type AccessKey struct {
// The ID for this access key.
//
// AccessKeyId is a required field
AccessKeyId *string `min:"16" type:"string" required:"true"`
// The date when the access key was created.
CreateDate *time.Time `type:"timestamp"`
// The secret key used to sign requests.
//
// SecretAccessKey is a required field
SecretAccessKey *string `type:"string" required:"true" sensitive:"true"`
// The status of the access key. Active means that the key is valid for API
// calls, while Inactive means it is not.
//
// Status is a required field
Status *string `type:"string" required:"true" enum:"statusType"`
// The name of the IAM user that the access key is associated with.
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
Contains information about an AWS access key.
This data type is used as a response element in the CreateAccessKey and ListAccessKeys operations.
The SecretAccessKey value is returned only in response to CreateAccessKey. You can get a secret access key only when you first create an access key; you cannot recover the secret access key later. If you lose a secret access key, you must create a new access key.
func (s AccessKey) GoString() string
GoString returns the string representation
func (s *AccessKey) SetAccessKeyId(v string) *AccessKey
SetAccessKeyId sets the AccessKeyId field's value.
func (s *AccessKey) SetCreateDate(v time.Time) *AccessKey
SetCreateDate sets the CreateDate field's value.
func (s *AccessKey) SetSecretAccessKey(v string) *AccessKey
SetSecretAccessKey sets the SecretAccessKey field's value.
func (s *AccessKey) SetStatus(v string) *AccessKey
SetStatus sets the Status field's value.
func (s *AccessKey) SetUserName(v string) *AccessKey
SetUserName sets the UserName field's value.
func (s AccessKey) String() string
String returns the string representation
type AccessKeyLastUsed struct {
// The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601),
// when the access key was most recently used. This field is null in the following
// situations:
//
// * The user does not have an access key.
//
// * An access key exists but has not been used since IAM began tracking
// this information.
//
// * There is no sign-in data associated with the user
//
// LastUsedDate is a required field
LastUsedDate *time.Time `type:"timestamp" required:"true"`
// The AWS region where this access key was most recently used. The value for
// this field is "N/A" in the following situations:
//
// * The user does not have an access key.
//
// * An access key exists but has not been used since IAM began tracking
// this information.
//
// * There is no sign-in data associated with the user
//
// For more information about AWS regions, see Regions and Endpoints (https://docs.aws.amazon.com/general/latest/gr/rande.html)
// in the Amazon Web Services General Reference.
//
// Region is a required field
Region *string `type:"string" required:"true"`
// The name of the AWS service with which this access key was most recently
// used. The value of this field is "N/A" in the following situations:
//
// * The user does not have an access key.
//
// * An access key exists but has not been used since IAM started tracking
// this information.
//
// * There is no sign-in data associated with the user
//
// ServiceName is a required field
ServiceName *string `type:"string" required:"true"`
// contains filtered or unexported fields
}
Contains information about the last time an AWS access key was used since IAM began tracking this information on April 22, 2015.
This data type is used as a response element in the GetAccessKeyLastUsed operation.
func (s AccessKeyLastUsed) GoString() string
GoString returns the string representation
func (s *AccessKeyLastUsed) SetLastUsedDate(v time.Time) *AccessKeyLastUsed
SetLastUsedDate sets the LastUsedDate field's value.
func (s *AccessKeyLastUsed) SetRegion(v string) *AccessKeyLastUsed
SetRegion sets the Region field's value.
func (s *AccessKeyLastUsed) SetServiceName(v string) *AccessKeyLastUsed
SetServiceName sets the ServiceName field's value.
func (s AccessKeyLastUsed) String() string
String returns the string representation
type AccessKeyMetadata struct {
// The ID for this access key.
AccessKeyId *string `min:"16" type:"string"`
// The date when the access key was created.
CreateDate *time.Time `type:"timestamp"`
// The status of the access key. Active means that the key is valid for API
// calls; Inactive means it is not.
Status *string `type:"string" enum:"statusType"`
// The name of the IAM user that the key is associated with.
UserName *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
Contains information about an AWS access key, without its secret key.
This data type is used as a response element in the ListAccessKeys operation.
func (s AccessKeyMetadata) GoString() string
GoString returns the string representation
func (s *AccessKeyMetadata) SetAccessKeyId(v string) *AccessKeyMetadata
SetAccessKeyId sets the AccessKeyId field's value.
func (s *AccessKeyMetadata) SetCreateDate(v time.Time) *AccessKeyMetadata
SetCreateDate sets the CreateDate field's value.
func (s *AccessKeyMetadata) SetStatus(v string) *AccessKeyMetadata
SetStatus sets the Status field's value.
func (s *AccessKeyMetadata) SetUserName(v string) *AccessKeyMetadata
SetUserName sets the UserName field's value.
func (s AccessKeyMetadata) String() string
String returns the string representation
type AddClientIDToOpenIDConnectProviderInput struct {
// The client ID (also known as audience) to add to the IAM OpenID Connect provider
// resource.
//
// ClientID is a required field
ClientID *string `min:"1" type:"string" required:"true"`
// The Amazon Resource Name (ARN) of the IAM OpenID Connect (OIDC) provider
// resource to add the client ID to. You can get a list of OIDC provider ARNs
// by using the ListOpenIDConnectProviders operation.
//
// OpenIDConnectProviderArn is a required field
OpenIDConnectProviderArn *string `min:"20" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s AddClientIDToOpenIDConnectProviderInput) GoString() string
GoString returns the string representation
func (s *AddClientIDToOpenIDConnectProviderInput) SetClientID(v string) *AddClientIDToOpenIDConnectProviderInput
SetClientID sets the ClientID field's value.
func (s *AddClientIDToOpenIDConnectProviderInput) SetOpenIDConnectProviderArn(v string) *AddClientIDToOpenIDConnectProviderInput
SetOpenIDConnectProviderArn sets the OpenIDConnectProviderArn field's value.
func (s AddClientIDToOpenIDConnectProviderInput) String() string
String returns the string representation
func (s *AddClientIDToOpenIDConnectProviderInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type AddClientIDToOpenIDConnectProviderOutput struct {
// contains filtered or unexported fields
}
func (s AddClientIDToOpenIDConnectProviderOutput) GoString() string
GoString returns the string representation
func (s AddClientIDToOpenIDConnectProviderOutput) String() string
String returns the string representation
type AddRoleToInstanceProfileInput struct {
// The name of the instance profile to update.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// InstanceProfileName is a required field
InstanceProfileName *string `min:"1" type:"string" required:"true"`
// The name of the role to add.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// RoleName is a required field
RoleName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s AddRoleToInstanceProfileInput) GoString() string
GoString returns the string representation
func (s *AddRoleToInstanceProfileInput) SetInstanceProfileName(v string) *AddRoleToInstanceProfileInput
SetInstanceProfileName sets the InstanceProfileName field's value.
func (s *AddRoleToInstanceProfileInput) SetRoleName(v string) *AddRoleToInstanceProfileInput
SetRoleName sets the RoleName field's value.
func (s AddRoleToInstanceProfileInput) String() string
String returns the string representation
func (s *AddRoleToInstanceProfileInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type AddRoleToInstanceProfileOutput struct {
// contains filtered or unexported fields
}
func (s AddRoleToInstanceProfileOutput) GoString() string
GoString returns the string representation
func (s AddRoleToInstanceProfileOutput) String() string
String returns the string representation
type AddUserToGroupInput struct {
// The name of the group to update.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// GroupName is a required field
GroupName *string `min:"1" type:"string" required:"true"`
// The name of the user to add.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s AddUserToGroupInput) GoString() string
GoString returns the string representation
func (s *AddUserToGroupInput) SetGroupName(v string) *AddUserToGroupInput
SetGroupName sets the GroupName field's value.
func (s *AddUserToGroupInput) SetUserName(v string) *AddUserToGroupInput
SetUserName sets the UserName field's value.
func (s AddUserToGroupInput) String() string
String returns the string representation
func (s *AddUserToGroupInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type AddUserToGroupOutput struct {
// contains filtered or unexported fields
}
func (s AddUserToGroupOutput) GoString() string
GoString returns the string representation
func (s AddUserToGroupOutput) String() string
String returns the string representation
type AttachGroupPolicyInput struct {
// The name (friendly name, not ARN) of the group to attach the policy to.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// GroupName is a required field
GroupName *string `min:"1" type:"string" required:"true"`
// The Amazon Resource Name (ARN) of the IAM policy you want to attach.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicyArn is a required field
PolicyArn *string `min:"20" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s AttachGroupPolicyInput) GoString() string
GoString returns the string representation
func (s *AttachGroupPolicyInput) SetGroupName(v string) *AttachGroupPolicyInput
SetGroupName sets the GroupName field's value.
func (s *AttachGroupPolicyInput) SetPolicyArn(v string) *AttachGroupPolicyInput
SetPolicyArn sets the PolicyArn field's value.
func (s AttachGroupPolicyInput) String() string
String returns the string representation
func (s *AttachGroupPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type AttachGroupPolicyOutput struct {
// contains filtered or unexported fields
}
func (s AttachGroupPolicyOutput) GoString() string
GoString returns the string representation
func (s AttachGroupPolicyOutput) String() string
String returns the string representation
type AttachRolePolicyInput struct {
// The Amazon Resource Name (ARN) of the IAM policy you want to attach.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicyArn is a required field
PolicyArn *string `min:"20" type:"string" required:"true"`
// The name (friendly name, not ARN) of the role to attach the policy to.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// RoleName is a required field
RoleName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s AttachRolePolicyInput) GoString() string
GoString returns the string representation
func (s *AttachRolePolicyInput) SetPolicyArn(v string) *AttachRolePolicyInput
SetPolicyArn sets the PolicyArn field's value.
func (s *AttachRolePolicyInput) SetRoleName(v string) *AttachRolePolicyInput
SetRoleName sets the RoleName field's value.
func (s AttachRolePolicyInput) String() string
String returns the string representation
func (s *AttachRolePolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type AttachRolePolicyOutput struct {
// contains filtered or unexported fields
}
func (s AttachRolePolicyOutput) GoString() string
GoString returns the string representation
func (s AttachRolePolicyOutput) String() string
String returns the string representation
type AttachUserPolicyInput struct {
// The Amazon Resource Name (ARN) of the IAM policy you want to attach.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicyArn is a required field
PolicyArn *string `min:"20" type:"string" required:"true"`
// The name (friendly name, not ARN) of the IAM user to attach the policy to.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s AttachUserPolicyInput) GoString() string
GoString returns the string representation
func (s *AttachUserPolicyInput) SetPolicyArn(v string) *AttachUserPolicyInput
SetPolicyArn sets the PolicyArn field's value.
func (s *AttachUserPolicyInput) SetUserName(v string) *AttachUserPolicyInput
SetUserName sets the UserName field's value.
func (s AttachUserPolicyInput) String() string
String returns the string representation
func (s *AttachUserPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type AttachUserPolicyOutput struct {
// contains filtered or unexported fields
}
func (s AttachUserPolicyOutput) GoString() string
GoString returns the string representation
func (s AttachUserPolicyOutput) String() string
String returns the string representation
type AttachedPermissionsBoundary struct {
// The ARN of the policy used to set the permissions boundary for the user or
// role.
PermissionsBoundaryArn *string `min:"20" type:"string"`
// The permissions boundary usage type that indicates what type of IAM resource
// is used as the permissions boundary for an entity. This data type can only
// have a value of Policy.
PermissionsBoundaryType *string `type:"string" enum:"PermissionsBoundaryAttachmentType"`
// contains filtered or unexported fields
}
Contains information about an attached permissions boundary.
An attached permissions boundary is a managed policy that has been attached to a user or role to set the permissions boundary.
For more information about permissions boundaries, see Permissions Boundaries for IAM Identities (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html) in the IAM User Guide.
func (s AttachedPermissionsBoundary) GoString() string
GoString returns the string representation
func (s *AttachedPermissionsBoundary) SetPermissionsBoundaryArn(v string) *AttachedPermissionsBoundary
SetPermissionsBoundaryArn sets the PermissionsBoundaryArn field's value.
func (s *AttachedPermissionsBoundary) SetPermissionsBoundaryType(v string) *AttachedPermissionsBoundary
SetPermissionsBoundaryType sets the PermissionsBoundaryType field's value.
func (s AttachedPermissionsBoundary) String() string
String returns the string representation
type AttachedPolicy struct {
// The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources.
//
// For more information about ARNs, go to Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
PolicyArn *string `min:"20" type:"string"`
// The friendly name of the attached policy.
PolicyName *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
Contains information about an attached policy.
An attached policy is a managed policy that has been attached to a user, group, or role. This data type is used as a response element in the ListAttachedGroupPolicies, ListAttachedRolePolicies, ListAttachedUserPolicies, and GetAccountAuthorizationDetails operations.
For more information about managed policies, refer to Managed Policies and Inline Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the Using IAM guide.
func (s AttachedPolicy) GoString() string
GoString returns the string representation
func (s *AttachedPolicy) SetPolicyArn(v string) *AttachedPolicy
SetPolicyArn sets the PolicyArn field's value.
func (s *AttachedPolicy) SetPolicyName(v string) *AttachedPolicy
SetPolicyName sets the PolicyName field's value.
func (s AttachedPolicy) String() string
String returns the string representation
type ChangePasswordInput struct {
// The new password. The new password must conform to the AWS account's password
// policy, if one exists.
//
// The regex pattern (http://wikipedia.org/wiki/regex) that is used to validate
// this parameter is a string of characters. That string can include almost
// any printable ASCII character from the space (\u0020) through the end of
// the ASCII character range (\u00FF). You can also include the tab (\u0009),
// line feed (\u000A), and carriage return (\u000D) characters. Any of these
// characters are valid in a password. However, many tools, such as the AWS
// Management Console, might restrict the ability to type certain characters
// because they have special meaning within that tool.
//
// NewPassword is a required field
NewPassword *string `min:"1" type:"string" required:"true" sensitive:"true"`
// The IAM user's current password.
//
// OldPassword is a required field
OldPassword *string `min:"1" type:"string" required:"true" sensitive:"true"`
// contains filtered or unexported fields
}
func (s ChangePasswordInput) GoString() string
GoString returns the string representation
func (s *ChangePasswordInput) SetNewPassword(v string) *ChangePasswordInput
SetNewPassword sets the NewPassword field's value.
func (s *ChangePasswordInput) SetOldPassword(v string) *ChangePasswordInput
SetOldPassword sets the OldPassword field's value.
func (s ChangePasswordInput) String() string
String returns the string representation
func (s *ChangePasswordInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type ChangePasswordOutput struct {
// contains filtered or unexported fields
}
func (s ChangePasswordOutput) GoString() string
GoString returns the string representation
func (s ChangePasswordOutput) String() string
String returns the string representation
type ContextEntry struct {
// The full name of a condition context key, including the service prefix. For
// example, aws:SourceIp or s3:VersionId.
ContextKeyName *string `min:"5" type:"string"`
// The data type of the value (or values) specified in the ContextKeyValues
// parameter.
ContextKeyType *string `type:"string" enum:"ContextKeyTypeEnum"`
// The value (or values, if the condition context key supports multiple values)
// to provide to the simulation when the key is referenced by a Condition element
// in an input policy.
ContextKeyValues []*string `type:"list"`
// contains filtered or unexported fields
}
Contains information about a condition context key. It includes the name of the key and specifies the value (or values, if the context key supports multiple values) to use in the simulation. This information is used when evaluating the Condition elements of the input policies.
This data type is used as an input parameter to SimulateCustomPolicy and SimulateCustomPolicy .
func (s ContextEntry) GoString() string
GoString returns the string representation
func (s *ContextEntry) SetContextKeyName(v string) *ContextEntry
SetContextKeyName sets the ContextKeyName field's value.
func (s *ContextEntry) SetContextKeyType(v string) *ContextEntry
SetContextKeyType sets the ContextKeyType field's value.
func (s *ContextEntry) SetContextKeyValues(v []*string) *ContextEntry
SetContextKeyValues sets the ContextKeyValues field's value.
func (s ContextEntry) String() string
String returns the string representation
func (s *ContextEntry) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateAccessKeyInput struct {
// The name of the IAM user that the new key will belong to.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
UserName *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
func (s CreateAccessKeyInput) GoString() string
GoString returns the string representation
func (s *CreateAccessKeyInput) SetUserName(v string) *CreateAccessKeyInput
SetUserName sets the UserName field's value.
func (s CreateAccessKeyInput) String() string
String returns the string representation
func (s *CreateAccessKeyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateAccessKeyOutput struct {
// A structure with details about the access key.
//
// AccessKey is a required field
AccessKey *AccessKey `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful CreateAccessKey request.
func (s CreateAccessKeyOutput) GoString() string
GoString returns the string representation
func (s *CreateAccessKeyOutput) SetAccessKey(v *AccessKey) *CreateAccessKeyOutput
SetAccessKey sets the AccessKey field's value.
func (s CreateAccessKeyOutput) String() string
String returns the string representation
type CreateAccountAliasInput struct {
// The account alias to create.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of lowercase letters, digits, and dashes.
// You cannot start or finish with a dash, nor can you have two dashes in a
// row.
//
// AccountAlias is a required field
AccountAlias *string `min:"3" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s CreateAccountAliasInput) GoString() string
GoString returns the string representation
func (s *CreateAccountAliasInput) SetAccountAlias(v string) *CreateAccountAliasInput
SetAccountAlias sets the AccountAlias field's value.
func (s CreateAccountAliasInput) String() string
String returns the string representation
func (s *CreateAccountAliasInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateAccountAliasOutput struct {
// contains filtered or unexported fields
}
func (s CreateAccountAliasOutput) GoString() string
GoString returns the string representation
func (s CreateAccountAliasOutput) String() string
String returns the string representation
type CreateGroupInput struct {
// The name of the group to create. Do not include the path in this value.
//
// IAM user, group, role, and policy names must be unique within the account.
// Names are not distinguished by case. For example, you cannot create resources
// named both "MyResource" and "myresource".
//
// GroupName is a required field
GroupName *string `min:"1" type:"string" required:"true"`
// The path to the group. For more information about paths, see IAM Identifiers
// (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the IAM User Guide.
//
// This parameter is optional. If it is not included, it defaults to a slash
// (/).
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of either a forward slash (/) by itself
// or a string that must begin and end with forward slashes. In addition, it
// can contain any ASCII character from the ! (\u0021) through the DEL character
// (\u007F), including most punctuation characters, digits, and upper and lowercased
// letters.
Path *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
func (s CreateGroupInput) GoString() string
GoString returns the string representation
func (s *CreateGroupInput) SetGroupName(v string) *CreateGroupInput
SetGroupName sets the GroupName field's value.
func (s *CreateGroupInput) SetPath(v string) *CreateGroupInput
SetPath sets the Path field's value.
func (s CreateGroupInput) String() string
String returns the string representation
func (s *CreateGroupInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateGroupOutput struct {
// A structure containing details about the new group.
//
// Group is a required field
Group *Group `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful CreateGroup request.
func (s CreateGroupOutput) GoString() string
GoString returns the string representation
func (s *CreateGroupOutput) SetGroup(v *Group) *CreateGroupOutput
SetGroup sets the Group field's value.
func (s CreateGroupOutput) String() string
String returns the string representation
type CreateInstanceProfileInput struct {
// The name of the instance profile to create.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// InstanceProfileName is a required field
InstanceProfileName *string `min:"1" type:"string" required:"true"`
// The path to the instance profile. For more information about paths, see IAM
// Identifiers (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the IAM User Guide.
//
// This parameter is optional. If it is not included, it defaults to a slash
// (/).
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of either a forward slash (/) by itself
// or a string that must begin and end with forward slashes. In addition, it
// can contain any ASCII character from the ! (\u0021) through the DEL character
// (\u007F), including most punctuation characters, digits, and upper and lowercased
// letters.
Path *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
func (s CreateInstanceProfileInput) GoString() string
GoString returns the string representation
func (s *CreateInstanceProfileInput) SetInstanceProfileName(v string) *CreateInstanceProfileInput
SetInstanceProfileName sets the InstanceProfileName field's value.
func (s *CreateInstanceProfileInput) SetPath(v string) *CreateInstanceProfileInput
SetPath sets the Path field's value.
func (s CreateInstanceProfileInput) String() string
String returns the string representation
func (s *CreateInstanceProfileInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateInstanceProfileOutput struct {
// A structure containing details about the new instance profile.
//
// InstanceProfile is a required field
InstanceProfile *InstanceProfile `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful CreateInstanceProfile request.
func (s CreateInstanceProfileOutput) GoString() string
GoString returns the string representation
func (s *CreateInstanceProfileOutput) SetInstanceProfile(v *InstanceProfile) *CreateInstanceProfileOutput
SetInstanceProfile sets the InstanceProfile field's value.
func (s CreateInstanceProfileOutput) String() string
String returns the string representation
type CreateLoginProfileInput struct {
// The new password for the user.
//
// The regex pattern (http://wikipedia.org/wiki/regex) that is used to validate
// this parameter is a string of characters. That string can include almost
// any printable ASCII character from the space (\u0020) through the end of
// the ASCII character range (\u00FF). You can also include the tab (\u0009),
// line feed (\u000A), and carriage return (\u000D) characters. Any of these
// characters are valid in a password. However, many tools, such as the AWS
// Management Console, might restrict the ability to type certain characters
// because they have special meaning within that tool.
//
// Password is a required field
Password *string `min:"1" type:"string" required:"true" sensitive:"true"`
// Specifies whether the user is required to set a new password on next sign-in.
PasswordResetRequired *bool `type:"boolean"`
// The name of the IAM user to create a password for. The user must already
// exist.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s CreateLoginProfileInput) GoString() string
GoString returns the string representation
func (s *CreateLoginProfileInput) SetPassword(v string) *CreateLoginProfileInput
SetPassword sets the Password field's value.
func (s *CreateLoginProfileInput) SetPasswordResetRequired(v bool) *CreateLoginProfileInput
SetPasswordResetRequired sets the PasswordResetRequired field's value.
func (s *CreateLoginProfileInput) SetUserName(v string) *CreateLoginProfileInput
SetUserName sets the UserName field's value.
func (s CreateLoginProfileInput) String() string
String returns the string representation
func (s *CreateLoginProfileInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateLoginProfileOutput struct {
// A structure containing the user name and password create date.
