@Generated(value="com.amazonaws:aws-java-sdk-code-generator") public class AbstractAWSIAMRolesAnywhere extends Object implements AWSIAMRolesAnywhere
AWSIAMRolesAnywhere
. Convenient method forms pass through to the corresponding
overload that takes a request object, which throws an UnsupportedOperationException
.ENDPOINT_PREFIX
Modifier and Type | Method and Description |
---|---|
CreateProfileResult |
createProfile(CreateProfileRequest request)
Creates a profile, a list of the roles that Roles Anywhere service is trusted to assume.
|
CreateTrustAnchorResult |
createTrustAnchor(CreateTrustAnchorRequest request)
Creates a trust anchor to establish trust between IAM Roles Anywhere and your certificate authority (CA).
|
DeleteAttributeMappingResult |
deleteAttributeMapping(DeleteAttributeMappingRequest request)
Delete an entry from the attribute mapping rules enforced by a given profile.
|
DeleteCrlResult |
deleteCrl(DeleteCrlRequest request)
Deletes a certificate revocation list (CRL).
|
DeleteProfileResult |
deleteProfile(DeleteProfileRequest request)
Deletes a profile.
|
DeleteTrustAnchorResult |
deleteTrustAnchor(DeleteTrustAnchorRequest request)
Deletes a trust anchor.
|
DisableCrlResult |
disableCrl(DisableCrlRequest request)
Disables a certificate revocation list (CRL).
|
DisableProfileResult |
disableProfile(DisableProfileRequest request)
Disables a profile.
|
DisableTrustAnchorResult |
disableTrustAnchor(DisableTrustAnchorRequest request)
Disables a trust anchor.
|
EnableCrlResult |
enableCrl(EnableCrlRequest request)
Enables a certificate revocation list (CRL).
|
EnableProfileResult |
enableProfile(EnableProfileRequest request)
Enables temporary credential requests for a profile.
|
EnableTrustAnchorResult |
enableTrustAnchor(EnableTrustAnchorRequest request)
Enables a trust anchor.
|
ResponseMetadata |
getCachedResponseMetadata(AmazonWebServiceRequest request)
Returns additional metadata for a previously executed successful request, typically used for debugging issues
where a service isn't acting as expected.
|
GetCrlResult |
getCrl(GetCrlRequest request)
Gets a certificate revocation list (CRL).
|
GetProfileResult |
getProfile(GetProfileRequest request)
Gets a profile.
|
GetSubjectResult |
getSubject(GetSubjectRequest request)
Gets a subject, which associates a certificate identity with authentication attempts.
|
GetTrustAnchorResult |
getTrustAnchor(GetTrustAnchorRequest request)
Gets a trust anchor.
|
ImportCrlResult |
importCrl(ImportCrlRequest request)
Imports the certificate revocation list (CRL).
|
ListCrlsResult |
listCrls(ListCrlsRequest request)
Lists all certificate revocation lists (CRL) in the authenticated account and Amazon Web Services Region.
|
ListProfilesResult |
listProfiles(ListProfilesRequest request)
Lists all profiles in the authenticated account and Amazon Web Services Region.
|
ListSubjectsResult |
listSubjects(ListSubjectsRequest request)
Lists the subjects in the authenticated account and Amazon Web Services Region.
|
ListTagsForResourceResult |
listTagsForResource(ListTagsForResourceRequest request)
Lists the tags attached to the resource.
|
ListTrustAnchorsResult |
listTrustAnchors(ListTrustAnchorsRequest request)
Lists the trust anchors in the authenticated account and Amazon Web Services Region.
|
PutAttributeMappingResult |
putAttributeMapping(PutAttributeMappingRequest request)
Put an entry in the attribute mapping rules that will be enforced by a given profile.
|
PutNotificationSettingsResult |
putNotificationSettings(PutNotificationSettingsRequest request)
Attaches a list of notification settings to a trust anchor.
