCertificate(input *DeleteSigningCertificateInput) (*DeleteSigningCertificateOutput, error)
- func (c *IAM) DeleteSigningCertificateRequest(input *DeleteSigningCertificateInput) (req *aws.Request, output *DeleteSigningCertificateOutput)
- func (c *IAM) DeleteUser(input *DeleteUserInput) (*DeleteUserOutput, error)
- func (c *IAM) DeleteUserPolicy(input *DeleteUserPolicyInput) (*DeleteUserPolicyOutput, error)
- func (c *IAM) DeleteUserPolicyRequest(input *DeleteUserPolicyInput) (req *aws.Request, output *DeleteUserPolicyOutput)
- func (c *IAM) DeleteUserRequest(input *DeleteUserInput) (req *aws.Request, output *DeleteUserOutput)
- func (c *IAM) DeleteVirtualMFADevice(input *DeleteVirtualMFADeviceInput) (*DeleteVirtualMFADeviceOutput, error)
- func (c *IAM) DeleteVirtualMFADeviceRequest(input *DeleteVirtualMFADeviceInput) (req *aws.Request, output *DeleteVirtualMFADeviceOutput)
- func (c *IAM) DetachGroupPolicy(input *DetachGroupPolicyInput) (*DetachGroupPolicyOutput, error)
- func (c *IAM) DetachGroupPolicyRequest(input *DetachGroupPolicyInput) (req *aws.Request, output *DetachGroupPolicyOutput)
- func (c *IAM) DetachRolePolicy(input *DetachRolePolicyInput) (*DetachRolePolicyOutput, error)
- func (c *IAM) DetachRolePolicyRequest(input *DetachRolePolicyInput) (req *aws.Request, output *DetachRolePolicyOutput)
- func (c *IAM) DetachUserPolicy(input *DetachUserPolicyInput) (*DetachUserPolicyOutput, error)
- func (c *IAM) DetachUserPolicyRequest(input *DetachUserPolicyInput) (req *aws.Request, output *DetachUserPolicyOutput)
- func (c *IAM) EnableMFADevice(input *EnableMFADeviceInput) (*EnableMFADeviceOutput, error)
- func (c *IAM) EnableMFADeviceRequest(input *EnableMFADeviceInput) (req *aws.Request, output *EnableMFADeviceOutput)
- func (c *IAM) GenerateCredentialReport(input *GenerateCredentialReportInput) (*GenerateCredentialReportOutput, error)
- func (c *IAM) GenerateCredentialReportRequest(input *GenerateCredentialReportInput) (req *aws.Request, output *GenerateCredentialReportOutput)
- func (c *IAM) GetAccessKeyLastUsed(input *GetAccessKeyLastUsedInput) (*GetAccessKeyLastUsedOutput, error)
- func (c *IAM) GetAccessKeyLastUsedRequest(input *GetAccessKeyLastUsedInput) (req *aws.Request, output *GetAccessKeyLastUsedOutput)
- func (c *IAM) GetAccountAuthorizationDetails(input *GetAccountAuthorizationDetailsInput) (*GetAccountAuthorizationDetailsOutput, error)
- func (c *IAM) GetAccountAuthorizationDetailsPages(input *GetAccountAuthorizationDetailsInput, ...) error
- func (c *IAM) GetAccountAuthorizationDetailsRequest(input *GetAccountAuthorizationDetailsInput) (req *aws.Request, output *GetAccountAuthorizationDetailsOutput)
- func (c *IAM) GetAccountPasswordPolicy(input *GetAccountPasswordPolicyInput) (*GetAccountPasswordPolicyOutput, error)
- func (c *IAM) GetAccountPasswordPolicyRequest(input *GetAccountPasswordPolicyInput) (req *aws.Request, output *GetAccountPasswordPolicyOutput)
- func (c *IAM) GetAccountSummary(input *GetAccountSummaryInput) (*GetAccountSummaryOutput, error)
- func (c *IAM) GetAccountSummaryRequest(input *GetAccountSummaryInput) (req *aws.Request, output *GetAccountSummaryOutput)
- func (c *IAM) GetCredentialReport(input *GetCredentialReportInput) (*GetCredentialReportOutput, error)
- func (c *IAM) GetCredentialReportRequest(input *GetCredentialReportInput) (req *aws.Request, output *GetCredentialReportOutput)
- func (c *IAM) GetGroup(input *GetGroupInput) (*GetGroupOutput, error)
- func (c *IAM) GetGroupPages(input *GetGroupInput, ...) error
- func (c *IAM) GetGroupPolicy(input *GetGroupPolicyInput) (*GetGroupPolicyOutput, error)
- func (c *IAM) GetGroupPolicyRequest(input *GetGroupPolicyInput) (req *aws.Request, output *GetGroupPolicyOutput)
- func (c *IAM) GetGroupRequest(input *GetGroupInput) (req *aws.Request, output *GetGroupOutput)
- func (c *IAM) GetInstanceProfile(input *GetInstanceProfileInput) (*GetInstanceProfileOutput, error)
- func (c *IAM) GetInstanceProfileRequest(input *GetInstanceProfileInput) (req *aws.Request, output *GetInstanceProfileOutput)
- func (c *IAM) GetLoginProfile(input *GetLoginProfileInput) (*GetLoginProfileOutput, error)
- func (c *IAM) GetLoginProfileRequest(input *GetLoginProfileInput) (req *aws.Request, output *GetLoginProfileOutput)
- func (c *IAM) GetOpenIDConnectProvider(input *GetOpenIDConnectProviderInput) (*GetOpenIDConnectProviderOutput, error)
- func (c *IAM) GetOpenIDConnectProviderRequest(input *GetOpenIDConnectProviderInput) (req *aws.Request, output *GetOpenIDConnectProviderOutput)
- func (c *IAM) GetPolicy(input *GetPolicyInput) (*GetPolicyOutput, error)
- func (c *IAM) GetPolicyRequest(input *GetPolicyInput) (req *aws.Request, output *GetPolicyOutput)
- func (c *IAM) GetPolicyVersion(input *GetPolicyVersionInput) (*GetPolicyVersionOutput, error)
- func (c *IAM) GetPolicyVersionRequest(input *GetPolicyVersionInput) (req *aws.Request, output *GetPolicyVersionOutput)
- func (c *IAM) GetRole(input *GetRoleInput) (*GetRoleOutput, error)
- func (c *IAM) GetRolePolicy(input *GetRolePolicyInput) (*GetRolePolicyOutput, error)
- func (c *IAM) GetRolePolicyRequest(input *GetRolePolicyInput) (req *aws.Request, output *GetRolePolicyOutput)
- func (c *IAM) GetRoleRequest(input *GetRoleInput) (req *aws.Request, output *GetRoleOutput)
- func (c *IAM) GetSAMLProvider(input *GetSAMLProviderInput) (*GetSAMLProviderOutput, error)
- func (c *IAM) GetSAMLProviderRequest(input *GetSAMLProviderInput) (req *aws.Request, output *GetSAMLProviderOutput)
- func (c *IAM) GetServerCertificate(input *GetServerCertificateInput) (*GetServerCertificateOutput, error)
- func (c *IAM) GetServerCertificateRequest(input *GetServerCertificateInput) (req *aws.Request, output *GetServerCertificateOutput)
- func (c *IAM) GetUser(input *GetUserInput) (*GetUserOutput, error)
- func (c *IAM) GetUserPolicy(input *GetUserPolicyInput) (*GetUserPolicyOutput, error)
- func (c *IAM) GetUserPolicyRequest(input *GetUserPolicyInput) (req *aws.Request, output *GetUserPolicyOutput)
- func (c *IAM) GetUserRequest(input *GetUserInput) (req *aws.Request, output *GetUserOutput)
- func (c *IAM) ListAccessKeys(input *ListAccessKeysInput) (*ListAccessKeysOutput, error)
- func (c *IAM) ListAccessKeysPages(input *ListAccessKeysInput, ...) error
- func (c *IAM) ListAccessKeysRequest(input *ListAccessKeysInput) (req *aws.Request, output *ListAccessKeysOutput)
- func (c *IAM) ListAccountAliases(input *ListAccountAliasesInput) (*ListAccountAliasesOutput, error)
- func (c *IAM) ListAccountAliasesPages(input *ListAccountAliasesInput, ...) error
- func (c *IAM) ListAccountAliasesRequest(input *ListAccountAliasesInput) (req *aws.Request, output *ListAccountAliasesOutput)
- func (c *IAM) ListAttachedGroupPolicies(input *ListAttachedGroupPoliciesInput) (*ListAttachedGroupPoliciesOutput, error)
- func (c *IAM) ListAttachedGroupPoliciesRequest(input *ListAttachedGroupPoliciesInput) (req *aws.Request, output *ListAttachedGroupPoliciesOutput)
- func (c *IAM) ListAttachedRolePolicies(input *ListAttachedRolePoliciesInput) (*ListAttachedRolePoliciesOutput, error)
- func (c *IAM) ListAttachedRolePoliciesRequest(input *ListAttachedRolePoliciesInput) (req *aws.Request, output *ListAttachedRolePoliciesOutput)
- func (c *IAM) ListAttachedUserPolicies(input *ListAttachedUserPoliciesInput) (*ListAttachedUserPoliciesOutput, error)
- func (c *IAM) ListAttachedUserPoliciesRequest(input *ListAttachedUserPoliciesInput) (req *aws.Request, output *ListAttachedUserPoliciesOutput)
- func (c *IAM) ListEntitiesForPolicy(input *ListEntitiesForPolicyInput) (*ListEntitiesForPolicyOutput, error)
- func (c *IAM) ListEntitiesForPolicyRequest(input *ListEntitiesForPolicyInput) (req *aws.Request, output *ListEntitiesForPolicyOutput)
- func (c *IAM) ListGroupPolicies(input *ListGroupPoliciesInput) (*ListGroupPoliciesOutput, error)
- func (c *IAM) ListGroupPoliciesPages(input *ListGroupPoliciesInput, ...) error
- func (c *IAM) ListGroupPoliciesRequest(input *ListGroupPoliciesInput) (req *aws.Request, output *ListGroupPoliciesOutput)
- func (c *IAM) ListGroups(input *ListGroupsInput) (*ListGroupsOutput, error)
- func (c *IAM) ListGroupsForUser(input *ListGroupsForUserInput) (*ListGroupsForUserOutput, error)
- func (c *IAM) ListGroupsForUserPages(input *ListGroupsForUserInput, ...) error
- func (c *IAM) ListGroupsForUserRequest(input *ListGroupsForUserInput) (req *aws.Request, output *ListGroupsForUserOutput)
- func (c *IAM) ListGroupsPages(input *ListGroupsInput, ...) error
- func (c *IAM) ListGroupsRequest(input *ListGroupsInput) (req *aws.Request, output *ListGroupsOutput)
- func (c *IAM) ListInstanceProfiles(input *ListInstanceProfilesInput) (*ListInstanceProfilesOutput, error)
- func (c *IAM) ListInstanceProfilesForRole(input *ListInstanceProfilesForRoleInput) (*ListInstanceProfilesForRoleOutput, error)
- func (c *IAM) ListInstanceProfilesForRolePages(input *ListInstanceProfilesForRoleInput, ...) error
- func (c *IAM) ListInstanceProfilesForRoleRequest(input *ListInstanceProfilesForRoleInput) (req *aws.Request, output *ListInstanceProfilesForRoleOutput)
- func (c *IAM) ListInstanceProfilesPages(input *ListInstanceProfilesInput, ...) error
- func (c *IAM) ListInstanceProfilesRequest(input *ListInstanceProfilesInput) (req *aws.Request, output *ListInstanceProfilesOutput)
- func (c *IAM) ListMFADevices(input *ListMFADevicesInput) (*ListMFADevicesOutput, error)
- func (c *IAM) ListMFADevicesPages(input *ListMFADevicesInput, ...) error
- func (c *IAM) ListMFADevicesRequest(input *ListMFADevicesInput) (req *aws.Request, output *ListMFADevicesOutput)
- func (c *IAM) ListOpenIDConnectProviders(input *ListOpenIDConnectProvidersInput) (*ListOpenIDConnectProvidersOutput, error)
- func (c *IAM) ListOpenIDConnectProvidersRequest(input *ListOpenIDConnectProvidersInput) (req *aws.Request, output *ListOpenIDConnectProvidersOutput)
- func (c *IAM) ListPolicies(input *ListPoliciesInput) (*ListPoliciesOutput, error)
- func (c *IAM) ListPoliciesRequest(input *ListPoliciesInput) (req *aws.Request, output *ListPoliciesOutput)
- func (c *IAM) ListPolicyVersions(input *ListPolicyVersionsInput) (*ListPolicyVersionsOutput, error)
- func (c *IAM) ListPolicyVersionsRequest(input *ListPolicyVersionsInput) (req *aws.Request, output *ListPolicyVersionsOutput)
- func (c *IAM) ListRolePolicies(input *ListRolePoliciesInput) (*ListRolePoliciesOutput, error)
- func (c *IAM) ListRolePoliciesPages(input *ListRolePoliciesInput, ...) error
- func (c *IAM) ListRolePoliciesRequest(input *ListRolePoliciesInput) (req *aws.Request, output *ListRolePoliciesOutput)
- func (c *IAM) ListRoles(input *ListRolesInput) (*ListRolesOutput, error)
- func (c *IAM) ListRolesPages(input *ListRolesInput, ...) error
- func (c *IAM) ListRolesRequest(input *ListRolesInput) (req *aws.Request, output *ListRolesOutput)
- func (c *IAM) ListSAMLProviders(input *ListSAMLProvidersInput) (*ListSAMLProvidersOutput, error)
- func (c *IAM) ListSAMLProvidersRequest(input *ListSAMLProvidersInput) (req *aws.Request, output *ListSAMLProvidersOutput)
- func (c *IAM) ListServerCertificates(input *ListServerCertificatesInput) (*ListServerCertificatesOutput, error)
- func (c *IAM) ListServerCertificatesPages(input *ListServerCertificatesInput, ...) error
- func (c *IAM) ListServerCertificatesRequest(input *ListServerCertificatesInput) (req *aws.Request, output *ListServerCertificatesOutput)
- func (c *IAM) ListSigningCertificates(input *ListSigningCertificatesInput) (*ListSigningCertificatesOutput, error)
- func (c *IAM) ListSigningCertificatesPages(input *ListSigningCertificatesInput, ...) error
- func (c *IAM) ListSigningCertificatesRequest(input *ListSigningCertificatesInput) (req *aws.Request, output *ListSigningCertificatesOutput)
- func (c *IAM) ListUserPolicies(input *ListUserPoliciesInput) (*ListUserPoliciesOutput, error)
- func (c *IAM) ListUserPoliciesPages(input *ListUserPoliciesInput, ...) error
- func (c *IAM) ListUserPoliciesRequest(input *ListUserPoliciesInput) (req *aws.Request, output *ListUserPoliciesOutput)
- func (c *IAM) ListUsers(input *ListUsersInput) (*ListUsersOutput, error)
- func (c *IAM) ListUsersPages(input *ListUsersInput, ...) error
- func (c *IAM) ListUsersRequest(input *ListUsersInput) (req *aws.Request, output *ListUsersOutput)
- func (c *IAM) ListVirtualMFADevices(input *ListVirtualMFADevicesInput) (*ListVirtualMFADevicesOutput, error)
- func (c *IAM) ListVirtualMFADevicesPages(input *ListVirtualMFADevicesInput, ...) error
- func (c *IAM) ListVirtualMFADevicesRequest(input *ListVirtualMFADevicesInput) (req *aws.Request, output *ListVirtualMFADevicesOutput)
- func (c *IAM) PutGroupPolicy(input *PutGroupPolicyInput) (*PutGroupPolicyOutput, error)
- func (c *IAM) PutGroupPolicyRequest(input *PutGroupPolicyInput) (req *aws.Request, output *PutGroupPolicyOutput)
- func (c *IAM) PutRolePolicy(input *PutRolePolicyInput) (*PutRolePolicyOutput, error)
- func (c *IAM) PutRolePolicyRequest(input *PutRolePolicyInput) (req *aws.Request, output *PutRolePolicyOutput)
- func (c *IAM) PutUserPolicy(input *PutUserPolicyInput) (*PutUserPolicyOutput, error)
- func (c *IAM) PutUserPolicyRequest(input *PutUserPolicyInput) (req *aws.Request, output *PutUserPolicyOutput)
- func (c *IAM) RemoveClientIDFromOpenIDConnectProvider(input *RemoveClientIDFromOpenIDConnectProviderInput) (*RemoveClientIDFromOpenIDConnectProviderOutput, error)
- func (c *IAM) RemoveClientIDFromOpenIDConnectProviderRequest(input *RemoveClientIDFromOpenIDConnectProviderInput) (req *aws.Request, output *RemoveClientIDFromOpenIDConnectProviderOutput)
- func (c *IAM) RemoveRoleFromInstanceProfile(input *RemoveRoleFromInstanceProfileInput) (*RemoveRoleFromInstanceProfileOutput, error)
- func (c *IAM) RemoveRoleFromInstanceProfileRequest(input *RemoveRoleFromInstanceProfileInput) (req *aws.Request, output *RemoveRoleFromInstanceProfileOutput)
- func (c *IAM) RemoveUserFromGroup(input *RemoveUserFromGroupInput) (*RemoveUserFromGroupOutput, error)
- func (c *IAM) RemoveUserFromGroupRequest(input *RemoveUserFromGroupInput) (req *aws.Request, output *RemoveUserFromGroupOutput)
- func (c *IAM) ResyncMFADevice(input *ResyncMFADeviceInput) (*ResyncMFADeviceOutput, error)
- func (c *IAM) ResyncMFADeviceRequest(input *ResyncMFADeviceInput) (req *aws.Request, output *ResyncMFADeviceOutput)
- func (c *IAM) SetDefaultPolicyVersion(input *SetDefaultPolicyVersionInput) (*SetDefaultPolicyVersionOutput, error)
- func (c *IAM) SetDefaultPolicyVersionRequest(input *SetDefaultPolicyVersionInput) (req *aws.Request, output *SetDefaultPolicyVersionOutput)
- func (c *IAM) UpdateAccessKey(input *UpdateAccessKeyInput) (*UpdateAccessKeyOutput, error)
- func (c *IAM) UpdateAccessKeyRequest(input *UpdateAccessKeyInput) (req *aws.Request, output *UpdateAccessKeyOutput)
- func (c *IAM) UpdateAccountPasswordPolicy(input *UpdateAccountPasswordPolicyInput) (*UpdateAccountPasswordPolicyOutput, error)
- func (c *IAM) UpdateAccountPasswordPolicyRequest(input *UpdateAccountPasswordPolicyInput) (req *aws.Request, output *UpdateAccountPasswordPolicyOutput)
- func (c *IAM) UpdateAssumeRolePolicy(input *UpdateAssumeRolePolicyInput) (*UpdateAssumeRolePolicyOutput, error)
- func (c *IAM) UpdateAssumeRolePolicyRequest(input *UpdateAssumeRolePolicyInput) (req *aws.Request, output *UpdateAssumeRolePolicyOutput)
- func (c *IAM) UpdateGroup(input *UpdateGroupInput) (*UpdateGroupOutput, error)
- func (c *IAM) UpdateGroupRequest(input *UpdateGroupInput) (req *aws.Request, output *UpdateGroupOutput)
- func (c *IAM) UpdateLoginProfile(input *UpdateLoginProfileInput) (*UpdateLoginProfileOutput, error)
- func (c *IAM) UpdateLoginProfileRequest(input *UpdateLoginProfileInput) (req *aws.Request, output *UpdateLoginProfileOutput)
- func (c *IAM) UpdateOpenIDConnectProviderThumbprint(input *UpdateOpenIDConnectProviderThumbprintInput) (*UpdateOpenIDConnectProviderThumbprintOutput, error)
- func (c *IAM) UpdateOpenIDConnectProviderThumbprintRequest(input *UpdateOpenIDConnectProviderThumbprintInput) (req *aws.Request, output *UpdateOpenIDConnectProviderThumbprintOutput)
- func (c *IAM) UpdateSAMLProvider(input *UpdateSAMLProviderInput) (*UpdateSAMLProviderOutput, error)
- func (c *IAM) UpdateSAMLProviderRequest(input *UpdateSAMLProviderInput) (req *aws.Request, output *UpdateSAMLProviderOutput)
- func (c *IAM) UpdateServerCertificate(input *UpdateServerCertificateInput) (*UpdateServerCertificateOutput, error)
- func (c *IAM) UpdateServerCertificateRequest(input *UpdateServerCertificateInput) (req *aws.Request, output *UpdateServerCertificateOutput)
- func (c *IAM) UpdateSigningCertificate(input *UpdateSigningCertificateInput) (*UpdateSigningCertificateOutput, error)
- func (c *IAM) UpdateSigningCertificateRequest(input *UpdateSigningCertificateInput) (req *aws.Request, output *UpdateSigningCertificateOutput)
- func (c *IAM) UpdateUser(input *UpdateUserInput) (*UpdateUserOutput, error)
- func (c *IAM) UpdateUserRequest(input *UpdateUserInput) (req *aws.Request, output *UpdateUserOutput)
- func (c *IAM) UploadServerCertificate(input *UploadServerCertificateInput) (*UploadServerCertificateOutput, error)
- func (c *IAM) UploadServerCertificateRequest(input *UploadServerCertificateInput) (req *aws.Request, output *UploadServerCertificateOutput)
- func (c *IAM) UploadSigningCertificate(input *UploadSigningCertificateInput) (*UploadSigningCertificateOutput, error)
- func (c *IAM) UploadSigningCertificateRequest(input *UploadSigningCertificateInput) (req *aws.Request, output *UploadSigningCertificateOutput)
- type InstanceProfile
- type ListAccessKeysInput
- type ListAccessKeysOutput
- type ListAccountAliasesInput
- type ListAccountAliasesOutput
- type ListAttachedGroupPoliciesInput
- type ListAttachedGroupPoliciesOutput
- type ListAttachedRolePoliciesInput
- type ListAttachedRolePoliciesOutput
- type ListAttachedUserPoliciesInput
- type ListAttachedUserPoliciesOutput
- type ListEntitiesForPolicyInput
- type ListEntitiesForPolicyOutput
- type ListGroupPoliciesInput
- type ListGroupPoliciesOutput
- type ListGroupsForUserInput
- type ListGroupsForUserOutput
- type ListGroupsInput
- type ListGroupsOutput
- type ListInstanceProfilesForRoleInput
- type ListInstanceProfilesForRoleOutput
- type ListInstanceProfilesInput
- type ListInstanceProfilesOutput
- type ListMFADevicesInput
- type ListMFADevicesOutput
- type ListOpenIDConnectProvidersInput
- type ListOpenIDConnectProvidersOutput
- type ListPoliciesInput
- type ListPoliciesOutput
- type ListPolicyVersionsInput
- type ListPolicyVersionsOutput
- type ListRolePoliciesInput
- type ListRolePoliciesOutput
- type ListRolesInput
- type ListRolesOutput
- type ListSAMLProvidersInput
- type ListSAMLProvidersOutput
- type ListServerCertificatesInput
- type ListServerCertificatesOutput
- type ListSigningCertificatesInput
- type ListSigningCertificatesOutput
- type ListUserPoliciesInput
- type ListUserPoliciesOutput
- type ListUsersInput
- type ListUsersOutput
- type ListVirtualMFADevicesInput
- type ListVirtualMFADevicesOutput
- type LoginProfile
- type MFADevice
- type ManagedPolicyDetail
- type OpenIDConnectProviderListEntry
- type PasswordPolicy
- type Policy
- type PolicyDetail
- type PolicyGroup
- type PolicyRole
- type PolicyUser
- type PolicyVersion
- type PutGroupPolicyInput
- type PutGroupPolicyOutput
- type PutRolePolicyInput
- type PutRolePolicyOutput
- type PutUserPolicyInput
- type PutUserPolicyOutput
- type RemoveClientIDFromOpenIDConnectProviderInput
- type RemoveClientIDFromOpenIDConnectProviderOutput
- type RemoveRoleFromInstanceProfileInput
- type RemoveRoleFromInstanceProfileOutput
- type RemoveUserFromGroupInput
- type RemoveUserFromGroupOutput
- type ResyncMFADeviceInput
- type ResyncMFADeviceOutput
- type Role
- type RoleDetail
- type SAMLProviderListEntry
- type ServerCertificate
- type ServerCertificateMetadata
- type SetDefaultPolicyVersionInput
- type SetDefaultPolicyVersionOutput
- type SigningCertificate
- type UpdateAccessKeyInput
- type UpdateAccessKeyOutput
- type UpdateAccountPasswordPolicyInput
- type UpdateAccountPasswordPolicyOutput
- type UpdateAssumeRolePolicyInput
- type UpdateAssumeRolePolicyOutput
- type UpdateGroupInput
- type UpdateGroupOutput
- type UpdateLoginProfileInput
- type UpdateLoginProfileOutput
- type UpdateOpenIDConnectProviderThumbprintInput
- type UpdateOpenIDConnectProviderThumbprintOutput
- type UpdateSAMLProviderInput
- type UpdateSAMLProviderOutput
- type UpdateServerCertificateInput
- type UpdateServerCertificateOutput
- type UpdateSigningCertificateInput
- type UpdateSigningCertificateOutput
- type UpdateUserInput
- type UpdateUserOutput
- type UploadServerCertificateInput
- type UploadServerCertificateOutput
- type UploadSigningCertificateInput
- type UploadSigningCertificateOutput
- type User
- type UserDetail
- type VirtualMFADevice
Examples ¶
- IAM.AddClientIDToOpenIDConnectProvider
- IAM.AddRoleToInstanceProfile
- IAM.AddUserToGroup
- IAM.AttachGroupPolicy
- IAM.AttachRolePolicy
- IAM.AttachUserPolicy
- IAM.ChangePassword
- IAM.CreateAccessKey
- IAM.CreateAccountAlias
- IAM.CreateGroup
- IAM.CreateInstanceProfile
- IAM.CreateLoginProfile
- IAM.CreateOpenIDConnectProvider
- IAM.CreatePolicy
- IAM.CreatePolicyVersion
- IAM.CreateRole
- IAM.CreateSAMLProvider
- IAM.CreateUser
- IAM.CreateVirtualMFADevice
- IAM.DeactivateMFADevice
- IAM.DeleteAccessKey
- IAM.DeleteAccountAlias
- IAM.DeleteAccountPasswordPolicy
- IAM.DeleteGroup
- IAM.DeleteGroupPolicy
- IAM.DeleteInstanceProfile
- IAM.DeleteLoginProfile
- IAM.DeleteOpenIDConnectProvider
- IAM.DeletePolicy
- IAM.DeletePolicyVersion
- IAM.DeleteRole
- IAM.DeleteRolePolicy
- IAM.DeleteSAMLProvider
- IAM.DeleteServerCertificate
- IAM.DeleteSigningCertificate
- IAM.DeleteUser
- IAM.DeleteUserPolicy
- IAM.DeleteVirtualMFADevice
- IAM.DetachGroupPolicy
- IAM.DetachRolePolicy
- IAM.DetachUserPolicy
- IAM.EnableMFADevice
- IAM.GenerateCredentialReport
- IAM.GetAccessKeyLastUsed
- IAM.GetAccountAuthorizationDetails
- IAM.GetAccountPasswordPolicy
- IAM.GetAccountSummary
- IAM.GetCredentialReport
- IAM.GetGroup
- IAM.GetGroupPolicy
- IAM.GetInstanceProfile
- IAM.GetLoginProfile
- IAM.GetOpenIDConnectProvider
- IAM.GetPolicy
- IAM.GetPolicyVersion
- IAM.GetRole
- IAM.GetRolePolicy
- IAM.GetSAMLProvider
- IAM.GetServerCertificate
- IAM.GetUser
- IAM.GetUserPolicy
- IAM.ListAccessKeys
- IAM.ListAccountAliases
- IAM.ListAttachedGroupPolicies
- IAM.ListAttachedRolePolicies
- IAM.ListAttachedUserPolicies
- IAM.ListEntitiesForPolicy
- IAM.ListGroupPolicies
- IAM.ListGroups
- IAM.ListGroupsForUser
- IAM.ListInstanceProfiles
- IAM.ListInstanceProfilesForRole
- IAM.ListMFADevices
- IAM.ListOpenIDConnectProviders
- IAM.ListPolicies
- IAM.ListPolicyVersions
- IAM.ListRolePolicies
- IAM.ListRoles
- IAM.ListSAMLProviders
- IAM.ListServerCertificates
- IAM.ListSigningCertificates
- IAM.ListUserPolicies
- IAM.ListUsers
- IAM.ListVirtualMFADevices
- IAM.PutGroupPolicy
- IAM.PutRolePolicy
- IAM.PutUserPolicy
- IAM.RemoveClientIDFromOpenIDConnectProvider
- IAM.RemoveRoleFromInstanceProfile
- IAM.RemoveUserFromGroup
- IAM.ResyncMFADevice
- IAM.SetDefaultPolicyVersion
- IAM.UpdateAccessKey
- IAM.UpdateAccountPasswordPolicy
- IAM.UpdateAssumeRolePolicy
- IAM.UpdateGroup
- IAM.UpdateLoginProfile
- IAM.UpdateOpenIDConnectProviderThumbprint
- IAM.UpdateSAMLProvider
- IAM.UpdateServerCertificate
- IAM.UpdateSigningCertificate
- IAM.UpdateUser
- IAM.UploadServerCertificate
- IAM.UploadSigningCertificate
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type AccessKey ¶
type AccessKey struct { // The ID for this access key. AccessKeyID *string `locationName:"AccessKeyId" type:"string" required:"true"` // The date when the access key was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The secret key used to sign requests. SecretAccessKey *string `type:"string" required:"true"` // The status of the access key. Active means the key is valid for API calls, // while Inactive means it is not. Status *string `type:"string" required:"true"` // The name of the IAM user that the access key is associated with. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
Contains information about an AWS access key.