//
// LoginProfile is a required field
LoginProfile *LoginProfile `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful CreateLoginProfile request.
func (s CreateLoginProfileOutput) GoString() string
GoString returns the string representation
func (s *CreateLoginProfileOutput) SetLoginProfile(v *LoginProfile) *CreateLoginProfileOutput
SetLoginProfile sets the LoginProfile field's value.
func (s CreateLoginProfileOutput) String() string
String returns the string representation
type CreateOpenIDConnectProviderInput struct {
// A list of client IDs (also known as audiences). When a mobile or web app
// registers with an OpenID Connect provider, they establish a value that identifies
// the application. (This is the value that's sent as the client_id parameter
// on OAuth requests.)
//
// You can register multiple client IDs with the same provider. For example,
// you might have multiple applications that use the same OIDC provider. You
// cannot register more than 100 client IDs with a single IAM OIDC provider.
//
// There is no defined format for a client ID. The CreateOpenIDConnectProviderRequest
// operation accepts client IDs up to 255 characters long.
ClientIDList []*string `type:"list"`
// A list of server certificate thumbprints for the OpenID Connect (OIDC) identity
// provider's server certificates. Typically this list includes only one entry.
// However, IAM lets you have up to five thumbprints for an OIDC provider. This
// lets you maintain multiple thumbprints if the identity provider is rotating
// certificates.
//
// The server certificate thumbprint is the hex-encoded SHA-1 hash value of
// the X.509 certificate used by the domain where the OpenID Connect provider
// makes its keys available. It is always a 40-character string.
//
// You must provide at least one thumbprint when creating an IAM OIDC provider.
// For example, assume that the OIDC provider is server.example.com and the
// provider stores its keys at https://keys.server.example.com/openid-connect.
// In that case, the thumbprint string would be the hex-encoded SHA-1 hash value
// of the certificate used by https://keys.server.example.com.
//
// For more information about obtaining the OIDC provider's thumbprint, see
// Obtaining the Thumbprint for an OpenID Connect Provider (https://docs.aws.amazon.com/IAM/latest/UserGuide/identity-providers-oidc-obtain-thumbprint.html)
// in the IAM User Guide.
//
// ThumbprintList is a required field
ThumbprintList []*string `type:"list" required:"true"`
// The URL of the identity provider. The URL must begin with https:// and should
// correspond to the iss claim in the provider's OpenID Connect ID tokens. Per
// the OIDC standard, path components are allowed but query parameters are not.
// Typically the URL consists of only a hostname, like https://server.example.org
// or https://example.com.
//
// You cannot register the same provider multiple times in a single AWS account.
// If you try to submit a URL that has already been used for an OpenID Connect
// provider in the AWS account, you will get an error.
//
// Url is a required field
Url *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s CreateOpenIDConnectProviderInput) GoString() string
GoString returns the string representation
func (s *CreateOpenIDConnectProviderInput) SetClientIDList(v []*string) *CreateOpenIDConnectProviderInput
SetClientIDList sets the ClientIDList field's value.
func (s *CreateOpenIDConnectProviderInput) SetThumbprintList(v []*string) *CreateOpenIDConnectProviderInput
SetThumbprintList sets the ThumbprintList field's value.
func (s *CreateOpenIDConnectProviderInput) SetUrl(v string) *CreateOpenIDConnectProviderInput
SetUrl sets the Url field's value.
func (s CreateOpenIDConnectProviderInput) String() string
String returns the string representation
func (s *CreateOpenIDConnectProviderInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateOpenIDConnectProviderOutput struct {
// The Amazon Resource Name (ARN) of the new IAM OpenID Connect provider that
// is created. For more information, see OpenIDConnectProviderListEntry.
OpenIDConnectProviderArn *string `min:"20" type:"string"`
// contains filtered or unexported fields
}
Contains the response to a successful CreateOpenIDConnectProvider request.
func (s CreateOpenIDConnectProviderOutput) GoString() string
GoString returns the string representation
func (s *CreateOpenIDConnectProviderOutput) SetOpenIDConnectProviderArn(v string) *CreateOpenIDConnectProviderOutput
SetOpenIDConnectProviderArn sets the OpenIDConnectProviderArn field's value.
func (s CreateOpenIDConnectProviderOutput) String() string
String returns the string representation
type CreatePolicyInput struct {
// A friendly description of the policy.
//
// Typically used to store information about the permissions defined in the
// policy. For example, "Grants access to production DynamoDB tables."
//
// The policy description is immutable. After a value is assigned, it cannot
// be changed.
Description *string `type:"string"`
// The path for the policy.
//
// For more information about paths, see IAM Identifiers (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the IAM User Guide.
//
// This parameter is optional. If it is not included, it defaults to a slash
// (/).
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of either a forward slash (/) by itself
// or a string that must begin and end with forward slashes. In addition, it
// can contain any ASCII character from the ! (\u0021) through the DEL character
// (\u007F), including most punctuation characters, digits, and upper and lowercased
// letters.
Path *string `min:"1" type:"string"`
// The JSON policy document that you want to use as the content for the new
// policy.
//
// You must provide policies in JSON format in IAM. However, for AWS CloudFormation
// templates formatted in YAML, you can provide the policy in JSON or YAML format.
// AWS CloudFormation always converts a YAML policy to JSON format before submitting
// it to IAM.
//
// The regex pattern (http://wikipedia.org/wiki/regex) used to validate this
// parameter is a string of characters consisting of the following:
//
// * Any printable ASCII character ranging from the space character (\u0020)
// through the end of the ASCII character range
//
// * The printable characters in the Basic Latin and Latin-1 Supplement character
// set (through \u00FF)
//
// * The special characters tab (\u0009), line feed (\u000A), and carriage
// return (\u000D)
//
// PolicyDocument is a required field
PolicyDocument *string `min:"1" type:"string" required:"true"`
// The friendly name of the policy.
//
// IAM user, group, role, and policy names must be unique within the account.
// Names are not distinguished by case. For example, you cannot create resources
// named both "MyResource" and "myresource".
//
// PolicyName is a required field
PolicyName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s CreatePolicyInput) GoString() string
GoString returns the string representation
func (s *CreatePolicyInput) SetDescription(v string) *CreatePolicyInput
SetDescription sets the Description field's value.
func (s *CreatePolicyInput) SetPath(v string) *CreatePolicyInput
SetPath sets the Path field's value.
func (s *CreatePolicyInput) SetPolicyDocument(v string) *CreatePolicyInput
SetPolicyDocument sets the PolicyDocument field's value.
func (s *CreatePolicyInput) SetPolicyName(v string) *CreatePolicyInput
SetPolicyName sets the PolicyName field's value.
func (s CreatePolicyInput) String() string
String returns the string representation
func (s *CreatePolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreatePolicyOutput struct {
// A structure containing details about the new policy.
Policy *Policy `type:"structure"`
// contains filtered or unexported fields
}
Contains the response to a successful CreatePolicy request.
func (s CreatePolicyOutput) GoString() string
GoString returns the string representation
func (s *CreatePolicyOutput) SetPolicy(v *Policy) *CreatePolicyOutput
SetPolicy sets the Policy field's value.
func (s CreatePolicyOutput) String() string
String returns the string representation
type CreatePolicyVersionInput struct {
// The Amazon Resource Name (ARN) of the IAM policy to which you want to add
// a new version.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicyArn is a required field
PolicyArn *string `min:"20" type:"string" required:"true"`
// The JSON policy document that you want to use as the content for this new
// version of the policy.
//
// You must provide policies in JSON format in IAM. However, for AWS CloudFormation
// templates formatted in YAML, you can provide the policy in JSON or YAML format.
// AWS CloudFormation always converts a YAML policy to JSON format before submitting
// it to IAM.
//
// The regex pattern (http://wikipedia.org/wiki/regex) used to validate this
// parameter is a string of characters consisting of the following:
//
// * Any printable ASCII character ranging from the space character (\u0020)
// through the end of the ASCII character range
//
// * The printable characters in the Basic Latin and Latin-1 Supplement character
// set (through \u00FF)
//
// * The special characters tab (\u0009), line feed (\u000A), and carriage
// return (\u000D)
//
// PolicyDocument is a required field
PolicyDocument *string `min:"1" type:"string" required:"true"`
// Specifies whether to set this version as the policy's default version.
//
// When this parameter is true, the new policy version becomes the operative
// version. That is, it becomes the version that is in effect for the IAM users,
// groups, and roles that the policy is attached to.
//
// For more information about managed policy versions, see Versioning for Managed
// Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html)
// in the IAM User Guide.
SetAsDefault *bool `type:"boolean"`
// contains filtered or unexported fields
}
func (s CreatePolicyVersionInput) GoString() string
GoString returns the string representation
func (s *CreatePolicyVersionInput) SetPolicyArn(v string) *CreatePolicyVersionInput
SetPolicyArn sets the PolicyArn field's value.
func (s *CreatePolicyVersionInput) SetPolicyDocument(v string) *CreatePolicyVersionInput
SetPolicyDocument sets the PolicyDocument field's value.
func (s *CreatePolicyVersionInput) SetSetAsDefault(v bool) *CreatePolicyVersionInput
SetSetAsDefault sets the SetAsDefault field's value.
func (s CreatePolicyVersionInput) String() string
String returns the string representation
func (s *CreatePolicyVersionInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreatePolicyVersionOutput struct {
// A structure containing details about the new policy version.
PolicyVersion *PolicyVersion `type:"structure"`
// contains filtered or unexported fields
}
Contains the response to a successful CreatePolicyVersion request.
func (s CreatePolicyVersionOutput) GoString() string
GoString returns the string representation
func (s *CreatePolicyVersionOutput) SetPolicyVersion(v *PolicyVersion) *CreatePolicyVersionOutput
SetPolicyVersion sets the PolicyVersion field's value.
func (s CreatePolicyVersionOutput) String() string
String returns the string representation
type CreateRoleInput struct {
// The trust relationship policy document that grants an entity permission to
// assume the role.
//
// in IAM, you must provide a JSON policy that has been converted to a string.
// However, for AWS CloudFormation templates formatted in YAML, you can provide
// the policy in JSON or YAML format. AWS CloudFormation always converts a YAML
// policy to JSON format before submitting it to IAM.
//
// The regex pattern (http://wikipedia.org/wiki/regex) used to validate this
// parameter is a string of characters consisting of the following:
//
// * Any printable ASCII character ranging from the space character (\u0020)
// through the end of the ASCII character range
//
// * The printable characters in the Basic Latin and Latin-1 Supplement character
// set (through \u00FF)
//
// * The special characters tab (\u0009), line feed (\u000A), and carriage
// return (\u000D)
//
// Upon success, the response includes the same trust policy as a URL-encoded
// JSON string.
//
// AssumeRolePolicyDocument is a required field
AssumeRolePolicyDocument *string `min:"1" type:"string" required:"true"`
// A description of the role.
Description *string `type:"string"`
// The maximum session duration (in seconds) that you want to set for the specified
// role. If you do not specify a value for this setting, the default maximum
// of one hour is applied. This setting can have a value from 1 hour to 12 hours.
//
// Anyone who assumes the role from the AWS CLI or API can use the DurationSeconds
// API parameter or the duration-seconds CLI parameter to request a longer session.
// The MaxSessionDuration setting determines the maximum duration that can be
// requested using the DurationSeconds parameter. If users don't specify a value
// for the DurationSeconds parameter, their security credentials are valid for
// one hour by default. This applies when you use the AssumeRole* API operations
// or the assume-role* CLI operations but does not apply when you use those
// operations to create a console URL. For more information, see Using IAM Roles
// (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use.html) in the
// IAM User Guide.
MaxSessionDuration *int64 `min:"3600" type:"integer"`
// The path to the role. For more information about paths, see IAM Identifiers
// (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the IAM User Guide.
//
// This parameter is optional. If it is not included, it defaults to a slash
// (/).
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of either a forward slash (/) by itself
// or a string that must begin and end with forward slashes. In addition, it
// can contain any ASCII character from the ! (\u0021) through the DEL character
// (\u007F), including most punctuation characters, digits, and upper and lowercased
// letters.
Path *string `min:"1" type:"string"`
// The ARN of the policy that is used to set the permissions boundary for the
// role.
PermissionsBoundary *string `min:"20" type:"string"`
// The name of the role to create.
//
// IAM user, group, role, and policy names must be unique within the account.
// Names are not distinguished by case. For example, you cannot create resources
// named both "MyResource" and "myresource".
//
// RoleName is a required field
RoleName *string `min:"1" type:"string" required:"true"`
// A list of tags that you want to attach to the newly created role. Each tag
// consists of a key name and an associated value. For more information about
// tagging, see Tagging IAM Identities (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html)
// in the IAM User Guide.
//
// If any one of the tags is invalid or if you exceed the allowed number of
// tags per role, then the entire request fails and the role is not created.
Tags []*Tag `type:"list"`
// contains filtered or unexported fields
}
func (s CreateRoleInput) GoString() string
GoString returns the string representation
func (s *CreateRoleInput) SetAssumeRolePolicyDocument(v string) *CreateRoleInput
SetAssumeRolePolicyDocument sets the AssumeRolePolicyDocument field's value.
func (s *CreateRoleInput) SetDescription(v string) *CreateRoleInput
SetDescription sets the Description field's value.
func (s *CreateRoleInput) SetMaxSessionDuration(v int64) *CreateRoleInput
SetMaxSessionDuration sets the MaxSessionDuration field's value.
func (s *CreateRoleInput) SetPath(v string) *CreateRoleInput
SetPath sets the Path field's value.
func (s *CreateRoleInput) SetPermissionsBoundary(v string) *CreateRoleInput
SetPermissionsBoundary sets the PermissionsBoundary field's value.
func (s *CreateRoleInput) SetRoleName(v string) *CreateRoleInput
SetRoleName sets the RoleName field's value.
func (s *CreateRoleInput) SetTags(v []*Tag) *CreateRoleInput
SetTags sets the Tags field's value.
func (s CreateRoleInput) String() string
String returns the string representation
func (s *CreateRoleInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateRoleOutput struct {
// A structure containing details about the new role.
//
// Role is a required field
Role *Role `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful CreateRole request.
func (s CreateRoleOutput) GoString() string
GoString returns the string representation
func (s *CreateRoleOutput) SetRole(v *Role) *CreateRoleOutput
SetRole sets the Role field's value.
func (s CreateRoleOutput) String() string
String returns the string representation
type CreateSAMLProviderInput struct {
// The name of the provider to create.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// Name is a required field
Name *string `min:"1" type:"string" required:"true"`
// An XML document generated by an identity provider (IdP) that supports SAML
// 2.0. The document includes the issuer's name, expiration information, and
// keys that can be used to validate the SAML authentication response (assertions)
// that are received from the IdP. You must generate the metadata document using
// the identity management software that is used as your organization's IdP.
//
// For more information, see About SAML 2.0-based Federation (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html)
// in the IAM User Guide
//
// SAMLMetadataDocument is a required field
SAMLMetadataDocument *string `min:"1000" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s CreateSAMLProviderInput) GoString() string
GoString returns the string representation
func (s *CreateSAMLProviderInput) SetName(v string) *CreateSAMLProviderInput
SetName sets the Name field's value.
func (s *CreateSAMLProviderInput) SetSAMLMetadataDocument(v string) *CreateSAMLProviderInput
SetSAMLMetadataDocument sets the SAMLMetadataDocument field's value.
func (s CreateSAMLProviderInput) String() string
String returns the string representation
func (s *CreateSAMLProviderInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateSAMLProviderOutput struct {
// The Amazon Resource Name (ARN) of the new SAML provider resource in IAM.
SAMLProviderArn *string `min:"20" type:"string"`
// contains filtered or unexported fields
}
Contains the response to a successful CreateSAMLProvider request.
func (s CreateSAMLProviderOutput) GoString() string
GoString returns the string representation
func (s *CreateSAMLProviderOutput) SetSAMLProviderArn(v string) *CreateSAMLProviderOutput
SetSAMLProviderArn sets the SAMLProviderArn field's value.
func (s CreateSAMLProviderOutput) String() string
String returns the string representation
type CreateServiceLinkedRoleInput struct {
// The service principal for the AWS service to which this role is attached.
// You use a string similar to a URL but without the http:// in front. For example:
// elasticbeanstalk.amazonaws.com.
//
// Service principals are unique and case-sensitive. To find the exact service
// principal for your service-linked role, see AWS Services That Work with IAM
// (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_aws-services-that-work-with-iam.html)
// in the IAM User Guide. Look for the services that have Yes in the Service-Linked
// Role column. Choose the Yes link to view the service-linked role documentation
// for that service.
//
// AWSServiceName is a required field
AWSServiceName *string `min:"1" type:"string" required:"true"`
// A string that you provide, which is combined with the service-provided prefix
// to form the complete role name. If you make multiple requests for the same
// service, then you must supply a different CustomSuffix for each request.
// Otherwise the request fails with a duplicate role name error. For example,
// you could add -1 or -debug to the suffix.
//
// Some services do not support the CustomSuffix parameter. If you provide an
// optional suffix and the operation fails, try the operation again without
// the suffix.
CustomSuffix *string `min:"1" type:"string"`
// The description of the role.
Description *string `type:"string"`
// contains filtered or unexported fields
}
func (s CreateServiceLinkedRoleInput) GoString() string
GoString returns the string representation
func (s *CreateServiceLinkedRoleInput) SetAWSServiceName(v string) *CreateServiceLinkedRoleInput
SetAWSServiceName sets the AWSServiceName field's value.
func (s *CreateServiceLinkedRoleInput) SetCustomSuffix(v string) *CreateServiceLinkedRoleInput
SetCustomSuffix sets the CustomSuffix field's value.
func (s *CreateServiceLinkedRoleInput) SetDescription(v string) *CreateServiceLinkedRoleInput
SetDescription sets the Description field's value.
func (s CreateServiceLinkedRoleInput) String() string
String returns the string representation
func (s *CreateServiceLinkedRoleInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateServiceLinkedRoleOutput struct {
// A Role object that contains details about the newly created role.
Role *Role `type:"structure"`
// contains filtered or unexported fields
}
func (s CreateServiceLinkedRoleOutput) GoString() string
GoString returns the string representation
func (s *CreateServiceLinkedRoleOutput) SetRole(v *Role) *CreateServiceLinkedRoleOutput
SetRole sets the Role field's value.
func (s CreateServiceLinkedRoleOutput) String() string
String returns the string representation
type CreateServiceSpecificCredentialInput struct {
// The name of the AWS service that is to be associated with the credentials.
// The service you specify here is the only service that can be accessed using
// these credentials.
//
// ServiceName is a required field
ServiceName *string `type:"string" required:"true"`
// The name of the IAM user that is to be associated with the credentials. The
// new service-specific credentials have the same permissions as the associated
// user except that they can be used only to access the specified service.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s CreateServiceSpecificCredentialInput) GoString() string
GoString returns the string representation
func (s *CreateServiceSpecificCredentialInput) SetServiceName(v string) *CreateServiceSpecificCredentialInput
SetServiceName sets the ServiceName field's value.
func (s *CreateServiceSpecificCredentialInput) SetUserName(v string) *CreateServiceSpecificCredentialInput
SetUserName sets the UserName field's value.
func (s CreateServiceSpecificCredentialInput) String() string
String returns the string representation
func (s *CreateServiceSpecificCredentialInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateServiceSpecificCredentialOutput struct {
// A structure that contains information about the newly created service-specific
// credential.
//
// This is the only time that the password for this credential set is available.
// It cannot be recovered later. Instead, you must reset the password with ResetServiceSpecificCredential.
ServiceSpecificCredential *ServiceSpecificCredential `type:"structure"`
// contains filtered or unexported fields
}
func (s CreateServiceSpecificCredentialOutput) GoString() string
GoString returns the string representation
func (s *CreateServiceSpecificCredentialOutput) SetServiceSpecificCredential(v *ServiceSpecificCredential) *CreateServiceSpecificCredentialOutput
SetServiceSpecificCredential sets the ServiceSpecificCredential field's value.
func (s CreateServiceSpecificCredentialOutput) String() string
String returns the string representation
type CreateUserInput struct {
// The path for the user name. For more information about paths, see IAM Identifiers
// (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the IAM User Guide.
//
// This parameter is optional. If it is not included, it defaults to a slash
// (/).
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of either a forward slash (/) by itself
// or a string that must begin and end with forward slashes. In addition, it
// can contain any ASCII character from the ! (\u0021) through the DEL character
// (\u007F), including most punctuation characters, digits, and upper and lowercased
// letters.
Path *string `min:"1" type:"string"`
// The ARN of the policy that is used to set the permissions boundary for the
// user.
PermissionsBoundary *string `min:"20" type:"string"`
// A list of tags that you want to attach to the newly created user. Each tag
// consists of a key name and an associated value. For more information about
// tagging, see Tagging IAM Identities (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html)
// in the IAM User Guide.
//
// If any one of the tags is invalid or if you exceed the allowed number of
// tags per user, then the entire request fails and the user is not created.
Tags []*Tag `type:"list"`
// The name of the user to create.
//
// IAM user, group, role, and policy names must be unique within the account.
// Names are not distinguished by case. For example, you cannot create resources
// named both "MyResource" and "myresource".
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s CreateUserInput) GoString() string
GoString returns the string representation
func (s *CreateUserInput) SetPath(v string) *CreateUserInput
SetPath sets the Path field's value.
func (s *CreateUserInput) SetPermissionsBoundary(v string) *CreateUserInput
SetPermissionsBoundary sets the PermissionsBoundary field's value.
func (s *CreateUserInput) SetTags(v []*Tag) *CreateUserInput
SetTags sets the Tags field's value.
func (s *CreateUserInput) SetUserName(v string) *CreateUserInput
SetUserName sets the UserName field's value.
func (s CreateUserInput) String() string
String returns the string representation
func (s *CreateUserInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateUserOutput struct {
// A structure with details about the new IAM user.
User *User `type:"structure"`
// contains filtered or unexported fields
}
Contains the response to a successful CreateUser request.
func (s CreateUserOutput) GoString() string
GoString returns the string representation
func (s *CreateUserOutput) SetUser(v *User) *CreateUserOutput
SetUser sets the User field's value.
func (s CreateUserOutput) String() string
String returns the string representation
type CreateVirtualMFADeviceInput struct {
// The path for the virtual MFA device. For more information about paths, see
// IAM Identifiers (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the IAM User Guide.
//
// This parameter is optional. If it is not included, it defaults to a slash
// (/).
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of either a forward slash (/) by itself
// or a string that must begin and end with forward slashes. In addition, it
// can contain any ASCII character from the ! (\u0021) through the DEL character
// (\u007F), including most punctuation characters, digits, and upper and lowercased
// letters.
