com.amazonaws.services.identitystore

Class AWSIdentityStoreClient

java.lang.Object

com.amazonaws.AmazonWebServiceClient

com.amazonaws.services.identitystore.AWSIdentityStoreClient

All Implemented Interfaces:

AWSIdentityStore

Direct Known Subclasses:

AWSIdentityStoreAsyncClient

@ThreadSafe
 @Generated(value="com.amazonaws:aws-java-sdk-code-generator")
public class AWSIdentityStoreClient
extends AmazonWebServiceClient
implements AWSIdentityStore

Client for accessing IdentityStore. All service calls made using this client are blocking, and will not return until the service call completes.

The Identity Store service used by IAM Identity Center provides a single place to retrieve all of your identities (users and groups). For more information, see the IAM Identity Center User Guide.

This reference guide describes the identity store operations that you can call programmatically and includes detailed information about data types and errors.

IAM Identity Center uses the sso and identitystore API namespaces.

Field Summary

Fields inherited from class com.amazonaws.AmazonWebServiceClient

LOGGING_AWS_REQUEST_METRIC

Fields inherited from interface com.amazonaws.services.identitystore.AWSIdentityStore

ENDPOINT_PREFIX

Method Summary

Modifier and Type	Method and Description
static AWSIdentityStoreClientBuilder	builder()
CreateGroupResult	createGroup(CreateGroupRequest request) Creates a group within the specified identity store.
CreateGroupMembershipResult	createGroupMembership(CreateGroupMembershipRequest request) Creates a relationship between a member and a group.
CreateUserResult	createUser(CreateUserRequest request) Creates a user within the specified identity store.
DeleteGroupResult	deleteGroup(DeleteGroupRequest request) Delete a group within an identity store given GroupId.
DeleteGroupMembershipResult	deleteGroupMembership(DeleteGroupMembershipRequest request) Delete a membership within a group given MembershipId.
DeleteUserResult	deleteUser(DeleteUserRequest request) Deletes a user within an identity store given UserId.
DescribeGroupResult	describeGroup(DescribeGroupRequest request) Retrieves the group metadata and attributes from GroupId in an identity store.
DescribeGroupMembershipResult	describeGroupMembership(DescribeGroupMembershipRequest request) Retrieves membership metadata and attributes from MembershipId in an identity store.
DescribeUserResult	describeUser(DescribeUserRequest request) Retrieves the user metadata and attributes from the UserId in an identity store.
ResponseMetadata	getCachedResponseMetadata(AmazonWebServiceRequest request) Returns additional metadata for a previously executed successful, request, typically used for debugging issues where a service isn't acting as expected.
GetGroupIdResult	getGroupId(GetGroupIdRequest request) Retrieves GroupId in an identity store.
GetGroupMembershipIdResult	getGroupMembershipId(GetGroupMembershipIdRequest request) Retrieves the MembershipId in an identity store.
GetUserIdResult	getUserId(GetUserIdRequest request) Retrieves the UserId in an identity store.
IsMemberInGroupsResult	isMemberInGroups(IsMemberInGroupsRequest request) Checks the user's membership in all requested groups and returns if the member exists in all queried groups.
ListGroupMembershipsResult	listGroupMemberships(ListGroupMembershipsRequest request) For the specified group in the specified identity store, returns the list of all GroupMembership objects and returns results in paginated form.
ListGroupMembershipsForMemberResult	listGroupMembershipsForMember(ListGroupMembershipsForMemberRequest request) For the specified member in the specified identity store, returns the list of all GroupMembership objects and returns results in paginated form.
ListGroupsResult	listGroups(ListGroupsRequest request) Lists all groups in the identity store.
ListUsersResult	listUsers(ListUsersRequest request) Lists all users in the identity store.
void	shutdown() Shuts down this client object, releasing any resources that might be held open.
UpdateGroupResult	updateGroup(UpdateGroupRequest request) For the specified group in the specified identity store, updates the group metadata and attributes.
UpdateUserResult	updateUser(UpdateUserRequest request) For the specified user in the specified identity store, updates the user metadata and attributes.

