| Class | Description |
|---|---|
| AssumedRoleUser |
The identifiers for the temporary security credentials that the operation returns.
|
| AssumeRoleRequest | |
| AssumeRoleResult |
Contains the response to a successful AssumeRole request, including temporary Amazon Web Services credentials
that can be used to make Amazon Web Services requests.
|
| AssumeRoleWithSAMLRequest | |
| AssumeRoleWithSAMLResult |
Contains the response to a successful AssumeRoleWithSAML request, including temporary Amazon Web Services
credentials that can be used to make Amazon Web Services requests.
|
| AssumeRoleWithWebIdentityRequest | |
| AssumeRoleWithWebIdentityResult |
Contains the response to a successful AssumeRoleWithWebIdentity request, including temporary Amazon Web
Services credentials that can be used to make Amazon Web Services requests.
|
| Credentials |
Amazon Web Services credentials for API authentication.
|
| DecodeAuthorizationMessageRequest | |
| DecodeAuthorizationMessageResult |
A document that contains additional information about the authorization status of a request from an encoded message
that is returned in response to an Amazon Web Services request.
|
| FederatedUser |
Identifiers for the federated user that is associated with the credentials.
|
| GetAccessKeyInfoRequest | |
| GetAccessKeyInfoResult | |
| GetCallerIdentityRequest | |
| GetCallerIdentityResult |
Contains the response to a successful GetCallerIdentity request, including information about the entity making
the request.
|
| GetFederationTokenRequest | |
| GetFederationTokenResult |
Contains the response to a successful GetFederationToken request, including temporary Amazon Web Services
credentials that can be used to make Amazon Web Services requests.
|
| GetSessionTokenRequest | |
| GetSessionTokenResult |
Contains the response to a successful GetSessionToken request, including temporary Amazon Web Services
credentials that can be used to make Amazon Web Services requests.
|
| PolicyDescriptorType |
A reference to the IAM managed policy that is passed as a session policy for a role session or a federated user
session.
|
| ProvidedContext |
Contains information about the provided context.
|
| Tag |
You can pass custom key-value pair attributes when you assume a role or federate a user.
|
| Exception | Description |
|---|---|
| AWSSecurityTokenServiceException |
Base exception for all service exceptions thrown by AWS Security Token Service
|
| ExpiredTokenException |
The web identity token that was passed is expired or is not valid.
|
| IDPCommunicationErrorException |
The request could not be fulfilled because the identity provider (IDP) that was asked to verify the incoming identity
token could not be reached.
|
| IDPRejectedClaimException |
The identity provider (IdP) reported that authentication failed.
|
| InvalidAuthorizationMessageException |
The error returned if the message passed to
DecodeAuthorizationMessage was invalid. |
| InvalidIdentityTokenException |
The web identity token that was passed could not be validated by Amazon Web Services.
|
| MalformedPolicyDocumentException |
The request was rejected because the policy document was malformed.
|
| PackedPolicyTooLargeException |
The request was rejected because the total packed size of the session policies and session tags combined was too
large.
|
| RegionDisabledException |
STS is not activated in the requested region for the account that is being asked to generate credentials.
|