This data type is used as a response element in the CreateAccessKey and
ListAccessKeys actions.
The SecretAccessKey value is returned only in response to CreateAccessKey. You can get a secret access key only when you first create an access key; you cannot recover the secret access key later. If you lose a secret access key, you must create a new access key.
type AccessKeyLastUsed ¶
type AccessKeyLastUsed struct { // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the access key was most recently used. LastUsedDate *time.Time `type:"timestamp" timestampFormat:"iso8601" required:"true"` // The AWS region where this access key was most recently used. // // For more information about AWS regions, see Regions and Endpoints (http://docs.aws.amazon.com/general/latest/gr/rande.html) // in the Amazon Web Services General Reference. Region *string `type:"string" required:"true"` // The name of the AWS service with which this access key was most recently // used. ServiceName *string `type:"string" required:"true"` // contains filtered or unexported fields }
Contains information about the last time an AWS access key was used.
This data type is used as a response element in the GetAccessKeyLastUsed action.
type AccessKeyMetadata ¶
type AccessKeyMetadata struct { // The ID for this access key. AccessKeyID *string `locationName:"AccessKeyId" type:"string"` // The date when the access key was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The status of the access key. Active means the key is valid for API calls; // Inactive means it is not. Status *string `type:"string"` // The name of the IAM user that the key is associated with. UserName *string `type:"string"` // contains filtered or unexported fields }
Contains information about an AWS access key, without its secret key.
This data type is used as a response element in the ListAccessKeys action.
type AddClientIDToOpenIDConnectProviderInput ¶
type AddClientIDToOpenIDConnectProviderInput struct { // The client ID (also known as audience) to add to the IAM OpenID Connect provider. ClientID *string `type:"string" required:"true"` // The Amazon Resource Name (ARN) of the IAM OpenID Connect (OIDC) provider // to add the client ID to. You can get a list of OIDC provider ARNs by using // the ListOpenIDConnectProviders action. OpenIDConnectProviderARN *string `locationName:"OpenIDConnectProviderArn" type:"string" required:"true"` // contains filtered or unexported fields }
type AddClientIDToOpenIDConnectProviderOutput ¶
type AddClientIDToOpenIDConnectProviderOutput struct {
// contains filtered or unexported fields
}
type AddRoleToInstanceProfileOutput ¶
type AddRoleToInstanceProfileOutput struct {
// contains filtered or unexported fields
}
type AddUserToGroupInput ¶
type AddUserToGroupOutput ¶
type AddUserToGroupOutput struct {
// contains filtered or unexported fields
}
type AttachGroupPolicyInput ¶
type AttachGroupPolicyInput struct { // The name (friendly name, not ARN) of the group to attach the policy to. GroupName *string `type:"string" required:"true"` // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // contains filtered or unexported fields }
type AttachGroupPolicyOutput ¶
type AttachGroupPolicyOutput struct {
// contains filtered or unexported fields
}
type AttachRolePolicyInput ¶
type AttachRolePolicyInput struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // The name (friendly name, not ARN) of the role to attach the policy to. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type AttachRolePolicyOutput ¶
type AttachRolePolicyOutput struct {
// contains filtered or unexported fields
}
type AttachUserPolicyInput ¶
type AttachUserPolicyInput struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // The name (friendly name, not ARN) of the user to attach the policy to. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type AttachUserPolicyOutput ¶
type AttachUserPolicyOutput struct {
// contains filtered or unexported fields
}
type AttachedPolicy ¶
type AttachedPolicy struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string"` // The friendly name of the attached policy. PolicyName *string `type:"string"` // contains filtered or unexported fields }
Contains information about an attached policy.
An attached policy is a managed policy that has been attached to a user, group, or role. This data type is used as a response element in the ListAttachedGroupPolicies, ListAttachedRolePolicies, ListAttachedUserPolicies, and GetAccountAuthorizationDetails actions.
For more information about managed policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
type ChangePasswordInput ¶
type ChangePasswordInput struct { // The new password. The new password must conform to the AWS account's password // policy, if one exists. NewPassword *string `type:"string" required:"true"` // The IAM user's current password. OldPassword *string `type:"string" required:"true"` // contains filtered or unexported fields }
type ChangePasswordOutput ¶
type ChangePasswordOutput struct {
// contains filtered or unexported fields
}
type CreateAccessKeyInput ¶
type CreateAccessKeyInput struct { // The user name that the new key will belong to. UserName *string `type:"string"` // contains filtered or unexported fields }
type CreateAccessKeyOutput ¶
type CreateAccessKeyOutput struct { // Information about the access key. AccessKey *AccessKey `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful CreateAccessKey request.
type CreateAccountAliasInput ¶
type CreateAccountAliasInput struct { // The account alias to create. AccountAlias *string `type:"string" required:"true"` // contains filtered or unexported fields }
type CreateAccountAliasOutput ¶
type CreateAccountAliasOutput struct {
// contains filtered or unexported fields
}
type CreateGroupInput ¶
type CreateGroupInput struct { // The name of the group to create. Do not include the path in this value. GroupName *string `type:"string" required:"true"` // The path to the group. For more information about paths, see IAM Identifiers // (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. // // This parameter is optional. If it is not included, it defaults to a slash // (/). Path *string `type:"string"` // contains filtered or unexported fields }
type CreateGroupOutput ¶
type CreateGroupOutput struct { // Information about the group. Group *Group `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful CreateGroup request.
type CreateInstanceProfileInput ¶
type CreateInstanceProfileInput struct { // The name of the instance profile to create. InstanceProfileName *string `type:"string" required:"true"` // The path to the instance profile. For more information about paths, see IAM // Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. // // This parameter is optional. If it is not included, it defaults to a slash // (/). Path *string `type:"string"` // contains filtered or unexported fields }
type CreateInstanceProfileOutput ¶
type CreateInstanceProfileOutput struct { // Information about the instance profile. InstanceProfile *InstanceProfile `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful CreateInstanceProfile request.
type CreateLoginProfileInput ¶
type CreateLoginProfileInput struct { // The new password for the user. Password *string `type:"string" required:"true"` // Specifies whether the user is required to set a new password on next sign-in. PasswordResetRequired *bool `type:"boolean"` // The name of the user to create a password for. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type CreateLoginProfileOutput ¶
type CreateLoginProfileOutput struct { // The user name and password create date. LoginProfile *LoginProfile `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful CreateLoginProfile request.
type CreateOpenIDConnectProviderInput ¶
type CreateOpenIDConnectProviderInput struct { // A list of client IDs (also known as audiences). When a mobile or web app // registers with an OpenID Connect provider, they establish a value that identifies // the application. (This is the value that's sent as the client_id parameter // on OAuth requests.) // // You can register multiple client IDs with the same provider. For example, // you might have multiple applications that use the same OIDC provider. You // cannot register more than 100 client IDs with a single IAM OIDC provider. // // There is no defined format for a client ID. The CreateOpenIDConnectProviderRequest // action accepts client IDs up to 255 characters long. ClientIDList []*string `type:"list"` // A list of server certificate thumbprints for the OpenID Connect (OIDC) identity // provider's server certificate(s). Typically this list includes only one entry. // However, IAM lets you have up to five thumbprints for an OIDC provider. This // lets you maintain multiple thumbprints if the identity provider is rotating // certificates. // // The server certificate thumbprint is the hex-encoded SHA-1 hash value of // the X.509 certificate used by the domain where the OpenID Connect provider // makes its keys available. It is always a 40-character string. // // You must provide at least one thumbprint when creating an IAM OIDC provider. // For example, if the OIDC provider is server.example.com and the provider // stores its keys at "https://keys.server.example.com/openid-connect", the // thumbprint string would be the hex-encoded SHA-1 hash value of the certificate // used by https://keys.server.example.com. // // For more information about obtaining the OIDC provider's thumbprint, see // Obtaining the Thumbprint for an OpenID Connect Provider (http://docs.aws.amazon.com/IAM/latest/UserGuide/identity-providers-oidc-obtain-thumbprint.html) // in the Using IAM guide. ThumbprintList []*string `type:"list" required:"true"` // The URL of the identity provider. The URL must begin with "https://" and // should correspond to the iss claim in the provider's OpenID Connect ID tokens. // Per the OIDC standard, path components are allowed but query parameters are // not. Typically the URL consists of only a host name, like "https://server.example.org" // or "https://example.com". // // You cannot register the same provider multiple times in a single AWS account. // If you try to submit a URL that has already been used for an OpenID Connect // provider in the AWS account, you will get an error. URL *string `locationName:"Url" type:"string" required:"true"` // contains filtered or unexported fields }
type CreateOpenIDConnectProviderOutput ¶
type CreateOpenIDConnectProviderOutput struct { // The Amazon Resource Name (ARN) of the IAM OpenID Connect provider that was // created. For more information, see OpenIDConnectProviderListEntry. OpenIDConnectProviderARN *string `locationName:"OpenIDConnectProviderArn" type:"string"` // contains filtered or unexported fields }
Contains the response to a successful CreateOpenIDConnectProvider request.
type CreatePolicyInput ¶
type CreatePolicyInput struct { // A friendly description of the policy. // // Typically used to store information about the permissions defined in the // policy. For example, "Grants access to production DynamoDB tables." // // The policy description is immutable. After a value is assigned, it cannot // be changed. Description *string `type:"string"` // The path for the policy. // // For more information about paths, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. // // This parameter is optional. If it is not included, it defaults to a slash // (/). Path *string `type:"string"` // The policy document. PolicyDocument *string `type:"string" required:"true"` // The name of the policy document. PolicyName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type CreatePolicyOutput ¶
type CreatePolicyOutput struct { // Information about the policy. Policy *Policy `type:"structure"` // contains filtered or unexported fields }
Contains the response to a successful CreatePolicy request.
type CreatePolicyVersionInput ¶
type CreatePolicyVersionInput struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // The policy document. PolicyDocument *string `type:"string" required:"true"` // Specifies whether to set this version as the policy's default version. // // When this parameter is true, the new policy version becomes the operative // version; that is, the version that is in effect for the IAM users, groups, // and roles that the policy is attached to. // // For more information about managed policy versions, see Versioning for Managed // Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) // in the Using IAM guide. SetAsDefault *bool `type:"boolean"` // contains filtered or unexported fields }
type CreatePolicyVersionOutput ¶
type CreatePolicyVersionOutput struct { // Information about the policy version. PolicyVersion *PolicyVersion `type:"structure"` // contains filtered or unexported fields }
Contains the response to a successful CreatePolicyVersion request.
type CreateRoleInput ¶
type CreateRoleInput struct { // The policy that grants an entity permission to assume the role. AssumeRolePolicyDocument *string `type:"string" required:"true"` // The path to the role. For more information about paths, see IAM Identifiers // (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. // // This parameter is optional. If it is not included, it defaults to a slash // (/). Path *string `type:"string"` // The name of the role to create. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type CreateRoleOutput ¶
type CreateRoleOutput struct { // Information about the role. Role *Role `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful CreateRole request.
type CreateSAMLProviderInput ¶
type CreateSAMLProviderInput struct { // The name of the provider to create. Name *string `type:"string" required:"true"` // An XML document generated by an identity provider (IdP) that supports SAML // 2.0. The document includes the issuer's name, expiration information, and // keys that can be used to validate the SAML authentication response (assertions) // that are received from the IdP. You must generate the metadata document using // the identity management software that is used as your organization's IdP. // // For more information, see Creating Temporary Security Credentials for SAML // Federation (http://docs.aws.amazon.com/STS/latest/UsingSTS/CreatingSAML.html) // in the Using Temporary Security Credentials guide. SAMLMetadataDocument *string `type:"string" required:"true"` // contains filtered or unexported fields }
type CreateSAMLProviderOutput ¶
type CreateSAMLProviderOutput struct { // The Amazon Resource Name (ARN) of the SAML provider. SAMLProviderARN *string `locationName:"SAMLProviderArn" type:"string"` // contains filtered or unexported fields }
Contains the response to a successful CreateSAMLProvider request.
type CreateUserInput ¶
type CreateUserInput struct { // The path for the user name. For more information about paths, see IAM Identifiers // (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. // // This parameter is optional. If it is not included, it defaults to a slash // (/). Path *string `type:"string"` // The name of the user to create. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type CreateUserOutput ¶
type CreateUserOutput struct { // Information about the user. User *User `type:"structure"` // contains filtered or unexported fields }
Contains the response to a successful CreateUser request.
type CreateVirtualMFADeviceInput ¶
type CreateVirtualMFADeviceInput struct { // The path for the virtual MFA device. For more information about paths, see // IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. // // This parameter is optional. If it is not included, it defaults to a slash // (/). Path *string `type:"string"` // The name of the virtual MFA device. Use with path to uniquely identify a // virtual MFA device. VirtualMFADeviceName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type CreateVirtualMFADeviceOutput ¶
type CreateVirtualMFADeviceOutput struct { // A newly created virtual MFA device. VirtualMFADevice *VirtualMFADevice `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful CreateVirtualMFADevice request.
type DeactivateMFADeviceInput ¶
type DeactivateMFADeviceInput struct { // The serial number that uniquely identifies the MFA device. For virtual MFA // devices, the serial number is the device ARN. SerialNumber *string `type:"string" required:"true"` // The name of the user whose MFA device you want to deactivate. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeactivateMFADeviceOutput ¶
type DeactivateMFADeviceOutput struct {
// contains filtered or unexported fields
}
type DeleteAccessKeyInput ¶
type DeleteAccessKeyInput struct { // The access key ID for the access key ID and secret access key you want to // delete. AccessKeyID *string `locationName:"AccessKeyId" type:"string" required:"true"` // The name of the user whose key you want to delete. UserName *string `type:"string"` // contains filtered or unexported fields }
type DeleteAccessKeyOutput ¶
type DeleteAccessKeyOutput struct {
// contains filtered or unexported fields
}
type DeleteAccountAliasInput ¶
type DeleteAccountAliasInput struct { // The name of the account alias to delete. AccountAlias *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteAccountAliasOutput ¶
type DeleteAccountAliasOutput struct {
// contains filtered or unexported fields
}
type DeleteAccountPasswordPolicyInput ¶
type DeleteAccountPasswordPolicyInput struct {
// contains filtered or unexported fields
}
type DeleteAccountPasswordPolicyOutput ¶
type DeleteAccountPasswordPolicyOutput struct {
// contains filtered or unexported fields
}
type DeleteGroupInput ¶
type DeleteGroupInput struct { // The name of the group to delete. GroupName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteGroupOutput ¶
type DeleteGroupOutput struct {
// contains filtered or unexported fields
}
type DeleteGroupPolicyInput ¶
type DeleteGroupPolicyInput struct { // The name (friendly name, not ARN) identifying the group that the policy is // embedded in. GroupName *string `type:"string" required:"true"` // The name identifying the policy document to delete. PolicyName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteGroupPolicyOutput ¶
type DeleteGroupPolicyOutput struct {
// contains filtered or unexported fields
}
type DeleteInstanceProfileInput ¶
type DeleteInstanceProfileInput struct { // The name of the instance profile to delete. InstanceProfileName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteInstanceProfileOutput ¶
type DeleteInstanceProfileOutput struct {
// contains filtered or unexported fields
}
type DeleteLoginProfileInput ¶
type DeleteLoginProfileInput struct { // The name of the user whose password you want to delete. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteLoginProfileOutput ¶
type DeleteLoginProfileOutput struct {
// contains filtered or unexported fields
}
type DeleteOpenIDConnectProviderInput ¶
type DeleteOpenIDConnectProviderInput struct { // The Amazon Resource Name (ARN) of the IAM OpenID Connect provider to delete. // You can get a list of OpenID Connect provider ARNs by using the ListOpenIDConnectProviders // action. OpenIDConnectProviderARN *string `locationName:"OpenIDConnectProviderArn" type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteOpenIDConnectProviderOutput ¶
type DeleteOpenIDConnectProviderOutput struct {
// contains filtered or unexported fields
}
type DeletePolicyInput ¶
type DeletePolicyInput struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // contains filtered or unexported fields }
type DeletePolicyOutput ¶
type DeletePolicyOutput struct {
// contains filtered or unexported fields
}
type DeletePolicyVersionInput ¶
type DeletePolicyVersionInput struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // The policy version to delete. // // For more information about managed policy versions, see Versioning for Managed // Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) // in the Using IAM guide. VersionID *string `locationName:"VersionId" type:"string" required:"true"` // contains filtered or unexported fields }
type DeletePolicyVersionOutput ¶
type DeletePolicyVersionOutput struct {
// contains filtered or unexported fields
}
type DeleteRoleInput ¶
type DeleteRoleInput struct { // The name of the role to delete. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteRoleOutput ¶
type DeleteRoleOutput struct {
// contains filtered or unexported fields
}
type DeleteRolePolicyInput ¶
type DeleteRolePolicyInput struct { // The name identifying the policy document to delete. PolicyName *string `type:"string" required:"true"` // The name (friendly name, not ARN) identifying the role that the policy is // embedded in. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteRolePolicyOutput ¶
type DeleteRolePolicyOutput struct {
// contains filtered or unexported fields
}
type DeleteSAMLProviderInput ¶
type DeleteSAMLProviderInput struct { // The Amazon Resource Name (ARN) of the SAML provider to delete. SAMLProviderARN *string `locationName:"SAMLProviderArn" type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteSAMLProviderOutput ¶
type DeleteSAMLProviderOutput struct {
// contains filtered or unexported fields
}
type DeleteServerCertificateInput ¶
type DeleteServerCertificateInput struct { // The name of the server certificate you want to delete. ServerCertificateName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteServerCertificateOutput ¶
type DeleteServerCertificateOutput struct {
// contains filtered or unexported fields
}
type DeleteSigningCertificateInput ¶
type DeleteSigningCertificateInput struct { // The ID of the signing certificate to delete. CertificateID *string `locationName:"CertificateId" type:"string" required:"true"` // The name of the user the signing certificate belongs to. UserName *string `type:"string"` // contains filtered or unexported fields }
type DeleteSigningCertificateOutput ¶
type DeleteSigningCertificateOutput struct {
// contains filtered or unexported fields
}
type DeleteUserInput ¶
type DeleteUserInput struct { // The name of the user to delete. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteUserOutput ¶
type DeleteUserOutput struct {
// contains filtered or unexported fields
}
type DeleteUserPolicyInput ¶
type DeleteUserPolicyInput struct { // The name identifying the policy document to delete. PolicyName *string `type:"string" required:"true"` // The name (friendly name, not ARN) identifying the user that the policy is // embedded in. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteUserPolicyOutput ¶
type DeleteUserPolicyOutput struct {
// contains filtered or unexported fields
}
type DeleteVirtualMFADeviceInput ¶
type DeleteVirtualMFADeviceInput struct { // The serial number that uniquely identifies the MFA device. For virtual MFA // devices, the serial number is the same as the ARN. SerialNumber *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DeleteVirtualMFADeviceOutput ¶
type DeleteVirtualMFADeviceOutput struct {
// contains filtered or unexported fields
}
type DetachGroupPolicyInput ¶
type DetachGroupPolicyInput struct { // The name (friendly name, not ARN) of the group to detach the policy from. GroupName *string `type:"string" required:"true"` // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // contains filtered or unexported fields }
type DetachGroupPolicyOutput ¶
type DetachGroupPolicyOutput struct {
// contains filtered or unexported fields
}
type DetachRolePolicyInput ¶
type DetachRolePolicyInput struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // The name (friendly name, not ARN) of the role to detach the policy from. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DetachRolePolicyOutput ¶
type DetachRolePolicyOutput struct {
// contains filtered or unexported fields
}
type DetachUserPolicyInput ¶
type DetachUserPolicyInput struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // The name (friendly name, not ARN) of the user to detach the policy from. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type DetachUserPolicyOutput ¶
type DetachUserPolicyOutput struct {
// contains filtered or unexported fields
}
type EnableMFADeviceInput ¶
type EnableMFADeviceInput struct { // An authentication code emitted by the device. AuthenticationCode1 *string `type:"string" required:"true"` // A subsequent authentication code emitted by the device. AuthenticationCode2 *string `type:"string" required:"true"` // The serial number that uniquely identifies the MFA device. For virtual MFA // devices, the serial number is the device ARN. SerialNumber *string `type:"string" required:"true"` // The name of the user for whom you want to enable the MFA device. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type EnableMFADeviceOutput ¶
type EnableMFADeviceOutput struct {
// contains filtered or unexported fields
}
type GenerateCredentialReportInput ¶
type GenerateCredentialReportInput struct {
// contains filtered or unexported fields
}
type GenerateCredentialReportOutput ¶
type GenerateCredentialReportOutput struct { // Information about the credential report. Description *string `type:"string"` // Information about the state of the credential report. State *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful GenerateCredentialReport request.
type GetAccessKeyLastUsedInput ¶
type GetAccessKeyLastUsedInput struct { // The identifier of an access key. AccessKeyID *string `locationName:"AccessKeyId" type:"string" required:"true"` // contains filtered or unexported fields }
type GetAccessKeyLastUsedOutput ¶
type GetAccessKeyLastUsedOutput struct { // Contains information about the last time the access key was used. AccessKeyLastUsed *AccessKeyLastUsed `type:"structure"` // The name of the AWS IAM user that owns this access key. UserName *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful GetAccessKeyLastUsed request. It is also returned as a member of the AccessKeyMetaData structure returned by the ListAccessKeys action.
type GetAccountAuthorizationDetailsInput ¶
type GetAccountAuthorizationDetailsInput struct { // A list of entity types (user, group, role, local managed policy, or AWS managed // policy) for filtering the results. Filter []*string `type:"list"` // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of items // you want in the response. If there are additional items beyond the maximum // you specify, the IsTruncated response element is true. This parameter is // optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // contains filtered or unexported fields }
type GetAccountAuthorizationDetailsOutput ¶
type GetAccountAuthorizationDetailsOutput struct { // A list containing information about IAM groups. GroupDetailList []*GroupDetail `type:"list"` // A flag that indicates whether there are more items to return. If your results // were truncated, you can make a subsequent pagination request using the Marker // request parameter to retrieve more items. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // A list containing information about managed policies. Policies []*ManagedPolicyDetail `type:"list"` // A list containing information about IAM roles. RoleDetailList []*RoleDetail `type:"list"` // A list containing information about IAM users. UserDetailList []*UserDetail `type:"list"` // contains filtered or unexported fields }
Contains the response to a successful GetAccountAuthorizationDetails request.