|
ResetNotificationSettingsResult |
resetNotificationSettings(ResetNotificationSettingsRequest request)
Resets the custom notification setting to IAM Roles Anywhere default setting.
|
void |
shutdown()
Shuts down this client object, releasing any resources that might be held open.
|
TagResourceResult |
tagResource(TagResourceRequest request)
Attaches tags to a resource.
|
UntagResourceResult |
untagResource(UntagResourceRequest request)
Removes tags from the resource.
|
UpdateCrlResult |
updateCrl(UpdateCrlRequest request)
Updates the certificate revocation list (CRL).
|
UpdateProfileResult |
updateProfile(UpdateProfileRequest request)
Updates a profile, a list of the roles that IAM Roles Anywhere service is trusted to assume.
|
UpdateTrustAnchorResult |
updateTrustAnchor(UpdateTrustAnchorRequest request)
Updates a trust anchor.
|
public CreateProfileResult createProfile(CreateProfileRequest request)
AWSIAMRolesAnywhere
Creates a profile, a list of the roles that Roles Anywhere service is trusted to assume. You use profiles to intersect permissions with IAM managed policies.
Required permissions: rolesanywhere:CreateProfile
.
createProfile
in interface AWSIAMRolesAnywhere
public CreateTrustAnchorResult createTrustAnchor(CreateTrustAnchorRequest request)
AWSIAMRolesAnywhere
Creates a trust anchor to establish trust between IAM Roles Anywhere and your certificate authority (CA). You can define a trust anchor as a reference to an Private Certificate Authority (Private CA) or by uploading a CA certificate. Your Amazon Web Services workloads can authenticate with the trust anchor using certificates issued by the CA in exchange for temporary Amazon Web Services credentials.
Required permissions: rolesanywhere:CreateTrustAnchor
.
createTrustAnchor
in interface AWSIAMRolesAnywhere
public DeleteAttributeMappingResult deleteAttributeMapping(DeleteAttributeMappingRequest request)
AWSIAMRolesAnywhere
Delete an entry from the attribute mapping rules enforced by a given profile.
deleteAttributeMapping
in interface AWSIAMRolesAnywhere
public DeleteCrlResult deleteCrl(DeleteCrlRequest request)
AWSIAMRolesAnywhere
Deletes a certificate revocation list (CRL).
Required permissions: rolesanywhere:DeleteCrl
.
deleteCrl
in interface AWSIAMRolesAnywhere
public DeleteProfileResult deleteProfile(DeleteProfileRequest request)
AWSIAMRolesAnywhere
Deletes a profile.
Required permissions: rolesanywhere:DeleteProfile
.
deleteProfile
in interface AWSIAMRolesAnywhere
public DeleteTrustAnchorResult deleteTrustAnchor(DeleteTrustAnchorRequest request)
AWSIAMRolesAnywhere
Deletes a trust anchor.
Required permissions: rolesanywhere:DeleteTrustAnchor
.
deleteTrustAnchor
in interface AWSIAMRolesAnywhere
public DisableCrlResult disableCrl(DisableCrlRequest request)
AWSIAMRolesAnywhere
Disables a certificate revocation list (CRL).
Required permissions: rolesanywhere:DisableCrl
.
disableCrl
in interface AWSIAMRolesAnywhere
public DisableProfileResult disableProfile(DisableProfileRequest request)
AWSIAMRolesAnywhere
Disables a profile. When disabled, temporary credential requests with this profile fail.
Required permissions: rolesanywhere:DisableProfile
.
disableProfile
in interface AWSIAMRolesAnywhere
public DisableTrustAnchorResult disableTrustAnchor(DisableTrustAnchorRequest request)
AWSIAMRolesAnywhere
Disables a trust anchor. When disabled, temporary credential requests specifying this trust anchor are unauthorized.