Path *string `min:"1" type:"string"`
// The name of the virtual MFA device. Use with path to uniquely identify a
// virtual MFA device.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// VirtualMFADeviceName is a required field
VirtualMFADeviceName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s CreateVirtualMFADeviceInput) GoString() string
GoString returns the string representation
func (s *CreateVirtualMFADeviceInput) SetPath(v string) *CreateVirtualMFADeviceInput
SetPath sets the Path field's value.
func (s *CreateVirtualMFADeviceInput) SetVirtualMFADeviceName(v string) *CreateVirtualMFADeviceInput
SetVirtualMFADeviceName sets the VirtualMFADeviceName field's value.
func (s CreateVirtualMFADeviceInput) String() string
String returns the string representation
func (s *CreateVirtualMFADeviceInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type CreateVirtualMFADeviceOutput struct {
// A structure containing details about the new virtual MFA device.
//
// VirtualMFADevice is a required field
VirtualMFADevice *VirtualMFADevice `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful CreateVirtualMFADevice request.
func (s CreateVirtualMFADeviceOutput) GoString() string
GoString returns the string representation
func (s *CreateVirtualMFADeviceOutput) SetVirtualMFADevice(v *VirtualMFADevice) *CreateVirtualMFADeviceOutput
SetVirtualMFADevice sets the VirtualMFADevice field's value.
func (s CreateVirtualMFADeviceOutput) String() string
String returns the string representation
type DeactivateMFADeviceInput struct {
// The serial number that uniquely identifies the MFA device. For virtual MFA
// devices, the serial number is the device ARN.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: =,.@:/-
//
// SerialNumber is a required field
SerialNumber *string `min:"9" type:"string" required:"true"`
// The name of the user whose MFA device you want to deactivate.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeactivateMFADeviceInput) GoString() string
GoString returns the string representation
func (s *DeactivateMFADeviceInput) SetSerialNumber(v string) *DeactivateMFADeviceInput
SetSerialNumber sets the SerialNumber field's value.
func (s *DeactivateMFADeviceInput) SetUserName(v string) *DeactivateMFADeviceInput
SetUserName sets the UserName field's value.
func (s DeactivateMFADeviceInput) String() string
String returns the string representation
func (s *DeactivateMFADeviceInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeactivateMFADeviceOutput struct {
// contains filtered or unexported fields
}
func (s DeactivateMFADeviceOutput) GoString() string
GoString returns the string representation
func (s DeactivateMFADeviceOutput) String() string
String returns the string representation
type DeleteAccessKeyInput struct {
// The access key ID for the access key ID and secret access key you want to
// delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters that can consist of any upper or lowercased letter
// or digit.
//
// AccessKeyId is a required field
AccessKeyId *string `min:"16" type:"string" required:"true"`
// The name of the user whose access key pair you want to delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
UserName *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
func (s DeleteAccessKeyInput) GoString() string
GoString returns the string representation
func (s *DeleteAccessKeyInput) SetAccessKeyId(v string) *DeleteAccessKeyInput
SetAccessKeyId sets the AccessKeyId field's value.
func (s *DeleteAccessKeyInput) SetUserName(v string) *DeleteAccessKeyInput
SetUserName sets the UserName field's value.
func (s DeleteAccessKeyInput) String() string
String returns the string representation
func (s *DeleteAccessKeyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteAccessKeyOutput struct {
// contains filtered or unexported fields
}
func (s DeleteAccessKeyOutput) GoString() string
GoString returns the string representation
func (s DeleteAccessKeyOutput) String() string
String returns the string representation
type DeleteAccountAliasInput struct {
// The name of the account alias to delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of lowercase letters, digits, and dashes.
// You cannot start or finish with a dash, nor can you have two dashes in a
// row.
//
// AccountAlias is a required field
AccountAlias *string `min:"3" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteAccountAliasInput) GoString() string
GoString returns the string representation
func (s *DeleteAccountAliasInput) SetAccountAlias(v string) *DeleteAccountAliasInput
SetAccountAlias sets the AccountAlias field's value.
func (s DeleteAccountAliasInput) String() string
String returns the string representation
func (s *DeleteAccountAliasInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteAccountAliasOutput struct {
// contains filtered or unexported fields
}
func (s DeleteAccountAliasOutput) GoString() string
GoString returns the string representation
func (s DeleteAccountAliasOutput) String() string
String returns the string representation
type DeleteAccountPasswordPolicyInput struct {
// contains filtered or unexported fields
}
func (s DeleteAccountPasswordPolicyInput) GoString() string
GoString returns the string representation
func (s DeleteAccountPasswordPolicyInput) String() string
String returns the string representation
type DeleteAccountPasswordPolicyOutput struct {
// contains filtered or unexported fields
}
func (s DeleteAccountPasswordPolicyOutput) GoString() string
GoString returns the string representation
func (s DeleteAccountPasswordPolicyOutput) String() string
String returns the string representation
type DeleteGroupInput struct {
// The name of the IAM group to delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// GroupName is a required field
GroupName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteGroupInput) GoString() string
GoString returns the string representation
func (s *DeleteGroupInput) SetGroupName(v string) *DeleteGroupInput
SetGroupName sets the GroupName field's value.
func (s DeleteGroupInput) String() string
String returns the string representation
func (s *DeleteGroupInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteGroupOutput struct {
// contains filtered or unexported fields
}
func (s DeleteGroupOutput) GoString() string
GoString returns the string representation
func (s DeleteGroupOutput) String() string
String returns the string representation
type DeleteGroupPolicyInput struct {
// The name (friendly name, not ARN) identifying the group that the policy is
// embedded in.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// GroupName is a required field
GroupName *string `min:"1" type:"string" required:"true"`
// The name identifying the policy document to delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// PolicyName is a required field
PolicyName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteGroupPolicyInput) GoString() string
GoString returns the string representation
func (s *DeleteGroupPolicyInput) SetGroupName(v string) *DeleteGroupPolicyInput
SetGroupName sets the GroupName field's value.
func (s *DeleteGroupPolicyInput) SetPolicyName(v string) *DeleteGroupPolicyInput
SetPolicyName sets the PolicyName field's value.
func (s DeleteGroupPolicyInput) String() string
String returns the string representation
func (s *DeleteGroupPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteGroupPolicyOutput struct {
// contains filtered or unexported fields
}
func (s DeleteGroupPolicyOutput) GoString() string
GoString returns the string representation
func (s DeleteGroupPolicyOutput) String() string
String returns the string representation
type DeleteInstanceProfileInput struct {
// The name of the instance profile to delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// InstanceProfileName is a required field
InstanceProfileName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteInstanceProfileInput) GoString() string
GoString returns the string representation
func (s *DeleteInstanceProfileInput) SetInstanceProfileName(v string) *DeleteInstanceProfileInput
SetInstanceProfileName sets the InstanceProfileName field's value.
func (s DeleteInstanceProfileInput) String() string
String returns the string representation
func (s *DeleteInstanceProfileInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteInstanceProfileOutput struct {
// contains filtered or unexported fields
}
func (s DeleteInstanceProfileOutput) GoString() string
GoString returns the string representation
func (s DeleteInstanceProfileOutput) String() string
String returns the string representation
type DeleteLoginProfileInput struct {
// The name of the user whose password you want to delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteLoginProfileInput) GoString() string
GoString returns the string representation
func (s *DeleteLoginProfileInput) SetUserName(v string) *DeleteLoginProfileInput
SetUserName sets the UserName field's value.
func (s DeleteLoginProfileInput) String() string
String returns the string representation
func (s *DeleteLoginProfileInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteLoginProfileOutput struct {
// contains filtered or unexported fields
}
func (s DeleteLoginProfileOutput) GoString() string
GoString returns the string representation
func (s DeleteLoginProfileOutput) String() string
String returns the string representation
type DeleteOpenIDConnectProviderInput struct {
// The Amazon Resource Name (ARN) of the IAM OpenID Connect provider resource
// object to delete. You can get a list of OpenID Connect provider resource
// ARNs by using the ListOpenIDConnectProviders operation.
//
// OpenIDConnectProviderArn is a required field
OpenIDConnectProviderArn *string `min:"20" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteOpenIDConnectProviderInput) GoString() string
GoString returns the string representation
func (s *DeleteOpenIDConnectProviderInput) SetOpenIDConnectProviderArn(v string) *DeleteOpenIDConnectProviderInput
SetOpenIDConnectProviderArn sets the OpenIDConnectProviderArn field's value.
func (s DeleteOpenIDConnectProviderInput) String() string
String returns the string representation
func (s *DeleteOpenIDConnectProviderInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteOpenIDConnectProviderOutput struct {
// contains filtered or unexported fields
}
func (s DeleteOpenIDConnectProviderOutput) GoString() string
GoString returns the string representation
func (s DeleteOpenIDConnectProviderOutput) String() string
String returns the string representation
type DeletePolicyInput struct {
// The Amazon Resource Name (ARN) of the IAM policy you want to delete.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicyArn is a required field
PolicyArn *string `min:"20" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeletePolicyInput) GoString() string
GoString returns the string representation
func (s *DeletePolicyInput) SetPolicyArn(v string) *DeletePolicyInput
SetPolicyArn sets the PolicyArn field's value.
func (s DeletePolicyInput) String() string
String returns the string representation
func (s *DeletePolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeletePolicyOutput struct {
// contains filtered or unexported fields
}
func (s DeletePolicyOutput) GoString() string
GoString returns the string representation
func (s DeletePolicyOutput) String() string
String returns the string representation
type DeletePolicyVersionInput struct {
// The Amazon Resource Name (ARN) of the IAM policy from which you want to delete
// a version.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicyArn is a required field
PolicyArn *string `min:"20" type:"string" required:"true"`
// The policy version to delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters that consists of the lowercase letter 'v' followed
// by one or two digits, and optionally followed by a period '.' and a string
// of letters and digits.
//
// For more information about managed policy versions, see Versioning for Managed
// Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html)
// in the IAM User Guide.
//
// VersionId is a required field
VersionId *string `type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeletePolicyVersionInput) GoString() string
GoString returns the string representation
func (s *DeletePolicyVersionInput) SetPolicyArn(v string) *DeletePolicyVersionInput
SetPolicyArn sets the PolicyArn field's value.
func (s *DeletePolicyVersionInput) SetVersionId(v string) *DeletePolicyVersionInput
SetVersionId sets the VersionId field's value.
func (s DeletePolicyVersionInput) String() string
String returns the string representation
func (s *DeletePolicyVersionInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeletePolicyVersionOutput struct {
// contains filtered or unexported fields
}
func (s DeletePolicyVersionOutput) GoString() string
GoString returns the string representation
func (s DeletePolicyVersionOutput) String() string
String returns the string representation
type DeleteRoleInput struct {
// The name of the role to delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// RoleName is a required field
RoleName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteRoleInput) GoString() string
GoString returns the string representation
func (s *DeleteRoleInput) SetRoleName(v string) *DeleteRoleInput
SetRoleName sets the RoleName field's value.
func (s DeleteRoleInput) String() string
String returns the string representation
func (s *DeleteRoleInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteRoleOutput struct {
// contains filtered or unexported fields
}
func (s DeleteRoleOutput) GoString() string
GoString returns the string representation
func (s DeleteRoleOutput) String() string
String returns the string representation
type DeleteRolePermissionsBoundaryInput struct {
// The name (friendly name, not ARN) of the IAM role from which you want to
// remove the permissions boundary.
//
// RoleName is a required field
RoleName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteRolePermissionsBoundaryInput) GoString() string
GoString returns the string representation
func (s *DeleteRolePermissionsBoundaryInput) SetRoleName(v string) *DeleteRolePermissionsBoundaryInput
SetRoleName sets the RoleName field's value.
func (s DeleteRolePermissionsBoundaryInput) String() string
String returns the string representation
func (s *DeleteRolePermissionsBoundaryInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteRolePermissionsBoundaryOutput struct {
// contains filtered or unexported fields
}
func (s DeleteRolePermissionsBoundaryOutput) GoString() string
GoString returns the string representation
func (s DeleteRolePermissionsBoundaryOutput) String() string
String returns the string representation
type DeleteRolePolicyInput struct {
// The name of the inline policy to delete from the specified IAM role.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// PolicyName is a required field
PolicyName *string `min:"1" type:"string" required:"true"`
// The name (friendly name, not ARN) identifying the role that the policy is
// embedded in.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// RoleName is a required field
RoleName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteRolePolicyInput) GoString() string
GoString returns the string representation
func (s *DeleteRolePolicyInput) SetPolicyName(v string) *DeleteRolePolicyInput
SetPolicyName sets the PolicyName field's value.
func (s *DeleteRolePolicyInput) SetRoleName(v string) *DeleteRolePolicyInput
SetRoleName sets the RoleName field's value.
func (s DeleteRolePolicyInput) String() string
String returns the string representation
func (s *DeleteRolePolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteRolePolicyOutput struct {
// contains filtered or unexported fields
}
func (s DeleteRolePolicyOutput) GoString() string
GoString returns the string representation
func (s DeleteRolePolicyOutput) String() string
String returns the string representation
type DeleteSAMLProviderInput struct {
// The Amazon Resource Name (ARN) of the SAML provider to delete.
//
// SAMLProviderArn is a required field
SAMLProviderArn *string `min:"20" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteSAMLProviderInput) GoString() string
GoString returns the string representation
func (s *DeleteSAMLProviderInput) SetSAMLProviderArn(v string) *DeleteSAMLProviderInput
SetSAMLProviderArn sets the SAMLProviderArn field's value.
func (s DeleteSAMLProviderInput) String() string
String returns the string representation
func (s *DeleteSAMLProviderInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteSAMLProviderOutput struct {
// contains filtered or unexported fields
}
func (s DeleteSAMLProviderOutput) GoString() string
GoString returns the string representation
func (s DeleteSAMLProviderOutput) String() string
String returns the string representation
type DeleteSSHPublicKeyInput struct {
// The unique identifier for the SSH public key.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters that can consist of any upper or lowercased letter
// or digit.
//
// SSHPublicKeyId is a required field
SSHPublicKeyId *string `min:"20" type:"string" required:"true"`
// The name of the IAM user associated with the SSH public key.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteSSHPublicKeyInput) GoString() string
GoString returns the string representation
func (s *DeleteSSHPublicKeyInput) SetSSHPublicKeyId(v string) *DeleteSSHPublicKeyInput
SetSSHPublicKeyId sets the SSHPublicKeyId field's value.
func (s *DeleteSSHPublicKeyInput) SetUserName(v string) *DeleteSSHPublicKeyInput
SetUserName sets the UserName field's value.
func (s DeleteSSHPublicKeyInput) String() string
String returns the string representation
func (s *DeleteSSHPublicKeyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteSSHPublicKeyOutput struct {
// contains filtered or unexported fields
}
func (s DeleteSSHPublicKeyOutput) GoString() string
GoString returns the string representation
func (s DeleteSSHPublicKeyOutput) String() string
String returns the string representation
type DeleteServerCertificateInput struct {
// The name of the server certificate you want to delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// ServerCertificateName is a required field
ServerCertificateName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteServerCertificateInput) GoString() string
GoString returns the string representation
func (s *DeleteServerCertificateInput) SetServerCertificateName(v string) *DeleteServerCertificateInput
SetServerCertificateName sets the ServerCertificateName field's value.
func (s DeleteServerCertificateInput) String() string
String returns the string representation
func (s *DeleteServerCertificateInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteServerCertificateOutput struct {
// contains filtered or unexported fields
}
func (s DeleteServerCertificateOutput) GoString() string
GoString returns the string representation
func (s DeleteServerCertificateOutput) String() string
String returns the string representation
type DeleteServiceLinkedRoleInput struct {
// The name of the service-linked role to be deleted.
//
// RoleName is a required field
RoleName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteServiceLinkedRoleInput) GoString() string
GoString returns the string representation
func (s *DeleteServiceLinkedRoleInput) SetRoleName(v string) *DeleteServiceLinkedRoleInput
SetRoleName sets the RoleName field's value.
func (s DeleteServiceLinkedRoleInput) String() string
String returns the string representation
func (s *DeleteServiceLinkedRoleInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteServiceLinkedRoleOutput struct {
// The deletion task identifier that you can use to check the status of the
// deletion. This identifier is returned in the format task/aws-service-role/<service-principal-name>/<role-name>/<task-uuid>.
//
// DeletionTaskId is a required field
DeletionTaskId *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteServiceLinkedRoleOutput) GoString() string
GoString returns the string representation
func (s *DeleteServiceLinkedRoleOutput) SetDeletionTaskId(v string) *DeleteServiceLinkedRoleOutput
SetDeletionTaskId sets the DeletionTaskId field's value.
func (s DeleteServiceLinkedRoleOutput) String() string
String returns the string representation
type DeleteServiceSpecificCredentialInput struct {
// The unique identifier of the service-specific credential. You can get this
// value by calling ListServiceSpecificCredentials.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters that can consist of any upper or lowercased letter
// or digit.
//
// ServiceSpecificCredentialId is a required field
ServiceSpecificCredentialId *string `min:"20" type:"string" required:"true"`
// The name of the IAM user associated with the service-specific credential.
// If this value is not specified, then the operation assumes the user whose
// credentials are used to call the operation.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
UserName *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
func (s DeleteServiceSpecificCredentialInput) GoString() string
GoString returns the string representation
func (s *DeleteServiceSpecificCredentialInput) SetServiceSpecificCredentialId(v string) *DeleteServiceSpecificCredentialInput
SetServiceSpecificCredentialId sets the ServiceSpecificCredentialId field's value.
func (s *DeleteServiceSpecificCredentialInput) SetUserName(v string) *DeleteServiceSpecificCredentialInput
SetUserName sets the UserName field's value.
func (s DeleteServiceSpecificCredentialInput) String() string
String returns the string representation
func (s *DeleteServiceSpecificCredentialInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteServiceSpecificCredentialOutput struct {
// contains filtered or unexported fields
}
func (s DeleteServiceSpecificCredentialOutput) GoString() string
GoString returns the string representation
func (s DeleteServiceSpecificCredentialOutput) String() string
String returns the string representation
type DeleteSigningCertificateInput struct {
// The ID of the signing certificate to delete.
//
// The format of this parameter, as described by its regex (http://wikipedia.org/wiki/regex)
// pattern, is a string of characters that can be upper- or lower-cased letters
// or digits.
//
// CertificateId is a required field
CertificateId *string `min:"24" type:"string" required:"true"`
// The name of the user the signing certificate belongs to.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
UserName *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
func (s DeleteSigningCertificateInput) GoString() string
GoString returns the string representation
func (s *DeleteSigningCertificateInput) SetCertificateId(v string) *DeleteSigningCertificateInput
SetCertificateId sets the CertificateId field's value.
func (s *DeleteSigningCertificateInput) SetUserName(v string) *DeleteSigningCertificateInput
SetUserName sets the UserName field's value.
func (s DeleteSigningCertificateInput) String() string
String returns the string representation
func (s *DeleteSigningCertificateInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteSigningCertificateOutput struct {
// contains filtered or unexported fields
}
func (s DeleteSigningCertificateOutput) GoString() string
GoString returns the string representation
func (s DeleteSigningCertificateOutput) String() string
String returns the string representation
type DeleteUserInput struct {
// The name of the user to delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteUserInput) GoString() string
GoString returns the string representation
func (s *DeleteUserInput) SetUserName(v string) *DeleteUserInput
SetUserName sets the UserName field's value.
func (s DeleteUserInput) String() string
String returns the string representation
func (s *DeleteUserInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteUserOutput struct {
// contains filtered or unexported fields
}
func (s DeleteUserOutput) GoString() string
GoString returns the string representation
func (s DeleteUserOutput) String() string
String returns the string representation
type DeleteUserPermissionsBoundaryInput struct {
// The name (friendly name, not ARN) of the IAM user from which you want to
// remove the permissions boundary.
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteUserPermissionsBoundaryInput) GoString() string
GoString returns the string representation
func (s *DeleteUserPermissionsBoundaryInput) SetUserName(v string) *DeleteUserPermissionsBoundaryInput
SetUserName sets the UserName field's value.
func (s DeleteUserPermissionsBoundaryInput) String() string
String returns the string representation
func (s *DeleteUserPermissionsBoundaryInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteUserPermissionsBoundaryOutput struct {
// contains filtered or unexported fields
}
func (s DeleteUserPermissionsBoundaryOutput) GoString() string
GoString returns the string representation
func (s DeleteUserPermissionsBoundaryOutput) String() string
String returns the string representation
type DeleteUserPolicyInput struct {
// The name identifying the policy document to delete.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// PolicyName is a required field
PolicyName *string `min:"1" type:"string" required:"true"`
// The name (friendly name, not ARN) identifying the user that the policy is
// embedded in.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteUserPolicyInput) GoString() string
GoString returns the string representation
func (s *DeleteUserPolicyInput) SetPolicyName(v string) *DeleteUserPolicyInput
SetPolicyName sets the PolicyName field's value.
func (s *DeleteUserPolicyInput) SetUserName(v string) *DeleteUserPolicyInput
SetUserName sets the UserName field's value.
func (s DeleteUserPolicyInput) String() string
String returns the string representation
func (s *DeleteUserPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteUserPolicyOutput struct {
// contains filtered or unexported fields
}
func (s DeleteUserPolicyOutput) GoString() string
GoString returns the string representation
func (s DeleteUserPolicyOutput) String() string
String returns the string representation
type DeleteVirtualMFADeviceInput struct {
// The serial number that uniquely identifies the MFA device. For virtual MFA
// devices, the serial number is the same as the ARN.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: =,.@:/-
//
// SerialNumber is a required field
SerialNumber *string `min:"9" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DeleteVirtualMFADeviceInput) GoString() string
GoString returns the string representation
func (s *DeleteVirtualMFADeviceInput) SetSerialNumber(v string) *DeleteVirtualMFADeviceInput
SetSerialNumber sets the SerialNumber field's value.
func (s DeleteVirtualMFADeviceInput) String() string
String returns the string representation
func (s *DeleteVirtualMFADeviceInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DeleteVirtualMFADeviceOutput struct {
// contains filtered or unexported fields
}
func (s DeleteVirtualMFADeviceOutput) GoString() string
GoString returns the string representation
func (s DeleteVirtualMFADeviceOutput) String() string
String returns the string representation
type DeletionTaskFailureReasonType struct {
// A short description of the reason that the service-linked role deletion failed.
Reason *string `type:"string"`
// A list of objects that contains details about the service-linked role deletion
// failure, if that information is returned by the service. If the service-linked
// role has active sessions or if any resources that were used by the role have
// not been deleted from the linked service, the role can't be deleted. This
// parameter includes a list of the resources that are associated with the role
// and the region in which the resources are being used.
RoleUsageList []*RoleUsageType `type:"list"`
// contains filtered or unexported fields
}
The reason that the service-linked role deletion failed.