type GetAccountPasswordPolicyInput ¶
type GetAccountPasswordPolicyInput struct {
// contains filtered or unexported fields
}
type GetAccountPasswordPolicyOutput ¶
type GetAccountPasswordPolicyOutput struct { // Contains information about the account password policy. // // This data type is used as a response element in the GetAccountPasswordPolicy // action. PasswordPolicy *PasswordPolicy `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful GetAccountPasswordPolicy request.
type GetAccountSummaryInput ¶
type GetAccountSummaryInput struct {
// contains filtered or unexported fields
}
type GetAccountSummaryOutput ¶
type GetAccountSummaryOutput struct { // A set of key value pairs containing information about IAM entity usage and // IAM quotas. // // SummaryMap contains the following keys: AccessKeysPerUserQuota // // The maximum number of active access keys allowed for each IAM user. // // AccountAccessKeysPresent // // This value is 1 if the AWS account (root) has an access key, otherwise it // is 0. // // AccountMFAEnabled // // This value is 1 if the AWS account (root) has an MFA device assigned, otherwise // it is 0. // // AccountSigningCertificatesPresent // // This value is 1 if the AWS account (root) has a signing certificate, otherwise // it is 0. // // AssumeRolePolicySizeQuota // // The maximum allowed size for assume role policy documents (trust policies), // in non-whitespace characters. // // AttachedPoliciesPerGroupQuota // // The maximum number of managed policies that can be attached to an IAM group. // // AttachedPoliciesPerRoleQuota // // The maximum number of managed policies that can be attached to an IAM role. // // AttachedPoliciesPerUserQuota // // The maximum number of managed policies that can be attached to an IAM user. // // GroupPolicySizeQuota // // The maximum allowed size for the aggregate of all inline policies embedded // in an IAM group, in non-whitespace characters. // // Groups // // The number of IAM groups in the AWS account. // // GroupsPerUserQuota // // The maximum number of IAM groups each IAM user can belong to. // // GroupsQuota // // The maximum number of IAM groups allowed in the AWS account. // // InstanceProfiles // // The number of instance profiles in the AWS account. // // InstanceProfilesQuota // // The maximum number of instance profiles allowed in the AWS account. // // MFADevices // // The number of MFA devices in the AWS account, including those assigned and // unassigned. // // MFADevicesInUse // // The number of MFA devices that have been assigned to an IAM user or to the // AWS account (root). // // Policies // // The number of customer managed policies in the AWS account. // // PoliciesQuota // // The maximum number of customer managed policies allowed in the AWS account. // // PolicySizeQuota // // The maximum allowed size of a customer managed policy, in non-whitespace // characters. // // PolicyVersionsInUse // // The number of managed policies that are attached to IAM users, groups, or // roles in the AWS account. // // PolicyVersionsInUseQuota // // The maximum number of managed policies that can be attached to IAM users, // groups, or roles in the AWS account. // // Providers // // The number of identity providers in the AWS account. // // RolePolicySizeQuota // // The maximum allowed size for the aggregate of all inline policies (access // policies, not the trust policy) embedded in an IAM role, in non-whitespace // characters. // // Roles // // The number of IAM roles in the AWS account. // // RolesQuota // // The maximum number of IAM roles allowed in the AWS account. // // ServerCertificates // // The number of server certificates in the AWS account. // // ServerCertificatesQuota // // The maximum number of server certificates allowed in the AWS account. // // SigningCertificatesPerUserQuota // // The maximum number of X.509 signing certificates allowed for each IAM user. // // UserPolicySizeQuota // // The maximum allowed size for the aggregate of all inline policies embedded // in an IAM user, in non-whitespace characters. // // Users // // The number of IAM users in the AWS account. // // UsersQuota // // The maximum number of IAM users allowed in the AWS account. // // VersionsPerPolicyQuota // // The maximum number of policy versions allowed for each managed policy. SummaryMap map[string]*int64 `type:"map"` // contains filtered or unexported fields }
Contains the response to a successful GetAccountSummary request.
type GetCredentialReportInput ¶
type GetCredentialReportInput struct {
// contains filtered or unexported fields
}
type GetCredentialReportOutput ¶
type GetCredentialReportOutput struct { // Contains the credential report. The report is Base64-encoded. Content []byte `type:"blob"` // The date and time when the credential report was created, in ISO 8601 date-time // format (http://www.iso.org/iso/iso8601). GeneratedTime *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The format (MIME type) of the credential report. ReportFormat *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful GetCredentialReport request.
type GetGroupInput ¶
type GetGroupInput struct { // The name of the group. GroupName *string `type:"string" required:"true"` // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of groups // you want in the response. If there are additional groups beyond the maximum // you specify, the IsTruncated response element is true. This parameter is // optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // contains filtered or unexported fields }
type GetGroupOutput ¶
type GetGroupOutput struct { // Information about the group. Group *Group `type:"structure" required:"true"` // A flag that indicates whether there are more user names to list. If your // results were truncated, you can make a subsequent pagination request using // the Marker request parameter to retrieve more user names in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, then this element is present and contains the value // to use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // A list of users in the group. Users []*User `type:"list" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful GetGroup request.
type GetGroupPolicyInput ¶
type GetGroupPolicyOutput ¶
type GetGroupPolicyOutput struct { // The group the policy is associated with. GroupName *string `type:"string" required:"true"` // The policy document. PolicyDocument *string `type:"string" required:"true"` // The name of the policy. PolicyName *string `type:"string" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful GetGroupPolicy request.
type GetInstanceProfileInput ¶
type GetInstanceProfileInput struct { // The name of the instance profile to get information about. InstanceProfileName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type GetInstanceProfileOutput ¶
type GetInstanceProfileOutput struct { // Information about the instance profile. InstanceProfile *InstanceProfile `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful GetInstanceProfile request.
type GetLoginProfileInput ¶
type GetLoginProfileInput struct { // The name of the user whose login profile you want to retrieve. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type GetLoginProfileOutput ¶
type GetLoginProfileOutput struct { // The user name and password create date for the user. LoginProfile *LoginProfile `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful GetLoginProfile request.
type GetOpenIDConnectProviderInput ¶
type GetOpenIDConnectProviderInput struct { // The Amazon Resource Name (ARN) of the IAM OpenID Connect (OIDC) provider // to get information for. You can get a list of OIDC provider ARNs by using // the ListOpenIDConnectProviders action. OpenIDConnectProviderARN *string `locationName:"OpenIDConnectProviderArn" type:"string" required:"true"` // contains filtered or unexported fields }
type GetOpenIDConnectProviderOutput ¶
type GetOpenIDConnectProviderOutput struct { // A list of client IDs (also known as audiences) that are associated with the // specified IAM OpenID Connect provider. For more information, see CreateOpenIDConnectProvider. ClientIDList []*string `type:"list"` // The date and time when the IAM OpenID Connect provider entity was created // in the AWS account. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // A list of certificate thumbprints that are associated with the specified // IAM OpenID Connect provider. For more information, see CreateOpenIDConnectProvider. ThumbprintList []*string `type:"list"` // The URL that the IAM OpenID Connect provider is associated with. For more // information, see CreateOpenIDConnectProvider. URL *string `locationName:"Url" type:"string"` // contains filtered or unexported fields }
Contains the response to a successful GetOpenIDConnectProvider request.
type GetPolicyInput ¶
type GetPolicyInput struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // contains filtered or unexported fields }
type GetPolicyOutput ¶
type GetPolicyOutput struct { // Information about the policy. Policy *Policy `type:"structure"` // contains filtered or unexported fields }
Contains the response to a successful GetPolicy request.
type GetPolicyVersionInput ¶
type GetPolicyVersionInput struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // Identifies the policy version to retrieve. VersionID *string `locationName:"VersionId" type:"string" required:"true"` // contains filtered or unexported fields }
type GetPolicyVersionOutput ¶
type GetPolicyVersionOutput struct { // Information about the policy version. // // For more information about managed policy versions, see Versioning for Managed // Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) // in the Using IAM guide. PolicyVersion *PolicyVersion `type:"structure"` // contains filtered or unexported fields }
Contains the response to a successful GetPolicyVersion request.
type GetRoleInput ¶
type GetRoleInput struct { // The name of the role to get information about. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type GetRoleOutput ¶
type GetRoleOutput struct { // Information about the role. Role *Role `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful GetRole request.
type GetRolePolicyInput ¶
type GetRolePolicyOutput ¶
type GetRolePolicyOutput struct { // The policy document. PolicyDocument *string `type:"string" required:"true"` // The name of the policy. PolicyName *string `type:"string" required:"true"` // The role the policy is associated with. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful GetRolePolicy request.
type GetSAMLProviderInput ¶
type GetSAMLProviderInput struct { // The Amazon Resource Name (ARN) of the SAML provider to get information about. SAMLProviderARN *string `locationName:"SAMLProviderArn" type:"string" required:"true"` // contains filtered or unexported fields }
type GetSAMLProviderOutput ¶
type GetSAMLProviderOutput struct { // The date and time when the SAML provider was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The XML metadata document that includes information about an identity provider. SAMLMetadataDocument *string `type:"string"` // The expiration date and time for the SAML provider. ValidUntil *time.Time `type:"timestamp" timestampFormat:"iso8601"` // contains filtered or unexported fields }
Contains the response to a successful GetSAMLProvider request.
type GetServerCertificateInput ¶
type GetServerCertificateInput struct { // The name of the server certificate you want to retrieve information about. ServerCertificateName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type GetServerCertificateOutput ¶
type GetServerCertificateOutput struct { // Information about the server certificate. ServerCertificate *ServerCertificate `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful GetServerCertificate request.
type GetUserInput ¶
type GetUserInput struct { // The name of the user to get information about. // // This parameter is optional. If it is not included, it defaults to the user // making the request. UserName *string `type:"string"` // contains filtered or unexported fields }
type GetUserOutput ¶
type GetUserOutput struct { // Information about the user. User *User `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful GetUser request.
type GetUserPolicyInput ¶
type GetUserPolicyOutput ¶
type GetUserPolicyOutput struct { // The policy document. PolicyDocument *string `type:"string" required:"true"` // The name of the policy. PolicyName *string `type:"string" required:"true"` // The user the policy is associated with. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful GetUserPolicy request.
type Group ¶
type Group struct { // The Amazon Resource Name (ARN) specifying the group. For more information // about ARNs and how to use them in policies, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. ARN *string `locationName:"Arn" type:"string" required:"true"` // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the group was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601" required:"true"` // The stable and unique string identifying the group. For more information // about IDs, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. GroupID *string `locationName:"GroupId" type:"string" required:"true"` // The friendly name that identifies the group. GroupName *string `type:"string" required:"true"` // The path to the group. For more information about paths, see IAM Identifiers // (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. Path *string `type:"string" required:"true"` // contains filtered or unexported fields }
Contains information about an IAM group entity.
This data type is used as a response element in the following actions: CreateGroup GetGroup ListGroups
type GroupDetail ¶
type GroupDetail struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. ARN *string `locationName:"Arn" type:"string"` // A list of the managed policies attached to the group. AttachedManagedPolicies []*AttachedPolicy `type:"list"` // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the group was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The stable and unique string identifying the group. For more information // about IDs, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. GroupID *string `locationName:"GroupId" type:"string"` // The friendly name that identifies the group. GroupName *string `type:"string"` // A list of the inline policies embedded in the group. GroupPolicyList []*PolicyDetail `type:"list"` // The path to the group. For more information about paths, see IAM Identifiers // (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. Path *string `type:"string"` // contains filtered or unexported fields }
Contains information about an IAM group, including all of the group's policies.
This data type is used as a response element in the GetAccountAuthorizationDetails action.
type IAM ¶
IAM is a client for IAM.
func (*IAM) AddClientIDToOpenIDConnectProvider ¶
func (c *IAM) AddClientIDToOpenIDConnectProvider(input *AddClientIDToOpenIDConnectProviderInput) (*AddClientIDToOpenIDConnectProviderOutput, error)
Adds a new client ID (also known as audience) to the list of client IDs already registered for the specified IAM OpenID Connect provider.
This action is idempotent; it does not fail or return an error if you add an existing client ID to the provider.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.AddClientIDToOpenIDConnectProviderInput{ ClientID: aws.String("clientIDType"), // Required OpenIDConnectProviderARN: aws.String("arnType"), // Required } resp, err := svc.AddClientIDToOpenIDConnectProvider(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) AddClientIDToOpenIDConnectProviderRequest ¶
func (c *IAM) AddClientIDToOpenIDConnectProviderRequest(input *AddClientIDToOpenIDConnectProviderInput) (req *aws.Request, output *AddClientIDToOpenIDConnectProviderOutput)
AddClientIDToOpenIDConnectProviderRequest generates a request for the AddClientIDToOpenIDConnectProvider operation.
func (*IAM) AddRoleToInstanceProfile ¶
func (c *IAM) AddRoleToInstanceProfile(input *AddRoleToInstanceProfileInput) (*AddRoleToInstanceProfileOutput, error)
Adds the specified role to the specified instance profile. For more information about roles, go to Working with Roles (http://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html). For more information about instance profiles, go to About Instance Profiles (http://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.AddRoleToInstanceProfileInput{ InstanceProfileName: aws.String("instanceProfileNameType"), // Required RoleName: aws.String("roleNameType"), // Required } resp, err := svc.AddRoleToInstanceProfile(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) AddRoleToInstanceProfileRequest ¶
func (c *IAM) AddRoleToInstanceProfileRequest(input *AddRoleToInstanceProfileInput) (req *aws.Request, output *AddRoleToInstanceProfileOutput)
AddRoleToInstanceProfileRequest generates a request for the AddRoleToInstanceProfile operation.
func (*IAM) AddUserToGroup ¶
func (c *IAM) AddUserToGroup(input *AddUserToGroupInput) (*AddUserToGroupOutput, error)
Adds the specified user to the specified group.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.AddUserToGroupInput{ GroupName: aws.String("groupNameType"), // Required UserName: aws.String("existingUserNameType"), // Required } resp, err := svc.AddUserToGroup(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) AddUserToGroupRequest ¶
func (c *IAM) AddUserToGroupRequest(input *AddUserToGroupInput) (req *aws.Request, output *AddUserToGroupOutput)
AddUserToGroupRequest generates a request for the AddUserToGroup operation.
func (*IAM) AttachGroupPolicy ¶
func (c *IAM) AttachGroupPolicy(input *AttachGroupPolicyInput) (*AttachGroupPolicyOutput, error)
Attaches the specified managed policy to the specified group.
You use this API to attach a managed policy to a group. To embed an inline policy in a group, use PutGroupPolicy.
For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.AttachGroupPolicyInput{ GroupName: aws.String("groupNameType"), // Required PolicyARN: aws.String("arnType"), // Required } resp, err := svc.AttachGroupPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) AttachGroupPolicyRequest ¶
func (c *IAM) AttachGroupPolicyRequest(input *AttachGroupPolicyInput) (req *aws.Request, output *AttachGroupPolicyOutput)
AttachGroupPolicyRequest generates a request for the AttachGroupPolicy operation.
func (*IAM) AttachRolePolicy ¶
func (c *IAM) AttachRolePolicy(input *AttachRolePolicyInput) (*AttachRolePolicyOutput, error)
Attaches the specified managed policy to the specified role.
When you attach a managed policy to a role, the managed policy is used as the role's access (permissions) policy. You cannot use a managed policy as the role's trust policy. The role's trust policy is created at the same time as the role, using CreateRole. You can update a role's trust policy using UpdateAssumeRolePolicy.
Use this API to attach a managed policy to a role. To embed an inline policy in a role, use PutRolePolicy. For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.AttachRolePolicyInput{ PolicyARN: aws.String("arnType"), // Required RoleName: aws.String("roleNameType"), // Required } resp, err := svc.AttachRolePolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) AttachRolePolicyRequest ¶
func (c *IAM) AttachRolePolicyRequest(input *AttachRolePolicyInput) (req *aws.Request, output *AttachRolePolicyOutput)
AttachRolePolicyRequest generates a request for the AttachRolePolicy operation.
func (*IAM) AttachUserPolicy ¶
func (c *IAM) AttachUserPolicy(input *AttachUserPolicyInput) (*AttachUserPolicyOutput, error)
Attaches the specified managed policy to the specified user.
You use this API to attach a managed policy to a user. To embed an inline policy in a user, use PutUserPolicy.
For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.AttachUserPolicyInput{ PolicyARN: aws.String("arnType"), // Required UserName: aws.String("userNameType"), // Required } resp, err := svc.AttachUserPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) AttachUserPolicyRequest ¶
func (c *IAM) AttachUserPolicyRequest(input *AttachUserPolicyInput) (req *aws.Request, output *AttachUserPolicyOutput)
AttachUserPolicyRequest generates a request for the AttachUserPolicy operation.
func (*IAM) ChangePassword ¶
func (c *IAM) ChangePassword(input *ChangePasswordInput) (*ChangePasswordOutput, error)
Changes the password of the IAM user who is calling this action. The root account password is not affected by this action.
To change the password for a different user, see UpdateLoginProfile. For more information about modifying passwords, see Managing Passwords (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ChangePasswordInput{ NewPassword: aws.String("passwordType"), // Required OldPassword: aws.String("passwordType"), // Required } resp, err := svc.ChangePassword(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ChangePasswordRequest ¶
func (c *IAM) ChangePasswordRequest(input *ChangePasswordInput) (req *aws.Request, output *ChangePasswordOutput)
ChangePasswordRequest generates a request for the ChangePassword operation.
func (*IAM) CreateAccessKey ¶
func (c *IAM) CreateAccessKey(input *CreateAccessKeyInput) (*CreateAccessKeyOutput, error)
Creates a new AWS secret access key and corresponding AWS access key ID for the specified user. The default status for new keys is Active.
If you do not specify a user name, IAM determines the user name implicitly
based on the AWS access key ID signing the request. Because this action works for access keys under the AWS account, you can use this action to manage root credentials even if the AWS account has no associated users.
For information about limits on the number of keys you can create, see
Limitations on IAM Entities (http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the Using IAM guide.
To ensure the security of your AWS account, the secret access key is accessible
only during key and user creation. You must save the key (for example, in a text file) if you want to be able to access it again. If a secret key is lost, you can delete the access keys for the associated user and then create new keys.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreateAccessKeyInput{ UserName: aws.String("existingUserNameType"), } resp, err := svc.CreateAccessKey(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreateAccessKeyRequest ¶
func (c *IAM) CreateAccessKeyRequest(input *CreateAccessKeyInput) (req *aws.Request, output *CreateAccessKeyOutput)
CreateAccessKeyRequest generates a request for the CreateAccessKey operation.
func (*IAM) CreateAccountAlias ¶
func (c *IAM) CreateAccountAlias(input *CreateAccountAliasInput) (*CreateAccountAliasOutput, error)
Creates an alias for your AWS account. For information about using an AWS account alias, see Using an Alias for Your AWS Account ID (http://docs.aws.amazon.com/IAM/latest/UserGuide/AccountAlias.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreateAccountAliasInput{ AccountAlias: aws.String("accountAliasType"), // Required } resp, err := svc.CreateAccountAlias(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreateAccountAliasRequest ¶
func (c *IAM) CreateAccountAliasRequest(input *CreateAccountAliasInput) (req *aws.Request, output *CreateAccountAliasOutput)
CreateAccountAliasRequest generates a request for the CreateAccountAlias operation.
func (*IAM) CreateGroup ¶
func (c *IAM) CreateGroup(input *CreateGroupInput) (*CreateGroupOutput, error)
Creates a new group.
For information about the number of groups you can create, see Limitations
on IAM Entities (http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreateGroupInput{ GroupName: aws.String("groupNameType"), // Required Path: aws.String("pathType"), } resp, err := svc.CreateGroup(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreateGroupRequest ¶
func (c *IAM) CreateGroupRequest(input *CreateGroupInput) (req *aws.Request, output *CreateGroupOutput)
CreateGroupRequest generates a request for the CreateGroup operation.
func (*IAM) CreateInstanceProfile ¶
func (c *IAM) CreateInstanceProfile(input *CreateInstanceProfileInput) (*CreateInstanceProfileOutput, error)
Creates a new instance profile. For information about instance profiles, go to About Instance Profiles (http://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html).
For information about the number of instance profiles you can create, see
Limitations on IAM Entities (http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreateInstanceProfileInput{ InstanceProfileName: aws.String("instanceProfileNameType"), // Required Path: aws.String("pathType"), } resp, err := svc.CreateInstanceProfile(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreateInstanceProfileRequest ¶
func (c *IAM) CreateInstanceProfileRequest(input *CreateInstanceProfileInput) (req *aws.Request, output *CreateInstanceProfileOutput)
CreateInstanceProfileRequest generates a request for the CreateInstanceProfile operation.
func (*IAM) CreateLoginProfile ¶
func (c *IAM) CreateLoginProfile(input *CreateLoginProfileInput) (*CreateLoginProfileOutput, error)
Creates a password for the specified user, giving the user the ability to access AWS services through the AWS Management Console. For more information about managing passwords, see Managing Passwords (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreateLoginProfileInput{ Password: aws.String("passwordType"), // Required UserName: aws.String("userNameType"), // Required PasswordResetRequired: aws.Boolean(true), } resp, err := svc.CreateLoginProfile(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreateLoginProfileRequest ¶
func (c *IAM) CreateLoginProfileRequest(input *CreateLoginProfileInput) (req *aws.Request, output *CreateLoginProfileOutput)
CreateLoginProfileRequest generates a request for the CreateLoginProfile operation.
func (*IAM) CreateOpenIDConnectProvider ¶
func (c *IAM) CreateOpenIDConnectProvider(input *CreateOpenIDConnectProviderInput) (*CreateOpenIDConnectProviderOutput, error)
Creates an IAM entity to describe an identity provider (IdP) that supports OpenID Connect (OIDC) (http://openid.net/connect/).
The OIDC provider that you create with this operation can be used as a principal in a role's trust policy to establish a trust relationship between AWS and the OIDC provider.
When you create the IAM OIDC provider, you specify the URL of the OIDC identity provider (IdP) to trust, a list of client IDs (also known as audiences) that identify the application or applications that are allowed to authenticate using the OIDC provider, and a list of thumbprints of the server certificate(s) that the IdP uses. You get all of this information from the OIDC IdP that you want to use for access to AWS.
Because trust for the OIDC provider is ultimately derived from the IAM provider that this action creates, it is a best practice to limit access to the CreateOpenIDConnectProvider action to highly-privileged users.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreateOpenIDConnectProviderInput{ ThumbprintList: []*string{ // Required aws.String("thumbprintType"), // Required // More values... }, URL: aws.String("OpenIDConnectProviderUrlType"), // Required ClientIDList: []*string{ aws.String("clientIDType"), // Required // More values... }, } resp, err := svc.CreateOpenIDConnectProvider(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreateOpenIDConnectProviderRequest ¶
func (c *IAM) CreateOpenIDConnectProviderRequest(input *CreateOpenIDConnectProviderInput) (req *aws.Request, output *CreateOpenIDConnectProviderOutput)
CreateOpenIDConnectProviderRequest generates a request for the CreateOpenIDConnectProvider operation.
func (*IAM) CreatePolicy ¶
func (c *IAM) CreatePolicy(input *CreatePolicyInput) (*CreatePolicyOutput, error)
Creates a new managed policy for your AWS account.
This operation creates a policy version with a version identifier of v1 and sets v1 as the policy's default version. For more information about policy versions, see Versioning for Managed Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) in the Using IAM guide.
For more information about managed policies in general, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreatePolicyInput{ PolicyDocument: aws.String("policyDocumentType"), // Required PolicyName: aws.String("policyNameType"), // Required Description: aws.String("policyDescriptionType"), Path: aws.String("policyPathType"), } resp, err := svc.CreatePolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreatePolicyRequest ¶
func (c *IAM) CreatePolicyRequest(input *CreatePolicyInput) (req *aws.Request, output *CreatePolicyOutput)
CreatePolicyRequest generates a request for the CreatePolicy operation.
func (*IAM) CreatePolicyVersion ¶
func (c *IAM) CreatePolicyVersion(input *CreatePolicyVersionInput) (*CreatePolicyVersionOutput, error)
Creates a new version of the specified managed policy. To update a managed policy, you create a new policy version. A managed policy can have up to five versions. If the policy has five versions, you must delete an existing version using DeletePolicyVersion before you create a new version.
Optionally, you can set the new version as the policy's default version. The default version is the operative version; that is, the version that is in effect for the IAM users, groups, and roles that the policy is attached to.
For more information about managed policy versions, see Versioning for Managed Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreatePolicyVersionInput{ PolicyARN: aws.String("arnType"), // Required PolicyDocument: aws.String("policyDocumentType"), // Required SetAsDefault: aws.Boolean(true), } resp, err := svc.CreatePolicyVersion(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreatePolicyVersionRequest ¶
func (c *IAM) CreatePolicyVersionRequest(input *CreatePolicyVersionInput) (req *aws.Request, output *CreatePolicyVersionOutput)
CreatePolicyVersionRequest generates a request for the CreatePolicyVersion operation.
func (*IAM) CreateRole ¶
func (c *IAM) CreateRole(input *CreateRoleInput) (*CreateRoleOutput, error)
Creates a new role for your AWS account. For more information about roles, go to Working with Roles (http://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html). For information about limitations on role names and the number of roles you can create, go to Limitations on IAM Entities (http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the Using IAM guide.