Required permissions: rolesanywhere:DisableTrustAnchor
.
disableTrustAnchor
in interface AWSIAMRolesAnywhere
public EnableCrlResult enableCrl(EnableCrlRequest request)
AWSIAMRolesAnywhere
Enables a certificate revocation list (CRL). When enabled, certificates stored in the CRL are unauthorized to receive session credentials.
Required permissions: rolesanywhere:EnableCrl
.
enableCrl
in interface AWSIAMRolesAnywhere
public EnableProfileResult enableProfile(EnableProfileRequest request)
AWSIAMRolesAnywhere
Enables temporary credential requests for a profile.
Required permissions: rolesanywhere:EnableProfile
.
enableProfile
in interface AWSIAMRolesAnywhere
public EnableTrustAnchorResult enableTrustAnchor(EnableTrustAnchorRequest request)
AWSIAMRolesAnywhere
Enables a trust anchor. When enabled, certificates in the trust anchor chain are authorized for trust validation.
Required permissions: rolesanywhere:EnableTrustAnchor
.
enableTrustAnchor
in interface AWSIAMRolesAnywhere
public GetCrlResult getCrl(GetCrlRequest request)
AWSIAMRolesAnywhere
Gets a certificate revocation list (CRL).
Required permissions: rolesanywhere:GetCrl
.
getCrl
in interface AWSIAMRolesAnywhere
public GetProfileResult getProfile(GetProfileRequest request)
AWSIAMRolesAnywhere
Gets a profile.
Required permissions: rolesanywhere:GetProfile
.
getProfile
in interface AWSIAMRolesAnywhere
public GetSubjectResult getSubject(GetSubjectRequest request)
AWSIAMRolesAnywhere
Gets a subject, which associates a certificate identity with authentication attempts. The subject stores auditing information such as the status of the last authentication attempt, the certificate data used in the attempt, and the last time the associated identity attempted authentication.
Required permissions: rolesanywhere:GetSubject
.
getSubject
in interface AWSIAMRolesAnywhere
public GetTrustAnchorResult getTrustAnchor(GetTrustAnchorRequest request)
AWSIAMRolesAnywhere
Gets a trust anchor.
Required permissions: rolesanywhere:GetTrustAnchor
.
getTrustAnchor
in interface AWSIAMRolesAnywhere
public ImportCrlResult importCrl(ImportCrlRequest request)
AWSIAMRolesAnywhere
Imports the certificate revocation list (CRL). A CRL is a list of certificates that have been revoked by the issuing certificate Authority (CA).In order to be properly imported, a CRL must be in PEM format. IAM Roles Anywhere validates against the CRL before issuing credentials.
Required permissions: rolesanywhere:ImportCrl
.
importCrl
in interface AWSIAMRolesAnywhere
public ListCrlsResult listCrls(ListCrlsRequest request)
AWSIAMRolesAnywhere
Lists all certificate revocation lists (CRL) in the authenticated account and Amazon Web Services Region.
Required permissions: rolesanywhere:ListCrls
.
listCrls
in interface AWSIAMRolesAnywhere
public ListProfilesResult listProfiles(ListProfilesRequest request)
AWSIAMRolesAnywhere
Lists all profiles in the authenticated account and Amazon Web Services Region.
Required permissions: rolesanywhere:ListProfiles
.
listProfiles
in interface AWSIAMRolesAnywhere
public ListSubjectsResult listSubjects(ListSubjectsRequest request)
AWSIAMRolesAnywhere
Lists the subjects in the authenticated account and Amazon Web Services Region.
Required permissions: rolesanywhere:ListSubjects
.
listSubjects
in interface AWSIAMRolesAnywhere
public ListTagsForResourceResult listTagsForResource(ListTagsForResourceRequest request)
AWSIAMRolesAnywhere
Lists the tags attached to the resource.