This data type is used as a response element in the GetServiceLinkedRoleDeletionStatus operation.
func (s DeletionTaskFailureReasonType) GoString() string
GoString returns the string representation
func (s *DeletionTaskFailureReasonType) SetReason(v string) *DeletionTaskFailureReasonType
SetReason sets the Reason field's value.
func (s *DeletionTaskFailureReasonType) SetRoleUsageList(v []*RoleUsageType) *DeletionTaskFailureReasonType
SetRoleUsageList sets the RoleUsageList field's value.
func (s DeletionTaskFailureReasonType) String() string
String returns the string representation
type DetachGroupPolicyInput struct {
// The name (friendly name, not ARN) of the IAM group to detach the policy from.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// GroupName is a required field
GroupName *string `min:"1" type:"string" required:"true"`
// The Amazon Resource Name (ARN) of the IAM policy you want to detach.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicyArn is a required field
PolicyArn *string `min:"20" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DetachGroupPolicyInput) GoString() string
GoString returns the string representation
func (s *DetachGroupPolicyInput) SetGroupName(v string) *DetachGroupPolicyInput
SetGroupName sets the GroupName field's value.
func (s *DetachGroupPolicyInput) SetPolicyArn(v string) *DetachGroupPolicyInput
SetPolicyArn sets the PolicyArn field's value.
func (s DetachGroupPolicyInput) String() string
String returns the string representation
func (s *DetachGroupPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DetachGroupPolicyOutput struct {
// contains filtered or unexported fields
}
func (s DetachGroupPolicyOutput) GoString() string
GoString returns the string representation
func (s DetachGroupPolicyOutput) String() string
String returns the string representation
type DetachRolePolicyInput struct {
// The Amazon Resource Name (ARN) of the IAM policy you want to detach.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicyArn is a required field
PolicyArn *string `min:"20" type:"string" required:"true"`
// The name (friendly name, not ARN) of the IAM role to detach the policy from.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// RoleName is a required field
RoleName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DetachRolePolicyInput) GoString() string
GoString returns the string representation
func (s *DetachRolePolicyInput) SetPolicyArn(v string) *DetachRolePolicyInput
SetPolicyArn sets the PolicyArn field's value.
func (s *DetachRolePolicyInput) SetRoleName(v string) *DetachRolePolicyInput
SetRoleName sets the RoleName field's value.
func (s DetachRolePolicyInput) String() string
String returns the string representation
func (s *DetachRolePolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DetachRolePolicyOutput struct {
// contains filtered or unexported fields
}
func (s DetachRolePolicyOutput) GoString() string
GoString returns the string representation
func (s DetachRolePolicyOutput) String() string
String returns the string representation
type DetachUserPolicyInput struct {
// The Amazon Resource Name (ARN) of the IAM policy you want to detach.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicyArn is a required field
PolicyArn *string `min:"20" type:"string" required:"true"`
// The name (friendly name, not ARN) of the IAM user to detach the policy from.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s DetachUserPolicyInput) GoString() string
GoString returns the string representation
func (s *DetachUserPolicyInput) SetPolicyArn(v string) *DetachUserPolicyInput
SetPolicyArn sets the PolicyArn field's value.
func (s *DetachUserPolicyInput) SetUserName(v string) *DetachUserPolicyInput
SetUserName sets the UserName field's value.
func (s DetachUserPolicyInput) String() string
String returns the string representation
func (s *DetachUserPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type DetachUserPolicyOutput struct {
// contains filtered or unexported fields
}
func (s DetachUserPolicyOutput) GoString() string
GoString returns the string representation
func (s DetachUserPolicyOutput) String() string
String returns the string representation
type EnableMFADeviceInput struct {
// An authentication code emitted by the device.
//
// The format for this parameter is a string of six digits.
//
// Submit your request immediately after generating the authentication codes.
// If you generate the codes and then wait too long to submit the request, the
// MFA device successfully associates with the user but the MFA device becomes
// out of sync. This happens because time-based one-time passwords (TOTP) expire
// after a short period of time. If this happens, you can resync the device
// (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa_sync.html).
//
// AuthenticationCode1 is a required field
AuthenticationCode1 *string `min:"6" type:"string" required:"true"`
// A subsequent authentication code emitted by the device.
//
// The format for this parameter is a string of six digits.
//
// Submit your request immediately after generating the authentication codes.
// If you generate the codes and then wait too long to submit the request, the
// MFA device successfully associates with the user but the MFA device becomes
// out of sync. This happens because time-based one-time passwords (TOTP) expire
// after a short period of time. If this happens, you can resync the device
// (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa_sync.html).
//
// AuthenticationCode2 is a required field
AuthenticationCode2 *string `min:"6" type:"string" required:"true"`
// The serial number that uniquely identifies the MFA device. For virtual MFA
// devices, the serial number is the device ARN.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: =,.@:/-
//
// SerialNumber is a required field
SerialNumber *string `min:"9" type:"string" required:"true"`
// The name of the IAM user for whom you want to enable the MFA device.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s EnableMFADeviceInput) GoString() string
GoString returns the string representation
func (s *EnableMFADeviceInput) SetAuthenticationCode1(v string) *EnableMFADeviceInput
SetAuthenticationCode1 sets the AuthenticationCode1 field's value.
func (s *EnableMFADeviceInput) SetAuthenticationCode2(v string) *EnableMFADeviceInput
SetAuthenticationCode2 sets the AuthenticationCode2 field's value.
func (s *EnableMFADeviceInput) SetSerialNumber(v string) *EnableMFADeviceInput
SetSerialNumber sets the SerialNumber field's value.
func (s *EnableMFADeviceInput) SetUserName(v string) *EnableMFADeviceInput
SetUserName sets the UserName field's value.
func (s EnableMFADeviceInput) String() string
String returns the string representation
func (s *EnableMFADeviceInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type EnableMFADeviceOutput struct {
// contains filtered or unexported fields
}
func (s EnableMFADeviceOutput) GoString() string
GoString returns the string representation
func (s EnableMFADeviceOutput) String() string
String returns the string representation
type EntityDetails struct {
// The EntityInfo object that contains details about the entity (user or role).
//
// EntityInfo is a required field
EntityInfo *EntityInfo `type:"structure" required:"true"`
// The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601),
// when the authenticated entity last attempted to access AWS. AWS does not
// report unauthenticated requests.
//
// This field is null if no IAM entities attempted to access the service within
// the reporting period (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period).
LastAuthenticated *time.Time `type:"timestamp"`
// contains filtered or unexported fields
}
An object that contains details about when the IAM entities (users or roles) were last used in an attempt to access the specified AWS service.
This data type is a response element in the GetServiceLastAccessedDetailsWithEntities operation.
func (s EntityDetails) GoString() string
GoString returns the string representation
func (s *EntityDetails) SetEntityInfo(v *EntityInfo) *EntityDetails
SetEntityInfo sets the EntityInfo field's value.
func (s *EntityDetails) SetLastAuthenticated(v time.Time) *EntityDetails
SetLastAuthenticated sets the LastAuthenticated field's value.
func (s EntityDetails) String() string
String returns the string representation
type EntityInfo struct {
// The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources.
//
// For more information about ARNs, go to Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// Arn is a required field
Arn *string `min:"20" type:"string" required:"true"`
// The identifier of the entity (user or role).
//
// Id is a required field
Id *string `min:"16" type:"string" required:"true"`
// The name of the entity (user or role).
//
// Name is a required field
Name *string `min:"1" type:"string" required:"true"`
// The path to the entity (user or role). For more information about paths,
// see IAM Identifiers (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the Using IAM guide.
Path *string `min:"1" type:"string"`
// The type of entity (user or role).
//
// Type is a required field
Type *string `type:"string" required:"true" enum:"policyOwnerEntityType"`
// contains filtered or unexported fields
}
Contains details about the specified entity (user or role).
This data type is an element of the EntityDetails object.
func (s EntityInfo) GoString() string
GoString returns the string representation
func (s *EntityInfo) SetArn(v string) *EntityInfo
SetArn sets the Arn field's value.
func (s *EntityInfo) SetId(v string) *EntityInfo
SetId sets the Id field's value.
func (s *EntityInfo) SetName(v string) *EntityInfo
SetName sets the Name field's value.
func (s *EntityInfo) SetPath(v string) *EntityInfo
SetPath sets the Path field's value.
func (s *EntityInfo) SetType(v string) *EntityInfo
SetType sets the Type field's value.
func (s EntityInfo) String() string
String returns the string representation
type ErrorDetails struct {
// The error code associated with the operation failure.
//
// Code is a required field
Code *string `type:"string" required:"true"`
// Detailed information about the reason that the operation failed.
//
// Message is a required field
Message *string `type:"string" required:"true"`
// contains filtered or unexported fields
}
Contains information about the reason that the operation failed.
This data type is used as a response element in the GetServiceLastAccessedDetails operation and the GetServiceLastAccessedDetailsWithEntities operation.
func (s ErrorDetails) GoString() string
GoString returns the string representation
func (s *ErrorDetails) SetCode(v string) *ErrorDetails
SetCode sets the Code field's value.
func (s *ErrorDetails) SetMessage(v string) *ErrorDetails
SetMessage sets the Message field's value.
func (s ErrorDetails) String() string
String returns the string representation
type EvaluationResult struct {
// The name of the API operation tested on the indicated resource.
//
// EvalActionName is a required field
EvalActionName *string `min:"3" type:"string" required:"true"`
// The result of the simulation.
//
// EvalDecision is a required field
EvalDecision *string `type:"string" required:"true" enum:"PolicyEvaluationDecisionType"`
// Additional details about the results of the evaluation decision. When there
// are both IAM policies and resource policies, this parameter explains how
// each set of policies contributes to the final evaluation decision. When simulating
// cross-account access to a resource, both the resource-based policy and the
// caller's IAM policy must grant access. See How IAM Roles Differ from Resource-based
// Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_compare-resource-policies.html)
EvalDecisionDetails map[string]*string `type:"map"`
// The ARN of the resource that the indicated API operation was tested on.
EvalResourceName *string `min:"1" type:"string"`
// A list of the statements in the input policies that determine the result
// for this scenario. Remember that even if multiple statements allow the operation
// on the resource, if only one statement denies that operation, then the explicit
// deny overrides any allow. Inaddition, the deny statement is the only entry
// included in the result.
MatchedStatements []*Statement `type:"list"`
// A list of context keys that are required by the included input policies but
// that were not provided by one of the input parameters. This list is used
// when the resource in a simulation is "*", either explicitly, or when the
// ResourceArns parameter blank. If you include a list of resources, then any
// missing context values are instead included under the ResourceSpecificResults
// section. To discover the context keys used by a set of policies, you can
// call GetContextKeysForCustomPolicy or GetContextKeysForPrincipalPolicy.
MissingContextValues []*string `type:"list"`
// A structure that details how AWS Organizations and its service control policies
// affect the results of the simulation. Only applies if the simulated user's
// account is part of an organization.
OrganizationsDecisionDetail *OrganizationsDecisionDetail `type:"structure"`
// The individual results of the simulation of the API operation specified in
// EvalActionName on each resource.
ResourceSpecificResults []*ResourceSpecificResult `type:"list"`
// contains filtered or unexported fields
}
Contains the results of a simulation.
This data type is used by the return parameter of SimulateCustomPolicy and SimulatePrincipalPolicy .
func (s EvaluationResult) GoString() string
GoString returns the string representation
func (s *EvaluationResult) SetEvalActionName(v string) *EvaluationResult
SetEvalActionName sets the EvalActionName field's value.
func (s *EvaluationResult) SetEvalDecision(v string) *EvaluationResult
SetEvalDecision sets the EvalDecision field's value.
func (s *EvaluationResult) SetEvalDecisionDetails(v map[string]*string) *EvaluationResult
SetEvalDecisionDetails sets the EvalDecisionDetails field's value.
func (s *EvaluationResult) SetEvalResourceName(v string) *EvaluationResult
SetEvalResourceName sets the EvalResourceName field's value.
func (s *EvaluationResult) SetMatchedStatements(v []*Statement) *EvaluationResult
SetMatchedStatements sets the MatchedStatements field's value.
func (s *EvaluationResult) SetMissingContextValues(v []*string) *EvaluationResult
SetMissingContextValues sets the MissingContextValues field's value.
func (s *EvaluationResult) SetOrganizationsDecisionDetail(v *OrganizationsDecisionDetail) *EvaluationResult
SetOrganizationsDecisionDetail sets the OrganizationsDecisionDetail field's value.
func (s *EvaluationResult) SetResourceSpecificResults(v []*ResourceSpecificResult) *EvaluationResult
SetResourceSpecificResults sets the ResourceSpecificResults field's value.
func (s EvaluationResult) String() string
String returns the string representation
type GenerateCredentialReportInput struct {
// contains filtered or unexported fields
}
func (s GenerateCredentialReportInput) GoString() string
GoString returns the string representation
func (s GenerateCredentialReportInput) String() string
String returns the string representation
type GenerateCredentialReportOutput struct {
// Information about the credential report.
Description *string `type:"string"`
// Information about the state of the credential report.
State *string `type:"string" enum:"ReportStateType"`
// contains filtered or unexported fields
}
Contains the response to a successful GenerateCredentialReport request.
func (s GenerateCredentialReportOutput) GoString() string
GoString returns the string representation
func (s *GenerateCredentialReportOutput) SetDescription(v string) *GenerateCredentialReportOutput
SetDescription sets the Description field's value.
func (s *GenerateCredentialReportOutput) SetState(v string) *GenerateCredentialReportOutput
SetState sets the State field's value.
func (s GenerateCredentialReportOutput) String() string
String returns the string representation
type GenerateServiceLastAccessedDetailsInput struct {
// The ARN of the IAM resource (user, group, role, or managed policy) used to
// generate information about when the resource was last used in an attempt
// to access an AWS service.
//
// Arn is a required field
Arn *string `min:"20" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GenerateServiceLastAccessedDetailsInput) GoString() string
GoString returns the string representation
func (s *GenerateServiceLastAccessedDetailsInput) SetArn(v string) *GenerateServiceLastAccessedDetailsInput
SetArn sets the Arn field's value.
func (s GenerateServiceLastAccessedDetailsInput) String() string
String returns the string representation
func (s *GenerateServiceLastAccessedDetailsInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GenerateServiceLastAccessedDetailsOutput struct {
// The job ID that you can use in the GetServiceLastAccessedDetails or GetServiceLastAccessedDetailsWithEntities
// operations.
JobId *string `min:"36" type:"string"`
// contains filtered or unexported fields
}
func (s GenerateServiceLastAccessedDetailsOutput) GoString() string
GoString returns the string representation
func (s *GenerateServiceLastAccessedDetailsOutput) SetJobId(v string) *GenerateServiceLastAccessedDetailsOutput
SetJobId sets the JobId field's value.
func (s GenerateServiceLastAccessedDetailsOutput) String() string
String returns the string representation
type GetAccessKeyLastUsedInput struct {
// The identifier of an access key.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters that can consist of any upper or lowercased letter
// or digit.
//
// AccessKeyId is a required field
AccessKeyId *string `min:"16" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetAccessKeyLastUsedInput) GoString() string
GoString returns the string representation
func (s *GetAccessKeyLastUsedInput) SetAccessKeyId(v string) *GetAccessKeyLastUsedInput
SetAccessKeyId sets the AccessKeyId field's value.
func (s GetAccessKeyLastUsedInput) String() string
String returns the string representation
func (s *GetAccessKeyLastUsedInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetAccessKeyLastUsedOutput struct {
// Contains information about the last time the access key was used.
AccessKeyLastUsed *AccessKeyLastUsed `type:"structure"`
// The name of the AWS IAM user that owns this access key.
UserName *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
Contains the response to a successful GetAccessKeyLastUsed request. It is also returned as a member of the AccessKeyMetaData structure returned by the ListAccessKeys action.
func (s GetAccessKeyLastUsedOutput) GoString() string
GoString returns the string representation
func (s *GetAccessKeyLastUsedOutput) SetAccessKeyLastUsed(v *AccessKeyLastUsed) *GetAccessKeyLastUsedOutput
SetAccessKeyLastUsed sets the AccessKeyLastUsed field's value.
func (s *GetAccessKeyLastUsedOutput) SetUserName(v string) *GetAccessKeyLastUsedOutput
SetUserName sets the UserName field's value.
func (s GetAccessKeyLastUsedOutput) String() string
String returns the string representation
type GetAccountAuthorizationDetailsInput struct {
// A list of entity types used to filter the results. Only the entities that
// match the types you specify are included in the output. Use the value LocalManagedPolicy
// to include customer managed policies.
//
// The format for this parameter is a comma-separated (if more than one) list
// of strings. Each string value in the list must be one of the valid values
// listed below.
Filter []*string `type:"list"`
// Use this parameter only when paginating results and only after you receive
// a response indicating that the results are truncated. Set it to the value
// of the Marker element in the response that you received to indicate where
// the next call should start.
Marker *string `min:"1" type:"string"`
// Use this only when paginating results to indicate the maximum number of items
// you want in the response. If additional items exist beyond the maximum you
// specify, the IsTruncated response element is true.
//
// If you do not include this parameter, the number of items defaults to 100.
// Note that IAM might return fewer results, even when there are more results
// available. In that case, the IsTruncated response element returns true, and
// Marker contains a value to include in the subsequent call that tells the
// service where to continue from.
MaxItems *int64 `min:"1" type:"integer"`
// contains filtered or unexported fields
}
func (s GetAccountAuthorizationDetailsInput) GoString() string
GoString returns the string representation
func (s *GetAccountAuthorizationDetailsInput) SetFilter(v []*string) *GetAccountAuthorizationDetailsInput
SetFilter sets the Filter field's value.
func (s *GetAccountAuthorizationDetailsInput) SetMarker(v string) *GetAccountAuthorizationDetailsInput
SetMarker sets the Marker field's value.
func (s *GetAccountAuthorizationDetailsInput) SetMaxItems(v int64) *GetAccountAuthorizationDetailsInput
SetMaxItems sets the MaxItems field's value.
func (s GetAccountAuthorizationDetailsInput) String() string
String returns the string representation
func (s *GetAccountAuthorizationDetailsInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetAccountAuthorizationDetailsOutput struct {
// A list containing information about IAM groups.
GroupDetailList []*GroupDetail `type:"list"`
// A flag that indicates whether there are more items to return. If your results
// were truncated, you can make a subsequent pagination request using the Marker
// request parameter to retrieve more items. Note that IAM might return fewer
// than the MaxItems number of results even when there are more results available.
// We recommend that you check IsTruncated after every call to ensure that you
// receive all your results.
IsTruncated *bool `type:"boolean"`
// When IsTruncated is true, this element is present and contains the value
// to use for the Marker parameter in a subsequent pagination request.
Marker *string `type:"string"`
// A list containing information about managed policies.
Policies []*ManagedPolicyDetail `type:"list"`
// A list containing information about IAM roles.
RoleDetailList []*RoleDetail `type:"list"`
// A list containing information about IAM users.
UserDetailList []*UserDetail `type:"list"`
// contains filtered or unexported fields
}
Contains the response to a successful GetAccountAuthorizationDetails request.
func (s GetAccountAuthorizationDetailsOutput) GoString() string
GoString returns the string representation
func (s *GetAccountAuthorizationDetailsOutput) SetGroupDetailList(v []*GroupDetail) *GetAccountAuthorizationDetailsOutput
SetGroupDetailList sets the GroupDetailList field's value.
func (s *GetAccountAuthorizationDetailsOutput) SetIsTruncated(v bool) *GetAccountAuthorizationDetailsOutput
SetIsTruncated sets the IsTruncated field's value.
func (s *GetAccountAuthorizationDetailsOutput) SetMarker(v string) *GetAccountAuthorizationDetailsOutput
SetMarker sets the Marker field's value.
func (s *GetAccountAuthorizationDetailsOutput) SetPolicies(v []*ManagedPolicyDetail) *GetAccountAuthorizationDetailsOutput
SetPolicies sets the Policies field's value.
func (s *GetAccountAuthorizationDetailsOutput) SetRoleDetailList(v []*RoleDetail) *GetAccountAuthorizationDetailsOutput
SetRoleDetailList sets the RoleDetailList field's value.
func (s *GetAccountAuthorizationDetailsOutput) SetUserDetailList(v []*UserDetail) *GetAccountAuthorizationDetailsOutput
SetUserDetailList sets the UserDetailList field's value.
func (s GetAccountAuthorizationDetailsOutput) String() string
String returns the string representation
type GetAccountPasswordPolicyInput struct {
// contains filtered or unexported fields
}
func (s GetAccountPasswordPolicyInput) GoString() string
GoString returns the string representation
func (s GetAccountPasswordPolicyInput) String() string
String returns the string representation
type GetAccountPasswordPolicyOutput struct {
// A structure that contains details about the account's password policy.
//
// PasswordPolicy is a required field
PasswordPolicy *PasswordPolicy `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful GetAccountPasswordPolicy request.
func (s GetAccountPasswordPolicyOutput) GoString() string
GoString returns the string representation
func (s *GetAccountPasswordPolicyOutput) SetPasswordPolicy(v *PasswordPolicy) *GetAccountPasswordPolicyOutput
SetPasswordPolicy sets the PasswordPolicy field's value.
func (s GetAccountPasswordPolicyOutput) String() string
String returns the string representation
type GetAccountSummaryInput struct {
// contains filtered or unexported fields
}
func (s GetAccountSummaryInput) GoString() string
GoString returns the string representation
func (s GetAccountSummaryInput) String() string
String returns the string representation
type GetAccountSummaryOutput struct {
// A set of key–value pairs containing information about IAM entity usage
// and IAM quotas.
SummaryMap map[string]*int64 `type:"map"`
// contains filtered or unexported fields
}
Contains the response to a successful GetAccountSummary request.
func (s GetAccountSummaryOutput) GoString() string
GoString returns the string representation
func (s *GetAccountSummaryOutput) SetSummaryMap(v map[string]*int64) *GetAccountSummaryOutput
SetSummaryMap sets the SummaryMap field's value.
func (s GetAccountSummaryOutput) String() string
String returns the string representation
type GetContextKeysForCustomPolicyInput struct {
// A list of policies for which you want the list of context keys referenced
// in those policies. Each document is specified as a string containing the
// complete, valid JSON text of an IAM policy.