The policy in the following example grants permission to an EC2 instance to assume the role.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreateRoleInput{ AssumeRolePolicyDocument: aws.String("policyDocumentType"), // Required RoleName: aws.String("roleNameType"), // Required Path: aws.String("pathType"), } resp, err := svc.CreateRole(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreateRoleRequest ¶
func (c *IAM) CreateRoleRequest(input *CreateRoleInput) (req *aws.Request, output *CreateRoleOutput)
CreateRoleRequest generates a request for the CreateRole operation.
func (*IAM) CreateSAMLProvider ¶
func (c *IAM) CreateSAMLProvider(input *CreateSAMLProviderInput) (*CreateSAMLProviderOutput, error)
Creates an IAM entity to describe an identity provider (IdP) that supports SAML 2.0.
The SAML provider that you create with this operation can be used as a
principal in a role's trust policy to establish a trust relationship between AWS and a SAML identity provider. You can create an IAM role that supports Web-based single sign-on (SSO) to the AWS Management Console or one that supports API access to AWS.
When you create the SAML provider, you upload an a SAML metadata document
that you get from your IdP and that includes the issuer's name, expiration information, and keys that can be used to validate the SAML authentication response (assertions) that are received from the IdP. You must generate the metadata document using the identity management software that is used as your organization's IdP.
This operation requires Signature Version 4 (http://docs.aws.amazon.com/general/latest/gr/signature-version-4.html). For more information, see Giving Console Access Using SAML (http://docs.aws.amazon.com/STS/latest/UsingSTS/STSMgmtConsole-SAML.html)
and Creating Temporary Security Credentials for SAML Federation (http://docs.aws.amazon.com/STS/latest/UsingSTS/CreatingSAML.html) in the Using Temporary Credentials guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreateSAMLProviderInput{ Name: aws.String("SAMLProviderNameType"), // Required SAMLMetadataDocument: aws.String("SAMLMetadataDocumentType"), // Required } resp, err := svc.CreateSAMLProvider(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreateSAMLProviderRequest ¶
func (c *IAM) CreateSAMLProviderRequest(input *CreateSAMLProviderInput) (req *aws.Request, output *CreateSAMLProviderOutput)
CreateSAMLProviderRequest generates a request for the CreateSAMLProvider operation.
func (*IAM) CreateUser ¶
func (c *IAM) CreateUser(input *CreateUserInput) (*CreateUserOutput, error)
Creates a new user for your AWS account.
For information about limitations on the number of users you can create,
see Limitations on IAM Entities (http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreateUserInput{ UserName: aws.String("userNameType"), // Required Path: aws.String("pathType"), } resp, err := svc.CreateUser(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreateUserRequest ¶
func (c *IAM) CreateUserRequest(input *CreateUserInput) (req *aws.Request, output *CreateUserOutput)
CreateUserRequest generates a request for the CreateUser operation.
func (*IAM) CreateVirtualMFADevice ¶
func (c *IAM) CreateVirtualMFADevice(input *CreateVirtualMFADeviceInput) (*CreateVirtualMFADeviceOutput, error)
Creates a new virtual MFA device for the AWS account. After creating the virtual MFA, use EnableMFADevice to attach the MFA device to an IAM user. For more information about creating and working with virtual MFA devices, go to Using a Virtual MFA Device (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html) in the Using IAM guide.
For information about limits on the number of MFA devices you can create, see Limitations on Entities (http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the Using IAM guide.
The seed information contained in the QR code and the Base32 string should be treated like any other secret access information, such as your AWS access keys or your passwords. After you provision your virtual device, you should ensure that the information is destroyed following secure procedures.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.CreateVirtualMFADeviceInput{ VirtualMFADeviceName: aws.String("virtualMFADeviceName"), // Required Path: aws.String("pathType"), } resp, err := svc.CreateVirtualMFADevice(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) CreateVirtualMFADeviceRequest ¶
func (c *IAM) CreateVirtualMFADeviceRequest(input *CreateVirtualMFADeviceInput) (req *aws.Request, output *CreateVirtualMFADeviceOutput)
CreateVirtualMFADeviceRequest generates a request for the CreateVirtualMFADevice operation.
func (*IAM) DeactivateMFADevice ¶
func (c *IAM) DeactivateMFADevice(input *DeactivateMFADeviceInput) (*DeactivateMFADeviceOutput, error)
Deactivates the specified MFA device and removes it from association with the user name for which it was originally enabled.
For more information about creating and working with virtual MFA devices, go to Using a Virtual MFA Device (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeactivateMFADeviceInput{ SerialNumber: aws.String("serialNumberType"), // Required UserName: aws.String("existingUserNameType"), // Required } resp, err := svc.DeactivateMFADevice(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeactivateMFADeviceRequest ¶
func (c *IAM) DeactivateMFADeviceRequest(input *DeactivateMFADeviceInput) (req *aws.Request, output *DeactivateMFADeviceOutput)
DeactivateMFADeviceRequest generates a request for the DeactivateMFADevice operation.
func (*IAM) DeleteAccessKey ¶
func (c *IAM) DeleteAccessKey(input *DeleteAccessKeyInput) (*DeleteAccessKeyOutput, error)
Deletes the access key associated with the specified user.
If you do not specify a user name, IAM determines the user name implicitly
based on the AWS access key ID signing the request. Because this action works for access keys under the AWS account, you can use this action to manage root credentials even if the AWS account has no associated users.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteAccessKeyInput{ AccessKeyID: aws.String("accessKeyIdType"), // Required UserName: aws.String("existingUserNameType"), } resp, err := svc.DeleteAccessKey(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteAccessKeyRequest ¶
func (c *IAM) DeleteAccessKeyRequest(input *DeleteAccessKeyInput) (req *aws.Request, output *DeleteAccessKeyOutput)
DeleteAccessKeyRequest generates a request for the DeleteAccessKey operation.
func (*IAM) DeleteAccountAlias ¶
func (c *IAM) DeleteAccountAlias(input *DeleteAccountAliasInput) (*DeleteAccountAliasOutput, error)
Deletes the specified AWS account alias. For information about using an AWS account alias, see Using an Alias for Your AWS Account ID (http://docs.aws.amazon.com/IAM/latest/UserGuide/AccountAlias.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteAccountAliasInput{ AccountAlias: aws.String("accountAliasType"), // Required } resp, err := svc.DeleteAccountAlias(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteAccountAliasRequest ¶
func (c *IAM) DeleteAccountAliasRequest(input *DeleteAccountAliasInput) (req *aws.Request, output *DeleteAccountAliasOutput)
DeleteAccountAliasRequest generates a request for the DeleteAccountAlias operation.
func (*IAM) DeleteAccountPasswordPolicy ¶
func (c *IAM) DeleteAccountPasswordPolicy(input *DeleteAccountPasswordPolicyInput) (*DeleteAccountPasswordPolicyOutput, error)
Deletes the password policy for the AWS account.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) var params *iam.DeleteAccountPasswordPolicyInput resp, err := svc.DeleteAccountPasswordPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteAccountPasswordPolicyRequest ¶
func (c *IAM) DeleteAccountPasswordPolicyRequest(input *DeleteAccountPasswordPolicyInput) (req *aws.Request, output *DeleteAccountPasswordPolicyOutput)
DeleteAccountPasswordPolicyRequest generates a request for the DeleteAccountPasswordPolicy operation.
func (*IAM) DeleteGroup ¶
func (c *IAM) DeleteGroup(input *DeleteGroupInput) (*DeleteGroupOutput, error)
Deletes the specified group. The group must not contain any users or have any attached policies.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteGroupInput{ GroupName: aws.String("groupNameType"), // Required } resp, err := svc.DeleteGroup(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteGroupPolicy ¶
func (c *IAM) DeleteGroupPolicy(input *DeleteGroupPolicyInput) (*DeleteGroupPolicyOutput, error)
Deletes the specified inline policy that is embedded in the specified group.
A group can also have managed policies attached to it. To detach a managed policy from a group, use DetachGroupPolicy. For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteGroupPolicyInput{ GroupName: aws.String("groupNameType"), // Required PolicyName: aws.String("policyNameType"), // Required } resp, err := svc.DeleteGroupPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteGroupPolicyRequest ¶
func (c *IAM) DeleteGroupPolicyRequest(input *DeleteGroupPolicyInput) (req *aws.Request, output *DeleteGroupPolicyOutput)
DeleteGroupPolicyRequest generates a request for the DeleteGroupPolicy operation.
func (*IAM) DeleteGroupRequest ¶
func (c *IAM) DeleteGroupRequest(input *DeleteGroupInput) (req *aws.Request, output *DeleteGroupOutput)
DeleteGroupRequest generates a request for the DeleteGroup operation.
func (*IAM) DeleteInstanceProfile ¶
func (c *IAM) DeleteInstanceProfile(input *DeleteInstanceProfileInput) (*DeleteInstanceProfileOutput, error)
Deletes the specified instance profile. The instance profile must not have an associated role.
Make sure you do not have any Amazon EC2 instances running with the instance
profile you are about to delete. Deleting a role or instance profile that is associated with a running instance will break any applications running on the instance. For more information about instance profiles, go to About Instance Profiles (http://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteInstanceProfileInput{ InstanceProfileName: aws.String("instanceProfileNameType"), // Required } resp, err := svc.DeleteInstanceProfile(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteInstanceProfileRequest ¶
func (c *IAM) DeleteInstanceProfileRequest(input *DeleteInstanceProfileInput) (req *aws.Request, output *DeleteInstanceProfileOutput)
DeleteInstanceProfileRequest generates a request for the DeleteInstanceProfile operation.
func (*IAM) DeleteLoginProfile ¶
func (c *IAM) DeleteLoginProfile(input *DeleteLoginProfileInput) (*DeleteLoginProfileOutput, error)
Deletes the password for the specified user, which terminates the user's ability to access AWS services through the AWS Management Console.
Deleting a user's password does not prevent a user from accessing IAM through
the command line interface or the API. To prevent all user access you must also either make the access key inactive or delete it. For more information about making keys inactive or deleting them, see UpdateAccessKey and DeleteAccessKey.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteLoginProfileInput{ UserName: aws.String("userNameType"), // Required } resp, err := svc.DeleteLoginProfile(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteLoginProfileRequest ¶
func (c *IAM) DeleteLoginProfileRequest(input *DeleteLoginProfileInput) (req *aws.Request, output *DeleteLoginProfileOutput)
DeleteLoginProfileRequest generates a request for the DeleteLoginProfile operation.
func (*IAM) DeleteOpenIDConnectProvider ¶
func (c *IAM) DeleteOpenIDConnectProvider(input *DeleteOpenIDConnectProviderInput) (*DeleteOpenIDConnectProviderOutput, error)
Deletes an IAM OpenID Connect identity provider.
Deleting an OIDC provider does not update any roles that reference the provider as a principal in their trust policies. Any attempt to assume a role that references a provider that has been deleted will fail.
This action is idempotent; it does not fail or return an error if you call the action for a provider that was already deleted.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteOpenIDConnectProviderInput{ OpenIDConnectProviderARN: aws.String("arnType"), // Required } resp, err := svc.DeleteOpenIDConnectProvider(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteOpenIDConnectProviderRequest ¶
func (c *IAM) DeleteOpenIDConnectProviderRequest(input *DeleteOpenIDConnectProviderInput) (req *aws.Request, output *DeleteOpenIDConnectProviderOutput)
DeleteOpenIDConnectProviderRequest generates a request for the DeleteOpenIDConnectProvider operation.
func (*IAM) DeletePolicy ¶
func (c *IAM) DeletePolicy(input *DeletePolicyInput) (*DeletePolicyOutput, error)
Deletes the specified managed policy.
Before you can delete a managed policy, you must detach the policy from all users, groups, and roles that it is attached to, and you must delete all of the policy's versions. The following steps describe the process for deleting a managed policy: Detach the policy from all users, groups, and roles that the policy is attached to, using the DetachUserPolicy, DetachGroupPolicy, or DetachRolePolicy APIs. To list all the users, groups, and roles that a policy is attached to, use ListEntitiesForPolicy. Delete all versions of the policy using DeletePolicyVersion. To list the policy's versions, use ListPolicyVersions. You cannot use DeletePolicyVersion to delete the version that is marked as the default version. You delete the policy's default version in the next step of the process. Delete the policy (this automatically deletes the policy's default version) using this API.
For information about managed policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeletePolicyInput{ PolicyARN: aws.String("arnType"), // Required } resp, err := svc.DeletePolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeletePolicyRequest ¶
func (c *IAM) DeletePolicyRequest(input *DeletePolicyInput) (req *aws.Request, output *DeletePolicyOutput)
DeletePolicyRequest generates a request for the DeletePolicy operation.
func (*IAM) DeletePolicyVersion ¶
func (c *IAM) DeletePolicyVersion(input *DeletePolicyVersionInput) (*DeletePolicyVersionOutput, error)
Deletes the specified version of the specified managed policy.
You cannot delete the default version of a policy using this API. To delete the default version of a policy, use DeletePolicy. To find out which version of a policy is marked as the default version, use ListPolicyVersions.
For information about versions for managed policies, refer to Versioning for Managed Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeletePolicyVersionInput{ PolicyARN: aws.String("arnType"), // Required VersionID: aws.String("policyVersionIdType"), // Required } resp, err := svc.DeletePolicyVersion(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeletePolicyVersionRequest ¶
func (c *IAM) DeletePolicyVersionRequest(input *DeletePolicyVersionInput) (req *aws.Request, output *DeletePolicyVersionOutput)
DeletePolicyVersionRequest generates a request for the DeletePolicyVersion operation.
func (*IAM) DeleteRole ¶
func (c *IAM) DeleteRole(input *DeleteRoleInput) (*DeleteRoleOutput, error)
Deletes the specified role. The role must not have any policies attached. For more information about roles, go to Working with Roles (http://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html).
Make sure you do not have any Amazon EC2 instances running with the role you are about to delete. Deleting a role or instance profile that is associated with a running instance will break any applications running on the instance.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteRoleInput{ RoleName: aws.String("roleNameType"), // Required } resp, err := svc.DeleteRole(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteRolePolicy ¶
func (c *IAM) DeleteRolePolicy(input *DeleteRolePolicyInput) (*DeleteRolePolicyOutput, error)
Deletes the specified inline policy that is embedded in the specified role.
A role can also have managed policies attached to it. To detach a managed policy from a role, use DetachRolePolicy. For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteRolePolicyInput{ PolicyName: aws.String("policyNameType"), // Required RoleName: aws.String("roleNameType"), // Required } resp, err := svc.DeleteRolePolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteRolePolicyRequest ¶
func (c *IAM) DeleteRolePolicyRequest(input *DeleteRolePolicyInput) (req *aws.Request, output *DeleteRolePolicyOutput)
DeleteRolePolicyRequest generates a request for the DeleteRolePolicy operation.
func (*IAM) DeleteRoleRequest ¶
func (c *IAM) DeleteRoleRequest(input *DeleteRoleInput) (req *aws.Request, output *DeleteRoleOutput)
DeleteRoleRequest generates a request for the DeleteRole operation.
func (*IAM) DeleteSAMLProvider ¶
func (c *IAM) DeleteSAMLProvider(input *DeleteSAMLProviderInput) (*DeleteSAMLProviderOutput, error)
Deletes a SAML provider.
Deleting the provider does not update any roles that reference the SAML
provider as a principal in their trust policies. Any attempt to assume a role that references a SAML provider that has been deleted will fail.
This operation requires Signature Version 4 (http://docs.aws.amazon.com/general/latest/gr/signature-version-4.html).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteSAMLProviderInput{ SAMLProviderARN: aws.String("arnType"), // Required } resp, err := svc.DeleteSAMLProvider(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteSAMLProviderRequest ¶
func (c *IAM) DeleteSAMLProviderRequest(input *DeleteSAMLProviderInput) (req *aws.Request, output *DeleteSAMLProviderOutput)
DeleteSAMLProviderRequest generates a request for the DeleteSAMLProvider operation.
func (*IAM) DeleteServerCertificate ¶
func (c *IAM) DeleteServerCertificate(input *DeleteServerCertificateInput) (*DeleteServerCertificateOutput, error)
Deletes the specified server certificate.
If you are using a server certificate with Elastic Load Balancing, deleting
the certificate could have implications for your application. If Elastic Load Balancing doesn't detect the deletion of bound certificates, it may continue to use the certificates. This could cause Elastic Load Balancing to stop accepting traffic. We recommend that you remove the reference to the certificate from Elastic Load Balancing before using this command to delete the certificate. For more information, go to DeleteLoadBalancerListeners (http://docs.aws.amazon.com/ElasticLoadBalancing/latest/APIReference/API_DeleteLoadBalancerListeners.html) in the Elastic Load Balancing API Reference.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteServerCertificateInput{ ServerCertificateName: aws.String("serverCertificateNameType"), // Required } resp, err := svc.DeleteServerCertificate(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteServerCertificateRequest ¶
func (c *IAM) DeleteServerCertificateRequest(input *DeleteServerCertificateInput) (req *aws.Request, output *DeleteServerCertificateOutput)
DeleteServerCertificateRequest generates a request for the DeleteServerCertificate operation.
func (*IAM) DeleteSigningCertificate ¶
func (c *IAM) DeleteSigningCertificate(input *DeleteSigningCertificateInput) (*DeleteSigningCertificateOutput, error)
Deletes the specified signing certificate associated with the specified user.
If you do not specify a user name, IAM determines the user name implicitly based on the AWS access key ID signing the request. Because this action works for access keys under the AWS account, you can use this action to manage root credentials even if the AWS account has no associated users.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteSigningCertificateInput{ CertificateID: aws.String("certificateIdType"), // Required UserName: aws.String("existingUserNameType"), } resp, err := svc.DeleteSigningCertificate(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteSigningCertificateRequest ¶
func (c *IAM) DeleteSigningCertificateRequest(input *DeleteSigningCertificateInput) (req *aws.Request, output *DeleteSigningCertificateOutput)
DeleteSigningCertificateRequest generates a request for the DeleteSigningCertificate operation.
func (*IAM) DeleteUser ¶
func (c *IAM) DeleteUser(input *DeleteUserInput) (*DeleteUserOutput, error)
Deletes the specified user. The user must not belong to any groups, have any keys or signing certificates, or have any attached policies.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteUserInput{ UserName: aws.String("existingUserNameType"), // Required } resp, err := svc.DeleteUser(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteUserPolicy ¶
func (c *IAM) DeleteUserPolicy(input *DeleteUserPolicyInput) (*DeleteUserPolicyOutput, error)
Deletes the specified inline policy that is embedded in the specified user.
A user can also have managed policies attached to it. To detach a managed policy from a user, use DetachUserPolicy. For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteUserPolicyInput{ PolicyName: aws.String("policyNameType"), // Required UserName: aws.String("existingUserNameType"), // Required } resp, err := svc.DeleteUserPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteUserPolicyRequest ¶
func (c *IAM) DeleteUserPolicyRequest(input *DeleteUserPolicyInput) (req *aws.Request, output *DeleteUserPolicyOutput)
DeleteUserPolicyRequest generates a request for the DeleteUserPolicy operation.
func (*IAM) DeleteUserRequest ¶
func (c *IAM) DeleteUserRequest(input *DeleteUserInput) (req *aws.Request, output *DeleteUserOutput)
DeleteUserRequest generates a request for the DeleteUser operation.
func (*IAM) DeleteVirtualMFADevice ¶
func (c *IAM) DeleteVirtualMFADevice(input *DeleteVirtualMFADeviceInput) (*DeleteVirtualMFADeviceOutput, error)
Deletes a virtual MFA device.
You must deactivate a user's virtual MFA device before you can delete it.
For information about deactivating MFA devices, see DeactivateMFADevice.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DeleteVirtualMFADeviceInput{ SerialNumber: aws.String("serialNumberType"), // Required } resp, err := svc.DeleteVirtualMFADevice(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DeleteVirtualMFADeviceRequest ¶
func (c *IAM) DeleteVirtualMFADeviceRequest(input *DeleteVirtualMFADeviceInput) (req *aws.Request, output *DeleteVirtualMFADeviceOutput)
DeleteVirtualMFADeviceRequest generates a request for the DeleteVirtualMFADevice operation.
func (*IAM) DetachGroupPolicy ¶
func (c *IAM) DetachGroupPolicy(input *DetachGroupPolicyInput) (*DetachGroupPolicyOutput, error)
Removes the specified managed policy from the specified group.
A group can also have inline policies embedded with it. To delete an inline policy, use the DeleteGroupPolicy API. For information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DetachGroupPolicyInput{ GroupName: aws.String("groupNameType"), // Required PolicyARN: aws.String("arnType"), // Required } resp, err := svc.DetachGroupPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DetachGroupPolicyRequest ¶
func (c *IAM) DetachGroupPolicyRequest(input *DetachGroupPolicyInput) (req *aws.Request, output *DetachGroupPolicyOutput)
DetachGroupPolicyRequest generates a request for the DetachGroupPolicy operation.
func (*IAM) DetachRolePolicy ¶
func (c *IAM) DetachRolePolicy(input *DetachRolePolicyInput) (*DetachRolePolicyOutput, error)
Removes the specified managed policy from the specified role.
A role can also have inline policies embedded with it. To delete an inline policy, use the DeleteRolePolicy API. For information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DetachRolePolicyInput{ PolicyARN: aws.String("arnType"), // Required RoleName: aws.String("roleNameType"), // Required } resp, err := svc.DetachRolePolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DetachRolePolicyRequest ¶
func (c *IAM) DetachRolePolicyRequest(input *DetachRolePolicyInput) (req *aws.Request, output *DetachRolePolicyOutput)
DetachRolePolicyRequest generates a request for the DetachRolePolicy operation.
func (*IAM) DetachUserPolicy ¶
func (c *IAM) DetachUserPolicy(input *DetachUserPolicyInput) (*DetachUserPolicyOutput, error)
Removes the specified managed policy from the specified user.
A user can also have inline policies embedded with it. To delete an inline policy, use the DeleteUserPolicy API. For information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.DetachUserPolicyInput{ PolicyARN: aws.String("arnType"), // Required UserName: aws.String("userNameType"), // Required } resp, err := svc.DetachUserPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) DetachUserPolicyRequest ¶
func (c *IAM) DetachUserPolicyRequest(input *DetachUserPolicyInput) (req *aws.Request, output *DetachUserPolicyOutput)
DetachUserPolicyRequest generates a request for the DetachUserPolicy operation.
func (*IAM) EnableMFADevice ¶
func (c *IAM) EnableMFADevice(input *EnableMFADeviceInput) (*EnableMFADeviceOutput, error)
Enables the specified MFA device and associates it with the specified user name. When enabled, the MFA device is required for every subsequent login by the user name associated with the device.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.EnableMFADeviceInput{ AuthenticationCode1: aws.String("authenticationCodeType"), // Required AuthenticationCode2: aws.String("authenticationCodeType"), // Required SerialNumber: aws.String("serialNumberType"), // Required UserName: aws.String("existingUserNameType"), // Required } resp, err := svc.EnableMFADevice(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) EnableMFADeviceRequest ¶
func (c *IAM) EnableMFADeviceRequest(input *EnableMFADeviceInput) (req *aws.Request, output *EnableMFADeviceOutput)
EnableMFADeviceRequest generates a request for the EnableMFADevice operation.
func (*IAM) GenerateCredentialReport ¶
func (c *IAM) GenerateCredentialReport(input *GenerateCredentialReportInput) (*GenerateCredentialReportOutput, error)
Generates a credential report for the AWS account. For more information about the credential report, see Getting Credential Reports (http://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) var params *iam.GenerateCredentialReportInput resp, err := svc.GenerateCredentialReport(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GenerateCredentialReportRequest ¶
func (c *IAM) GenerateCredentialReportRequest(input *GenerateCredentialReportInput) (req *aws.Request, output *GenerateCredentialReportOutput)
GenerateCredentialReportRequest generates a request for the GenerateCredentialReport operation.
func (*IAM) GetAccessKeyLastUsed ¶
func (c *IAM) GetAccessKeyLastUsed(input *GetAccessKeyLastUsedInput) (*GetAccessKeyLastUsedOutput, error)
Retrieves information about when the specified access key was last used. The information includes the date and time of last use, along with the AWS service and region that were specified in the last request made with that key.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetAccessKeyLastUsedInput{ AccessKeyID: aws.String("accessKeyIdType"), // Required } resp, err := svc.GetAccessKeyLastUsed(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetAccessKeyLastUsedRequest ¶
func (c *IAM) GetAccessKeyLastUsedRequest(input *GetAccessKeyLastUsedInput) (req *aws.Request, output *GetAccessKeyLastUsedOutput)
GetAccessKeyLastUsedRequest generates a request for the GetAccessKeyLastUsed operation.
func (*IAM) GetAccountAuthorizationDetails ¶
func (c *IAM) GetAccountAuthorizationDetails(input *GetAccountAuthorizationDetailsInput) (*GetAccountAuthorizationDetailsOutput, error)
Retrieves information about all IAM users, groups, roles, and policies in your account, including their relationships to one another. Use this API to obtain a snapshot of the configuration of IAM permissions (users, groups, roles, and policies) in your account.
You can optionally filter the results using the Filter parameter. You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetAccountAuthorizationDetailsInput{ Filter: []*string{ aws.String("EntityType"), // Required // More values... }, Marker: aws.String("markerType"), MaxItems: aws.Long(1), } resp, err := svc.GetAccountAuthorizationDetails(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetAccountAuthorizationDetailsPages ¶
func (c *IAM) GetAccountAuthorizationDetailsPages(input *GetAccountAuthorizationDetailsInput, fn func(p *GetAccountAuthorizationDetailsOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) GetAccountAuthorizationDetailsRequest ¶
func (c *IAM) GetAccountAuthorizationDetailsRequest(input *GetAccountAuthorizationDetailsInput) (req *aws.Request, output *GetAccountAuthorizationDetailsOutput)
GetAccountAuthorizationDetailsRequest generates a request for the GetAccountAuthorizationDetails operation.
func (*IAM) GetAccountPasswordPolicy ¶
func (c *IAM) GetAccountPasswordPolicy(input *GetAccountPasswordPolicyInput) (*GetAccountPasswordPolicyOutput, error)
Retrieves the password policy for the AWS account. For more information about using a password policy, go to Managing an IAM Password Policy (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingPasswordPolicies.html).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) var params *iam.GetAccountPasswordPolicyInput resp, err := svc.GetAccountPasswordPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetAccountPasswordPolicyRequest ¶
func (c *IAM) GetAccountPasswordPolicyRequest(input *GetAccountPasswordPolicyInput) (req *aws.Request, output *GetAccountPasswordPolicyOutput)
GetAccountPasswordPolicyRequest generates a request for the GetAccountPasswordPolicy operation.
func (*IAM) GetAccountSummary ¶
func (c *IAM) GetAccountSummary(input *GetAccountSummaryInput) (*GetAccountSummaryOutput, error)
Retrieves information about IAM entity usage and IAM quotas in the AWS account.