Methods inherited from class com.amazonaws.AmazonWebServiceClient

addRequestHandler, addRequestHandler, configureRegion, getClientConfiguration, getEndpointPrefix, getMonitoringListeners, getRequestMetricsCollector, getServiceName, getSignerByURI, getSignerOverride, getSignerRegionOverride, getTimeOffset, makeImmutable, removeRequestHandler, removeRequestHandler, setEndpoint, setEndpoint, setRegion, setServiceNameIntern, setSignerRegionOverride, setTimeOffset, withEndpoint, withRegion, withRegion, withTimeOffset

Methods inherited from class java.lang.Object

equals, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Detail

builder

public static AWSIdentityStoreClientBuilder builder()

createGroup

public CreateGroupResult createGroup(CreateGroupRequest request)

Creates a group within the specified identity store.

Specified by:

createGroup in interface AWSIdentityStore

Parameters:

createGroupRequest -

Returns:

Result of the CreateGroup operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

ConflictException - This request cannot be completed for one of the following reasons:

• Performing the requested operation would violate an existing uniqueness claim in the identity store. Resolve the conflict before retrying this request.

• The requested resource was being concurrently modified by another request.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

ServiceQuotaExceededException - The request would cause the number of users or groups in the identity store to exceed the maximum allowed.

See Also:

AWS API Documentation

createGroupMembership

public CreateGroupMembershipResult createGroupMembership(CreateGroupMembershipRequest request)

Creates a relationship between a member and a group. The following identifiers must be specified: GroupId, IdentityStoreId, and MemberId.

Specified by:

createGroupMembership in interface AWSIdentityStore

Parameters:

createGroupMembershipRequest -

Returns:

Result of the CreateGroupMembership operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

ConflictException - This request cannot be completed for one of the following reasons:

• Performing the requested operation would violate an existing uniqueness claim in the identity store. Resolve the conflict before retrying this request.

• The requested resource was being concurrently modified by another request.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

ServiceQuotaExceededException - The request would cause the number of users or groups in the identity store to exceed the maximum allowed.

See Also:

AWS API Documentation

createUser

public CreateUserResult createUser(CreateUserRequest request)

Creates a user within the specified identity store.

Specified by:

createUser in interface AWSIdentityStore

Parameters:

createUserRequest -

Returns:

Result of the CreateUser operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

ConflictException - This request cannot be completed for one of the following reasons:

• Performing the requested operation would violate an existing uniqueness claim in the identity store. Resolve the conflict before retrying this request.

• The requested resource was being concurrently modified by another request.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

ServiceQuotaExceededException - The request would cause the number of users or groups in the identity store to exceed the maximum allowed.

See Also:

AWS API Documentation

deleteGroup

public DeleteGroupResult deleteGroup(DeleteGroupRequest request)

Delete a group within an identity store given GroupId.

Specified by:

deleteGroup in interface AWSIdentityStore

Parameters:

deleteGroupRequest -

Returns:

Result of the DeleteGroup operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

ConflictException - This request cannot be completed for one of the following reasons:

• Performing the requested operation would violate an existing uniqueness claim in the identity store. Resolve the conflict before retrying this request.

• The requested resource was being concurrently modified by another request.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

deleteGroupMembership

public DeleteGroupMembershipResult deleteGroupMembership(DeleteGroupMembershipRequest request)

Delete a membership within a group given MembershipId.

Specified by:

deleteGroupMembership in interface AWSIdentityStore

Parameters:

deleteGroupMembershipRequest -

Returns:

Result of the DeleteGroupMembership operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

ConflictException - This request cannot be completed for one of the following reasons:

• Performing the requested operation would violate an existing uniqueness claim in the identity store. Resolve the conflict before retrying this request.

• The requested resource was being concurrently modified by another request.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

deleteUser

public DeleteUserResult deleteUser(DeleteUserRequest request)

Deletes a user within an identity store given UserId.