Required permissions: rolesanywhere:ListTagsForResource
.
listTagsForResource
in interface AWSIAMRolesAnywhere
public ListTrustAnchorsResult listTrustAnchors(ListTrustAnchorsRequest request)
AWSIAMRolesAnywhere
Lists the trust anchors in the authenticated account and Amazon Web Services Region.
Required permissions: rolesanywhere:ListTrustAnchors
.
listTrustAnchors
in interface AWSIAMRolesAnywhere
public PutAttributeMappingResult putAttributeMapping(PutAttributeMappingRequest request)
AWSIAMRolesAnywhere
Put an entry in the attribute mapping rules that will be enforced by a given profile. A mapping specifies a certificate field and one or more specifiers that have contextual meanings.
putAttributeMapping
in interface AWSIAMRolesAnywhere
public PutNotificationSettingsResult putNotificationSettings(PutNotificationSettingsRequest request)
AWSIAMRolesAnywhere
Attaches a list of notification settings to a trust anchor.
A notification setting includes information such as event name, threshold, status of the notification setting, and the channel to notify.
Required permissions: rolesanywhere:PutNotificationSettings
.
putNotificationSettings
in interface AWSIAMRolesAnywhere
public ResetNotificationSettingsResult resetNotificationSettings(ResetNotificationSettingsRequest request)
AWSIAMRolesAnywhere
Resets the custom notification setting to IAM Roles Anywhere default setting.
Required permissions: rolesanywhere:ResetNotificationSettings
.
resetNotificationSettings
in interface AWSIAMRolesAnywhere
public TagResourceResult tagResource(TagResourceRequest request)
AWSIAMRolesAnywhere
Attaches tags to a resource.
Required permissions: rolesanywhere:TagResource
.
tagResource
in interface AWSIAMRolesAnywhere
public UntagResourceResult untagResource(UntagResourceRequest request)
AWSIAMRolesAnywhere
Removes tags from the resource.
Required permissions: rolesanywhere:UntagResource
.
untagResource
in interface AWSIAMRolesAnywhere
public UpdateCrlResult updateCrl(UpdateCrlRequest request)
AWSIAMRolesAnywhere
Updates the certificate revocation list (CRL). A CRL is a list of certificates that have been revoked by the issuing certificate authority (CA). IAM Roles Anywhere validates against the CRL before issuing credentials.
Required permissions: rolesanywhere:UpdateCrl
.
updateCrl
in interface AWSIAMRolesAnywhere
public UpdateProfileResult updateProfile(UpdateProfileRequest request)
AWSIAMRolesAnywhere
Updates a profile, a list of the roles that IAM Roles Anywhere service is trusted to assume. You use profiles to intersect permissions with IAM managed policies.
Required permissions: rolesanywhere:UpdateProfile
.
updateProfile
in interface AWSIAMRolesAnywhere
public UpdateTrustAnchorResult updateTrustAnchor(UpdateTrustAnchorRequest request)
AWSIAMRolesAnywhere
Updates a trust anchor. You establish trust between IAM Roles Anywhere and your certificate authority (CA) by configuring a trust anchor. You can define a trust anchor as a reference to an Private Certificate Authority (Private CA) or by uploading a CA certificate. Your Amazon Web Services workloads can authenticate with the trust anchor using certificates issued by the CA in exchange for temporary Amazon Web Services credentials.
Required permissions: rolesanywhere:UpdateTrustAnchor
.
updateTrustAnchor
in interface AWSIAMRolesAnywhere
public void shutdown()
AWSIAMRolesAnywhere
shutdown
in interface AWSIAMRolesAnywhere
public ResponseMetadata getCachedResponseMetadata(AmazonWebServiceRequest request)
AWSIAMRolesAnywhere
Response metadata is only cached for a limited period of time, so if you need to access this extra diagnostic information for an executed request, you should use this method to retrieve it as soon as possible after executing a request.
getCachedResponseMetadata
in interface AWSIAMRolesAnywhere
request
- The originally executed request.