For information about limitations on IAM entities, see Limitations on IAM
Entities (http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) var params *iam.GetAccountSummaryInput resp, err := svc.GetAccountSummary(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetAccountSummaryRequest ¶
func (c *IAM) GetAccountSummaryRequest(input *GetAccountSummaryInput) (req *aws.Request, output *GetAccountSummaryOutput)
GetAccountSummaryRequest generates a request for the GetAccountSummary operation.
func (*IAM) GetCredentialReport ¶
func (c *IAM) GetCredentialReport(input *GetCredentialReportInput) (*GetCredentialReportOutput, error)
Retrieves a credential report for the AWS account. For more information about the credential report, see Getting Credential Reports (http://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) var params *iam.GetCredentialReportInput resp, err := svc.GetCredentialReport(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetCredentialReportRequest ¶
func (c *IAM) GetCredentialReportRequest(input *GetCredentialReportInput) (req *aws.Request, output *GetCredentialReportOutput)
GetCredentialReportRequest generates a request for the GetCredentialReport operation.
func (*IAM) GetGroup ¶
func (c *IAM) GetGroup(input *GetGroupInput) (*GetGroupOutput, error)
Returns a list of users that are in the specified group. You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetGroupInput{ GroupName: aws.String("groupNameType"), // Required Marker: aws.String("markerType"), MaxItems: aws.Long(1), } resp, err := svc.GetGroup(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetGroupPages ¶
func (c *IAM) GetGroupPages(input *GetGroupInput, fn func(p *GetGroupOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) GetGroupPolicy ¶
func (c *IAM) GetGroupPolicy(input *GetGroupPolicyInput) (*GetGroupPolicyOutput, error)
Retrieves the specified inline policy document that is embedded in the specified group.
A group can also have managed policies attached to it. To retrieve a managed policy document that is attached to a group, use GetPolicy to determine the policy's default version, then use GetPolicyVersion to retrieve the policy document.
For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetGroupPolicyInput{ GroupName: aws.String("groupNameType"), // Required PolicyName: aws.String("policyNameType"), // Required } resp, err := svc.GetGroupPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetGroupPolicyRequest ¶
func (c *IAM) GetGroupPolicyRequest(input *GetGroupPolicyInput) (req *aws.Request, output *GetGroupPolicyOutput)
GetGroupPolicyRequest generates a request for the GetGroupPolicy operation.
func (*IAM) GetGroupRequest ¶
func (c *IAM) GetGroupRequest(input *GetGroupInput) (req *aws.Request, output *GetGroupOutput)
GetGroupRequest generates a request for the GetGroup operation.
func (*IAM) GetInstanceProfile ¶
func (c *IAM) GetInstanceProfile(input *GetInstanceProfileInput) (*GetInstanceProfileOutput, error)
Retrieves information about the specified instance profile, including the instance profile's path, GUID, ARN, and role. For more information about instance profiles, go to About Instance Profiles (http://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html). For more information about ARNs, go to ARNs (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html#Identifiers_ARNs).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetInstanceProfileInput{ InstanceProfileName: aws.String("instanceProfileNameType"), // Required } resp, err := svc.GetInstanceProfile(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetInstanceProfileRequest ¶
func (c *IAM) GetInstanceProfileRequest(input *GetInstanceProfileInput) (req *aws.Request, output *GetInstanceProfileOutput)
GetInstanceProfileRequest generates a request for the GetInstanceProfile operation.
func (*IAM) GetLoginProfile ¶
func (c *IAM) GetLoginProfile(input *GetLoginProfileInput) (*GetLoginProfileOutput, error)
Retrieves the user name and password-creation date for the specified user. If the user has not been assigned a password, the action returns a 404 (NoSuchEntity) error.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetLoginProfileInput{ UserName: aws.String("userNameType"), // Required } resp, err := svc.GetLoginProfile(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetLoginProfileRequest ¶
func (c *IAM) GetLoginProfileRequest(input *GetLoginProfileInput) (req *aws.Request, output *GetLoginProfileOutput)
GetLoginProfileRequest generates a request for the GetLoginProfile operation.
func (*IAM) GetOpenIDConnectProvider ¶
func (c *IAM) GetOpenIDConnectProvider(input *GetOpenIDConnectProviderInput) (*GetOpenIDConnectProviderOutput, error)
Returns information about the specified OpenID Connect provider.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetOpenIDConnectProviderInput{ OpenIDConnectProviderARN: aws.String("arnType"), // Required } resp, err := svc.GetOpenIDConnectProvider(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetOpenIDConnectProviderRequest ¶
func (c *IAM) GetOpenIDConnectProviderRequest(input *GetOpenIDConnectProviderInput) (req *aws.Request, output *GetOpenIDConnectProviderOutput)
GetOpenIDConnectProviderRequest generates a request for the GetOpenIDConnectProvider operation.
func (*IAM) GetPolicy ¶
func (c *IAM) GetPolicy(input *GetPolicyInput) (*GetPolicyOutput, error)
Retrieves information about the specified managed policy, including the policy's default version and the total number of users, groups, and roles that the policy is attached to. For a list of the specific users, groups, and roles that the policy is attached to, use the ListEntitiesForPolicy API. This API returns metadata about the policy. To retrieve the policy document for a specific version of the policy, use GetPolicyVersion.
This API retrieves information about managed policies. To retrieve information about an inline policy that is embedded with a user, group, or role, use the GetUserPolicy, GetGroupPolicy, or GetRolePolicy API.
For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetPolicyInput{ PolicyARN: aws.String("arnType"), // Required } resp, err := svc.GetPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetPolicyRequest ¶
func (c *IAM) GetPolicyRequest(input *GetPolicyInput) (req *aws.Request, output *GetPolicyOutput)
GetPolicyRequest generates a request for the GetPolicy operation.
func (*IAM) GetPolicyVersion ¶
func (c *IAM) GetPolicyVersion(input *GetPolicyVersionInput) (*GetPolicyVersionOutput, error)
Retrieves information about the specified version of the specified managed policy, including the policy document.
To list the available versions for a policy, use ListPolicyVersions.
This API retrieves information about managed policies. To retrieve information about an inline policy that is embedded in a user, group, or role, use the GetUserPolicy, GetGroupPolicy, or GetRolePolicy API.
For more information about the types of policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetPolicyVersionInput{ PolicyARN: aws.String("arnType"), // Required VersionID: aws.String("policyVersionIdType"), // Required } resp, err := svc.GetPolicyVersion(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetPolicyVersionRequest ¶
func (c *IAM) GetPolicyVersionRequest(input *GetPolicyVersionInput) (req *aws.Request, output *GetPolicyVersionOutput)
GetPolicyVersionRequest generates a request for the GetPolicyVersion operation.
func (*IAM) GetRole ¶
func (c *IAM) GetRole(input *GetRoleInput) (*GetRoleOutput, error)
Retrieves information about the specified role, including the role's path, GUID, ARN, and the policy granting permission to assume the role. For more information about ARNs, go to ARNs (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html#Identifiers_ARNs). For more information about roles, go to Working with Roles (http://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetRoleInput{ RoleName: aws.String("roleNameType"), // Required } resp, err := svc.GetRole(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetRolePolicy ¶
func (c *IAM) GetRolePolicy(input *GetRolePolicyInput) (*GetRolePolicyOutput, error)
Retrieves the specified inline policy document that is embedded with the specified role.
A role can also have managed policies attached to it. To retrieve a managed policy document that is attached to a role, use GetPolicy to determine the policy's default version, then use GetPolicyVersion to retrieve the policy document.
For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
For more information about roles, go to Using Roles to Delegate Permissions and Federate Identities (http://docs.aws.amazon.com/IAM/latest/UserGuide/roles-toplevel.html).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetRolePolicyInput{ PolicyName: aws.String("policyNameType"), // Required RoleName: aws.String("roleNameType"), // Required } resp, err := svc.GetRolePolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetRolePolicyRequest ¶
func (c *IAM) GetRolePolicyRequest(input *GetRolePolicyInput) (req *aws.Request, output *GetRolePolicyOutput)
GetRolePolicyRequest generates a request for the GetRolePolicy operation.
func (*IAM) GetRoleRequest ¶
func (c *IAM) GetRoleRequest(input *GetRoleInput) (req *aws.Request, output *GetRoleOutput)
GetRoleRequest generates a request for the GetRole operation.
func (*IAM) GetSAMLProvider ¶
func (c *IAM) GetSAMLProvider(input *GetSAMLProviderInput) (*GetSAMLProviderOutput, error)
Returns the SAML provider metadocument that was uploaded when the provider was created or updated.
This operation requires Signature Version 4 (http://docs.aws.amazon.com/general/latest/gr/signature-version-4.html).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetSAMLProviderInput{ SAMLProviderARN: aws.String("arnType"), // Required } resp, err := svc.GetSAMLProvider(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetSAMLProviderRequest ¶
func (c *IAM) GetSAMLProviderRequest(input *GetSAMLProviderInput) (req *aws.Request, output *GetSAMLProviderOutput)
GetSAMLProviderRequest generates a request for the GetSAMLProvider operation.
func (*IAM) GetServerCertificate ¶
func (c *IAM) GetServerCertificate(input *GetServerCertificateInput) (*GetServerCertificateOutput, error)
Retrieves information about the specified server certificate.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetServerCertificateInput{ ServerCertificateName: aws.String("serverCertificateNameType"), // Required } resp, err := svc.GetServerCertificate(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetServerCertificateRequest ¶
func (c *IAM) GetServerCertificateRequest(input *GetServerCertificateInput) (req *aws.Request, output *GetServerCertificateOutput)
GetServerCertificateRequest generates a request for the GetServerCertificate operation.
func (*IAM) GetUser ¶
func (c *IAM) GetUser(input *GetUserInput) (*GetUserOutput, error)
Retrieves information about the specified user, including the user's creation date, path, unique ID, and ARN.
If you do not specify a user name, IAM determines the user name implicitly based on the AWS access key ID used to sign the request.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetUserInput{ UserName: aws.String("existingUserNameType"), } resp, err := svc.GetUser(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetUserPolicy ¶
func (c *IAM) GetUserPolicy(input *GetUserPolicyInput) (*GetUserPolicyOutput, error)
Retrieves the specified inline policy document that is embedded in the specified user.
A user can also have managed policies attached to it. To retrieve a managed policy document that is attached to a user, use GetPolicy to determine the policy's default version, then use GetPolicyVersion to retrieve the policy document.
For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.GetUserPolicyInput{ PolicyName: aws.String("policyNameType"), // Required UserName: aws.String("existingUserNameType"), // Required } resp, err := svc.GetUserPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) GetUserPolicyRequest ¶
func (c *IAM) GetUserPolicyRequest(input *GetUserPolicyInput) (req *aws.Request, output *GetUserPolicyOutput)
GetUserPolicyRequest generates a request for the GetUserPolicy operation.
func (*IAM) GetUserRequest ¶
func (c *IAM) GetUserRequest(input *GetUserInput) (req *aws.Request, output *GetUserOutput)
GetUserRequest generates a request for the GetUser operation.
func (*IAM) ListAccessKeys ¶
func (c *IAM) ListAccessKeys(input *ListAccessKeysInput) (*ListAccessKeysOutput, error)
Returns information about the access key IDs associated with the specified user. If there are none, the action returns an empty list.
Although each user is limited to a small number of keys, you can still paginate the results using the MaxItems and Marker parameters.
If the UserName field is not specified, the UserName is determined implicitly based on the AWS access key ID used to sign the request. Because this action works for access keys under the AWS account, you can use this action to manage root credentials even if the AWS account has no associated users.
To ensure the security of your AWS account, the secret access key is accessible only during key and user creation.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListAccessKeysInput{ Marker: aws.String("markerType"), MaxItems: aws.Long(1), UserName: aws.String("existingUserNameType"), } resp, err := svc.ListAccessKeys(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListAccessKeysPages ¶
func (c *IAM) ListAccessKeysPages(input *ListAccessKeysInput, fn func(p *ListAccessKeysOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListAccessKeysRequest ¶
func (c *IAM) ListAccessKeysRequest(input *ListAccessKeysInput) (req *aws.Request, output *ListAccessKeysOutput)
ListAccessKeysRequest generates a request for the ListAccessKeys operation.
func (*IAM) ListAccountAliases ¶
func (c *IAM) ListAccountAliases(input *ListAccountAliasesInput) (*ListAccountAliasesOutput, error)
Lists the account aliases associated with the account. For information about using an AWS account alias, see Using an Alias for Your AWS Account ID (http://docs.aws.amazon.com/IAM/latest/UserGuide/AccountAlias.html) in the Using IAM guide.
You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListAccountAliasesInput{ Marker: aws.String("markerType"), MaxItems: aws.Long(1), } resp, err := svc.ListAccountAliases(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListAccountAliasesPages ¶
func (c *IAM) ListAccountAliasesPages(input *ListAccountAliasesInput, fn func(p *ListAccountAliasesOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListAccountAliasesRequest ¶
func (c *IAM) ListAccountAliasesRequest(input *ListAccountAliasesInput) (req *aws.Request, output *ListAccountAliasesOutput)
ListAccountAliasesRequest generates a request for the ListAccountAliases operation.
func (*IAM) ListAttachedGroupPolicies ¶
func (c *IAM) ListAttachedGroupPolicies(input *ListAttachedGroupPoliciesInput) (*ListAttachedGroupPoliciesOutput, error)
Lists all managed policies that are attached to the specified group.
A group can also have inline policies embedded with it. To list the inline policies for a group, use the ListGroupPolicies API. For information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
You can paginate the results using the MaxItems and Marker parameters. You can use the PathPrefix parameter to limit the list of policies to only those matching the specified path prefix. If there are no policies attached to the specified group (or none that match the specified path prefix), the action returns an empty list.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListAttachedGroupPoliciesInput{ GroupName: aws.String("groupNameType"), // Required Marker: aws.String("markerType"), MaxItems: aws.Long(1), PathPrefix: aws.String("policyPathType"), } resp, err := svc.ListAttachedGroupPolicies(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListAttachedGroupPoliciesRequest ¶
func (c *IAM) ListAttachedGroupPoliciesRequest(input *ListAttachedGroupPoliciesInput) (req *aws.Request, output *ListAttachedGroupPoliciesOutput)
ListAttachedGroupPoliciesRequest generates a request for the ListAttachedGroupPolicies operation.
func (*IAM) ListAttachedRolePolicies ¶
func (c *IAM) ListAttachedRolePolicies(input *ListAttachedRolePoliciesInput) (*ListAttachedRolePoliciesOutput, error)
Lists all managed policies that are attached to the specified role.
A role can also have inline policies embedded with it. To list the inline policies for a role, use the ListRolePolicies API. For information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
You can paginate the results using the MaxItems and Marker parameters. You can use the PathPrefix parameter to limit the list of policies to only those matching the specified path prefix. If there are no policies attached to the specified role (or none that match the specified path prefix), the action returns an empty list.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListAttachedRolePoliciesInput{ RoleName: aws.String("roleNameType"), // Required Marker: aws.String("markerType"), MaxItems: aws.Long(1), PathPrefix: aws.String("policyPathType"), } resp, err := svc.ListAttachedRolePolicies(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListAttachedRolePoliciesRequest ¶
func (c *IAM) ListAttachedRolePoliciesRequest(input *ListAttachedRolePoliciesInput) (req *aws.Request, output *ListAttachedRolePoliciesOutput)
ListAttachedRolePoliciesRequest generates a request for the ListAttachedRolePolicies operation.
func (*IAM) ListAttachedUserPolicies ¶
func (c *IAM) ListAttachedUserPolicies(input *ListAttachedUserPoliciesInput) (*ListAttachedUserPoliciesOutput, error)
Lists all managed policies that are attached to the specified user.
A user can also have inline policies embedded with it. To list the inline policies for a user, use the ListUserPolicies API. For information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
You can paginate the results using the MaxItems and Marker parameters. You can use the PathPrefix parameter to limit the list of policies to only those matching the specified path prefix. If there are no policies attached to the specified group (or none that match the specified path prefix), the action returns an empty list.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListAttachedUserPoliciesInput{ UserName: aws.String("userNameType"), // Required Marker: aws.String("markerType"), MaxItems: aws.Long(1), PathPrefix: aws.String("policyPathType"), } resp, err := svc.ListAttachedUserPolicies(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListAttachedUserPoliciesRequest ¶
func (c *IAM) ListAttachedUserPoliciesRequest(input *ListAttachedUserPoliciesInput) (req *aws.Request, output *ListAttachedUserPoliciesOutput)
ListAttachedUserPoliciesRequest generates a request for the ListAttachedUserPolicies operation.
func (*IAM) ListEntitiesForPolicy ¶
func (c *IAM) ListEntitiesForPolicy(input *ListEntitiesForPolicyInput) (*ListEntitiesForPolicyOutput, error)
Lists all users, groups, and roles that the specified managed policy is attached to.
You can use the optional EntityFilter parameter to limit the results to a particular type of entity (users, groups, or roles). For example, to list only the roles that are attached to the specified policy, set EntityFilter to Role.
You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListEntitiesForPolicyInput{ PolicyARN: aws.String("arnType"), // Required EntityFilter: aws.String("EntityType"), Marker: aws.String("markerType"), MaxItems: aws.Long(1), PathPrefix: aws.String("pathType"), } resp, err := svc.ListEntitiesForPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListEntitiesForPolicyRequest ¶
func (c *IAM) ListEntitiesForPolicyRequest(input *ListEntitiesForPolicyInput) (req *aws.Request, output *ListEntitiesForPolicyOutput)
ListEntitiesForPolicyRequest generates a request for the ListEntitiesForPolicy operation.
func (*IAM) ListGroupPolicies ¶
func (c *IAM) ListGroupPolicies(input *ListGroupPoliciesInput) (*ListGroupPoliciesOutput, error)
Lists the names of the inline policies that are embedded in the specified group.
A group can also have managed policies attached to it. To list the managed policies that are attached to a group, use ListAttachedGroupPolicies. For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
You can paginate the results using the MaxItems and Marker parameters. If there are no inline policies embedded with the specified group, the action returns an empty list.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListGroupPoliciesInput{ GroupName: aws.String("groupNameType"), // Required Marker: aws.String("markerType"), MaxItems: aws.Long(1), } resp, err := svc.ListGroupPolicies(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListGroupPoliciesPages ¶
func (c *IAM) ListGroupPoliciesPages(input *ListGroupPoliciesInput, fn func(p *ListGroupPoliciesOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListGroupPoliciesRequest ¶
func (c *IAM) ListGroupPoliciesRequest(input *ListGroupPoliciesInput) (req *aws.Request, output *ListGroupPoliciesOutput)
ListGroupPoliciesRequest generates a request for the ListGroupPolicies operation.
func (*IAM) ListGroups ¶
func (c *IAM) ListGroups(input *ListGroupsInput) (*ListGroupsOutput, error)
Lists the groups that have the specified path prefix.
You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListGroupsInput{ Marker: aws.String("markerType"), MaxItems: aws.Long(1), PathPrefix: aws.String("pathPrefixType"), } resp, err := svc.ListGroups(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListGroupsForUser ¶
func (c *IAM) ListGroupsForUser(input *ListGroupsForUserInput) (*ListGroupsForUserOutput, error)
Lists the groups the specified user belongs to.
You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListGroupsForUserInput{ UserName: aws.String("existingUserNameType"), // Required Marker: aws.String("markerType"), MaxItems: aws.Long(1), } resp, err := svc.ListGroupsForUser(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListGroupsForUserPages ¶
func (c *IAM) ListGroupsForUserPages(input *ListGroupsForUserInput, fn func(p *ListGroupsForUserOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListGroupsForUserRequest ¶
func (c *IAM) ListGroupsForUserRequest(input *ListGroupsForUserInput) (req *aws.Request, output *ListGroupsForUserOutput)
ListGroupsForUserRequest generates a request for the ListGroupsForUser operation.
func (*IAM) ListGroupsPages ¶
func (c *IAM) ListGroupsPages(input *ListGroupsInput, fn func(p *ListGroupsOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListGroupsRequest ¶
func (c *IAM) ListGroupsRequest(input *ListGroupsInput) (req *aws.Request, output *ListGroupsOutput)
ListGroupsRequest generates a request for the ListGroups operation.
func (*IAM) ListInstanceProfiles ¶
func (c *IAM) ListInstanceProfiles(input *ListInstanceProfilesInput) (*ListInstanceProfilesOutput, error)
Lists the instance profiles that have the specified path prefix. If there are none, the action returns an empty list. For more information about instance profiles, go to About Instance Profiles (http://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html).
You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListInstanceProfilesInput{ Marker: aws.String("markerType"), MaxItems: aws.Long(1), PathPrefix: aws.String("pathPrefixType"), } resp, err := svc.ListInstanceProfiles(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListInstanceProfilesForRole ¶
func (c *IAM) ListInstanceProfilesForRole(input *ListInstanceProfilesForRoleInput) (*ListInstanceProfilesForRoleOutput, error)
Lists the instance profiles that have the specified associated role. If there are none, the action returns an empty list. For more information about instance profiles, go to About Instance Profiles (http://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html).
You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListInstanceProfilesForRoleInput{ RoleName: aws.String("roleNameType"), // Required Marker: aws.String("markerType"), MaxItems: aws.Long(1), } resp, err := svc.ListInstanceProfilesForRole(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListInstanceProfilesForRolePages ¶
func (c *IAM) ListInstanceProfilesForRolePages(input *ListInstanceProfilesForRoleInput, fn func(p *ListInstanceProfilesForRoleOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListInstanceProfilesForRoleRequest ¶
func (c *IAM) ListInstanceProfilesForRoleRequest(input *ListInstanceProfilesForRoleInput) (req *aws.Request, output *ListInstanceProfilesForRoleOutput)
ListInstanceProfilesForRoleRequest generates a request for the ListInstanceProfilesForRole operation.
func (*IAM) ListInstanceProfilesPages ¶
func (c *IAM) ListInstanceProfilesPages(input *ListInstanceProfilesInput, fn func(p *ListInstanceProfilesOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListInstanceProfilesRequest ¶
func (c *IAM) ListInstanceProfilesRequest(input *ListInstanceProfilesInput) (req *aws.Request, output *ListInstanceProfilesOutput)
ListInstanceProfilesRequest generates a request for the ListInstanceProfiles operation.
func (*IAM) ListMFADevices ¶
func (c *IAM) ListMFADevices(input *ListMFADevicesInput) (*ListMFADevicesOutput, error)
Lists the MFA devices. If the request includes the user name, then this action lists all the MFA devices associated with the specified user name. If you do not specify a user name, IAM determines the user name implicitly based on the AWS access key ID signing the request.
You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListMFADevicesInput{ Marker: aws.String("markerType"), MaxItems: aws.Long(1), UserName: aws.String("existingUserNameType"), } resp, err := svc.ListMFADevices(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListMFADevicesPages ¶
func (c *IAM) ListMFADevicesPages(input *ListMFADevicesInput, fn func(p *ListMFADevicesOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListMFADevicesRequest ¶
func (c *IAM) ListMFADevicesRequest(input *ListMFADevicesInput) (req *aws.Request, output *ListMFADevicesOutput)
ListMFADevicesRequest generates a request for the ListMFADevices operation.
func (*IAM) ListOpenIDConnectProviders ¶
func (c *IAM) ListOpenIDConnectProviders(input *ListOpenIDConnectProvidersInput) (*ListOpenIDConnectProvidersOutput, error)
Lists information about the OpenID Connect providers in the AWS account.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) var params *iam.ListOpenIDConnectProvidersInput resp, err := svc.ListOpenIDConnectProviders(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListOpenIDConnectProvidersRequest ¶
func (c *IAM) ListOpenIDConnectProvidersRequest(input *ListOpenIDConnectProvidersInput) (req *aws.Request, output *ListOpenIDConnectProvidersOutput)
ListOpenIDConnectProvidersRequest generates a request for the ListOpenIDConnectProviders operation.
func (*IAM) ListPolicies ¶
func (c *IAM) ListPolicies(input *ListPoliciesInput) (*ListPoliciesOutput, error)
Lists all the managed policies that are available to your account, including your own customer managed policies and all AWS managed policies.
You can filter the list of policies that is returned using the optional OnlyAttached, Scope, and PathPrefix parameters. For example, to list only the customer managed policies in your AWS account, set Scope to Local. To list only AWS managed policies, set Scope to AWS.
You can paginate the results using the MaxItems and Marker parameters.
For more information about managed policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListPoliciesInput{ Marker: aws.String("markerType"), MaxItems: aws.Long(1), OnlyAttached: aws.Boolean(true), PathPrefix: aws.String("policyPathType"), Scope: aws.String("policyScopeType"), } resp, err := svc.ListPolicies(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListPoliciesRequest ¶
func (c *IAM) ListPoliciesRequest(input *ListPoliciesInput) (req *aws.Request, output *ListPoliciesOutput)
ListPoliciesRequest generates a request for the ListPolicies operation.
func (*IAM) ListPolicyVersions ¶
func (c *IAM) ListPolicyVersions(input *ListPolicyVersionsInput) (*ListPolicyVersionsOutput, error)
Lists information about the versions of the specified managed policy, including the version that is set as the policy's default version.