//
// The regex pattern (http://wikipedia.org/wiki/regex) used to validate this
// parameter is a string of characters consisting of the following:
//
// * Any printable ASCII character ranging from the space character (\u0020)
// through the end of the ASCII character range
//
// * The printable characters in the Basic Latin and Latin-1 Supplement character
// set (through \u00FF)
//
// * The special characters tab (\u0009), line feed (\u000A), and carriage
// return (\u000D)
//
// PolicyInputList is a required field
PolicyInputList []*string `type:"list" required:"true"`
// contains filtered or unexported fields
}
func (s GetContextKeysForCustomPolicyInput) GoString() string
GoString returns the string representation
func (s *GetContextKeysForCustomPolicyInput) SetPolicyInputList(v []*string) *GetContextKeysForCustomPolicyInput
SetPolicyInputList sets the PolicyInputList field's value.
func (s GetContextKeysForCustomPolicyInput) String() string
String returns the string representation
func (s *GetContextKeysForCustomPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetContextKeysForPolicyResponse struct {
// The list of context keys that are referenced in the input policies.
ContextKeyNames []*string `type:"list"`
// contains filtered or unexported fields
}
Contains the response to a successful GetContextKeysForPrincipalPolicy or GetContextKeysForCustomPolicy request.
func (s GetContextKeysForPolicyResponse) GoString() string
GoString returns the string representation
func (s *GetContextKeysForPolicyResponse) SetContextKeyNames(v []*string) *GetContextKeysForPolicyResponse
SetContextKeyNames sets the ContextKeyNames field's value.
func (s GetContextKeysForPolicyResponse) String() string
String returns the string representation
type GetContextKeysForPrincipalPolicyInput struct {
// An optional list of additional policies for which you want the list of context
// keys that are referenced.
//
// The regex pattern (http://wikipedia.org/wiki/regex) used to validate this
// parameter is a string of characters consisting of the following:
//
// * Any printable ASCII character ranging from the space character (\u0020)
// through the end of the ASCII character range
//
// * The printable characters in the Basic Latin and Latin-1 Supplement character
// set (through \u00FF)
//
// * The special characters tab (\u0009), line feed (\u000A), and carriage
// return (\u000D)
PolicyInputList []*string `type:"list"`
// The ARN of a user, group, or role whose policies contain the context keys
// that you want listed. If you specify a user, the list includes context keys
// that are found in all policies that are attached to the user. The list also
// includes all groups that the user is a member of. If you pick a group or
// a role, then it includes only those context keys that are found in policies
// attached to that entity. Note that all parameters are shown in unencoded
// form here for clarity, but must be URL encoded to be included as a part of
// a real HTML request.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicySourceArn is a required field
PolicySourceArn *string `min:"20" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetContextKeysForPrincipalPolicyInput) GoString() string
GoString returns the string representation
func (s *GetContextKeysForPrincipalPolicyInput) SetPolicyInputList(v []*string) *GetContextKeysForPrincipalPolicyInput
SetPolicyInputList sets the PolicyInputList field's value.
func (s *GetContextKeysForPrincipalPolicyInput) SetPolicySourceArn(v string) *GetContextKeysForPrincipalPolicyInput
SetPolicySourceArn sets the PolicySourceArn field's value.
func (s GetContextKeysForPrincipalPolicyInput) String() string
String returns the string representation
func (s *GetContextKeysForPrincipalPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetCredentialReportInput struct {
// contains filtered or unexported fields
}
func (s GetCredentialReportInput) GoString() string
GoString returns the string representation
func (s GetCredentialReportInput) String() string
String returns the string representation
type GetCredentialReportOutput struct {
// Contains the credential report. The report is Base64-encoded.
//
// Content is automatically base64 encoded/decoded by the SDK.
Content []byte `type:"blob"`
// The date and time when the credential report was created, in ISO 8601 date-time
// format (http://www.iso.org/iso/iso8601).
GeneratedTime *time.Time `type:"timestamp"`
// The format (MIME type) of the credential report.
ReportFormat *string `type:"string" enum:"ReportFormatType"`
// contains filtered or unexported fields
}
Contains the response to a successful GetCredentialReport request.
func (s GetCredentialReportOutput) GoString() string
GoString returns the string representation
func (s *GetCredentialReportOutput) SetContent(v []byte) *GetCredentialReportOutput
SetContent sets the Content field's value.
func (s *GetCredentialReportOutput) SetGeneratedTime(v time.Time) *GetCredentialReportOutput
SetGeneratedTime sets the GeneratedTime field's value.
func (s *GetCredentialReportOutput) SetReportFormat(v string) *GetCredentialReportOutput
SetReportFormat sets the ReportFormat field's value.
func (s GetCredentialReportOutput) String() string
String returns the string representation
type GetGroupInput struct {
// The name of the group.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// GroupName is a required field
GroupName *string `min:"1" type:"string" required:"true"`
// Use this parameter only when paginating results and only after you receive
// a response indicating that the results are truncated. Set it to the value
// of the Marker element in the response that you received to indicate where
// the next call should start.
Marker *string `min:"1" type:"string"`
// Use this only when paginating results to indicate the maximum number of items
// you want in the response. If additional items exist beyond the maximum you
// specify, the IsTruncated response element is true.
//
// If you do not include this parameter, the number of items defaults to 100.
// Note that IAM might return fewer results, even when there are more results
// available. In that case, the IsTruncated response element returns true, and
// Marker contains a value to include in the subsequent call that tells the
// service where to continue from.
MaxItems *int64 `min:"1" type:"integer"`
// contains filtered or unexported fields
}
func (s GetGroupInput) GoString() string
GoString returns the string representation
func (s *GetGroupInput) SetGroupName(v string) *GetGroupInput
SetGroupName sets the GroupName field's value.
func (s *GetGroupInput) SetMarker(v string) *GetGroupInput
SetMarker sets the Marker field's value.
func (s *GetGroupInput) SetMaxItems(v int64) *GetGroupInput
SetMaxItems sets the MaxItems field's value.
func (s GetGroupInput) String() string
String returns the string representation
func (s *GetGroupInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetGroupOutput struct {
// A structure that contains details about the group.
//
// Group is a required field
Group *Group `type:"structure" required:"true"`
// A flag that indicates whether there are more items to return. If your results
// were truncated, you can make a subsequent pagination request using the Marker
// request parameter to retrieve more items. Note that IAM might return fewer
// than the MaxItems number of results even when there are more results available.
// We recommend that you check IsTruncated after every call to ensure that you
// receive all your results.
IsTruncated *bool `type:"boolean"`
// When IsTruncated is true, this element is present and contains the value
// to use for the Marker parameter in a subsequent pagination request.
Marker *string `type:"string"`
// A list of users in the group.
//
// Users is a required field
Users []*User `type:"list" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful GetGroup request.
func (s GetGroupOutput) GoString() string
GoString returns the string representation
func (s *GetGroupOutput) SetGroup(v *Group) *GetGroupOutput
SetGroup sets the Group field's value.
func (s *GetGroupOutput) SetIsTruncated(v bool) *GetGroupOutput
SetIsTruncated sets the IsTruncated field's value.
func (s *GetGroupOutput) SetMarker(v string) *GetGroupOutput
SetMarker sets the Marker field's value.
func (s *GetGroupOutput) SetUsers(v []*User) *GetGroupOutput
SetUsers sets the Users field's value.
func (s GetGroupOutput) String() string
String returns the string representation
type GetGroupPolicyInput struct {
// The name of the group the policy is associated with.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// GroupName is a required field
GroupName *string `min:"1" type:"string" required:"true"`
// The name of the policy document to get.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// PolicyName is a required field
PolicyName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetGroupPolicyInput) GoString() string
GoString returns the string representation
func (s *GetGroupPolicyInput) SetGroupName(v string) *GetGroupPolicyInput
SetGroupName sets the GroupName field's value.
func (s *GetGroupPolicyInput) SetPolicyName(v string) *GetGroupPolicyInput
SetPolicyName sets the PolicyName field's value.
func (s GetGroupPolicyInput) String() string
String returns the string representation
func (s *GetGroupPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetGroupPolicyOutput struct {
// The group the policy is associated with.
//
// GroupName is a required field
GroupName *string `min:"1" type:"string" required:"true"`
// The policy document.
//
// IAM stores policies in JSON format. However, resources that were created
// using AWS CloudFormation templates can be formatted in YAML. AWS CloudFormation
// always converts a YAML policy to JSON format before submitting it to IAM.
//
// PolicyDocument is a required field
PolicyDocument *string `min:"1" type:"string" required:"true"`
// The name of the policy.
//
// PolicyName is a required field
PolicyName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful GetGroupPolicy request.
func (s GetGroupPolicyOutput) GoString() string
GoString returns the string representation
func (s *GetGroupPolicyOutput) SetGroupName(v string) *GetGroupPolicyOutput
SetGroupName sets the GroupName field's value.
func (s *GetGroupPolicyOutput) SetPolicyDocument(v string) *GetGroupPolicyOutput
SetPolicyDocument sets the PolicyDocument field's value.
func (s *GetGroupPolicyOutput) SetPolicyName(v string) *GetGroupPolicyOutput
SetPolicyName sets the PolicyName field's value.
func (s GetGroupPolicyOutput) String() string
String returns the string representation
type GetInstanceProfileInput struct {
// The name of the instance profile to get information about.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// InstanceProfileName is a required field
InstanceProfileName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetInstanceProfileInput) GoString() string
GoString returns the string representation
func (s *GetInstanceProfileInput) SetInstanceProfileName(v string) *GetInstanceProfileInput
SetInstanceProfileName sets the InstanceProfileName field's value.
func (s GetInstanceProfileInput) String() string
String returns the string representation
func (s *GetInstanceProfileInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetInstanceProfileOutput struct {
// A structure containing details about the instance profile.
//
// InstanceProfile is a required field
InstanceProfile *InstanceProfile `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful GetInstanceProfile request.
func (s GetInstanceProfileOutput) GoString() string
GoString returns the string representation
func (s *GetInstanceProfileOutput) SetInstanceProfile(v *InstanceProfile) *GetInstanceProfileOutput
SetInstanceProfile sets the InstanceProfile field's value.
func (s GetInstanceProfileOutput) String() string
String returns the string representation
type GetLoginProfileInput struct {
// The name of the user whose login profile you want to retrieve.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetLoginProfileInput) GoString() string
GoString returns the string representation
func (s *GetLoginProfileInput) SetUserName(v string) *GetLoginProfileInput
SetUserName sets the UserName field's value.
func (s GetLoginProfileInput) String() string
String returns the string representation
func (s *GetLoginProfileInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetLoginProfileOutput struct {
// A structure containing the user name and password create date for the user.
//
// LoginProfile is a required field
LoginProfile *LoginProfile `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful GetLoginProfile request.
func (s GetLoginProfileOutput) GoString() string
GoString returns the string representation
func (s *GetLoginProfileOutput) SetLoginProfile(v *LoginProfile) *GetLoginProfileOutput
SetLoginProfile sets the LoginProfile field's value.
func (s GetLoginProfileOutput) String() string
String returns the string representation
type GetOpenIDConnectProviderInput struct {
// The Amazon Resource Name (ARN) of the OIDC provider resource object in IAM
// to get information for. You can get a list of OIDC provider resource ARNs
// by using the ListOpenIDConnectProviders operation.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// OpenIDConnectProviderArn is a required field
OpenIDConnectProviderArn *string `min:"20" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetOpenIDConnectProviderInput) GoString() string
GoString returns the string representation
func (s *GetOpenIDConnectProviderInput) SetOpenIDConnectProviderArn(v string) *GetOpenIDConnectProviderInput
SetOpenIDConnectProviderArn sets the OpenIDConnectProviderArn field's value.
func (s GetOpenIDConnectProviderInput) String() string
String returns the string representation
func (s *GetOpenIDConnectProviderInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetOpenIDConnectProviderOutput struct {
// A list of client IDs (also known as audiences) that are associated with the
// specified IAM OIDC provider resource object. For more information, see CreateOpenIDConnectProvider.
ClientIDList []*string `type:"list"`
// The date and time when the IAM OIDC provider resource object was created
// in the AWS account.
CreateDate *time.Time `type:"timestamp"`
// A list of certificate thumbprints that are associated with the specified
// IAM OIDC provider resource object. For more information, see CreateOpenIDConnectProvider.
ThumbprintList []*string `type:"list"`
// The URL that the IAM OIDC provider resource object is associated with. For
// more information, see CreateOpenIDConnectProvider.
Url *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
Contains the response to a successful GetOpenIDConnectProvider request.
func (s GetOpenIDConnectProviderOutput) GoString() string
GoString returns the string representation
func (s *GetOpenIDConnectProviderOutput) SetClientIDList(v []*string) *GetOpenIDConnectProviderOutput
SetClientIDList sets the ClientIDList field's value.
func (s *GetOpenIDConnectProviderOutput) SetCreateDate(v time.Time) *GetOpenIDConnectProviderOutput
SetCreateDate sets the CreateDate field's value.
func (s *GetOpenIDConnectProviderOutput) SetThumbprintList(v []*string) *GetOpenIDConnectProviderOutput
SetThumbprintList sets the ThumbprintList field's value.
func (s *GetOpenIDConnectProviderOutput) SetUrl(v string) *GetOpenIDConnectProviderOutput
SetUrl sets the Url field's value.
func (s GetOpenIDConnectProviderOutput) String() string
String returns the string representation
type GetPolicyInput struct {
// The Amazon Resource Name (ARN) of the managed policy that you want information
// about.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicyArn is a required field
PolicyArn *string `min:"20" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetPolicyInput) GoString() string
GoString returns the string representation
func (s *GetPolicyInput) SetPolicyArn(v string) *GetPolicyInput
SetPolicyArn sets the PolicyArn field's value.
func (s GetPolicyInput) String() string
String returns the string representation
func (s *GetPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetPolicyOutput struct {
// A structure containing details about the policy.
Policy *Policy `type:"structure"`
// contains filtered or unexported fields
}
Contains the response to a successful GetPolicy request.
func (s GetPolicyOutput) GoString() string
GoString returns the string representation
func (s *GetPolicyOutput) SetPolicy(v *Policy) *GetPolicyOutput
SetPolicy sets the Policy field's value.
func (s GetPolicyOutput) String() string
String returns the string representation
type GetPolicyVersionInput struct {
// The Amazon Resource Name (ARN) of the managed policy that you want information
// about.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// PolicyArn is a required field
PolicyArn *string `min:"20" type:"string" required:"true"`
// Identifies the policy version to retrieve.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters that consists of the lowercase letter 'v' followed
// by one or two digits, and optionally followed by a period '.' and a string
// of letters and digits.
//
// VersionId is a required field
VersionId *string `type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetPolicyVersionInput) GoString() string
GoString returns the string representation
func (s *GetPolicyVersionInput) SetPolicyArn(v string) *GetPolicyVersionInput
SetPolicyArn sets the PolicyArn field's value.
func (s *GetPolicyVersionInput) SetVersionId(v string) *GetPolicyVersionInput
SetVersionId sets the VersionId field's value.
func (s GetPolicyVersionInput) String() string
String returns the string representation
func (s *GetPolicyVersionInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetPolicyVersionOutput struct {
// A structure containing details about the policy version.
PolicyVersion *PolicyVersion `type:"structure"`
// contains filtered or unexported fields
}
Contains the response to a successful GetPolicyVersion request.
func (s GetPolicyVersionOutput) GoString() string
GoString returns the string representation
func (s *GetPolicyVersionOutput) SetPolicyVersion(v *PolicyVersion) *GetPolicyVersionOutput
SetPolicyVersion sets the PolicyVersion field's value.
func (s GetPolicyVersionOutput) String() string
String returns the string representation
type GetRoleInput struct {
// The name of the IAM role to get information about.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// RoleName is a required field
RoleName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetRoleInput) GoString() string
GoString returns the string representation
func (s *GetRoleInput) SetRoleName(v string) *GetRoleInput
SetRoleName sets the RoleName field's value.
func (s GetRoleInput) String() string
String returns the string representation
func (s *GetRoleInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetRoleOutput struct {
// A structure containing details about the IAM role.
//
// Role is a required field
Role *Role `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful GetRole request.
func (s GetRoleOutput) GoString() string
GoString returns the string representation
func (s *GetRoleOutput) SetRole(v *Role) *GetRoleOutput
SetRole sets the Role field's value.
func (s GetRoleOutput) String() string
String returns the string representation
type GetRolePolicyInput struct {
// The name of the policy document to get.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// PolicyName is a required field
PolicyName *string `min:"1" type:"string" required:"true"`
// The name of the role associated with the policy.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// RoleName is a required field
RoleName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetRolePolicyInput) GoString() string
GoString returns the string representation
func (s *GetRolePolicyInput) SetPolicyName(v string) *GetRolePolicyInput
SetPolicyName sets the PolicyName field's value.
func (s *GetRolePolicyInput) SetRoleName(v string) *GetRolePolicyInput
SetRoleName sets the RoleName field's value.
func (s GetRolePolicyInput) String() string
String returns the string representation
func (s *GetRolePolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetRolePolicyOutput struct {
// The policy document.
//
// IAM stores policies in JSON format. However, resources that were created
// using AWS CloudFormation templates can be formatted in YAML. AWS CloudFormation
// always converts a YAML policy to JSON format before submitting it to IAM.
//
// PolicyDocument is a required field
PolicyDocument *string `min:"1" type:"string" required:"true"`
// The name of the policy.
//
// PolicyName is a required field
PolicyName *string `min:"1" type:"string" required:"true"`
// The role the policy is associated with.
//
// RoleName is a required field
RoleName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful GetRolePolicy request.
func (s GetRolePolicyOutput) GoString() string
GoString returns the string representation
func (s *GetRolePolicyOutput) SetPolicyDocument(v string) *GetRolePolicyOutput
SetPolicyDocument sets the PolicyDocument field's value.
func (s *GetRolePolicyOutput) SetPolicyName(v string) *GetRolePolicyOutput
SetPolicyName sets the PolicyName field's value.
func (s *GetRolePolicyOutput) SetRoleName(v string) *GetRolePolicyOutput
SetRoleName sets the RoleName field's value.
func (s GetRolePolicyOutput) String() string
String returns the string representation
type GetSAMLProviderInput struct {
// The Amazon Resource Name (ARN) of the SAML provider resource object in IAM
// to get information about.
//
// For more information about ARNs, see Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
//
// SAMLProviderArn is a required field
SAMLProviderArn *string `min:"20" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetSAMLProviderInput) GoString() string
GoString returns the string representation
func (s *GetSAMLProviderInput) SetSAMLProviderArn(v string) *GetSAMLProviderInput
SetSAMLProviderArn sets the SAMLProviderArn field's value.
func (s GetSAMLProviderInput) String() string
String returns the string representation
func (s *GetSAMLProviderInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetSAMLProviderOutput struct {
// The date and time when the SAML provider was created.
CreateDate *time.Time `type:"timestamp"`
// The XML metadata document that includes information about an identity provider.
SAMLMetadataDocument *string `min:"1000" type:"string"`
// The expiration date and time for the SAML provider.
ValidUntil *time.Time `type:"timestamp"`
// contains filtered or unexported fields
}
Contains the response to a successful GetSAMLProvider request.
func (s GetSAMLProviderOutput) GoString() string
GoString returns the string representation
func (s *GetSAMLProviderOutput) SetCreateDate(v time.Time) *GetSAMLProviderOutput
SetCreateDate sets the CreateDate field's value.
func (s *GetSAMLProviderOutput) SetSAMLMetadataDocument(v string) *GetSAMLProviderOutput
SetSAMLMetadataDocument sets the SAMLMetadataDocument field's value.
func (s *GetSAMLProviderOutput) SetValidUntil(v time.Time) *GetSAMLProviderOutput
SetValidUntil sets the ValidUntil field's value.
func (s GetSAMLProviderOutput) String() string
String returns the string representation
type GetSSHPublicKeyInput struct {
// Specifies the public key encoding format to use in the response. To retrieve
// the public key in ssh-rsa format, use SSH. To retrieve the public key in
// PEM format, use PEM.
//
// Encoding is a required field
Encoding *string `type:"string" required:"true" enum:"encodingType"`
// The unique identifier for the SSH public key.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters that can consist of any upper or lowercased letter
// or digit.
//
// SSHPublicKeyId is a required field
SSHPublicKeyId *string `min:"20" type:"string" required:"true"`
// The name of the IAM user associated with the SSH public key.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetSSHPublicKeyInput) GoString() string
GoString returns the string representation
func (s *GetSSHPublicKeyInput) SetEncoding(v string) *GetSSHPublicKeyInput
SetEncoding sets the Encoding field's value.
func (s *GetSSHPublicKeyInput) SetSSHPublicKeyId(v string) *GetSSHPublicKeyInput
SetSSHPublicKeyId sets the SSHPublicKeyId field's value.
func (s *GetSSHPublicKeyInput) SetUserName(v string) *GetSSHPublicKeyInput
SetUserName sets the UserName field's value.
func (s GetSSHPublicKeyInput) String() string
String returns the string representation
func (s *GetSSHPublicKeyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetSSHPublicKeyOutput struct {
// A structure containing details about the SSH public key.
SSHPublicKey *SSHPublicKey `type:"structure"`
// contains filtered or unexported fields
}
Contains the response to a successful GetSSHPublicKey request.
func (s GetSSHPublicKeyOutput) GoString() string
GoString returns the string representation
func (s *GetSSHPublicKeyOutput) SetSSHPublicKey(v *SSHPublicKey) *GetSSHPublicKeyOutput
SetSSHPublicKey sets the SSHPublicKey field's value.
func (s GetSSHPublicKeyOutput) String() string
String returns the string representation
type GetServerCertificateInput struct {
// The name of the server certificate you want to retrieve information about.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// ServerCertificateName is a required field
ServerCertificateName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetServerCertificateInput) GoString() string
GoString returns the string representation
func (s *GetServerCertificateInput) SetServerCertificateName(v string) *GetServerCertificateInput
SetServerCertificateName sets the ServerCertificateName field's value.
func (s GetServerCertificateInput) String() string
String returns the string representation
func (s *GetServerCertificateInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetServerCertificateOutput struct {
// A structure containing details about the server certificate.
//
// ServerCertificate is a required field
ServerCertificate *ServerCertificate `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful GetServerCertificate request.
func (s GetServerCertificateOutput) GoString() string
GoString returns the string representation
func (s *GetServerCertificateOutput) SetServerCertificate(v *ServerCertificate) *GetServerCertificateOutput
SetServerCertificate sets the ServerCertificate field's value.
func (s GetServerCertificateOutput) String() string
String returns the string representation
type GetServiceLastAccessedDetailsInput struct {
// The ID of the request generated by the GenerateServiceLastAccessedDetails
// operation.
//
// JobId is a required field
JobId *string `min:"36" type:"string" required:"true"`
// Use this parameter only when paginating results and only after you receive
// a response indicating that the results are truncated. Set it to the value
// of the Marker element in the response that you received to indicate where
// the next call should start.
