/AWS1/CL_ART=>GETAUTHORIZATIONTOKEN()¶
About GetAuthorizationToken¶
Generates a temporary authorization token for accessing repositories in the domain.
This API requires the codeartifact:GetAuthorizationToken and sts:GetServiceBearerToken permissions.
For more information about authorization tokens, see
CodeArtifact authentication and tokens.
CodeArtifact authorization tokens are valid for a period of 12 hours when created with the login command.
You can call login periodically to refresh the token. When
you create an authorization token with the GetAuthorizationToken API, you can set a custom authorization period,
up to a maximum of 12 hours, with the durationSeconds parameter.
The authorization period begins after login
or GetAuthorizationToken is called. If login or GetAuthorizationToken is called while
assuming a role, the token lifetime is independent of the maximum session duration
of the role. For example, if you call sts assume-role and specify a session duration of 15 minutes, then
generate a CodeArtifact authorization token, the token will be valid for the full authorization period
even though this is longer than the 15-minute session duration.
See Using IAM Roles for more information on controlling session duration.
Method Signature¶
IMPORTING¶
Required arguments:¶
IV_DOMAIN TYPE /AWS1/ARTDOMAINNAME /AWS1/ARTDOMAINNAME¶
The name of the domain that is in scope for the generated authorization token.
Optional arguments:¶
IV_DOMAINOWNER TYPE /AWS1/ARTACCOUNTID /AWS1/ARTACCOUNTID¶
The 12-digit account number of the Amazon Web Services account that owns the domain. It does not include dashes or spaces.
IV_DURATIONSECONDS TYPE /AWS1/ARTAUTHTOKENDURSECONDS /AWS1/ARTAUTHTOKENDURSECONDS¶
The time, in seconds, that the generated authorization token is valid. Valid values are
0and any number between900(15 minutes) and43200(12 hours). A value of0will set the expiration of the authorization token to the same expiration of the user's role's temporary credentials.