Specified by:

deleteUser in interface AWSIdentityStore

Parameters:

deleteUserRequest -

Returns:

Result of the DeleteUser operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

ConflictException - This request cannot be completed for one of the following reasons:

• Performing the requested operation would violate an existing uniqueness claim in the identity store. Resolve the conflict before retrying this request.

• The requested resource was being concurrently modified by another request.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

describeGroup

public DescribeGroupResult describeGroup(DescribeGroupRequest request)

Retrieves the group metadata and attributes from GroupId in an identity store.

If you have administrator access to a member account, you can use this API from the member account. Read about member accounts in the Organizations User Guide.

Specified by:

describeGroup in interface AWSIdentityStore

Parameters:

describeGroupRequest -

Returns:

Result of the DescribeGroup operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

describeGroupMembership

public DescribeGroupMembershipResult describeGroupMembership(DescribeGroupMembershipRequest request)

Retrieves membership metadata and attributes from MembershipId in an identity store.

If you have administrator access to a member account, you can use this API from the member account. Read about member accounts in the Organizations User Guide.

Specified by:

describeGroupMembership in interface AWSIdentityStore

Parameters:

describeGroupMembershipRequest -

Returns:

Result of the DescribeGroupMembership operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

describeUser

public DescribeUserResult describeUser(DescribeUserRequest request)

Retrieves the user metadata and attributes from the UserId in an identity store.

If you have administrator access to a member account, you can use this API from the member account. Read about member accounts in the Organizations User Guide.

Specified by:

describeUser in interface AWSIdentityStore

Parameters:

describeUserRequest -

Returns:

Result of the DescribeUser operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

getGroupId

public GetGroupIdResult getGroupId(GetGroupIdRequest request)

Retrieves GroupId in an identity store.

If you have administrator access to a member account, you can use this API from the member account. Read about member accounts in the Organizations User Guide.

Specified by:

getGroupId in interface AWSIdentityStore

Parameters:

getGroupIdRequest -

Returns:

Result of the GetGroupId operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

getGroupMembershipId

public GetGroupMembershipIdResult getGroupMembershipId(GetGroupMembershipIdRequest request)

Retrieves the MembershipId in an identity store.

If you have administrator access to a member account, you can use this API from the member account. Read about member accounts in the Organizations User Guide.

Specified by:

getGroupMembershipId in interface AWSIdentityStore

Parameters:

getGroupMembershipIdRequest -

Returns:

Result of the GetGroupMembershipId operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

getUserId

public GetUserIdResult getUserId(GetUserIdRequest request)

Retrieves the UserId in an identity store.

If you have administrator access to a member account, you can use this API from the member account. Read about member accounts in the Organizations User Guide.

Specified by:

getUserId in interface AWSIdentityStore

Parameters:

getUserIdRequest -

Returns:

Result of the GetUserId operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

isMemberInGroups

public IsMemberInGroupsResult isMemberInGroups(IsMemberInGroupsRequest request)

Checks the user's membership in all requested groups and returns if the member exists in all queried groups.

If you have administrator access to a member account, you can use this API from the member account. Read about member accounts in the Organizations User Guide.

Specified by:

isMemberInGroups in interface AWSIdentityStore

Parameters:

isMemberInGroupsRequest -

Returns:

Result of the IsMemberInGroups operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

listGroupMemberships

public ListGroupMembershipsResult listGroupMemberships(ListGroupMembershipsRequest request)

For the specified group in the specified identity store, returns the list of all GroupMembership objects and returns results in paginated form.

If you have administrator access to a member account, you can use this API from the member account. Read about member accounts in the Organizations User Guide.

Specified by:

listGroupMemberships in interface AWSIdentityStore

Parameters:

listGroupMembershipsRequest -

Returns:

Result of the ListGroupMemberships operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

listGroupMembershipsForMember

public ListGroupMembershipsForMemberResult listGroupMembershipsForMember(ListGroupMembershipsForMemberRequest request)

For the specified member in the specified identity store, returns the list of all GroupMembership objects and returns results in paginated form.