Marker *string `min:"1" type:"string"`
// Use this only when paginating results to indicate the maximum number of items
// you want in the response. If additional items exist beyond the maximum you
// specify, the IsTruncated response element is true.
//
// If you do not include this parameter, the number of items defaults to 100.
// Note that IAM might return fewer results, even when there are more results
// available. In that case, the IsTruncated response element returns true, and
// Marker contains a value to include in the subsequent call that tells the
// service where to continue from.
MaxItems *int64 `min:"1" type:"integer"`
// contains filtered or unexported fields
}
func (s GetServiceLastAccessedDetailsInput) GoString() string
GoString returns the string representation
func (s *GetServiceLastAccessedDetailsInput) SetJobId(v string) *GetServiceLastAccessedDetailsInput
SetJobId sets the JobId field's value.
func (s *GetServiceLastAccessedDetailsInput) SetMarker(v string) *GetServiceLastAccessedDetailsInput
SetMarker sets the Marker field's value.
func (s *GetServiceLastAccessedDetailsInput) SetMaxItems(v int64) *GetServiceLastAccessedDetailsInput
SetMaxItems sets the MaxItems field's value.
func (s GetServiceLastAccessedDetailsInput) String() string
String returns the string representation
func (s *GetServiceLastAccessedDetailsInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetServiceLastAccessedDetailsOutput struct {
// An object that contains details about the reason the operation failed.
Error *ErrorDetails `type:"structure"`
// A flag that indicates whether there are more items to return. If your results
// were truncated, you can make a subsequent pagination request using the Marker
// request parameter to retrieve more items. Note that IAM might return fewer
// than the MaxItems number of results even when there are more results available.
// We recommend that you check IsTruncated after every call to ensure that you
// receive all your results.
IsTruncated *bool `type:"boolean"`
// The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601),
// when the generated report job was completed or failed.
//
// This field is null if the job is still in progress, as indicated by a JobStatus
// value of IN_PROGRESS.
//
// JobCompletionDate is a required field
JobCompletionDate *time.Time `type:"timestamp" required:"true"`
// The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601),
// when the report job was created.
//
// JobCreationDate is a required field
JobCreationDate *time.Time `type:"timestamp" required:"true"`
// The status of the job.
//
// JobStatus is a required field
JobStatus *string `type:"string" required:"true" enum:"jobStatusType"`
// When IsTruncated is true, this element is present and contains the value
// to use for the Marker parameter in a subsequent pagination request.
Marker *string `type:"string"`
// A ServiceLastAccessed object that contains details about the most recent
// attempt to access the service.
//
// ServicesLastAccessed is a required field
ServicesLastAccessed []*ServiceLastAccessed `type:"list" required:"true"`
// contains filtered or unexported fields
}
func (s GetServiceLastAccessedDetailsOutput) GoString() string
GoString returns the string representation
func (s *GetServiceLastAccessedDetailsOutput) SetError(v *ErrorDetails) *GetServiceLastAccessedDetailsOutput
SetError sets the Error field's value.
func (s *GetServiceLastAccessedDetailsOutput) SetIsTruncated(v bool) *GetServiceLastAccessedDetailsOutput
SetIsTruncated sets the IsTruncated field's value.
func (s *GetServiceLastAccessedDetailsOutput) SetJobCompletionDate(v time.Time) *GetServiceLastAccessedDetailsOutput
SetJobCompletionDate sets the JobCompletionDate field's value.
func (s *GetServiceLastAccessedDetailsOutput) SetJobCreationDate(v time.Time) *GetServiceLastAccessedDetailsOutput
SetJobCreationDate sets the JobCreationDate field's value.
func (s *GetServiceLastAccessedDetailsOutput) SetJobStatus(v string) *GetServiceLastAccessedDetailsOutput
SetJobStatus sets the JobStatus field's value.
func (s *GetServiceLastAccessedDetailsOutput) SetMarker(v string) *GetServiceLastAccessedDetailsOutput
SetMarker sets the Marker field's value.
func (s *GetServiceLastAccessedDetailsOutput) SetServicesLastAccessed(v []*ServiceLastAccessed) *GetServiceLastAccessedDetailsOutput
SetServicesLastAccessed sets the ServicesLastAccessed field's value.
func (s GetServiceLastAccessedDetailsOutput) String() string
String returns the string representation
type GetServiceLastAccessedDetailsWithEntitiesInput struct {
// The ID of the request generated by the GenerateServiceLastAccessedDetails
// operation.
//
// JobId is a required field
JobId *string `min:"36" type:"string" required:"true"`
// Use this parameter only when paginating results and only after you receive
// a response indicating that the results are truncated. Set it to the value
// of the Marker element in the response that you received to indicate where
// the next call should start.
Marker *string `min:"1" type:"string"`
// Use this only when paginating results to indicate the maximum number of items
// you want in the response. If additional items exist beyond the maximum you
// specify, the IsTruncated response element is true.
//
// If you do not include this parameter, the number of items defaults to 100.
// Note that IAM might return fewer results, even when there are more results
// available. In that case, the IsTruncated response element returns true, and
// Marker contains a value to include in the subsequent call that tells the
// service where to continue from.
MaxItems *int64 `min:"1" type:"integer"`
// The service namespace for an AWS service. Provide the service namespace to
// learn when the IAM entity last attempted to access the specified service.
//
// To learn the service namespace for a service, go to Actions, Resources, and
// Condition Keys for AWS Services (https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_actions-resources-contextkeys.html)
// in the IAM User Guide. Choose the name of the service to view details for
// that service. In the first paragraph, find the service prefix. For example,
// (service prefix: a4b). For more information about service namespaces, see
// AWS Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html#genref-aws-service-namespaces)
// in the AWS General Reference.
//
// ServiceNamespace is a required field
ServiceNamespace *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetServiceLastAccessedDetailsWithEntitiesInput) GoString() string
GoString returns the string representation
func (s *GetServiceLastAccessedDetailsWithEntitiesInput) SetJobId(v string) *GetServiceLastAccessedDetailsWithEntitiesInput
SetJobId sets the JobId field's value.
func (s *GetServiceLastAccessedDetailsWithEntitiesInput) SetMarker(v string) *GetServiceLastAccessedDetailsWithEntitiesInput
SetMarker sets the Marker field's value.
func (s *GetServiceLastAccessedDetailsWithEntitiesInput) SetMaxItems(v int64) *GetServiceLastAccessedDetailsWithEntitiesInput
SetMaxItems sets the MaxItems field's value.
func (s *GetServiceLastAccessedDetailsWithEntitiesInput) SetServiceNamespace(v string) *GetServiceLastAccessedDetailsWithEntitiesInput
SetServiceNamespace sets the ServiceNamespace field's value.
func (s GetServiceLastAccessedDetailsWithEntitiesInput) String() string
String returns the string representation
func (s *GetServiceLastAccessedDetailsWithEntitiesInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetServiceLastAccessedDetailsWithEntitiesOutput struct {
// An EntityDetailsList object that contains details about when an IAM entity
// (user or role) used group or policy permissions in an attempt to access the
// specified AWS service.
//
// EntityDetailsList is a required field
EntityDetailsList []*EntityDetails `type:"list" required:"true"`
// An object that contains details about the reason the operation failed.
Error *ErrorDetails `type:"structure"`
// A flag that indicates whether there are more items to return. If your results
// were truncated, you can make a subsequent pagination request using the Marker
// request parameter to retrieve more items. Note that IAM might return fewer
// than the MaxItems number of results even when there are more results available.
// We recommend that you check IsTruncated after every call to ensure that you
// receive all your results.
IsTruncated *bool `type:"boolean"`
// The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601),
// when the generated report job was completed or failed.
//
// JobCompletionDate is a required field
JobCompletionDate *time.Time `type:"timestamp" required:"true"`
// The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601),
// when the report job was created.
//
// JobCreationDate is a required field
JobCreationDate *time.Time `type:"timestamp" required:"true"`
// The status of the job.
//
// JobStatus is a required field
JobStatus *string `type:"string" required:"true" enum:"jobStatusType"`
// When IsTruncated is true, this element is present and contains the value
// to use for the Marker parameter in a subsequent pagination request.
Marker *string `type:"string"`
// contains filtered or unexported fields
}
func (s GetServiceLastAccessedDetailsWithEntitiesOutput) GoString() string
GoString returns the string representation
func (s *GetServiceLastAccessedDetailsWithEntitiesOutput) SetEntityDetailsList(v []*EntityDetails) *GetServiceLastAccessedDetailsWithEntitiesOutput
SetEntityDetailsList sets the EntityDetailsList field's value.
func (s *GetServiceLastAccessedDetailsWithEntitiesOutput) SetError(v *ErrorDetails) *GetServiceLastAccessedDetailsWithEntitiesOutput
SetError sets the Error field's value.
func (s *GetServiceLastAccessedDetailsWithEntitiesOutput) SetIsTruncated(v bool) *GetServiceLastAccessedDetailsWithEntitiesOutput
SetIsTruncated sets the IsTruncated field's value.
func (s *GetServiceLastAccessedDetailsWithEntitiesOutput) SetJobCompletionDate(v time.Time) *GetServiceLastAccessedDetailsWithEntitiesOutput
SetJobCompletionDate sets the JobCompletionDate field's value.
func (s *GetServiceLastAccessedDetailsWithEntitiesOutput) SetJobCreationDate(v time.Time) *GetServiceLastAccessedDetailsWithEntitiesOutput
SetJobCreationDate sets the JobCreationDate field's value.
func (s *GetServiceLastAccessedDetailsWithEntitiesOutput) SetJobStatus(v string) *GetServiceLastAccessedDetailsWithEntitiesOutput
SetJobStatus sets the JobStatus field's value.
func (s *GetServiceLastAccessedDetailsWithEntitiesOutput) SetMarker(v string) *GetServiceLastAccessedDetailsWithEntitiesOutput
SetMarker sets the Marker field's value.
func (s GetServiceLastAccessedDetailsWithEntitiesOutput) String() string
String returns the string representation
type GetServiceLinkedRoleDeletionStatusInput struct {
// The deletion task identifier. This identifier is returned by the DeleteServiceLinkedRole
// operation in the format task/aws-service-role/<service-principal-name>/<role-name>/<task-uuid>.
//
// DeletionTaskId is a required field
DeletionTaskId *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetServiceLinkedRoleDeletionStatusInput) GoString() string
GoString returns the string representation
func (s *GetServiceLinkedRoleDeletionStatusInput) SetDeletionTaskId(v string) *GetServiceLinkedRoleDeletionStatusInput
SetDeletionTaskId sets the DeletionTaskId field's value.
func (s GetServiceLinkedRoleDeletionStatusInput) String() string
String returns the string representation
func (s *GetServiceLinkedRoleDeletionStatusInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetServiceLinkedRoleDeletionStatusOutput struct {
// An object that contains details about the reason the deletion failed.
Reason *DeletionTaskFailureReasonType `type:"structure"`
// The status of the deletion.
//
// Status is a required field
Status *string `type:"string" required:"true" enum:"DeletionTaskStatusType"`
// contains filtered or unexported fields
}
func (s GetServiceLinkedRoleDeletionStatusOutput) GoString() string
GoString returns the string representation
func (s *GetServiceLinkedRoleDeletionStatusOutput) SetReason(v *DeletionTaskFailureReasonType) *GetServiceLinkedRoleDeletionStatusOutput
SetReason sets the Reason field's value.
func (s *GetServiceLinkedRoleDeletionStatusOutput) SetStatus(v string) *GetServiceLinkedRoleDeletionStatusOutput
SetStatus sets the Status field's value.
func (s GetServiceLinkedRoleDeletionStatusOutput) String() string
String returns the string representation
type GetUserInput struct {
// The name of the user to get information about.
//
// This parameter is optional. If it is not included, it defaults to the user
// making the request. This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
UserName *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
func (s GetUserInput) GoString() string
GoString returns the string representation
func (s *GetUserInput) SetUserName(v string) *GetUserInput
SetUserName sets the UserName field's value.
func (s GetUserInput) String() string
String returns the string representation
func (s *GetUserInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetUserOutput struct {
// A structure containing details about the IAM user.
//
// Due to a service issue, password last used data does not include password
// use from May 3, 2018 22:50 PDT to May 23, 2018 14:08 PDT. This affects last
// sign-in (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_finding-unused.html)
// dates shown in the IAM console and password last used dates in the IAM credential
// report (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_getting-report.html),
// and returned by this GetUser API. If users signed in during the affected
// time, the password last used date that is returned is the date the user last
// signed in before May 3, 2018. For users that signed in after May 23, 2018
// 14:08 PDT, the returned password last used date is accurate.
//
// You can use password last used information to identify unused credentials
// for deletion. For example, you might delete users who did not sign in to
// AWS in the last 90 days. In cases like this, we recommend that you adjust
// your evaluation window to include dates after May 23, 2018. Alternatively,
// if your users use access keys to access AWS programmatically you can refer
// to access key last used information because it is accurate for all dates.
//
// User is a required field
User *User `type:"structure" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful GetUser request.
func (s GetUserOutput) GoString() string
GoString returns the string representation
func (s *GetUserOutput) SetUser(v *User) *GetUserOutput
SetUser sets the User field's value.
func (s GetUserOutput) String() string
String returns the string representation
type GetUserPolicyInput struct {
// The name of the policy document to get.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// PolicyName is a required field
PolicyName *string `min:"1" type:"string" required:"true"`
// The name of the user who the policy is associated with.
//
// This parameter allows (through its regex pattern (http://wikipedia.org/wiki/regex))
// a string of characters consisting of upper and lowercase alphanumeric characters
// with no spaces. You can also include any of the following characters: _+=,.@-
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
func (s GetUserPolicyInput) GoString() string
GoString returns the string representation
func (s *GetUserPolicyInput) SetPolicyName(v string) *GetUserPolicyInput
SetPolicyName sets the PolicyName field's value.
func (s *GetUserPolicyInput) SetUserName(v string) *GetUserPolicyInput
SetUserName sets the UserName field's value.
func (s GetUserPolicyInput) String() string
String returns the string representation
func (s *GetUserPolicyInput) Validate() error
Validate inspects the fields of the type to determine if they are valid.
type GetUserPolicyOutput struct {
// The policy document.
//
// IAM stores policies in JSON format. However, resources that were created
// using AWS CloudFormation templates can be formatted in YAML. AWS CloudFormation
// always converts a YAML policy to JSON format before submitting it to IAM.
//
// PolicyDocument is a required field
PolicyDocument *string `min:"1" type:"string" required:"true"`
// The name of the policy.
//
// PolicyName is a required field
PolicyName *string `min:"1" type:"string" required:"true"`
// The user the policy is associated with.
//
// UserName is a required field
UserName *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
Contains the response to a successful GetUserPolicy request.
func (s GetUserPolicyOutput) GoString() string
GoString returns the string representation
func (s *GetUserPolicyOutput) SetPolicyDocument(v string) *GetUserPolicyOutput
SetPolicyDocument sets the PolicyDocument field's value.
func (s *GetUserPolicyOutput) SetPolicyName(v string) *GetUserPolicyOutput
SetPolicyName sets the PolicyName field's value.
func (s *GetUserPolicyOutput) SetUserName(v string) *GetUserPolicyOutput
SetUserName sets the UserName field's value.
func (s GetUserPolicyOutput) String() string
String returns the string representation
type Group struct {
// The Amazon Resource Name (ARN) specifying the group. For more information
// about ARNs and how to use them in policies, see IAM Identifiers (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the Using IAM guide.
//
// Arn is a required field
Arn *string `min:"20" type:"string" required:"true"`
// The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601),
// when the group was created.
//
// CreateDate is a required field
CreateDate *time.Time `type:"timestamp" required:"true"`
// The stable and unique string identifying the group. For more information
// about IDs, see IAM Identifiers (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the Using IAM guide.
//
// GroupId is a required field
GroupId *string `min:"16" type:"string" required:"true"`
// The friendly name that identifies the group.
//
// GroupName is a required field
GroupName *string `min:"1" type:"string" required:"true"`
// The path to the group. For more information about paths, see IAM Identifiers
// (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the Using IAM guide.
//
// Path is a required field
Path *string `min:"1" type:"string" required:"true"`
// contains filtered or unexported fields
}
Contains information about an IAM group entity.
This data type is used as a response element in the following operations:
* CreateGroup * GetGroup * ListGroups
func (s Group) GoString() string
GoString returns the string representation
func (s *Group) SetArn(v string) *Group
SetArn sets the Arn field's value.
func (s *Group) SetCreateDate(v time.Time) *Group
SetCreateDate sets the CreateDate field's value.
func (s *Group) SetGroupId(v string) *Group
SetGroupId sets the GroupId field's value.
func (s *Group) SetGroupName(v string) *Group
SetGroupName sets the GroupName field's value.
func (s *Group) SetPath(v string) *Group
SetPath sets the Path field's value.
func (s Group) String() string
String returns the string representation
type GroupDetail struct {
// The Amazon Resource Name (ARN). ARNs are unique identifiers for AWS resources.
//
// For more information about ARNs, go to Amazon Resource Names (ARNs) and AWS
// Service Namespaces (https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html)
// in the AWS General Reference.
Arn *string `min:"20" type:"string"`
// A list of the managed policies attached to the group.
AttachedManagedPolicies []*AttachedPolicy `type:"list"`
// The date and time, in ISO 8601 date-time format (http://www.iso.org/iso/iso8601),
// when the group was created.
CreateDate *time.Time `type:"timestamp"`
// The stable and unique string identifying the group. For more information
// about IDs, see IAM Identifiers (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the Using IAM guide.
GroupId *string `min:"16" type:"string"`
// The friendly name that identifies the group.
GroupName *string `min:"1" type:"string"`
// A list of the inline policies embedded in the group.
GroupPolicyList []*PolicyDetail `type:"list"`
// The path to the group. For more information about paths, see IAM Identifiers
// (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html)
// in the Using IAM guide.
Path *string `min:"1" type:"string"`
// contains filtered or unexported fields
}
Contains information about an IAM group, including all of the group's policies.
This data type is used as a response element in the GetAccountAuthorizationDetails operation.
func (s GroupDetail) GoString() string
GoString returns the string representation
func (s *GroupDetail) SetArn(v string) *GroupDetail
SetArn sets the Arn field's value.
func (s *GroupDetail) SetAttachedManagedPolicies(v []*AttachedPolicy) *GroupDetail
SetAttachedManagedPolicies sets the AttachedManagedPolicies field's value.
func (s *GroupDetail) SetCreateDate(v time.Time) *GroupDetail
SetCreateDate sets the CreateDate field's value.
func (s *GroupDetail) SetGroupId(v string) *GroupDetail
SetGroupId sets the GroupId field's value.
func (s *GroupDetail) SetGroupName(v string) *GroupDetail
SetGroupName sets the GroupName field's value.
func (s *GroupDetail) SetGroupPolicyList(v []*PolicyDetail) *GroupDetail
SetGroupPolicyList sets the GroupPolicyList field's value.
func (s *GroupDetail) SetPath(v string) *GroupDetail
SetPath sets the Path field's value.
func (s GroupDetail) String() string
String returns the string representation
type IAM struct {
*client.Client
}
IAM provides the API operation methods for making requests to AWS Identity and Access Management. See this package's package overview docs for details on the service.
IAM methods are safe to use concurrently. It is not safe to modify mutate any of the struct's properties though.
func New(p client.ConfigProvider, cfgs ...*aws.Config) *IAM
New creates a new instance of the IAM client with a session. If additional configuration is needed for the client instance use the optional aws.Config parameter to add your extra config.
Example:
// Create a IAM client from just a session.
svc := iam.New(mySession)
// Create a IAM client with additional configuration
svc := iam.New(mySession, aws.NewConfig().WithRegion("us-west-2"))
func (c *IAM) AddClientIDToOpenIDConnectProvider(input *AddClientIDToOpenIDConnectProviderInput) (*AddClientIDToOpenIDConnectProviderOutput, error)
AddClientIDToOpenIDConnectProvider API operation for AWS Identity and Access Management.
Adds a new client ID (also known as audience) to the list of client IDs already registered for the specified IAM OpenID Connect (OIDC) provider resource.
This operation is idempotent; it does not fail or return an error if you add an existing client ID to the provider.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation AddClientIDToOpenIDConnectProvider for usage and error information.
Returned Error Codes:
* ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AddClientIDToOpenIDConnectProvider
func (c *IAM) AddClientIDToOpenIDConnectProviderRequest(input *AddClientIDToOpenIDConnectProviderInput) (req *request.Request, output *AddClientIDToOpenIDConnectProviderOutput)
AddClientIDToOpenIDConnectProviderRequest generates a "aws/request.Request" representing the client's request for the AddClientIDToOpenIDConnectProvider operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See AddClientIDToOpenIDConnectProvider for more information on using the AddClientIDToOpenIDConnectProvider API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the AddClientIDToOpenIDConnectProviderRequest method.
req, resp := client.AddClientIDToOpenIDConnectProviderRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AddClientIDToOpenIDConnectProvider
func (c *IAM) AddClientIDToOpenIDConnectProviderWithContext(ctx aws.Context, input *AddClientIDToOpenIDConnectProviderInput, opts ...request.Option) (*AddClientIDToOpenIDConnectProviderOutput, error)
AddClientIDToOpenIDConnectProviderWithContext is the same as AddClientIDToOpenIDConnectProvider with the addition of the ability to pass a context and additional request options.
See AddClientIDToOpenIDConnectProvider for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) AddRoleToInstanceProfile(input *AddRoleToInstanceProfileInput) (*AddRoleToInstanceProfileOutput, error)
AddRoleToInstanceProfile API operation for AWS Identity and Access Management.
Adds the specified IAM role to the specified instance profile. An instance profile can contain only one role, and this limit cannot be increased. You can remove the existing role and then add a different role to an instance profile. You must then wait for the change to appear across all of AWS because of eventual consistency (https://en.wikipedia.org/wiki/Eventual_consistency). To force the change, you must disassociate the instance profile (https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_DisassociateIamInstanceProfile.html) and then associate the instance profile (https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_AssociateIamInstanceProfile.html), or you can stop your instance and then restart it.
The caller of this API must be granted the PassRole permission on the IAM role by a permissions policy.
For more information about roles, go to Working with Roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html). For more information about instance profiles, go to About Instance Profiles (https://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html).