For more information about managed policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListPolicyVersionsInput{ PolicyARN: aws.String("arnType"), // Required Marker: aws.String("markerType"), MaxItems: aws.Long(1), } resp, err := svc.ListPolicyVersions(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListPolicyVersionsRequest ¶
func (c *IAM) ListPolicyVersionsRequest(input *ListPolicyVersionsInput) (req *aws.Request, output *ListPolicyVersionsOutput)
ListPolicyVersionsRequest generates a request for the ListPolicyVersions operation.
func (*IAM) ListRolePolicies ¶
func (c *IAM) ListRolePolicies(input *ListRolePoliciesInput) (*ListRolePoliciesOutput, error)
Lists the names of the inline policies that are embedded in the specified role.
A role can also have managed policies attached to it. To list the managed policies that are attached to a role, use ListAttachedRolePolicies. For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
You can paginate the results using the MaxItems and Marker parameters. If there are no inline policies embedded with the specified role, the action returns an empty list.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListRolePoliciesInput{ RoleName: aws.String("roleNameType"), // Required Marker: aws.String("markerType"), MaxItems: aws.Long(1), } resp, err := svc.ListRolePolicies(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListRolePoliciesPages ¶
func (c *IAM) ListRolePoliciesPages(input *ListRolePoliciesInput, fn func(p *ListRolePoliciesOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListRolePoliciesRequest ¶
func (c *IAM) ListRolePoliciesRequest(input *ListRolePoliciesInput) (req *aws.Request, output *ListRolePoliciesOutput)
ListRolePoliciesRequest generates a request for the ListRolePolicies operation.
func (*IAM) ListRoles ¶
func (c *IAM) ListRoles(input *ListRolesInput) (*ListRolesOutput, error)
Lists the roles that have the specified path prefix. If there are none, the action returns an empty list. For more information about roles, go to Working with Roles (http://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html).
You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListRolesInput{ Marker: aws.String("markerType"), MaxItems: aws.Long(1), PathPrefix: aws.String("pathPrefixType"), } resp, err := svc.ListRoles(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListRolesPages ¶
func (c *IAM) ListRolesPages(input *ListRolesInput, fn func(p *ListRolesOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListRolesRequest ¶
func (c *IAM) ListRolesRequest(input *ListRolesInput) (req *aws.Request, output *ListRolesOutput)
ListRolesRequest generates a request for the ListRoles operation.
func (*IAM) ListSAMLProviders ¶
func (c *IAM) ListSAMLProviders(input *ListSAMLProvidersInput) (*ListSAMLProvidersOutput, error)
Lists the SAML providers in the account.
This operation requires Signature Version 4 (http://docs.aws.amazon.com/general/latest/gr/signature-version-4.html).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) var params *iam.ListSAMLProvidersInput resp, err := svc.ListSAMLProviders(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListSAMLProvidersRequest ¶
func (c *IAM) ListSAMLProvidersRequest(input *ListSAMLProvidersInput) (req *aws.Request, output *ListSAMLProvidersOutput)
ListSAMLProvidersRequest generates a request for the ListSAMLProviders operation.
func (*IAM) ListServerCertificates ¶
func (c *IAM) ListServerCertificates(input *ListServerCertificatesInput) (*ListServerCertificatesOutput, error)
Lists the server certificates that have the specified path prefix. If none exist, the action returns an empty list.
You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListServerCertificatesInput{ Marker: aws.String("markerType"), MaxItems: aws.Long(1), PathPrefix: aws.String("pathPrefixType"), } resp, err := svc.ListServerCertificates(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListServerCertificatesPages ¶
func (c *IAM) ListServerCertificatesPages(input *ListServerCertificatesInput, fn func(p *ListServerCertificatesOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListServerCertificatesRequest ¶
func (c *IAM) ListServerCertificatesRequest(input *ListServerCertificatesInput) (req *aws.Request, output *ListServerCertificatesOutput)
ListServerCertificatesRequest generates a request for the ListServerCertificates operation.
func (*IAM) ListSigningCertificates ¶
func (c *IAM) ListSigningCertificates(input *ListSigningCertificatesInput) (*ListSigningCertificatesOutput, error)
Returns information about the signing certificates associated with the specified user. If there are none, the action returns an empty list.
Although each user is limited to a small number of signing certificates, you can still paginate the results using the MaxItems and Marker parameters.
If the UserName field is not specified, the user name is determined implicitly based on the AWS access key ID used to sign the request. Because this action works for access keys under the AWS account, you can use this action to manage root credentials even if the AWS account has no associated users.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListSigningCertificatesInput{ Marker: aws.String("markerType"), MaxItems: aws.Long(1), UserName: aws.String("existingUserNameType"), } resp, err := svc.ListSigningCertificates(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListSigningCertificatesPages ¶
func (c *IAM) ListSigningCertificatesPages(input *ListSigningCertificatesInput, fn func(p *ListSigningCertificatesOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListSigningCertificatesRequest ¶
func (c *IAM) ListSigningCertificatesRequest(input *ListSigningCertificatesInput) (req *aws.Request, output *ListSigningCertificatesOutput)
ListSigningCertificatesRequest generates a request for the ListSigningCertificates operation.
func (*IAM) ListUserPolicies ¶
func (c *IAM) ListUserPolicies(input *ListUserPoliciesInput) (*ListUserPoliciesOutput, error)
Lists the names of the inline policies embedded in the specified user.
A user can also have managed policies attached to it. To list the managed policies that are attached to a user, use ListAttachedUserPolicies. For more information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
You can paginate the results using the MaxItems and Marker parameters. If there are no inline policies embedded with the specified user, the action returns an empty list.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListUserPoliciesInput{ UserName: aws.String("existingUserNameType"), // Required Marker: aws.String("markerType"), MaxItems: aws.Long(1), } resp, err := svc.ListUserPolicies(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListUserPoliciesPages ¶
func (c *IAM) ListUserPoliciesPages(input *ListUserPoliciesInput, fn func(p *ListUserPoliciesOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListUserPoliciesRequest ¶
func (c *IAM) ListUserPoliciesRequest(input *ListUserPoliciesInput) (req *aws.Request, output *ListUserPoliciesOutput)
ListUserPoliciesRequest generates a request for the ListUserPolicies operation.
func (*IAM) ListUsers ¶
func (c *IAM) ListUsers(input *ListUsersInput) (*ListUsersOutput, error)
Lists the IAM users that have the specified path prefix. If no path prefix is specified, the action returns all users in the AWS account. If there are none, the action returns an empty list.
You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListUsersInput{ Marker: aws.String("markerType"), MaxItems: aws.Long(1), PathPrefix: aws.String("pathPrefixType"), } resp, err := svc.ListUsers(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListUsersPages ¶
func (c *IAM) ListUsersPages(input *ListUsersInput, fn func(p *ListUsersOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListUsersRequest ¶
func (c *IAM) ListUsersRequest(input *ListUsersInput) (req *aws.Request, output *ListUsersOutput)
ListUsersRequest generates a request for the ListUsers operation.
func (*IAM) ListVirtualMFADevices ¶
func (c *IAM) ListVirtualMFADevices(input *ListVirtualMFADevicesInput) (*ListVirtualMFADevicesOutput, error)
Lists the virtual MFA devices under the AWS account by assignment status. If you do not specify an assignment status, the action returns a list of all virtual MFA devices. Assignment status can be Assigned, Unassigned, or Any.
You can paginate the results using the MaxItems and Marker parameters.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ListVirtualMFADevicesInput{ AssignmentStatus: aws.String("assignmentStatusType"), Marker: aws.String("markerType"), MaxItems: aws.Long(1), } resp, err := svc.ListVirtualMFADevices(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ListVirtualMFADevicesPages ¶
func (c *IAM) ListVirtualMFADevicesPages(input *ListVirtualMFADevicesInput, fn func(p *ListVirtualMFADevicesOutput, lastPage bool) (shouldContinue bool)) error
func (*IAM) ListVirtualMFADevicesRequest ¶
func (c *IAM) ListVirtualMFADevicesRequest(input *ListVirtualMFADevicesInput) (req *aws.Request, output *ListVirtualMFADevicesOutput)
ListVirtualMFADevicesRequest generates a request for the ListVirtualMFADevices operation.
func (*IAM) PutGroupPolicy ¶
func (c *IAM) PutGroupPolicy(input *PutGroupPolicyInput) (*PutGroupPolicyOutput, error)
Adds (or updates) an inline policy document that is embedded in the specified group.
A user can also have managed policies attached to it. To attach a managed policy to a group, use AttachGroupPolicy. To create a new managed policy, use CreatePolicy. For information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
For information about limits on the number of inline policies that you can embed in a group, see Limitations on IAM Entities (http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the Using IAM guide.
Because policy documents can be large, you should use POST rather than GET when calling PutGroupPolicy. For general information about using the Query API with IAM, go to Making Query Requests (http://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.PutGroupPolicyInput{ GroupName: aws.String("groupNameType"), // Required PolicyDocument: aws.String("policyDocumentType"), // Required PolicyName: aws.String("policyNameType"), // Required } resp, err := svc.PutGroupPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) PutGroupPolicyRequest ¶
func (c *IAM) PutGroupPolicyRequest(input *PutGroupPolicyInput) (req *aws.Request, output *PutGroupPolicyOutput)
PutGroupPolicyRequest generates a request for the PutGroupPolicy operation.
func (*IAM) PutRolePolicy ¶
func (c *IAM) PutRolePolicy(input *PutRolePolicyInput) (*PutRolePolicyOutput, error)
Adds (or updates) an inline policy document that is embedded in the specified role.
When you embed an inline policy in a role, the inline policy is used as the role's access (permissions) policy. The role's trust policy is created at the same time as the role, using CreateRole. You can update a role's trust policy using UpdateAssumeRolePolicy. For more information about roles, go to Using Roles to Delegate Permissions and Federate Identities (http://docs.aws.amazon.com/IAM/latest/UserGuide/roles-toplevel.html).
A role can also have a managed policy attached to it. To attach a managed policy to a role, use AttachRolePolicy. To create a new managed policy, use CreatePolicy. For information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
For information about limits on the number of inline policies that you can embed with a role, see Limitations on IAM Entities (http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the Using IAM guide.
Because policy documents can be large, you should use POST rather than GET when calling PutRolePolicy. For general information about using the Query API with IAM, go to Making Query Requests (http://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.PutRolePolicyInput{ PolicyDocument: aws.String("policyDocumentType"), // Required PolicyName: aws.String("policyNameType"), // Required RoleName: aws.String("roleNameType"), // Required } resp, err := svc.PutRolePolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) PutRolePolicyRequest ¶
func (c *IAM) PutRolePolicyRequest(input *PutRolePolicyInput) (req *aws.Request, output *PutRolePolicyOutput)
PutRolePolicyRequest generates a request for the PutRolePolicy operation.
func (*IAM) PutUserPolicy ¶
func (c *IAM) PutUserPolicy(input *PutUserPolicyInput) (*PutUserPolicyOutput, error)
Adds (or updates) an inline policy document that is embedded in the specified user.
A user can also have a managed policy attached to it. To attach a managed policy to a user, use AttachUserPolicy. To create a new managed policy, use CreatePolicy. For information about policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
For information about limits on the number of inline policies that you can embed in a user, see Limitations on IAM Entities (http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the Using IAM guide.
Because policy documents can be large, you should use POST rather than GET when calling PutUserPolicy. For general information about using the Query API with IAM, go to Making Query Requests (http://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.PutUserPolicyInput{ PolicyDocument: aws.String("policyDocumentType"), // Required PolicyName: aws.String("policyNameType"), // Required UserName: aws.String("existingUserNameType"), // Required } resp, err := svc.PutUserPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) PutUserPolicyRequest ¶
func (c *IAM) PutUserPolicyRequest(input *PutUserPolicyInput) (req *aws.Request, output *PutUserPolicyOutput)
PutUserPolicyRequest generates a request for the PutUserPolicy operation.
func (*IAM) RemoveClientIDFromOpenIDConnectProvider ¶
func (c *IAM) RemoveClientIDFromOpenIDConnectProvider(input *RemoveClientIDFromOpenIDConnectProviderInput) (*RemoveClientIDFromOpenIDConnectProviderOutput, error)
Removes the specified client ID (also known as audience) from the list of client IDs registered for the specified IAM OpenID Connect provider.
This action is idempotent; it does not fail or return an error if you try to remove a client ID that was removed previously.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.RemoveClientIDFromOpenIDConnectProviderInput{ ClientID: aws.String("clientIDType"), // Required OpenIDConnectProviderARN: aws.String("arnType"), // Required } resp, err := svc.RemoveClientIDFromOpenIDConnectProvider(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) RemoveClientIDFromOpenIDConnectProviderRequest ¶
func (c *IAM) RemoveClientIDFromOpenIDConnectProviderRequest(input *RemoveClientIDFromOpenIDConnectProviderInput) (req *aws.Request, output *RemoveClientIDFromOpenIDConnectProviderOutput)
RemoveClientIDFromOpenIDConnectProviderRequest generates a request for the RemoveClientIDFromOpenIDConnectProvider operation.
func (*IAM) RemoveRoleFromInstanceProfile ¶
func (c *IAM) RemoveRoleFromInstanceProfile(input *RemoveRoleFromInstanceProfileInput) (*RemoveRoleFromInstanceProfileOutput, error)
Removes the specified role from the specified instance profile.
Make sure you do not have any Amazon EC2 instances running with the role
you are about to remove from the instance profile. Removing a role from an instance profile that is associated with a running instance will break any applications running on the instance. For more information about roles, go to Working with Roles (http://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html). For more information about instance profiles, go to About Instance Profiles (http://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.RemoveRoleFromInstanceProfileInput{ InstanceProfileName: aws.String("instanceProfileNameType"), // Required RoleName: aws.String("roleNameType"), // Required } resp, err := svc.RemoveRoleFromInstanceProfile(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) RemoveRoleFromInstanceProfileRequest ¶
func (c *IAM) RemoveRoleFromInstanceProfileRequest(input *RemoveRoleFromInstanceProfileInput) (req *aws.Request, output *RemoveRoleFromInstanceProfileOutput)
RemoveRoleFromInstanceProfileRequest generates a request for the RemoveRoleFromInstanceProfile operation.
func (*IAM) RemoveUserFromGroup ¶
func (c *IAM) RemoveUserFromGroup(input *RemoveUserFromGroupInput) (*RemoveUserFromGroupOutput, error)
Removes the specified user from the specified group.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.RemoveUserFromGroupInput{ GroupName: aws.String("groupNameType"), // Required UserName: aws.String("existingUserNameType"), // Required } resp, err := svc.RemoveUserFromGroup(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) RemoveUserFromGroupRequest ¶
func (c *IAM) RemoveUserFromGroupRequest(input *RemoveUserFromGroupInput) (req *aws.Request, output *RemoveUserFromGroupOutput)
RemoveUserFromGroupRequest generates a request for the RemoveUserFromGroup operation.
func (*IAM) ResyncMFADevice ¶
func (c *IAM) ResyncMFADevice(input *ResyncMFADeviceInput) (*ResyncMFADeviceOutput, error)
Synchronizes the specified MFA device with AWS servers.
For more information about creating and working with virtual MFA devices, go to Using a Virtual MFA Device (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.ResyncMFADeviceInput{ AuthenticationCode1: aws.String("authenticationCodeType"), // Required AuthenticationCode2: aws.String("authenticationCodeType"), // Required SerialNumber: aws.String("serialNumberType"), // Required UserName: aws.String("existingUserNameType"), // Required } resp, err := svc.ResyncMFADevice(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) ResyncMFADeviceRequest ¶
func (c *IAM) ResyncMFADeviceRequest(input *ResyncMFADeviceInput) (req *aws.Request, output *ResyncMFADeviceOutput)
ResyncMFADeviceRequest generates a request for the ResyncMFADevice operation.
func (*IAM) SetDefaultPolicyVersion ¶
func (c *IAM) SetDefaultPolicyVersion(input *SetDefaultPolicyVersionInput) (*SetDefaultPolicyVersionOutput, error)
Sets the specified version of the specified policy as the policy's default (operative) version.
This action affects all users, groups, and roles that the policy is attached to. To list the users, groups, and roles that the policy is attached to, use the ListEntitiesForPolicy API.
For information about managed policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.SetDefaultPolicyVersionInput{ PolicyARN: aws.String("arnType"), // Required VersionID: aws.String("policyVersionIdType"), // Required } resp, err := svc.SetDefaultPolicyVersion(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) SetDefaultPolicyVersionRequest ¶
func (c *IAM) SetDefaultPolicyVersionRequest(input *SetDefaultPolicyVersionInput) (req *aws.Request, output *SetDefaultPolicyVersionOutput)
SetDefaultPolicyVersionRequest generates a request for the SetDefaultPolicyVersion operation.
func (*IAM) UpdateAccessKey ¶
func (c *IAM) UpdateAccessKey(input *UpdateAccessKeyInput) (*UpdateAccessKeyOutput, error)
Changes the status of the specified access key from Active to Inactive, or vice versa. This action can be used to disable a user's key as part of a key rotation work flow.
If the UserName field is not specified, the UserName is determined implicitly based on the AWS access key ID used to sign the request. Because this action works for access keys under the AWS account, you can use this action to manage root credentials even if the AWS account has no associated users.
For information about rotating keys, see Managing Keys and Certificates (http://docs.aws.amazon.com/IAM/latest/UserGuide/ManagingCredentials.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UpdateAccessKeyInput{ AccessKeyID: aws.String("accessKeyIdType"), // Required Status: aws.String("statusType"), // Required UserName: aws.String("existingUserNameType"), } resp, err := svc.UpdateAccessKey(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UpdateAccessKeyRequest ¶
func (c *IAM) UpdateAccessKeyRequest(input *UpdateAccessKeyInput) (req *aws.Request, output *UpdateAccessKeyOutput)
UpdateAccessKeyRequest generates a request for the UpdateAccessKey operation.
func (*IAM) UpdateAccountPasswordPolicy ¶
func (c *IAM) UpdateAccountPasswordPolicy(input *UpdateAccountPasswordPolicyInput) (*UpdateAccountPasswordPolicyOutput, error)
Updates the password policy settings for the AWS account.
This action does not support partial updates. No parameters are required,
but if you do not specify a parameter, that parameter's value reverts to its default value. See the Request Parameters section for each parameter's default value.
For more information about using a password policy, see Managing an IAM
Password Policy (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingPasswordPolicies.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UpdateAccountPasswordPolicyInput{ AllowUsersToChangePassword: aws.Boolean(true), HardExpiry: aws.Boolean(true), MaxPasswordAge: aws.Long(1), MinimumPasswordLength: aws.Long(1), PasswordReusePrevention: aws.Long(1), RequireLowercaseCharacters: aws.Boolean(true), RequireNumbers: aws.Boolean(true), RequireSymbols: aws.Boolean(true), RequireUppercaseCharacters: aws.Boolean(true), } resp, err := svc.UpdateAccountPasswordPolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UpdateAccountPasswordPolicyRequest ¶
func (c *IAM) UpdateAccountPasswordPolicyRequest(input *UpdateAccountPasswordPolicyInput) (req *aws.Request, output *UpdateAccountPasswordPolicyOutput)
UpdateAccountPasswordPolicyRequest generates a request for the UpdateAccountPasswordPolicy operation.
func (*IAM) UpdateAssumeRolePolicy ¶
func (c *IAM) UpdateAssumeRolePolicy(input *UpdateAssumeRolePolicyInput) (*UpdateAssumeRolePolicyOutput, error)
Updates the policy that grants an entity permission to assume a role. For more information about roles, go to Using Roles to Delegate Permissions and Federate Identities (http://docs.aws.amazon.com/IAM/latest/UserGuide/roles-toplevel.html).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UpdateAssumeRolePolicyInput{ PolicyDocument: aws.String("policyDocumentType"), // Required RoleName: aws.String("roleNameType"), // Required } resp, err := svc.UpdateAssumeRolePolicy(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UpdateAssumeRolePolicyRequest ¶
func (c *IAM) UpdateAssumeRolePolicyRequest(input *UpdateAssumeRolePolicyInput) (req *aws.Request, output *UpdateAssumeRolePolicyOutput)
UpdateAssumeRolePolicyRequest generates a request for the UpdateAssumeRolePolicy operation.
func (*IAM) UpdateGroup ¶
func (c *IAM) UpdateGroup(input *UpdateGroupInput) (*UpdateGroupOutput, error)
Updates the name and/or the path of the specified group.
You should understand the implications of changing a group's path or name.
For more information, see Renaming Users and Groups (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_WorkingWithGroupsAndUsers.html) in the Using IAM guide. To change a group name the requester must have appropriate permissions on both the source object and the target object. For example, to change Managers to MGRs, the entity making the request must have permission on Managers and MGRs, or must have permission on all (*). For more information about permissions, see Permissions and Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/PermissionsAndPolicies.html" target="blank).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UpdateGroupInput{ GroupName: aws.String("groupNameType"), // Required NewGroupName: aws.String("groupNameType"), NewPath: aws.String("pathType"), } resp, err := svc.UpdateGroup(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UpdateGroupRequest ¶
func (c *IAM) UpdateGroupRequest(input *UpdateGroupInput) (req *aws.Request, output *UpdateGroupOutput)
UpdateGroupRequest generates a request for the UpdateGroup operation.
func (*IAM) UpdateLoginProfile ¶
func (c *IAM) UpdateLoginProfile(input *UpdateLoginProfileInput) (*UpdateLoginProfileOutput, error)
Changes the password for the specified user.
Users can change their own passwords by calling ChangePassword. For more information about modifying passwords, see Managing Passwords (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UpdateLoginProfileInput{ UserName: aws.String("userNameType"), // Required Password: aws.String("passwordType"), PasswordResetRequired: aws.Boolean(true), } resp, err := svc.UpdateLoginProfile(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UpdateLoginProfileRequest ¶
func (c *IAM) UpdateLoginProfileRequest(input *UpdateLoginProfileInput) (req *aws.Request, output *UpdateLoginProfileOutput)
UpdateLoginProfileRequest generates a request for the UpdateLoginProfile operation.
func (*IAM) UpdateOpenIDConnectProviderThumbprint ¶
func (c *IAM) UpdateOpenIDConnectProviderThumbprint(input *UpdateOpenIDConnectProviderThumbprintInput) (*UpdateOpenIDConnectProviderThumbprintOutput, error)
Replaces the existing list of server certificate thumbprints with a new list.
The list that you pass with this action completely replaces the existing list of thumbprints. (The lists are not merged.)
Typically, you need to update a thumbprint only when the identity provider's certificate changes, which occurs rarely. However, if the provider's certificate does change, any attempt to assume an IAM role that specifies the OIDC provider as a principal will fail until the certificate thumbprint is updated.
Because trust for the OpenID Connect provider is ultimately derived from the provider's certificate and is validated by the thumbprint, it is a best practice to limit access to the UpdateOpenIDConnectProviderThumbprint action to highly-privileged users.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UpdateOpenIDConnectProviderThumbprintInput{ OpenIDConnectProviderARN: aws.String("arnType"), // Required ThumbprintList: []*string{ // Required aws.String("thumbprintType"), // Required // More values... }, } resp, err := svc.UpdateOpenIDConnectProviderThumbprint(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UpdateOpenIDConnectProviderThumbprintRequest ¶
func (c *IAM) UpdateOpenIDConnectProviderThumbprintRequest(input *UpdateOpenIDConnectProviderThumbprintInput) (req *aws.Request, output *UpdateOpenIDConnectProviderThumbprintOutput)
UpdateOpenIDConnectProviderThumbprintRequest generates a request for the UpdateOpenIDConnectProviderThumbprint operation.
func (*IAM) UpdateSAMLProvider ¶
func (c *IAM) UpdateSAMLProvider(input *UpdateSAMLProviderInput) (*UpdateSAMLProviderOutput, error)
Updates the metadata document for an existing SAML provider.
This operation requires Signature Version 4 (http://docs.aws.amazon.com/general/latest/gr/signature-version-4.html).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UpdateSAMLProviderInput{ SAMLMetadataDocument: aws.String("SAMLMetadataDocumentType"), // Required SAMLProviderARN: aws.String("arnType"), // Required } resp, err := svc.UpdateSAMLProvider(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UpdateSAMLProviderRequest ¶
func (c *IAM) UpdateSAMLProviderRequest(input *UpdateSAMLProviderInput) (req *aws.Request, output *UpdateSAMLProviderOutput)
UpdateSAMLProviderRequest generates a request for the UpdateSAMLProvider operation.
func (*IAM) UpdateServerCertificate ¶
func (c *IAM) UpdateServerCertificate(input *UpdateServerCertificateInput) (*UpdateServerCertificateOutput, error)
Updates the name and/or the path of the specified server certificate.
You should understand the implications of changing a server certificate's
path or name. For more information, see Managing Server Certificates (http://docs.aws.amazon.com/IAM/latest/UserGuide/ManagingServerCerts.html) in the Using IAM guide. To change a server certificate name the requester must have appropriate permissions on both the source object and the target object. For example, to change the name from ProductionCert to ProdCert, the entity making the request must have permission on ProductionCert and ProdCert, or must have permission on all (*). For more information about permissions, see Permissions and Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/PermissionsAndPolicies.html" target="blank).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UpdateServerCertificateInput{ ServerCertificateName: aws.String("serverCertificateNameType"), // Required NewPath: aws.String("pathType"), NewServerCertificateName: aws.String("serverCertificateNameType"), } resp, err := svc.UpdateServerCertificate(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UpdateServerCertificateRequest ¶
func (c *IAM) UpdateServerCertificateRequest(input *UpdateServerCertificateInput) (req *aws.Request, output *UpdateServerCertificateOutput)
UpdateServerCertificateRequest generates a request for the UpdateServerCertificate operation.
func (*IAM) UpdateSigningCertificate ¶
func (c *IAM) UpdateSigningCertificate(input *UpdateSigningCertificateInput) (*UpdateSigningCertificateOutput, error)
Changes the status of the specified signing certificate from active to disabled, or vice versa. This action can be used to disable a user's signing certificate as part of a certificate rotation work flow.