If you have administrator access to a member account, you can use this API from the member account. Read about member accounts in the Organizations User Guide.

Specified by:

listGroupMembershipsForMember in interface AWSIdentityStore

Parameters:

listGroupMembershipsForMemberRequest -

Returns:

Result of the ListGroupMembershipsForMember operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

listGroups

public ListGroupsResult listGroups(ListGroupsRequest request)

Lists all groups in the identity store. Returns a paginated list of complete Group objects. Filtering for a Group by the DisplayName attribute is deprecated. Instead, use the GetGroupId API action.

If you have administrator access to a member account, you can use this API from the member account. Read about member accounts in the Organizations User Guide.

Specified by:

listGroups in interface AWSIdentityStore

Parameters:

listGroupsRequest -

Returns:

Result of the ListGroups operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

listUsers

public ListUsersResult listUsers(ListUsersRequest request)

Lists all users in the identity store. Returns a paginated list of complete User objects. Filtering for a User by the UserName attribute is deprecated. Instead, use the GetUserId API action.

If you have administrator access to a member account, you can use this API from the member account. Read about member accounts in the Organizations User Guide.

Specified by:

listUsers in interface AWSIdentityStore

Parameters:

listUsersRequest -

Returns:

Result of the ListUsers operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

See Also:

AWS API Documentation

updateGroup

public UpdateGroupResult updateGroup(UpdateGroupRequest request)

For the specified group in the specified identity store, updates the group metadata and attributes.

Specified by:

updateGroup in interface AWSIdentityStore

Parameters:

updateGroupRequest -

Returns:

Result of the UpdateGroup operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

ConflictException - This request cannot be completed for one of the following reasons:

• Performing the requested operation would violate an existing uniqueness claim in the identity store. Resolve the conflict before retrying this request.

• The requested resource was being concurrently modified by another request.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

ServiceQuotaExceededException - The request would cause the number of users or groups in the identity store to exceed the maximum allowed.

See Also:

AWS API Documentation

updateUser

public UpdateUserResult updateUser(UpdateUserRequest request)

For the specified user in the specified identity store, updates the user metadata and attributes.

Specified by:

updateUser in interface AWSIdentityStore

Parameters:

updateUserRequest -

Returns:

Result of the UpdateUser operation returned by the service.

Throws:

ResourceNotFoundException - Indicates that a requested resource is not found.

ThrottlingException - Indicates that the principal has crossed the throttling limits of the API operations.

AccessDeniedException - You do not have sufficient access to perform this action.

ConflictException - This request cannot be completed for one of the following reasons:

• Performing the requested operation would violate an existing uniqueness claim in the identity store. Resolve the conflict before retrying this request.

• The requested resource was being concurrently modified by another request.

InternalServerException - The request processing has failed because of an unknown error, exception or failure with an internal server.

ValidationException - The request failed because it contains a syntax error.

ServiceQuotaExceededException - The request would cause the number of users or groups in the identity store to exceed the maximum allowed.

See Also:

AWS API Documentation

getCachedResponseMetadata

public ResponseMetadata getCachedResponseMetadata(AmazonWebServiceRequest request)

Returns additional metadata for a previously executed successful, request, typically used for debugging issues where a service isn't acting as expected. This data isn't considered part of the result data returned by an operation, so it's available through this separate, diagnostic interface.

Response metadata is only cached for a limited period of time, so if you need to access this extra diagnostic information for an executed request, you should use this method to retrieve it as soon as possible after executing the request.

Specified by:

getCachedResponseMetadata in interface AWSIdentityStore

Parameters:

request - The originally executed request

Returns:

The response metadata for the specified request, or null if none is available.

shutdown

public void shutdown()

Description copied from class: AmazonWebServiceClient

Shuts down this client object, releasing any resources that might be held open. If this method is not invoked, resources may be leaked. Once a client has been shutdown, it should not be used to make any more requests.

Specified by:

shutdown in interface AWSIdentityStore

Overrides:

shutdown in class AmazonWebServiceClient