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation AddRoleToInstanceProfile for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeEntityAlreadyExistsException "EntityAlreadyExists" The request was rejected because it attempted to create a resource that already exists. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeUnmodifiableEntityException "UnmodifiableEntity" The request was rejected because only the service that depends on the service-linked role can modify or delete the role on your behalf. The error message includes the name of the service that depends on this service-linked role. You must request the change through that service. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AddRoleToInstanceProfile
func (c *IAM) AddRoleToInstanceProfileRequest(input *AddRoleToInstanceProfileInput) (req *request.Request, output *AddRoleToInstanceProfileOutput)
AddRoleToInstanceProfileRequest generates a "aws/request.Request" representing the client's request for the AddRoleToInstanceProfile operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See AddRoleToInstanceProfile for more information on using the AddRoleToInstanceProfile API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the AddRoleToInstanceProfileRequest method.
req, resp := client.AddRoleToInstanceProfileRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AddRoleToInstanceProfile
func (c *IAM) AddRoleToInstanceProfileWithContext(ctx aws.Context, input *AddRoleToInstanceProfileInput, opts ...request.Option) (*AddRoleToInstanceProfileOutput, error)
AddRoleToInstanceProfileWithContext is the same as AddRoleToInstanceProfile with the addition of the ability to pass a context and additional request options.
See AddRoleToInstanceProfile for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) AddUserToGroup(input *AddUserToGroupInput) (*AddUserToGroupOutput, error)
AddUserToGroup API operation for AWS Identity and Access Management.
Adds the specified user to the specified group.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation AddUserToGroup for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AddUserToGroup
func (c *IAM) AddUserToGroupRequest(input *AddUserToGroupInput) (req *request.Request, output *AddUserToGroupOutput)
AddUserToGroupRequest generates a "aws/request.Request" representing the client's request for the AddUserToGroup operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See AddUserToGroup for more information on using the AddUserToGroup API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the AddUserToGroupRequest method.
req, resp := client.AddUserToGroupRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AddUserToGroup
func (c *IAM) AddUserToGroupWithContext(ctx aws.Context, input *AddUserToGroupInput, opts ...request.Option) (*AddUserToGroupOutput, error)
AddUserToGroupWithContext is the same as AddUserToGroup with the addition of the ability to pass a context and additional request options.
See AddUserToGroup for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) AttachGroupPolicy(input *AttachGroupPolicyInput) (*AttachGroupPolicyOutput, error)
AttachGroupPolicy API operation for AWS Identity and Access Management.
Attaches the specified managed policy to the specified IAM group.
You use this API to attach a managed policy to a group. To embed an inline policy in a group, use PutGroupPolicy.
For more information about policies, see Managed Policies and Inline Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation AttachGroupPolicy for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodePolicyNotAttachableException "PolicyNotAttachable" The request failed because AWS service role policies can only be attached to the service-linked role for that service. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AttachGroupPolicy
func (c *IAM) AttachGroupPolicyRequest(input *AttachGroupPolicyInput) (req *request.Request, output *AttachGroupPolicyOutput)
AttachGroupPolicyRequest generates a "aws/request.Request" representing the client's request for the AttachGroupPolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See AttachGroupPolicy for more information on using the AttachGroupPolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the AttachGroupPolicyRequest method.
req, resp := client.AttachGroupPolicyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AttachGroupPolicy
func (c *IAM) AttachGroupPolicyWithContext(ctx aws.Context, input *AttachGroupPolicyInput, opts ...request.Option) (*AttachGroupPolicyOutput, error)
AttachGroupPolicyWithContext is the same as AttachGroupPolicy with the addition of the ability to pass a context and additional request options.
See AttachGroupPolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) AttachRolePolicy(input *AttachRolePolicyInput) (*AttachRolePolicyOutput, error)
AttachRolePolicy API operation for AWS Identity and Access Management.
Attaches the specified managed policy to the specified IAM role. When you attach a managed policy to a role, the managed policy becomes part of the role's permission (access) policy.
You cannot use a managed policy as the role's trust policy. The role's trust policy is created at the same time as the role, using CreateRole. You can update a role's trust policy using UpdateAssumeRolePolicy.
Use this API to attach a managed policy to a role. To embed an inline policy in a role, use PutRolePolicy. For more information about policies, see Managed Policies and Inline Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation AttachRolePolicy for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeUnmodifiableEntityException "UnmodifiableEntity" The request was rejected because only the service that depends on the service-linked role can modify or delete the role on your behalf. The error message includes the name of the service that depends on this service-linked role. You must request the change through that service. * ErrCodePolicyNotAttachableException "PolicyNotAttachable" The request failed because AWS service role policies can only be attached to the service-linked role for that service. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AttachRolePolicy
func (c *IAM) AttachRolePolicyRequest(input *AttachRolePolicyInput) (req *request.Request, output *AttachRolePolicyOutput)
AttachRolePolicyRequest generates a "aws/request.Request" representing the client's request for the AttachRolePolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See AttachRolePolicy for more information on using the AttachRolePolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the AttachRolePolicyRequest method.
req, resp := client.AttachRolePolicyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AttachRolePolicy
func (c *IAM) AttachRolePolicyWithContext(ctx aws.Context, input *AttachRolePolicyInput, opts ...request.Option) (*AttachRolePolicyOutput, error)
AttachRolePolicyWithContext is the same as AttachRolePolicy with the addition of the ability to pass a context and additional request options.
See AttachRolePolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) AttachUserPolicy(input *AttachUserPolicyInput) (*AttachUserPolicyOutput, error)
AttachUserPolicy API operation for AWS Identity and Access Management.
Attaches the specified managed policy to the specified user.
You use this API to attach a managed policy to a user. To embed an inline policy in a user, use PutUserPolicy.
For more information about policies, see Managed Policies and Inline Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation AttachUserPolicy for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodePolicyNotAttachableException "PolicyNotAttachable" The request failed because AWS service role policies can only be attached to the service-linked role for that service. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AttachUserPolicy
func (c *IAM) AttachUserPolicyRequest(input *AttachUserPolicyInput) (req *request.Request, output *AttachUserPolicyOutput)
AttachUserPolicyRequest generates a "aws/request.Request" representing the client's request for the AttachUserPolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See AttachUserPolicy for more information on using the AttachUserPolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the AttachUserPolicyRequest method.
req, resp := client.AttachUserPolicyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/AttachUserPolicy
func (c *IAM) AttachUserPolicyWithContext(ctx aws.Context, input *AttachUserPolicyInput, opts ...request.Option) (*AttachUserPolicyOutput, error)
AttachUserPolicyWithContext is the same as AttachUserPolicy with the addition of the ability to pass a context and additional request options.
See AttachUserPolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) ChangePassword(input *ChangePasswordInput) (*ChangePasswordOutput, error)
ChangePassword API operation for AWS Identity and Access Management.
Changes the password of the IAM user who is calling this operation. The AWS account root user password is not affected by this operation.
To change the password for a different user, see UpdateLoginProfile. For more information about modifying passwords, see Managing Passwords (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation ChangePassword for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeInvalidUserTypeException "InvalidUserType" The request was rejected because the type of user for the transaction was incorrect. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeEntityTemporarilyUnmodifiableException "EntityTemporarilyUnmodifiable" The request was rejected because it referenced an entity that is temporarily unmodifiable, such as a user name that was deleted and then recreated. The error indicates that the request is likely to succeed if you try again after waiting several minutes. The error message describes the entity. * ErrCodePasswordPolicyViolationException "PasswordPolicyViolation" The request was rejected because the provided password did not meet the requirements imposed by the account password policy. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ChangePassword
func (c *IAM) ChangePasswordRequest(input *ChangePasswordInput) (req *request.Request, output *ChangePasswordOutput)
ChangePasswordRequest generates a "aws/request.Request" representing the client's request for the ChangePassword operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See ChangePassword for more information on using the ChangePassword API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the ChangePasswordRequest method.
req, resp := client.ChangePasswordRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/ChangePassword
func (c *IAM) ChangePasswordWithContext(ctx aws.Context, input *ChangePasswordInput, opts ...request.Option) (*ChangePasswordOutput, error)
ChangePasswordWithContext is the same as ChangePassword with the addition of the ability to pass a context and additional request options.
See ChangePassword for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateAccessKey(input *CreateAccessKeyInput) (*CreateAccessKeyOutput, error)
CreateAccessKey API operation for AWS Identity and Access Management.
Creates a new AWS secret access key and corresponding AWS access key ID for the specified user. The default status for new keys is Active.
If you do not specify a user name, IAM determines the user name implicitly based on the AWS access key ID signing the request. This operation works for access keys under the AWS account. Consequently, you can use this operation to manage AWS account root user credentials. This is true even if the AWS account has no associated users.
For information about limits on the number of keys you can create, see Limitations on IAM Entities (https://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the IAM User Guide.
To ensure the security of your AWS account, the secret access key is accessible only during key and user creation. You must save the key (for example, in a text file) if you want to be able to access it again. If a secret key is lost, you can delete the access keys for the associated user and then create new keys.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateAccessKey for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateAccessKey
func (c *IAM) CreateAccessKeyRequest(input *CreateAccessKeyInput) (req *request.Request, output *CreateAccessKeyOutput)
CreateAccessKeyRequest generates a "aws/request.Request" representing the client's request for the CreateAccessKey operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateAccessKey for more information on using the CreateAccessKey API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateAccessKeyRequest method.
req, resp := client.CreateAccessKeyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateAccessKey
func (c *IAM) CreateAccessKeyWithContext(ctx aws.Context, input *CreateAccessKeyInput, opts ...request.Option) (*CreateAccessKeyOutput, error)
CreateAccessKeyWithContext is the same as CreateAccessKey with the addition of the ability to pass a context and additional request options.
See CreateAccessKey for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateAccountAlias(input *CreateAccountAliasInput) (*CreateAccountAliasOutput, error)
CreateAccountAlias API operation for AWS Identity and Access Management.
Creates an alias for your AWS account. For information about using an AWS account alias, see Using an Alias for Your AWS Account ID (https://docs.aws.amazon.com/IAM/latest/UserGuide/AccountAlias.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateAccountAlias for usage and error information.
Returned Error Codes:
* ErrCodeEntityAlreadyExistsException "EntityAlreadyExists" The request was rejected because it attempted to create a resource that already exists. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateAccountAlias
func (c *IAM) CreateAccountAliasRequest(input *CreateAccountAliasInput) (req *request.Request, output *CreateAccountAliasOutput)
CreateAccountAliasRequest generates a "aws/request.Request" representing the client's request for the CreateAccountAlias operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateAccountAlias for more information on using the CreateAccountAlias API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateAccountAliasRequest method.
req, resp := client.CreateAccountAliasRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateAccountAlias
func (c *IAM) CreateAccountAliasWithContext(ctx aws.Context, input *CreateAccountAliasInput, opts ...request.Option) (*CreateAccountAliasOutput, error)
CreateAccountAliasWithContext is the same as CreateAccountAlias with the addition of the ability to pass a context and additional request options.
See CreateAccountAlias for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateGroup(input *CreateGroupInput) (*CreateGroupOutput, error)
CreateGroup API operation for AWS Identity and Access Management.
Creates a new group.
For information about the number of groups you can create, see Limitations on IAM Entities (https://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateGroup for usage and error information.
Returned Error Codes:
* ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeEntityAlreadyExistsException "EntityAlreadyExists" The request was rejected because it attempted to create a resource that already exists. * ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateGroup
func (c *IAM) CreateGroupRequest(input *CreateGroupInput) (req *request.Request, output *CreateGroupOutput)
CreateGroupRequest generates a "aws/request.Request" representing the client's request for the CreateGroup operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateGroup for more information on using the CreateGroup API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateGroupRequest method.
req, resp := client.CreateGroupRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateGroup
func (c *IAM) CreateGroupWithContext(ctx aws.Context, input *CreateGroupInput, opts ...request.Option) (*CreateGroupOutput, error)
CreateGroupWithContext is the same as CreateGroup with the addition of the ability to pass a context and additional request options.
See CreateGroup for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateInstanceProfile(input *CreateInstanceProfileInput) (*CreateInstanceProfileOutput, error)
CreateInstanceProfile API operation for AWS Identity and Access Management.
Creates a new instance profile. For information about instance profiles, go to About Instance Profiles (https://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html).
For information about the number of instance profiles you can create, see Limitations on IAM Entities (https://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateInstanceProfile for usage and error information.
Returned Error Codes:
* ErrCodeEntityAlreadyExistsException "EntityAlreadyExists" The request was rejected because it attempted to create a resource that already exists. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateInstanceProfile
func (c *IAM) CreateInstanceProfileRequest(input *CreateInstanceProfileInput) (req *request.Request, output *CreateInstanceProfileOutput)
CreateInstanceProfileRequest generates a "aws/request.Request" representing the client's request for the CreateInstanceProfile operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateInstanceProfile for more information on using the CreateInstanceProfile API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateInstanceProfileRequest method.
req, resp := client.CreateInstanceProfileRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateInstanceProfile
func (c *IAM) CreateInstanceProfileWithContext(ctx aws.Context, input *CreateInstanceProfileInput, opts ...request.Option) (*CreateInstanceProfileOutput, error)
CreateInstanceProfileWithContext is the same as CreateInstanceProfile with the addition of the ability to pass a context and additional request options.
See CreateInstanceProfile for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateLoginProfile(input *CreateLoginProfileInput) (*CreateLoginProfileOutput, error)
CreateLoginProfile API operation for AWS Identity and Access Management.
Creates a password for the specified user, giving the user the ability to access AWS services through the AWS Management Console. For more information about managing passwords, see Managing Passwords (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingLogins.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateLoginProfile for usage and error information.
Returned Error Codes:
* ErrCodeEntityAlreadyExistsException "EntityAlreadyExists" The request was rejected because it attempted to create a resource that already exists. * ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodePasswordPolicyViolationException "PasswordPolicyViolation" The request was rejected because the provided password did not meet the requirements imposed by the account password policy. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateLoginProfile
func (c *IAM) CreateLoginProfileRequest(input *CreateLoginProfileInput) (req *request.Request, output *CreateLoginProfileOutput)
CreateLoginProfileRequest generates a "aws/request.Request" representing the client's request for the CreateLoginProfile operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateLoginProfile for more information on using the CreateLoginProfile API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateLoginProfileRequest method.
req, resp := client.CreateLoginProfileRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateLoginProfile
func (c *IAM) CreateLoginProfileWithContext(ctx aws.Context, input *CreateLoginProfileInput, opts ...request.Option) (*CreateLoginProfileOutput, error)
CreateLoginProfileWithContext is the same as CreateLoginProfile with the addition of the ability to pass a context and additional request options.
See CreateLoginProfile for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateOpenIDConnectProvider(input *CreateOpenIDConnectProviderInput) (*CreateOpenIDConnectProviderOutput, error)
CreateOpenIDConnectProvider API operation for AWS Identity and Access Management.
Creates an IAM entity to describe an identity provider (IdP) that supports OpenID Connect (OIDC) (http://openid.net/connect/).
The OIDC provider that you create with this operation can be used as a principal in a role's trust policy. Such a policy establishes a trust relationship between AWS and the OIDC provider.
When you create the IAM OIDC provider, you specify the following:
* The URL of the OIDC identity provider (IdP) to trust * A list of client IDs (also known as audiences) that identify the application or applications that are allowed to authenticate using the OIDC provider * A list of thumbprints of the server certificate(s) that the IdP uses
You get all of this information from the OIDC IdP that you want to use to access AWS.
The trust for the OIDC provider is derived from the IAM provider that this operation creates. Therefore, it is best to limit access to the CreateOpenIDConnectProvider operation to highly privileged users.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateOpenIDConnectProvider for usage and error information.
Returned Error Codes:
* ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeEntityAlreadyExistsException "EntityAlreadyExists" The request was rejected because it attempted to create a resource that already exists. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateOpenIDConnectProvider
func (c *IAM) CreateOpenIDConnectProviderRequest(input *CreateOpenIDConnectProviderInput) (req *request.Request, output *CreateOpenIDConnectProviderOutput)
CreateOpenIDConnectProviderRequest generates a "aws/request.Request" representing the client's request for the CreateOpenIDConnectProvider operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateOpenIDConnectProvider for more information on using the CreateOpenIDConnectProvider API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateOpenIDConnectProviderRequest method.
req, resp := client.CreateOpenIDConnectProviderRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateOpenIDConnectProvider
func (c *IAM) CreateOpenIDConnectProviderWithContext(ctx aws.Context, input *CreateOpenIDConnectProviderInput, opts ...request.Option) (*CreateOpenIDConnectProviderOutput, error)
CreateOpenIDConnectProviderWithContext is the same as CreateOpenIDConnectProvider with the addition of the ability to pass a context and additional request options.
See CreateOpenIDConnectProvider for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreatePolicy(input *CreatePolicyInput) (*CreatePolicyOutput, error)
CreatePolicy API operation for AWS Identity and Access Management.
Creates a new managed policy for your AWS account.
This operation creates a policy version with a version identifier of v1 and sets v1 as the policy's default version. For more information about policy versions, see Versioning for Managed Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) in the IAM User Guide.
For more information about managed policies in general, see Managed Policies and Inline Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreatePolicy for usage and error information.
Returned Error Codes:
* ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeEntityAlreadyExistsException "EntityAlreadyExists" The request was rejected because it attempted to create a resource that already exists. * ErrCodeMalformedPolicyDocumentException "MalformedPolicyDocument" The request was rejected because the policy document was malformed. The error message describes the specific error. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreatePolicy
func (c *IAM) CreatePolicyRequest(input *CreatePolicyInput) (req *request.Request, output *CreatePolicyOutput)
CreatePolicyRequest generates a "aws/request.Request" representing the client's request for the CreatePolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreatePolicy for more information on using the CreatePolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreatePolicyRequest method.
req, resp := client.CreatePolicyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreatePolicy
func (c *IAM) CreatePolicyVersion(input *CreatePolicyVersionInput) (*CreatePolicyVersionOutput, error)
CreatePolicyVersion API operation for AWS Identity and Access Management.
Creates a new version of the specified managed policy. To update a managed policy, you create a new policy version. A managed policy can have up to five versions. If the policy has five versions, you must delete an existing version using DeletePolicyVersion before you create a new version.
Optionally, you can set the new version as the policy's default version. The default version is the version that is in effect for the IAM users, groups, and roles to which the policy is attached.
For more information about managed policy versions, see Versioning for Managed Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreatePolicyVersion for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeMalformedPolicyDocumentException "MalformedPolicyDocument" The request was rejected because the policy document was malformed. The error message describes the specific error. * ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreatePolicyVersion
func (c *IAM) CreatePolicyVersionRequest(input *CreatePolicyVersionInput) (req *request.Request, output *CreatePolicyVersionOutput)
CreatePolicyVersionRequest generates a "aws/request.Request" representing the client's request for the CreatePolicyVersion operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreatePolicyVersion for more information on using the CreatePolicyVersion API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreatePolicyVersionRequest method.
req, resp := client.CreatePolicyVersionRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreatePolicyVersion
func (c *IAM) CreatePolicyVersionWithContext(ctx aws.Context, input *CreatePolicyVersionInput, opts ...request.Option) (*CreatePolicyVersionOutput, error)
CreatePolicyVersionWithContext is the same as CreatePolicyVersion with the addition of the ability to pass a context and additional request options.
See CreatePolicyVersion for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreatePolicyWithContext(ctx aws.Context, input *CreatePolicyInput, opts ...request.Option) (*CreatePolicyOutput, error)
CreatePolicyWithContext is the same as CreatePolicy with the addition of the ability to pass a context and additional request options.
See CreatePolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateRole(input *CreateRoleInput) (*CreateRoleOutput, error)
CreateRole API operation for AWS Identity and Access Management.
Creates a new role for your AWS account. For more information about roles, go to IAM Roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html). For information about limitations on role names and the number of roles you can create, go to Limitations on IAM Entities (https://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateRole for usage and error information.
Returned Error Codes:
* ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeEntityAlreadyExistsException "EntityAlreadyExists" The request was rejected because it attempted to create a resource that already exists. * ErrCodeMalformedPolicyDocumentException "MalformedPolicyDocument" The request was rejected because the policy document was malformed. The error message describes the specific error. * ErrCodeConcurrentModificationException "ConcurrentModification" The request was rejected because multiple requests to change this object were submitted simultaneously. Wait a few minutes and submit your request again. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateRole
func (c *IAM) CreateRoleRequest(input *CreateRoleInput) (req *request.Request, output *CreateRoleOutput)
CreateRoleRequest generates a "aws/request.Request" representing the client's request for the CreateRole operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateRole for more information on using the CreateRole API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateRoleRequest method.
req, resp := client.CreateRoleRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateRole
func (c *IAM) CreateRoleWithContext(ctx aws.Context, input *CreateRoleInput, opts ...request.Option) (*CreateRoleOutput, error)
CreateRoleWithContext is the same as CreateRole with the addition of the ability to pass a context and additional request options.
See CreateRole for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateSAMLProvider(input *CreateSAMLProviderInput) (*CreateSAMLProviderOutput, error)
CreateSAMLProvider API operation for AWS Identity and Access Management.
Creates an IAM resource that describes an identity provider (IdP) that supports SAML 2.0.
The SAML provider resource that you create with this operation can be used as a principal in an IAM role's trust policy. Such a policy can enable federated users who sign in using the SAML IdP to assume the role. You can create an IAM role that supports Web-based single sign-on (SSO) to the AWS Management Console or one that supports API access to AWS.
When you create the SAML provider resource, you upload a SAML metadata document that you get from your IdP. That document includes the issuer's name, expiration information, and keys that can be used to validate the SAML authentication response (assertions) that the IdP sends. You must generate the metadata document using the identity management software that is used as your organization's IdP.
This operation requires Signature Version 4 (https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html).
For more information, see Enabling SAML 2.0 Federated Users to Access the AWS Management Console (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-saml.html) and About SAML 2.0-based Federation (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_saml.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateSAMLProvider for usage and error information.
Returned Error Codes:
* ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeEntityAlreadyExistsException "EntityAlreadyExists" The request was rejected because it attempted to create a resource that already exists. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateSAMLProvider
func (c *IAM) CreateSAMLProviderRequest(input *CreateSAMLProviderInput) (req *request.Request, output *CreateSAMLProviderOutput)
CreateSAMLProviderRequest generates a "aws/request.Request" representing the client's request for the CreateSAMLProvider operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateSAMLProvider for more information on using the CreateSAMLProvider API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateSAMLProviderRequest method.
req, resp := client.CreateSAMLProviderRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateSAMLProvider
func (c *IAM) CreateSAMLProviderWithContext(ctx aws.Context, input *CreateSAMLProviderInput, opts ...request.Option) (*CreateSAMLProviderOutput, error)
CreateSAMLProviderWithContext is the same as CreateSAMLProvider with the addition of the ability to pass a context and additional request options.