If the UserName field is not specified, the UserName is determined implicitly based on the AWS access key ID used to sign the request. Because this action works for access keys under the AWS account, you can use this action to manage root credentials even if the AWS account has no associated users.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UpdateSigningCertificateInput{ CertificateID: aws.String("certificateIdType"), // Required Status: aws.String("statusType"), // Required UserName: aws.String("existingUserNameType"), } resp, err := svc.UpdateSigningCertificate(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UpdateSigningCertificateRequest ¶
func (c *IAM) UpdateSigningCertificateRequest(input *UpdateSigningCertificateInput) (req *aws.Request, output *UpdateSigningCertificateOutput)
UpdateSigningCertificateRequest generates a request for the UpdateSigningCertificate operation.
func (*IAM) UpdateUser ¶
func (c *IAM) UpdateUser(input *UpdateUserInput) (*UpdateUserOutput, error)
Updates the name and/or the path of the specified user.
You should understand the implications of changing a user's path or name.
For more information, see Renaming Users and Groups (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_WorkingWithGroupsAndUsers.html) in the Using IAM guide. To change a user name the requester must have appropriate permissions on both the source object and the target object. For example, to change Bob to Robert, the entity making the request must have permission on Bob and Robert, or must have permission on all (*). For more information about permissions, see Permissions and Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/PermissionsAndPolicies.html" target="blank).
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UpdateUserInput{ UserName: aws.String("existingUserNameType"), // Required NewPath: aws.String("pathType"), NewUserName: aws.String("userNameType"), } resp, err := svc.UpdateUser(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UpdateUserRequest ¶
func (c *IAM) UpdateUserRequest(input *UpdateUserInput) (req *aws.Request, output *UpdateUserOutput)
UpdateUserRequest generates a request for the UpdateUser operation.
func (*IAM) UploadServerCertificate ¶
func (c *IAM) UploadServerCertificate(input *UploadServerCertificateInput) (*UploadServerCertificateOutput, error)
Uploads a server certificate entity for the AWS account. The server certificate entity includes a public key certificate, a private key, and an optional certificate chain, which should all be PEM-encoded.
For information about the number of server certificates you can upload, see Limitations on IAM Entities (http://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the Using IAM guide.
Because the body of the public key certificate, private key, and the certificate chain can be large, you should use POST rather than GET when calling UploadServerCertificate. For information about setting up signatures and authorization through the API, go to Signing AWS API Requests (http://docs.aws.amazon.com/general/latest/gr/signing_aws_api_requests.html) in the AWS General Reference. For general information about using the Query API with IAM, go to Making Query Requests (http://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html) in the Using IAM guide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UploadServerCertificateInput{ CertificateBody: aws.String("certificateBodyType"), // Required PrivateKey: aws.String("privateKeyType"), // Required ServerCertificateName: aws.String("serverCertificateNameType"), // Required CertificateChain: aws.String("certificateChainType"), Path: aws.String("pathType"), } resp, err := svc.UploadServerCertificate(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UploadServerCertificateRequest ¶
func (c *IAM) UploadServerCertificateRequest(input *UploadServerCertificateInput) (req *aws.Request, output *UploadServerCertificateOutput)
UploadServerCertificateRequest generates a request for the UploadServerCertificate operation.
func (*IAM) UploadSigningCertificate ¶
func (c *IAM) UploadSigningCertificate(input *UploadSigningCertificateInput) (*UploadSigningCertificateOutput, error)
Uploads an X.509 signing certificate and associates it with the specified user. Some AWS services use X.509 signing certificates to validate requests that are signed with a corresponding private key. When you upload the certificate, its default status is Active.
If the UserName field is not specified, the user name is determined implicitly based on the AWS access key ID used to sign the request. Because this action works for access keys under the AWS account, you can use this action to manage root credentials even if the AWS account has no associated users.
Because the body of a X.509 certificate can be large, you should use POST rather than GET when calling UploadSigningCertificate. For information about setting up signatures and authorization through the API, go to Signing AWS API Requests (http://docs.aws.amazon.com/general/latest/gr/signing_aws_api_requests.html) in the AWS General Reference. For general information about using the Query API with IAM, go to Making Query Requests (http://docs.aws.amazon.com/IAM/latest/UserGuide/IAM_UsingQueryAPI.html) in the Using IAMguide.
Example ¶
package main import ( "fmt" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/aws/awsutil" "github.com/aws/aws-sdk-go/service/iam" ) func main() { svc := iam.New(nil) params := &iam.UploadSigningCertificateInput{ CertificateBody: aws.String("certificateBodyType"), // Required UserName: aws.String("existingUserNameType"), } resp, err := svc.UploadSigningCertificate(params) if err != nil { if awsErr, ok := err.(awserr.Error); ok { // Generic AWS Error with Code, Message, and original error (if any) fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr()) if reqErr, ok := err.(awserr.RequestFailure); ok { // A service error occurred fmt.Println(reqErr.Code(), reqErr.Message(), reqErr.StatusCode(), reqErr.RequestID()) } } else { // This case should never be hit, the SDK should always return an // error which satisfies the awserr.Error interface. fmt.Println(err.Error()) } } // Pretty-print the response data. fmt.Println(awsutil.StringValue(resp)) }
Output:
func (*IAM) UploadSigningCertificateRequest ¶
func (c *IAM) UploadSigningCertificateRequest(input *UploadSigningCertificateInput) (req *aws.Request, output *UploadSigningCertificateOutput)
UploadSigningCertificateRequest generates a request for the UploadSigningCertificate operation.
type InstanceProfile ¶
type InstanceProfile struct { // The Amazon Resource Name (ARN) specifying the instance profile. For more // information about ARNs and how to use them in policies, see IAM Identifiers // (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. ARN *string `locationName:"Arn" type:"string" required:"true"` // The date when the instance profile was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601" required:"true"` // The stable and unique string identifying the instance profile. For more information // about IDs, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. InstanceProfileID *string `locationName:"InstanceProfileId" type:"string" required:"true"` // The name identifying the instance profile. InstanceProfileName *string `type:"string" required:"true"` // The path to the instance profile. For more information about paths, see IAM // Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. Path *string `type:"string" required:"true"` // The role associated with the instance profile. Roles []*Role `type:"list" required:"true"` // contains filtered or unexported fields }
Contains information about an instance profile.
This data type is used as a response element in the following actions:
CreateInstanceProfile GetInstanceProfile ListInstanceProfiles ListInstanceProfilesForRole
type ListAccessKeysInput ¶
type ListAccessKeysInput struct { // Use this parameter only when paginating results, and only in a subsequent // request after you've received a response where the results are truncated. // Set it to the value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this parameter only when paginating results to indicate the maximum number // of keys you want in the response. If there are additional keys beyond the // maximum you specify, the IsTruncated response element is true. This parameter // is optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The name of the user. UserName *string `type:"string"` // contains filtered or unexported fields }
type ListAccessKeysOutput ¶
type ListAccessKeysOutput struct { // A list of access key metadata. AccessKeyMetadata []*AccessKeyMetadata `type:"list" required:"true"` // A flag that indicates whether there are more keys to list. If your results // were truncated, you can make a subsequent pagination request using the Marker // request parameter to retrieve more keys in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful ListAccessKeys request.
type ListAccountAliasesInput ¶
type ListAccountAliasesInput struct { // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of account // aliases you want in the response. If there are additional account aliases // beyond the maximum you specify, the IsTruncated response element is true. // This parameter is optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // contains filtered or unexported fields }
type ListAccountAliasesOutput ¶
type ListAccountAliasesOutput struct { // A list of aliases associated with the account. AccountAliases []*string `type:"list" required:"true"` // A flag that indicates whether there are more account aliases to list. If // your results were truncated, you can make a subsequent pagination request // using the Marker request parameter to retrieve more account aliases in the // list. IsTruncated *bool `type:"boolean"` // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful ListAccountAliases request.
type ListAttachedGroupPoliciesInput ¶
type ListAttachedGroupPoliciesInput struct { // The name (friendly name, not ARN) of the group to list attached policies // for. GroupName *string `type:"string" required:"true"` // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of policies // you want in the response. If there are additional policies beyond the maximum // you specify, the IsTruncated response element is true. This parameter is // optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The path prefix for filtering the results. This parameter is optional. If // it is not included, it defaults to a slash (/), listing all policies. PathPrefix *string `type:"string"` // contains filtered or unexported fields }
type ListAttachedGroupPoliciesOutput ¶
type ListAttachedGroupPoliciesOutput struct { // A list of the attached policies. AttachedPolicies []*AttachedPolicy `type:"list"` // A flag that indicates whether there are more policies to list. If your results // were truncated, you can make a subsequent pagination request using the Marker // request parameter to retrieve more policies in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful ListAttachedGroupPolicies request.
type ListAttachedRolePoliciesInput ¶
type ListAttachedRolePoliciesInput struct { // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of policies // you want in the response. If there are additional policies beyond the maximum // you specify, the IsTruncated response element is true. This parameter is // optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The path prefix for filtering the results. This parameter is optional. If // it is not included, it defaults to a slash (/), listing all policies. PathPrefix *string `type:"string"` // The name (friendly name, not ARN) of the role to list attached policies for. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type ListAttachedRolePoliciesOutput ¶
type ListAttachedRolePoliciesOutput struct { // A list of the attached policies. AttachedPolicies []*AttachedPolicy `type:"list"` // A flag that indicates whether there are more policies to list. If your results // were truncated, you can make a subsequent pagination request using the Marker // request parameter to retrieve more policies in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful ListAttachedRolePolicies request.
type ListAttachedUserPoliciesInput ¶
type ListAttachedUserPoliciesInput struct { // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of policies // you want in the response. If there are additional policies beyond the maximum // you specify, the IsTruncated response element is true. This parameter is // optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The path prefix for filtering the results. This parameter is optional. If // it is not included, it defaults to a slash (/), listing all policies. PathPrefix *string `type:"string"` // The name (friendly name, not ARN) of the user to list attached policies for. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type ListAttachedUserPoliciesOutput ¶
type ListAttachedUserPoliciesOutput struct { // A list of the attached policies. AttachedPolicies []*AttachedPolicy `type:"list"` // A flag that indicates whether there are more policies to list. If your results // were truncated, you can make a subsequent pagination request using the Marker // request parameter to retrieve more policies in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful ListAttachedUserPolicies request.
type ListEntitiesForPolicyInput ¶
type ListEntitiesForPolicyInput struct { // The entity type to use for filtering the results. // // For example, when EntityFilter is Role, only the roles that are attached // to the specified policy are returned. This parameter is optional. If it is // not included, all attached entities (users, groups, and roles) are returned. EntityFilter *string `type:"string"` // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of entities // you want in the response. If there are additional entities beyond the maximum // you specify, the IsTruncated response element is true. This parameter is // optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The path prefix for filtering the results. This parameter is optional. If // it is not included, it defaults to a slash (/), listing all entities. PathPrefix *string `type:"string"` // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // contains filtered or unexported fields }
type ListEntitiesForPolicyOutput ¶
type ListEntitiesForPolicyOutput struct { // A flag that indicates whether there are more entities to list. If your results // were truncated, you can make a subsequent pagination request using the Marker // request parameter to retrieve more entities in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // A list of groups that the policy is attached to. PolicyGroups []*PolicyGroup `type:"list"` // A list of roles that the policy is attached to. PolicyRoles []*PolicyRole `type:"list"` // A list of users that the policy is attached to. PolicyUsers []*PolicyUser `type:"list"` // contains filtered or unexported fields }
Contains the response to a successful ListEntitiesForPolicy request.
type ListGroupPoliciesInput ¶
type ListGroupPoliciesInput struct { // The name of the group to list policies for. GroupName *string `type:"string" required:"true"` // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of policy // names you want in the response. If there are additional policy names beyond // the maximum you specify, the IsTruncated response element is true. This parameter // is optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // contains filtered or unexported fields }
type ListGroupPoliciesOutput ¶
type ListGroupPoliciesOutput struct { // A flag that indicates whether there are more policy names to list. If your // results were truncated, you can make a subsequent pagination request using // the Marker request parameter to retrieve more policy names in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // A list of policy names. PolicyNames []*string `type:"list" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful ListGroupPolicies request.
type ListGroupsForUserInput ¶
type ListGroupsForUserInput struct { // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of groups // you want in the response. If there are additional groups beyond the maximum // you specify, the IsTruncated response element is true. This parameter is // optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The name of the user to list groups for. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type ListGroupsForUserOutput ¶
type ListGroupsForUserOutput struct { // A list of groups. Groups []*Group `type:"list" required:"true"` // A flag that indicates whether there are more groups to list. If your results // were truncated, you can make a subsequent pagination request using the Marker // request parameter to retrieve more groups in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful ListGroupsForUser request.
type ListGroupsInput ¶
type ListGroupsInput struct { // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of groups // you want in the response. If there are additional groups beyond the maximum // you specify, the IsTruncated response element is true. This parameter is // optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The path prefix for filtering the results. For example, the prefix /division_abc/subdivision_xyz/ // gets all groups whose path starts with /division_abc/subdivision_xyz/. // // This parameter is optional. If it is not included, it defaults to a slash // (/), listing all groups. PathPrefix *string `type:"string"` // contains filtered or unexported fields }
type ListGroupsOutput ¶
type ListGroupsOutput struct { // A list of groups. Groups []*Group `type:"list" required:"true"` // A flag that indicates whether there are more groups to list. If your results // were truncated, you can make a subsequent pagination request using the Marker // request parameter to retrieve more groups in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful ListGroups request.
type ListInstanceProfilesForRoleInput ¶
type ListInstanceProfilesForRoleInput struct { // Use this parameter only when paginating results, and only in a subsequent // request after you've received a response where the results are truncated. // Set it to the value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this parameter only when paginating results to indicate the maximum number // of instance profiles you want in the response. If there are additional instance // profiles beyond the maximum you specify, the IsTruncated response element // is true. This parameter is optional. If you do not include it, it defaults // to 100. MaxItems *int64 `type:"integer"` // The name of the role to list instance profiles for. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type ListInstanceProfilesForRoleOutput ¶
type ListInstanceProfilesForRoleOutput struct { // A list of instance profiles. InstanceProfiles []*InstanceProfile `type:"list" required:"true"` // A flag that indicates whether there are more instance profiles to list. If // your results were truncated, you can make a subsequent pagination request // using the Marker request parameter to retrieve more instance profiles in // the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful ListInstanceProfilesForRole request.
type ListInstanceProfilesInput ¶
type ListInstanceProfilesInput struct { // Use this parameter only when paginating results, and only in a subsequent // request after you've received a response where the results are truncated. // Set it to the value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this parameter only when paginating results to indicate the maximum number // of instance profiles you want in the response. If there are additional instance // profiles beyond the maximum you specify, the IsTruncated response element // is true. This parameter is optional. If you do not include it, it defaults // to 100. MaxItems *int64 `type:"integer"` // The path prefix for filtering the results. For example, the prefix /application_abc/component_xyz/ // gets all instance profiles whose path starts with /application_abc/component_xyz/. // // This parameter is optional. If it is not included, it defaults to a slash // (/), listing all instance profiles. PathPrefix *string `type:"string"` // contains filtered or unexported fields }
type ListInstanceProfilesOutput ¶
type ListInstanceProfilesOutput struct { // A list of instance profiles. InstanceProfiles []*InstanceProfile `type:"list" required:"true"` // A flag that indicates whether there are more instance profiles to list. If // your results were truncated, you can make a subsequent pagination request // using the Marker request parameter to retrieve more instance profiles in // the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful ListInstanceProfiles request.
type ListMFADevicesInput ¶
type ListMFADevicesInput struct { // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of MFA // devices you want in the response. If there are additional MFA devices beyond // the maximum you specify, the IsTruncated response element is true. This parameter // is optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The name of the user whose MFA devices you want to list. UserName *string `type:"string"` // contains filtered or unexported fields }
type ListMFADevicesOutput ¶
type ListMFADevicesOutput struct { // A flag that indicates whether there are more MFA devices to list. If your // results were truncated, you can make a subsequent pagination request using // the Marker request parameter to retrieve more MFA devices in the list. IsTruncated *bool `type:"boolean"` // A list of MFA devices. MFADevices []*MFADevice `type:"list" required:"true"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful ListMFADevices request.
type ListOpenIDConnectProvidersInput ¶
type ListOpenIDConnectProvidersInput struct {
// contains filtered or unexported fields
}
type ListOpenIDConnectProvidersOutput ¶
type ListOpenIDConnectProvidersOutput struct { // The list of IAM OpenID Connect providers in the AWS account. OpenIDConnectProviderList []*OpenIDConnectProviderListEntry `type:"list"` // contains filtered or unexported fields }
Contains the response to a successful ListOpenIDConnectProviders request.
type ListPoliciesInput ¶
type ListPoliciesInput struct { // Use this parameter only when paginating results, and only in a subsequent // request after you've received a response where the results are truncated. // Set it to the value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this parameter only when paginating results to indicate the maximum number // of policies you want in the response. If there are additional policies beyond // the maximum you specify, the IsTruncated response element is true. This parameter // is optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // A flag to filter the results to only the attached policies. // // When OnlyAttached is true, the returned list contains only the policies // that are attached to a user, group, or role. When OnlyAttached is false, // or when the parameter is not included, all policies are returned. OnlyAttached *bool `type:"boolean"` // The path prefix for filtering the results. This parameter is optional. If // it is not included, it defaults to a slash (/), listing all policies. PathPrefix *string `type:"string"` // The scope to use for filtering the results. // // To list only AWS managed policies, set Scope to AWS. To list only the customer // managed policies in your AWS account, set Scope to Local. // // This parameter is optional. If it is not included, or if it is set to All, // all policies are returned. Scope *string `type:"string"` // contains filtered or unexported fields }
type ListPoliciesOutput ¶
type ListPoliciesOutput struct { // A flag that indicates whether there are more policies to list. If your results // were truncated, you can make a subsequent pagination request using the Marker // request parameter to retrieve more policies in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // A list of policies. Policies []*Policy `type:"list"` // contains filtered or unexported fields }
Contains the response to a successful ListPolicies request.
type ListPolicyVersionsInput ¶
type ListPolicyVersionsInput struct { // Use this parameter only when paginating results, and only in a subsequent // request after you've received a response where the results are truncated. // Set it to the value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this parameter only when paginating results to indicate the maximum number // of policy versions you want in the response. If there are additional policy // versions beyond the maximum you specify, the IsTruncated response element // is true. This parameter is optional. If you do not include it, it defaults // to 100. MaxItems *int64 `type:"integer"` // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // contains filtered or unexported fields }
type ListPolicyVersionsOutput ¶
type ListPolicyVersionsOutput struct { // A flag that indicates whether there are more policy versions to list. If // your results were truncated, you can make a subsequent pagination request // using the Marker request parameter to retrieve more policy versions in the // list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // A list of policy versions. // // For more information about managed policy versions, see Versioning for Managed // Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) // in the Using IAM guide. Versions []*PolicyVersion `type:"list"` // contains filtered or unexported fields }
Contains the response to a successful ListPolicyVersions request.
type ListRolePoliciesInput ¶
type ListRolePoliciesInput struct { // Use this parameter only when paginating results, and only in a subsequent // request after you've received a response where the results are truncated. // Set it to the value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this parameter only when paginating results to indicate the maximum number // of role policies you want in the response. If there are additional role policies // beyond the maximum you specify, the IsTruncated response element is true. // This parameter is optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The name of the role to list policies for. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type ListRolePoliciesOutput ¶
type ListRolePoliciesOutput struct { // A flag that indicates whether there are more policy names to list. If your // results were truncated, you can make a subsequent pagination request using // the Marker request parameter to retrieve more policy names in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // A list of policy names. PolicyNames []*string `type:"list" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful ListRolePolicies request.
type ListRolesInput ¶
type ListRolesInput struct { // Use this parameter only when paginating results, and only in a subsequent // request after you've received a response where the results are truncated. // Set it to the value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this parameter only when paginating results to indicate the maximum number // of roles you want in the response. If there are additional roles beyond the // maximum you specify, the IsTruncated response element is true. This parameter // is optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The path prefix for filtering the results. For example, the prefix /application_abc/component_xyz/ // gets all roles whose path starts with /application_abc/component_xyz/. // // This parameter is optional. If it is not included, it defaults to a slash // (/), listing all roles. PathPrefix *string `type:"string"` // contains filtered or unexported fields }
type ListRolesOutput ¶
type ListRolesOutput struct { // A flag that indicates whether there are more roles to list. If your results // were truncated, you can make a subsequent pagination request using the Marker // request parameter to retrieve more roles in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // A list of roles. Roles []*Role `type:"list" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful ListRoles request.
type ListSAMLProvidersInput ¶
type ListSAMLProvidersInput struct {
// contains filtered or unexported fields
}
type ListSAMLProvidersOutput ¶
type ListSAMLProvidersOutput struct { // The list of SAML providers for this account. SAMLProviderList []*SAMLProviderListEntry `type:"list"` // contains filtered or unexported fields }
Contains the response to a successful ListSAMLProviders request.
type ListServerCertificatesInput ¶
type ListServerCertificatesInput struct { // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of server // certificates you want in the response. If there are additional server certificates // beyond the maximum you specify, the IsTruncated response element will be // set to true. This parameter is optional. If you do not include it, it defaults // to 100. MaxItems *int64 `type:"integer"` // The path prefix for filtering the results. For example: /company/servercerts // would get all server certificates for which the path starts with /company/servercerts. // // This parameter is optional. If it is not included, it defaults to a slash // (/), listing all server certificates. PathPrefix *string `type:"string"` // contains filtered or unexported fields }
type ListServerCertificatesOutput ¶
type ListServerCertificatesOutput struct { // A flag that indicates whether there are more server certificates to list. // If your results were truncated, you can make a subsequent pagination request // using the Marker request parameter to retrieve more server certificates in // the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // A list of server certificates. ServerCertificateMetadataList []*ServerCertificateMetadata `type:"list" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful ListServerCertificates request.
type ListSigningCertificatesInput ¶
type ListSigningCertificatesInput struct { // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of certificate // IDs you want in the response. If there are additional certificate IDs beyond // the maximum you specify, the IsTruncated response element is true. This parameter // is optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The name of the user. UserName *string `type:"string"` // contains filtered or unexported fields }
type ListSigningCertificatesOutput ¶
type ListSigningCertificatesOutput struct { // A list of the user's signing certificate information. Certificates []*SigningCertificate `type:"list" required:"true"` // A flag that indicates whether there are more certificate IDs to list. If // your results were truncated, you can make a subsequent pagination request // using the Marker request parameter to retrieve more certificates in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // contains filtered or unexported fields }
Contains the response to a successful ListSigningCertificates request.
type ListUserPoliciesInput ¶
type ListUserPoliciesInput struct { // Use this only when paginating results, and only in a subsequent request after // you've received a response where the results are truncated. Set it to the // value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this only when paginating results to indicate the maximum number of policy // names you want in the response. If there are additional policy names beyond // the maximum you specify, the IsTruncated response element is true. This parameter // is optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The name of the user to list policies for. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type ListUserPoliciesOutput ¶
type ListUserPoliciesOutput struct { // A flag that indicates whether there are more policy names to list. If your // results were truncated, you can make a subsequent pagination request using // the Marker request parameter to retrieve more policy names in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // A list of policy names. PolicyNames []*string `type:"list" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful ListUserPolicies request.
type ListUsersInput ¶
type ListUsersInput struct { // Use this parameter only when paginating results, and only in a subsequent // request after you've received a response where the results are truncated. // Set it to the value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this parameter only when paginating results to indicate the maximum number // of user names you want in the response. If there are additional user names // beyond the maximum you specify, the IsTruncated response element is true. // This parameter is optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // The path prefix for filtering the results. For example: /division_abc/subdivision_xyz/, // which would get all user names whose path starts with /division_abc/subdivision_xyz/. // // This parameter is optional. If it is not included, it defaults to a slash // (/), listing all user names. PathPrefix *string `type:"string"` // contains filtered or unexported fields }
type ListUsersOutput ¶
type ListUsersOutput struct { // A flag that indicates whether there are more user names to list. If your // results were truncated, you can make a subsequent pagination request using // the Marker request parameter to retrieve more users in the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // A list of users. Users []*User `type:"list" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful ListUsers request.
type ListVirtualMFADevicesInput ¶
type ListVirtualMFADevicesInput struct { // The status (unassigned or assigned) of the devices to list. If you do not // specify an AssignmentStatus, the action defaults to Any which lists both // assigned and unassigned virtual MFA devices. AssignmentStatus *string `type:"string"` // Use this parameter only when paginating results, and only in a subsequent // request after you've received a response where the results are truncated. // Set it to the value of the Marker element in the response you just received. Marker *string `type:"string"` // Use this parameter only when paginating results to indicate the maximum number // of MFA devices you want in the response. If there are additional MFA devices // beyond the maximum you specify, the IsTruncated response element is true. // This parameter is optional. If you do not include it, it defaults to 100. MaxItems *int64 `type:"integer"` // contains filtered or unexported fields }
type ListVirtualMFADevicesOutput ¶
type ListVirtualMFADevicesOutput struct { // A flag that indicates whether there are more items to list. If your results // were truncated, you can make a subsequent pagination request using the Marker // request parameter to retrieve more items the list. IsTruncated *bool `type:"boolean"` // If IsTruncated is true, this element is present and contains the value to // use for the Marker parameter in a subsequent pagination request. Marker *string `type:"string"` // The list of virtual MFA devices in the current account that match the AssignmentStatus // value that was passed in the request. VirtualMFADevices []*VirtualMFADevice `type:"list" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful ListVirtualMFADevices request.
type LoginProfile ¶
type LoginProfile struct { // The date when the password for the user was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601" required:"true"` // Specifies whether the user is required to set a new password on next sign-in. PasswordResetRequired *bool `type:"boolean"` // The name of the user, which can be used for signing in to the AWS Management // Console. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
Contains the user name and password create date for a user.
This data type is used as a response element in the CreateLoginProfile
and GetLoginProfile actions.
type MFADevice ¶
type MFADevice struct { // The date when the MFA device was enabled for the user. EnableDate *time.Time `type:"timestamp" timestampFormat:"iso8601" required:"true"` // The serial number that uniquely identifies the MFA device. For virtual MFA // devices, the serial number is the device ARN. SerialNumber *string `type:"string" required:"true"` // The user with whom the MFA device is associated. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
Contains information about an MFA device.
This data type is used as a response element in the ListMFADevices action.
type ManagedPolicyDetail ¶
type ManagedPolicyDetail struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. ARN *string `locationName:"Arn" type:"string"` // The number of principal entities (users, groups, and roles) that the policy // is attached to. AttachmentCount *int64 `type:"integer"` // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the policy was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The identifier for the version of the policy that is set as the default (operative) // version. // // For more information about policy versions, see Versioning for Managed Policies // (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) // in the Using IAM guide. DefaultVersionID *string `locationName:"DefaultVersionId" type:"string"` // A friendly description of the policy. Description *string `type:"string"` // Specifies whether the policy can be attached to an IAM user, group, or role. IsAttachable *bool `type:"boolean"` // The path to the policy. // // For more information about paths, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. Path *string `type:"string"` // The stable and unique string identifying the policy. // // For more information about IDs, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. PolicyID *string `locationName:"PolicyId" type:"string"` // The friendly name (not ARN) identifying the policy. PolicyName *string `type:"string"` // A list containing information about the versions of the policy. PolicyVersionList []*PolicyVersion `type:"list"` // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the policy was last updated. // // When a policy has only one version, this field contains the date and time // when the policy was created. When a policy has more than one version, this // field contains the date and time when the most recent policy version was // created. UpdateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // contains filtered or unexported fields }
Contains information about a managed policy, including the policy's ARN, versions, and the number of principal entities (users, groups, and roles) that the policy is attached to.
This data type is used as a response element in the GetAccountAuthorizationDetails action.
For more information about managed policies, see Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
type OpenIDConnectProviderListEntry ¶
type OpenIDConnectProviderListEntry struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. ARN *string `locationName:"Arn" type:"string"` // contains filtered or unexported fields }
Contains the Amazon Resource Name (ARN) for an IAM OpenID Connect provider.
type PasswordPolicy ¶
type PasswordPolicy struct { // Specifies whether IAM users are allowed to change their own password. AllowUsersToChangePassword *bool `type:"boolean"` // Specifies whether IAM users are required to change their password after a // specified number of days. ExpirePasswords *bool `type:"boolean"` // Specifies whether IAM users are prevented from setting a new password after // their password has expired. HardExpiry *bool `type:"boolean"` // The number of days that an IAM user password is valid. MaxPasswordAge *int64 `type:"integer"` // Minimum length to require for IAM user passwords. MinimumPasswordLength *int64 `type:"integer"` // Specifies the number of previous passwords that IAM users are prevented from // reusing. PasswordReusePrevention *int64 `type:"integer"` // Specifies whether to require lowercase characters for IAM user passwords. RequireLowercaseCharacters *bool `type:"boolean"` // Specifies whether to require numbers for IAM user passwords. RequireNumbers *bool `type:"boolean"` // Specifies whether to require symbols for IAM user passwords. RequireSymbols *bool `type:"boolean"` // Specifies whether to require uppercase characters for IAM user passwords. RequireUppercaseCharacters *bool `type:"boolean"` // contains filtered or unexported fields }
Contains information about the account password policy.
This data type is used as a response element in the GetAccountPasswordPolicy
action.
type Policy ¶
type Policy struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. ARN *string `locationName:"Arn" type:"string"` // The number of entities (users, groups, and roles) that the policy is attached // to. AttachmentCount *int64 `type:"integer"` // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the policy was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The identifier for the version of the policy that is set as the default version. DefaultVersionID *string `locationName:"DefaultVersionId" type:"string"` // A friendly description of the policy. // // This element is included in the response to the GetPolicy operation. It // is not included in the response to the ListPolicies operation. Description *string `type:"string"` // Specifies whether the policy can be attached to an IAM user, group, or role. IsAttachable *bool `type:"boolean"` // The path to the policy. // // For more information about paths, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. Path *string `type:"string"` // The stable and unique string identifying the policy. // // For more information about IDs, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. PolicyID *string `locationName:"PolicyId" type:"string"` // The friendly name (not ARN) identifying the policy. PolicyName *string `type:"string"` // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the policy was last updated. // // When a policy has only one version, this field contains the date and time // when the policy was created. When a policy has more than one version, this // field contains the date and time when the most recent policy version was // created. UpdateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // contains filtered or unexported fields }
Contains information about a managed policy.
This data type is used as a response element in the CreatePolicy, GetPolicy, and ListPolicies actions.
For more information about managed policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
type PolicyDetail ¶
type PolicyDetail struct { // The policy document. PolicyDocument *string `type:"string"` // The name of the policy. PolicyName *string `type:"string"` // contains filtered or unexported fields }
Contains information about an IAM policy, including the policy document.
This data type is used as a response element in the GetAccountAuthorizationDetails action.
type PolicyGroup ¶
type PolicyGroup struct { // The name (friendly name, not ARN) identifying the group. GroupName *string `type:"string"` // contains filtered or unexported fields }
Contains information about a group that a managed policy is attached to.
This data type is used as a response element in the ListEntitiesForPolicy action.
For more information about managed policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
type PolicyRole ¶
type PolicyRole struct { // The name (friendly name, not ARN) identifying the role. RoleName *string `type:"string"` // contains filtered or unexported fields }
Contains information about a role that a managed policy is attached to.
This data type is used as a response element in the ListEntitiesForPolicy action.
For more information about managed policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
type PolicyUser ¶
type PolicyUser struct { // The name (friendly name, not ARN) identifying the user. UserName *string `type:"string"` // contains filtered or unexported fields }
Contains information about a user that a managed policy is attached to.
This data type is used as a response element in the ListEntitiesForPolicy action.
For more information about managed policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
type PolicyVersion ¶
type PolicyVersion struct { // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the policy version was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The policy document. // // The policy document is returned in the response to the GetPolicyVersion // and GetAccountAuthorizationDetails operations. It is not returned in the // response to the CreatePolicyVersion or ListPolicyVersions operations. Document *string `type:"string"` // Specifies whether the policy version is set as the policy's default version. IsDefaultVersion *bool `type:"boolean"` // The identifier for the policy version. // // Policy version identifiers always begin with v (always lowercase). When // a policy is created, the first policy version is v1. VersionID *string `locationName:"VersionId" type:"string"` // contains filtered or unexported fields }
Contains information about a version of a managed policy.
This data type is used as a response element in the CreatePolicyVersion, GetPolicyVersion, ListPolicyVersions, and GetAccountAuthorizationDetails actions.
For more information about managed policies, refer to Managed Policies and Inline Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
type PutGroupPolicyInput ¶
type PutGroupPolicyInput struct { // The name of the group to associate the policy with. GroupName *string `type:"string" required:"true"` // The policy document. PolicyDocument *string `type:"string" required:"true"` // The name of the policy document. PolicyName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type PutGroupPolicyOutput ¶
type PutGroupPolicyOutput struct {
// contains filtered or unexported fields
}
type PutRolePolicyInput ¶
type PutRolePolicyInput struct { // The policy document. PolicyDocument *string `type:"string" required:"true"` // The name of the policy document. PolicyName *string `type:"string" required:"true"` // The name of the role to associate the policy with. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type PutRolePolicyOutput ¶
type PutRolePolicyOutput struct {
// contains filtered or unexported fields
}
type PutUserPolicyInput ¶
type PutUserPolicyInput struct { // The policy document. PolicyDocument *string `type:"string" required:"true"` // The name of the policy document. PolicyName *string `type:"string" required:"true"` // The name of the user to associate the policy with. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type PutUserPolicyOutput ¶
type PutUserPolicyOutput struct {
// contains filtered or unexported fields
}
type RemoveClientIDFromOpenIDConnectProviderInput ¶
type RemoveClientIDFromOpenIDConnectProviderInput struct { // The client ID (also known as audience) to remove from the IAM OpenID Connect // provider. For more information about client IDs, see CreateOpenIDConnectProvider. ClientID *string `type:"string" required:"true"` // The Amazon Resource Name (ARN) of the IAM OpenID Connect (OIDC) provider // to remove the client ID from. You can get a list of OIDC provider ARNs by // using the ListOpenIDConnectProviders action. OpenIDConnectProviderARN *string `locationName:"OpenIDConnectProviderArn" type:"string" required:"true"` // contains filtered or unexported fields }
type RemoveClientIDFromOpenIDConnectProviderOutput ¶
type RemoveClientIDFromOpenIDConnectProviderOutput struct {
// contains filtered or unexported fields
}
type RemoveRoleFromInstanceProfileOutput ¶
type RemoveRoleFromInstanceProfileOutput struct {
// contains filtered or unexported fields
}
type RemoveUserFromGroupOutput ¶
type RemoveUserFromGroupOutput struct {
// contains filtered or unexported fields
}
type ResyncMFADeviceInput ¶
type ResyncMFADeviceInput struct { // An authentication code emitted by the device. AuthenticationCode1 *string `type:"string" required:"true"` // A subsequent authentication code emitted by the device. AuthenticationCode2 *string `type:"string" required:"true"` // Serial number that uniquely identifies the MFA device. SerialNumber *string `type:"string" required:"true"` // The name of the user whose MFA device you want to resynchronize. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type ResyncMFADeviceOutput ¶
type ResyncMFADeviceOutput struct {
// contains filtered or unexported fields
}
type Role ¶
type Role struct { // The Amazon Resource Name (ARN) specifying the role. For more information // about ARNs and how to use them in policies, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. ARN *string `locationName:"Arn" type:"string" required:"true"` // The policy that grants an entity permission to assume the role. AssumeRolePolicyDocument *string `type:"string"` // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the role was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601" required:"true"` // The path to the role. For more information about paths, see IAM Identifiers // (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. Path *string `type:"string" required:"true"` // The stable and unique string identifying the role. For more information about // IDs, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. RoleID *string `locationName:"RoleId" type:"string" required:"true"` // The friendly name that identifies the role. RoleName *string `type:"string" required:"true"` // contains filtered or unexported fields }
Contains information about an IAM role.
This data type is used as a response element in the following actions: CreateRole GetRole ListRoles
type RoleDetail ¶
type RoleDetail struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. ARN *string `locationName:"Arn" type:"string"` // The trust policy that grants permission to assume the role. AssumeRolePolicyDocument *string `type:"string"` // A list of managed policies attached to the role. These policies are the role's // access (permissions) policies. AttachedManagedPolicies []*AttachedPolicy `type:"list"` // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the role was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // Contains a list of instance profiles. InstanceProfileList []*InstanceProfile `type:"list"` // The path to the role. For more information about paths, see IAM Identifiers // (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. Path *string `type:"string"` // The stable and unique string identifying the role. For more information about // IDs, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. RoleID *string `locationName:"RoleId" type:"string"` // The friendly name that identifies the role. RoleName *string `type:"string"` // A list of inline policies embedded in the role. These policies are the role's // access (permissions) policies. RolePolicyList []*PolicyDetail `type:"list"` // contains filtered or unexported fields }
Contains information about an IAM role, including all of the role's policies.
This data type is used as a response element in the GetAccountAuthorizationDetails action.
type SAMLProviderListEntry ¶
type SAMLProviderListEntry struct { // The Amazon Resource Name (ARN) of the SAML provider. ARN *string `locationName:"Arn" type:"string"` // The date and time when the SAML provider was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The expiration date and time for the SAML provider. ValidUntil *time.Time `type:"timestamp" timestampFormat:"iso8601"` // contains filtered or unexported fields }
Contains the list of SAML providers for this account.
type ServerCertificate ¶
type ServerCertificate struct { // The contents of the public key certificate. CertificateBody *string `type:"string" required:"true"` // The contents of the public key certificate chain. CertificateChain *string `type:"string"` // The meta information of the server certificate, such as its name, path, ID, // and ARN. ServerCertificateMetadata *ServerCertificateMetadata `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains information about a server certificate.
This data type is used as a response element in the GetServerCertificate
action.
type ServerCertificateMetadata ¶
type ServerCertificateMetadata struct { // The Amazon Resource Name (ARN) specifying the server certificate. For more // information about ARNs and how to use them in policies, see IAM Identifiers // (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. ARN *string `locationName:"Arn" type:"string" required:"true"` // The date on which the certificate is set to expire. Expiration *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The path to the server certificate. For more information about paths, see // IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. Path *string `type:"string" required:"true"` // The stable and unique string identifying the server certificate. For more // information about IDs, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. ServerCertificateID *string `locationName:"ServerCertificateId" type:"string" required:"true"` // The name that identifies the server certificate. ServerCertificateName *string `type:"string" required:"true"` // The date when the server certificate was uploaded. UploadDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // contains filtered or unexported fields }
Contains information about a server certificate without its certificate body, certificate chain, and private key.
This data type is used as a response element in the UploadServerCertificate
and ListServerCertificates actions.
type SetDefaultPolicyVersionInput ¶
type SetDefaultPolicyVersionInput struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. PolicyARN *string `locationName:"PolicyArn" type:"string" required:"true"` // The version of the policy to set as the default (operative) version. // // For more information about managed policy versions, see Versioning for Managed // Policies (http://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) // in the Using IAM guide. VersionID *string `locationName:"VersionId" type:"string" required:"true"` // contains filtered or unexported fields }
type SetDefaultPolicyVersionOutput ¶
type SetDefaultPolicyVersionOutput struct {
// contains filtered or unexported fields
}
type SigningCertificate ¶
type SigningCertificate struct { // The contents of the signing certificate. CertificateBody *string `type:"string" required:"true"` // The ID for the signing certificate. CertificateID *string `locationName:"CertificateId" type:"string" required:"true"` // The status of the signing certificate. Active means the key is valid for // API calls, while Inactive means it is not. Status *string `type:"string" required:"true"` // The date when the signing certificate was uploaded. UploadDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The name of the user the signing certificate is associated with. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
Contains information about an X.509 signing certificate.
This data type is used as a response element in the UploadSigningCertificate and ListSigningCertificates actions.
type UpdateAccessKeyInput ¶
type UpdateAccessKeyInput struct { // The access key ID of the secret access key you want to update. AccessKeyID *string `locationName:"AccessKeyId" type:"string" required:"true"` // The status you want to assign to the secret access key. Active means the // key can be used for API calls to AWS, while Inactive means the key cannot // be used. Status *string `type:"string" required:"true"` // The name of the user whose key you want to update. UserName *string `type:"string"` // contains filtered or unexported fields }
type UpdateAccessKeyOutput ¶
type UpdateAccessKeyOutput struct {
// contains filtered or unexported fields
}
type UpdateAccountPasswordPolicyInput ¶
type UpdateAccountPasswordPolicyInput struct { // Allows all IAM users in your account to use the AWS Management Console to // change their own passwords. For more information, see Letting IAM Users Change // Their Own Passwords (http://docs.aws.amazon.com/IAM/latest/UserGuide/HowToPwdIAMUser.html) // in the Using IAM guide. // // Default value: false AllowUsersToChangePassword *bool `type:"boolean"` // Prevents IAM users from setting a new password after their password has expired. // // Default value: false HardExpiry *bool `type:"boolean"` // The number of days that an IAM user password is valid. The default value // of 0 means IAM user passwords never expire. // // Default value: 0 MaxPasswordAge *int64 `type:"integer"` // The minimum number of characters allowed in an IAM user password. // // Default value: 6 MinimumPasswordLength *int64 `type:"integer"` // Specifies the number of previous passwords that IAM users are prevented from // reusing. The default value of 0 means IAM users are not prevented from reusing // previous passwords. // // Default value: 0 PasswordReusePrevention *int64 `type:"integer"` // Specifies whether IAM user passwords must contain at least one lowercase // character from the ISO basic Latin alphabet (a to z). // // Default value: false RequireLowercaseCharacters *bool `type:"boolean"` // Specifies whether IAM user passwords must contain at least one numeric character // (0 to 9). // // Default value: false RequireNumbers *bool `type:"boolean"` // Specifies whether IAM user passwords must contain at least one of the following // non-alphanumeric characters: // // ! @ # $ % ^ & * ( ) _ + - = [ ] { } | ' // // Default value: false RequireSymbols *bool `type:"boolean"` // Specifies whether IAM user passwords must contain at least one uppercase // character from the ISO basic Latin alphabet (A to Z). // // Default value: false RequireUppercaseCharacters *bool `type:"boolean"` // contains filtered or unexported fields }
type UpdateAccountPasswordPolicyOutput ¶
type UpdateAccountPasswordPolicyOutput struct {
// contains filtered or unexported fields
}
type UpdateAssumeRolePolicyOutput ¶
type UpdateAssumeRolePolicyOutput struct {
// contains filtered or unexported fields
}
type UpdateGroupInput ¶
type UpdateGroupInput struct { // Name of the group to update. If you're changing the name of the group, this // is the original name. GroupName *string `type:"string" required:"true"` // New name for the group. Only include this if changing the group's name. NewGroupName *string `type:"string"` // New path for the group. Only include this if changing the group's path. NewPath *string `type:"string"` // contains filtered or unexported fields }
type UpdateGroupOutput ¶
type UpdateGroupOutput struct {
// contains filtered or unexported fields
}
type UpdateLoginProfileInput ¶
type UpdateLoginProfileInput struct { // The new password for the specified user. Password *string `type:"string"` // Require the specified user to set a new password on next sign-in. PasswordResetRequired *bool `type:"boolean"` // The name of the user whose password you want to update. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type UpdateLoginProfileOutput ¶
type UpdateLoginProfileOutput struct {
// contains filtered or unexported fields
}
type UpdateOpenIDConnectProviderThumbprintInput ¶
type UpdateOpenIDConnectProviderThumbprintInput struct { // The Amazon Resource Name (ARN) of the IAM OpenID Connect (OIDC) provider // to update the thumbprint for. You can get a list of OIDC provider ARNs by // using the ListOpenIDConnectProviders action. OpenIDConnectProviderARN *string `locationName:"OpenIDConnectProviderArn" type:"string" required:"true"` // A list of certificate thumbprints that are associated with the specified // IAM OpenID Connect provider. For more information, see CreateOpenIDConnectProvider. ThumbprintList []*string `type:"list" required:"true"` // contains filtered or unexported fields }
type UpdateOpenIDConnectProviderThumbprintOutput ¶
type UpdateOpenIDConnectProviderThumbprintOutput struct {
// contains filtered or unexported fields
}
type UpdateSAMLProviderInput ¶
type UpdateSAMLProviderInput struct { // An XML document generated by an identity provider (IdP) that supports SAML // 2.0. The document includes the issuer's name, expiration information, and // keys that can be used to validate the SAML authentication response (assertions) // that are received from the IdP. You must generate the metadata document using // the identity management software that is used as your organization's IdP. SAMLMetadataDocument *string `type:"string" required:"true"` // The Amazon Resource Name (ARN) of the SAML provider to update. SAMLProviderARN *string `locationName:"SAMLProviderArn" type:"string" required:"true"` // contains filtered or unexported fields }
type UpdateSAMLProviderOutput ¶
type UpdateSAMLProviderOutput struct { // The Amazon Resource Name (ARN) of the SAML provider that was updated. SAMLProviderARN *string `locationName:"SAMLProviderArn" type:"string"` // contains filtered or unexported fields }
Contains the response to a successful UpdateSAMLProvider request.
type UpdateServerCertificateInput ¶
type UpdateServerCertificateInput struct { // The new path for the server certificate. Include this only if you are updating // the server certificate's path. NewPath *string `type:"string"` // The new name for the server certificate. Include this only if you are updating // the server certificate's name. NewServerCertificateName *string `type:"string"` // The name of the server certificate that you want to update. ServerCertificateName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type UpdateServerCertificateOutput ¶
type UpdateServerCertificateOutput struct {
// contains filtered or unexported fields
}
type UpdateSigningCertificateInput ¶
type UpdateSigningCertificateInput struct { // The ID of the signing certificate you want to update. CertificateID *string `locationName:"CertificateId" type:"string" required:"true"` // The status you want to assign to the certificate. Active means the certificate // can be used for API calls to AWS, while Inactive means the certificate cannot // be used. Status *string `type:"string" required:"true"` // The name of the user the signing certificate belongs to. UserName *string `type:"string"` // contains filtered or unexported fields }
type UpdateSigningCertificateOutput ¶
type UpdateSigningCertificateOutput struct {
// contains filtered or unexported fields
}
type UpdateUserInput ¶
type UpdateUserInput struct { // New path for the user. Include this parameter only if you're changing the // user's path. NewPath *string `type:"string"` // New name for the user. Include this parameter only if you're changing the // user's name. NewUserName *string `type:"string"` // Name of the user to update. If you're changing the name of the user, this // is the original user name. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type UpdateUserOutput ¶
type UpdateUserOutput struct {
// contains filtered or unexported fields
}
type UploadServerCertificateInput ¶
type UploadServerCertificateInput struct { // The contents of the public key certificate in PEM-encoded format. CertificateBody *string `type:"string" required:"true"` // The contents of the certificate chain. This is typically a concatenation // of the PEM-encoded public key certificates of the chain. CertificateChain *string `type:"string"` // The path for the server certificate. For more information about paths, see // IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. // // This parameter is optional. If it is not included, it defaults to a slash // (/). // // If you are uploading a server certificate specifically for use with Amazon // CloudFront distributions, you must specify a path using the --path option. // The path must begin with /cloudfront and must include a trailing slash (for // example, /cloudfront/test/). Path *string `type:"string"` // The contents of the private key in PEM-encoded format. PrivateKey *string `type:"string" required:"true"` // The name for the server certificate. Do not include the path in this value. ServerCertificateName *string `type:"string" required:"true"` // contains filtered or unexported fields }
type UploadServerCertificateOutput ¶
type UploadServerCertificateOutput struct { // The meta information of the uploaded server certificate without its certificate // body, certificate chain, and private key. ServerCertificateMetadata *ServerCertificateMetadata `type:"structure"` // contains filtered or unexported fields }
Contains the response to a successful UploadServerCertificate request.
type UploadSigningCertificateOutput ¶
type UploadSigningCertificateOutput struct { // Information about the certificate. Certificate *SigningCertificate `type:"structure" required:"true"` // contains filtered or unexported fields }
Contains the response to a successful UploadSigningCertificate request.
type User ¶
type User struct { // The Amazon Resource Name (ARN) that identifies the user. For more information // about ARNs and how to use ARNs in policies, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. ARN *string `locationName:"Arn" type:"string" required:"true"` // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the user was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601" required:"true"` // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the user's password was last used to sign in to an AWS website. For // a list of AWS websites that capture a user's last sign-in time, see the Credential // Reports (http://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html) // topic in the Using IAM guide. If a password is used more than once in a five-minute // span, only the first use is returned in this field. When the user does not // have a password, this field is null (not present). When a user's password // exists but has never been used, or when there is no sign-in data associated // with the user, this field is null (not present). // // This value is returned only in the GetUser and ListUsers actions. PasswordLastUsed *time.Time `type:"timestamp" timestampFormat:"iso8601"` // The path to the user. For more information about paths, see IAM Identifiers // (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. Path *string `type:"string" required:"true"` // The stable and unique string identifying the user. For more information about // IDs, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. UserID *string `locationName:"UserId" type:"string" required:"true"` // The friendly name identifying the user. UserName *string `type:"string" required:"true"` // contains filtered or unexported fields }
Contains information about an IAM user entity.
This data type is used as a response element in the following actions: CreateUser GetUser ListUsers
type UserDetail ¶
type UserDetail struct { // The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources. // // For more information about ARNs, go to Amazon Resource Names (ARNs) and // AWS Service Namespaces (http://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html) // in the AWS General Reference. ARN *string `locationName:"Arn" type:"string"` // A list of the managed policies attached to the user. AttachedManagedPolicies []*AttachedPolicy `type:"list"` // The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601), // when the user was created. CreateDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // A list of IAM groups that the user is in. GroupList []*string `type:"list"` // The path to the user. For more information about paths, see IAM Identifiers // (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. Path *string `type:"string"` // The stable and unique string identifying the user. For more information about // IDs, see IAM Identifiers (http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) // in the Using IAM guide. UserID *string `locationName:"UserId" type:"string"` // The friendly name identifying the user. UserName *string `type:"string"` // A list of the inline policies embedded in the user. UserPolicyList []*PolicyDetail `type:"list"` // contains filtered or unexported fields }
Contains information about an IAM user, including all the user's policies and all the IAM groups the user is in.
This data type is used as a response element in the GetAccountAuthorizationDetails action.
type VirtualMFADevice ¶
type VirtualMFADevice struct { // The Base32 seed defined as specified in RFC3548 (http://www.ietf.org/rfc/rfc3548.txt). // The Base32StringSeed is Base64-encoded. Base32StringSeed []byte `type:"blob"` // The date and time on which the virtual MFA device was enabled. EnableDate *time.Time `type:"timestamp" timestampFormat:"iso8601"` // A QR code PNG image that encodes otpauth://totp/$virtualMFADeviceName@$AccountName?secret=$Base32String // where $virtualMFADeviceName is one of the create call arguments, AccountName // is the user name if set (otherwise, the account ID otherwise), and Base32String // is the seed in Base32 format. The Base32String value is Base64-encoded. QRCodePNG []byte `type:"blob"` // The serial number associated with VirtualMFADevice. SerialNumber *string `type:"string" required:"true"` // Contains information about an IAM user entity. // // This data type is used as a response element in the following actions: // // CreateUser // // GetUser // // ListUsers User *User `type:"structure"` // contains filtered or unexported fields }
Contains information about a virtual MFA device.