See CreateSAMLProvider for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateServiceLinkedRole(input *CreateServiceLinkedRoleInput) (*CreateServiceLinkedRoleOutput, error)
CreateServiceLinkedRole API operation for AWS Identity and Access Management.
Creates an IAM role that is linked to a specific AWS service. The service controls the attached policies and when the role can be deleted. This helps ensure that the service is not broken by an unexpectedly changed or deleted role, which could put your AWS resources into an unknown state. Allowing the service to control the role helps improve service stability and proper cleanup when a service and its role are no longer needed. For more information, see Using Service-Linked Roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/using-service-linked-roles.html) in the IAM User Guide.
To attach a policy to this service-linked role, you must make the request using the AWS service that depends on this role.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateServiceLinkedRole for usage and error information.
Returned Error Codes:
* ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateServiceLinkedRole
func (c *IAM) CreateServiceLinkedRoleRequest(input *CreateServiceLinkedRoleInput) (req *request.Request, output *CreateServiceLinkedRoleOutput)
CreateServiceLinkedRoleRequest generates a "aws/request.Request" representing the client's request for the CreateServiceLinkedRole operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateServiceLinkedRole for more information on using the CreateServiceLinkedRole API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateServiceLinkedRoleRequest method.
req, resp := client.CreateServiceLinkedRoleRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateServiceLinkedRole
func (c *IAM) CreateServiceLinkedRoleWithContext(ctx aws.Context, input *CreateServiceLinkedRoleInput, opts ...request.Option) (*CreateServiceLinkedRoleOutput, error)
CreateServiceLinkedRoleWithContext is the same as CreateServiceLinkedRole with the addition of the ability to pass a context and additional request options.
See CreateServiceLinkedRole for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateServiceSpecificCredential(input *CreateServiceSpecificCredentialInput) (*CreateServiceSpecificCredentialOutput, error)
CreateServiceSpecificCredential API operation for AWS Identity and Access Management.
Generates a set of credentials consisting of a user name and password that can be used to access the service specified in the request. These credentials are generated by IAM, and can be used only for the specified service.
You can have a maximum of two sets of service-specific credentials for each supported service per user.
The only supported service at this time is AWS CodeCommit.
You can reset the password to a new service-generated value by calling ResetServiceSpecificCredential.
For more information about service-specific credentials, see Using IAM with AWS CodeCommit: Git Credentials, SSH Keys, and AWS Access Keys (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_ssh-keys.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateServiceSpecificCredential for usage and error information.
Returned Error Codes:
* ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeServiceNotSupportedException "NotSupportedService" The specified service does not support service-specific credentials.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateServiceSpecificCredential
func (c *IAM) CreateServiceSpecificCredentialRequest(input *CreateServiceSpecificCredentialInput) (req *request.Request, output *CreateServiceSpecificCredentialOutput)
CreateServiceSpecificCredentialRequest generates a "aws/request.Request" representing the client's request for the CreateServiceSpecificCredential operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateServiceSpecificCredential for more information on using the CreateServiceSpecificCredential API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateServiceSpecificCredentialRequest method.
req, resp := client.CreateServiceSpecificCredentialRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateServiceSpecificCredential
func (c *IAM) CreateServiceSpecificCredentialWithContext(ctx aws.Context, input *CreateServiceSpecificCredentialInput, opts ...request.Option) (*CreateServiceSpecificCredentialOutput, error)
CreateServiceSpecificCredentialWithContext is the same as CreateServiceSpecificCredential with the addition of the ability to pass a context and additional request options.
See CreateServiceSpecificCredential for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateUser(input *CreateUserInput) (*CreateUserOutput, error)
CreateUser API operation for AWS Identity and Access Management.
Creates a new IAM user for your AWS account.
For information about limitations on the number of IAM users you can create, see Limitations on IAM Entities (https://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateUser for usage and error information.
Returned Error Codes:
* ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeEntityAlreadyExistsException "EntityAlreadyExists" The request was rejected because it attempted to create a resource that already exists. * ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeConcurrentModificationException "ConcurrentModification" The request was rejected because multiple requests to change this object were submitted simultaneously. Wait a few minutes and submit your request again. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateUser
func (c *IAM) CreateUserRequest(input *CreateUserInput) (req *request.Request, output *CreateUserOutput)
CreateUserRequest generates a "aws/request.Request" representing the client's request for the CreateUser operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateUser for more information on using the CreateUser API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateUserRequest method.
req, resp := client.CreateUserRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateUser
func (c *IAM) CreateUserWithContext(ctx aws.Context, input *CreateUserInput, opts ...request.Option) (*CreateUserOutput, error)
CreateUserWithContext is the same as CreateUser with the addition of the ability to pass a context and additional request options.
See CreateUser for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) CreateVirtualMFADevice(input *CreateVirtualMFADeviceInput) (*CreateVirtualMFADeviceOutput, error)
CreateVirtualMFADevice API operation for AWS Identity and Access Management.
Creates a new virtual MFA device for the AWS account. After creating the virtual MFA, use EnableMFADevice to attach the MFA device to an IAM user. For more information about creating and working with virtual MFA devices, go to Using a Virtual MFA Device (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html) in the IAM User Guide.
For information about limits on the number of MFA devices you can create, see Limitations on Entities (https://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html) in the IAM User Guide.
The seed information contained in the QR code and the Base32 string should be treated like any other secret access information. In other words, protect the seed information as you would your AWS access keys or your passwords. After you provision your virtual device, you should ensure that the information is destroyed following secure procedures.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation CreateVirtualMFADevice for usage and error information.
Returned Error Codes:
* ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeEntityAlreadyExistsException "EntityAlreadyExists" The request was rejected because it attempted to create a resource that already exists. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateVirtualMFADevice
func (c *IAM) CreateVirtualMFADeviceRequest(input *CreateVirtualMFADeviceInput) (req *request.Request, output *CreateVirtualMFADeviceOutput)
CreateVirtualMFADeviceRequest generates a "aws/request.Request" representing the client's request for the CreateVirtualMFADevice operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See CreateVirtualMFADevice for more information on using the CreateVirtualMFADevice API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the CreateVirtualMFADeviceRequest method.
req, resp := client.CreateVirtualMFADeviceRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/CreateVirtualMFADevice
func (c *IAM) CreateVirtualMFADeviceWithContext(ctx aws.Context, input *CreateVirtualMFADeviceInput, opts ...request.Option) (*CreateVirtualMFADeviceOutput, error)
CreateVirtualMFADeviceWithContext is the same as CreateVirtualMFADevice with the addition of the ability to pass a context and additional request options.
See CreateVirtualMFADevice for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeactivateMFADevice(input *DeactivateMFADeviceInput) (*DeactivateMFADeviceOutput, error)
DeactivateMFADevice API operation for AWS Identity and Access Management.
Deactivates the specified MFA device and removes it from association with the user name for which it was originally enabled.
For more information about creating and working with virtual MFA devices, go to Enabling a Virtual Multi-factor Authentication (MFA) Device (https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_VirtualMFA.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeactivateMFADevice for usage and error information.
Returned Error Codes:
* ErrCodeEntityTemporarilyUnmodifiableException "EntityTemporarilyUnmodifiable" The request was rejected because it referenced an entity that is temporarily unmodifiable, such as a user name that was deleted and then recreated. The error indicates that the request is likely to succeed if you try again after waiting several minutes. The error message describes the entity. * ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeactivateMFADevice
func (c *IAM) DeactivateMFADeviceRequest(input *DeactivateMFADeviceInput) (req *request.Request, output *DeactivateMFADeviceOutput)
DeactivateMFADeviceRequest generates a "aws/request.Request" representing the client's request for the DeactivateMFADevice operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeactivateMFADevice for more information on using the DeactivateMFADevice API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeactivateMFADeviceRequest method.
req, resp := client.DeactivateMFADeviceRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeactivateMFADevice
func (c *IAM) DeactivateMFADeviceWithContext(ctx aws.Context, input *DeactivateMFADeviceInput, opts ...request.Option) (*DeactivateMFADeviceOutput, error)
DeactivateMFADeviceWithContext is the same as DeactivateMFADevice with the addition of the ability to pass a context and additional request options.
See DeactivateMFADevice for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteAccessKey(input *DeleteAccessKeyInput) (*DeleteAccessKeyOutput, error)
DeleteAccessKey API operation for AWS Identity and Access Management.
Deletes the access key pair associated with the specified IAM user.
If you do not specify a user name, IAM determines the user name implicitly based on the AWS access key ID signing the request. This operation works for access keys under the AWS account. Consequently, you can use this operation to manage AWS account root user credentials even if the AWS account has no associated users.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteAccessKey for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteAccessKey
func (c *IAM) DeleteAccessKeyRequest(input *DeleteAccessKeyInput) (req *request.Request, output *DeleteAccessKeyOutput)
DeleteAccessKeyRequest generates a "aws/request.Request" representing the client's request for the DeleteAccessKey operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteAccessKey for more information on using the DeleteAccessKey API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteAccessKeyRequest method.
req, resp := client.DeleteAccessKeyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteAccessKey
func (c *IAM) DeleteAccessKeyWithContext(ctx aws.Context, input *DeleteAccessKeyInput, opts ...request.Option) (*DeleteAccessKeyOutput, error)
DeleteAccessKeyWithContext is the same as DeleteAccessKey with the addition of the ability to pass a context and additional request options.
See DeleteAccessKey for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteAccountAlias(input *DeleteAccountAliasInput) (*DeleteAccountAliasOutput, error)
DeleteAccountAlias API operation for AWS Identity and Access Management.
Deletes the specified AWS account alias. For information about using an AWS account alias, see Using an Alias for Your AWS Account ID (https://docs.aws.amazon.com/IAM/latest/UserGuide/AccountAlias.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteAccountAlias for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteAccountAlias
func (c *IAM) DeleteAccountAliasRequest(input *DeleteAccountAliasInput) (req *request.Request, output *DeleteAccountAliasOutput)
DeleteAccountAliasRequest generates a "aws/request.Request" representing the client's request for the DeleteAccountAlias operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteAccountAlias for more information on using the DeleteAccountAlias API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteAccountAliasRequest method.
req, resp := client.DeleteAccountAliasRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteAccountAlias
func (c *IAM) DeleteAccountAliasWithContext(ctx aws.Context, input *DeleteAccountAliasInput, opts ...request.Option) (*DeleteAccountAliasOutput, error)
DeleteAccountAliasWithContext is the same as DeleteAccountAlias with the addition of the ability to pass a context and additional request options.
See DeleteAccountAlias for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteAccountPasswordPolicy(input *DeleteAccountPasswordPolicyInput) (*DeleteAccountPasswordPolicyOutput, error)
DeleteAccountPasswordPolicy API operation for AWS Identity and Access Management.
Deletes the password policy for the AWS account. There are no parameters.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteAccountPasswordPolicy for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteAccountPasswordPolicy
func (c *IAM) DeleteAccountPasswordPolicyRequest(input *DeleteAccountPasswordPolicyInput) (req *request.Request, output *DeleteAccountPasswordPolicyOutput)
DeleteAccountPasswordPolicyRequest generates a "aws/request.Request" representing the client's request for the DeleteAccountPasswordPolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteAccountPasswordPolicy for more information on using the DeleteAccountPasswordPolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteAccountPasswordPolicyRequest method.
req, resp := client.DeleteAccountPasswordPolicyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteAccountPasswordPolicy
func (c *IAM) DeleteAccountPasswordPolicyWithContext(ctx aws.Context, input *DeleteAccountPasswordPolicyInput, opts ...request.Option) (*DeleteAccountPasswordPolicyOutput, error)
DeleteAccountPasswordPolicyWithContext is the same as DeleteAccountPasswordPolicy with the addition of the ability to pass a context and additional request options.
See DeleteAccountPasswordPolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteGroup(input *DeleteGroupInput) (*DeleteGroupOutput, error)
DeleteGroup API operation for AWS Identity and Access Management.
Deletes the specified IAM group. The group must not contain any users or have any attached policies.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteGroup for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeDeleteConflictException "DeleteConflict" The request was rejected because it attempted to delete a resource that has attached subordinate entities. The error message describes these entities. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteGroup
func (c *IAM) DeleteGroupPolicy(input *DeleteGroupPolicyInput) (*DeleteGroupPolicyOutput, error)
DeleteGroupPolicy API operation for AWS Identity and Access Management.
Deletes the specified inline policy that is embedded in the specified IAM group.
A group can also have managed policies attached to it. To detach a managed policy from a group, use DetachGroupPolicy. For more information about policies, refer to Managed Policies and Inline Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteGroupPolicy for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteGroupPolicy
func (c *IAM) DeleteGroupPolicyRequest(input *DeleteGroupPolicyInput) (req *request.Request, output *DeleteGroupPolicyOutput)
DeleteGroupPolicyRequest generates a "aws/request.Request" representing the client's request for the DeleteGroupPolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteGroupPolicy for more information on using the DeleteGroupPolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteGroupPolicyRequest method.
req, resp := client.DeleteGroupPolicyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteGroupPolicy
func (c *IAM) DeleteGroupPolicyWithContext(ctx aws.Context, input *DeleteGroupPolicyInput, opts ...request.Option) (*DeleteGroupPolicyOutput, error)
DeleteGroupPolicyWithContext is the same as DeleteGroupPolicy with the addition of the ability to pass a context and additional request options.
See DeleteGroupPolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteGroupRequest(input *DeleteGroupInput) (req *request.Request, output *DeleteGroupOutput)
DeleteGroupRequest generates a "aws/request.Request" representing the client's request for the DeleteGroup operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteGroup for more information on using the DeleteGroup API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteGroupRequest method.
req, resp := client.DeleteGroupRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteGroup
func (c *IAM) DeleteGroupWithContext(ctx aws.Context, input *DeleteGroupInput, opts ...request.Option) (*DeleteGroupOutput, error)
DeleteGroupWithContext is the same as DeleteGroup with the addition of the ability to pass a context and additional request options.
See DeleteGroup for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteInstanceProfile(input *DeleteInstanceProfileInput) (*DeleteInstanceProfileOutput, error)
DeleteInstanceProfile API operation for AWS Identity and Access Management.
Deletes the specified instance profile. The instance profile must not have an associated role.
Make sure that you do not have any Amazon EC2 instances running with the instance profile you are about to delete. Deleting a role or instance profile that is associated with a running instance will break any applications running on the instance.
For more information about instance profiles, go to About Instance Profiles (https://docs.aws.amazon.com/IAM/latest/UserGuide/AboutInstanceProfiles.html).
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteInstanceProfile for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeDeleteConflictException "DeleteConflict" The request was rejected because it attempted to delete a resource that has attached subordinate entities. The error message describes these entities. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteInstanceProfile
func (c *IAM) DeleteInstanceProfileRequest(input *DeleteInstanceProfileInput) (req *request.Request, output *DeleteInstanceProfileOutput)
DeleteInstanceProfileRequest generates a "aws/request.Request" representing the client's request for the DeleteInstanceProfile operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteInstanceProfile for more information on using the DeleteInstanceProfile API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteInstanceProfileRequest method.
req, resp := client.DeleteInstanceProfileRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteInstanceProfile
func (c *IAM) DeleteInstanceProfileWithContext(ctx aws.Context, input *DeleteInstanceProfileInput, opts ...request.Option) (*DeleteInstanceProfileOutput, error)
DeleteInstanceProfileWithContext is the same as DeleteInstanceProfile with the addition of the ability to pass a context and additional request options.
See DeleteInstanceProfile for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteLoginProfile(input *DeleteLoginProfileInput) (*DeleteLoginProfileOutput, error)
DeleteLoginProfile API operation for AWS Identity and Access Management.
Deletes the password for the specified IAM user, which terminates the user's ability to access AWS services through the AWS Management Console.
Deleting a user's password does not prevent a user from accessing AWS through the command line interface or the API. To prevent all user access, you must also either make any access keys inactive or delete them. For more information about making keys inactive or deleting them, see UpdateAccessKey and DeleteAccessKey.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteLoginProfile for usage and error information.
Returned Error Codes:
* ErrCodeEntityTemporarilyUnmodifiableException "EntityTemporarilyUnmodifiable" The request was rejected because it referenced an entity that is temporarily unmodifiable, such as a user name that was deleted and then recreated. The error indicates that the request is likely to succeed if you try again after waiting several minutes. The error message describes the entity. * ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteLoginProfile
func (c *IAM) DeleteLoginProfileRequest(input *DeleteLoginProfileInput) (req *request.Request, output *DeleteLoginProfileOutput)
DeleteLoginProfileRequest generates a "aws/request.Request" representing the client's request for the DeleteLoginProfile operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteLoginProfile for more information on using the DeleteLoginProfile API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteLoginProfileRequest method.
req, resp := client.DeleteLoginProfileRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteLoginProfile
func (c *IAM) DeleteLoginProfileWithContext(ctx aws.Context, input *DeleteLoginProfileInput, opts ...request.Option) (*DeleteLoginProfileOutput, error)
DeleteLoginProfileWithContext is the same as DeleteLoginProfile with the addition of the ability to pass a context and additional request options.
See DeleteLoginProfile for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteOpenIDConnectProvider(input *DeleteOpenIDConnectProviderInput) (*DeleteOpenIDConnectProviderOutput, error)
DeleteOpenIDConnectProvider API operation for AWS Identity and Access Management.
Deletes an OpenID Connect identity provider (IdP) resource object in IAM.
Deleting an IAM OIDC provider resource does not update any roles that reference the provider as a principal in their trust policies. Any attempt to assume a role that references a deleted provider fails.
This operation is idempotent; it does not fail or return an error if you call the operation for a provider that does not exist.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteOpenIDConnectProvider for usage and error information.
Returned Error Codes:
* ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteOpenIDConnectProvider
func (c *IAM) DeleteOpenIDConnectProviderRequest(input *DeleteOpenIDConnectProviderInput) (req *request.Request, output *DeleteOpenIDConnectProviderOutput)
DeleteOpenIDConnectProviderRequest generates a "aws/request.Request" representing the client's request for the DeleteOpenIDConnectProvider operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteOpenIDConnectProvider for more information on using the DeleteOpenIDConnectProvider API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteOpenIDConnectProviderRequest method.
req, resp := client.DeleteOpenIDConnectProviderRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteOpenIDConnectProvider
func (c *IAM) DeleteOpenIDConnectProviderWithContext(ctx aws.Context, input *DeleteOpenIDConnectProviderInput, opts ...request.Option) (*DeleteOpenIDConnectProviderOutput, error)
DeleteOpenIDConnectProviderWithContext is the same as DeleteOpenIDConnectProvider with the addition of the ability to pass a context and additional request options.
See DeleteOpenIDConnectProvider for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeletePolicy(input *DeletePolicyInput) (*DeletePolicyOutput, error)
DeletePolicy API operation for AWS Identity and Access Management.
Deletes the specified managed policy.
Before you can delete a managed policy, you must first detach the policy from all users, groups, and roles that it is attached to. In addition, you must delete all the policy's versions. The following steps describe the process for deleting a managed policy:
* Detach the policy from all users, groups, and roles that the policy is attached to, using the DetachUserPolicy, DetachGroupPolicy, or DetachRolePolicy API operations. To list all the users, groups, and roles that a policy is attached to, use ListEntitiesForPolicy. * Delete all versions of the policy using DeletePolicyVersion. To list the policy's versions, use ListPolicyVersions. You cannot use DeletePolicyVersion to delete the version that is marked as the default version. You delete the policy's default version in the next step of the process. * Delete the policy (this automatically deletes the policy's default version) using this API.
For information about managed policies, see Managed Policies and Inline Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeletePolicy for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeDeleteConflictException "DeleteConflict" The request was rejected because it attempted to delete a resource that has attached subordinate entities. The error message describes these entities. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeletePolicy
func (c *IAM) DeletePolicyRequest(input *DeletePolicyInput) (req *request.Request, output *DeletePolicyOutput)
DeletePolicyRequest generates a "aws/request.Request" representing the client's request for the DeletePolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeletePolicy for more information on using the DeletePolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeletePolicyRequest method.
req, resp := client.DeletePolicyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeletePolicy
func (c *IAM) DeletePolicyVersion(input *DeletePolicyVersionInput) (*DeletePolicyVersionOutput, error)
DeletePolicyVersion API operation for AWS Identity and Access Management.
Deletes the specified version from the specified managed policy.
You cannot delete the default version from a policy using this API. To delete the default version from a policy, use DeletePolicy. To find out which version of a policy is marked as the default version, use ListPolicyVersions.
For information about versions for managed policies, see Versioning for Managed Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-versions.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeletePolicyVersion for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeDeleteConflictException "DeleteConflict" The request was rejected because it attempted to delete a resource that has attached subordinate entities. The error message describes these entities. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeletePolicyVersion
func (c *IAM) DeletePolicyVersionRequest(input *DeletePolicyVersionInput) (req *request.Request, output *DeletePolicyVersionOutput)
DeletePolicyVersionRequest generates a "aws/request.Request" representing the client's request for the DeletePolicyVersion operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeletePolicyVersion for more information on using the DeletePolicyVersion API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeletePolicyVersionRequest method.
req, resp := client.DeletePolicyVersionRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeletePolicyVersion
func (c *IAM) DeletePolicyVersionWithContext(ctx aws.Context, input *DeletePolicyVersionInput, opts ...request.Option) (*DeletePolicyVersionOutput, error)
DeletePolicyVersionWithContext is the same as DeletePolicyVersion with the addition of the ability to pass a context and additional request options.
See DeletePolicyVersion for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeletePolicyWithContext(ctx aws.Context, input *DeletePolicyInput, opts ...request.Option) (*DeletePolicyOutput, error)
DeletePolicyWithContext is the same as DeletePolicy with the addition of the ability to pass a context and additional request options.
See DeletePolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteRole(input *DeleteRoleInput) (*DeleteRoleOutput, error)
DeleteRole API operation for AWS Identity and Access Management.
Deletes the specified role. The role must not have any policies attached. For more information about roles, go to Working with Roles (https://docs.aws.amazon.com/IAM/latest/UserGuide/WorkingWithRoles.html).
Make sure that you do not have any Amazon EC2 instances running with the role you are about to delete. Deleting a role or instance profile that is associated with a running instance will break any applications running on the instance.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteRole for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeDeleteConflictException "DeleteConflict" The request was rejected because it attempted to delete a resource that has attached subordinate entities. The error message describes these entities. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeUnmodifiableEntityException "UnmodifiableEntity" The request was rejected because only the service that depends on the service-linked role can modify or delete the role on your behalf. The error message includes the name of the service that depends on this service-linked role. You must request the change through that service. * ErrCodeConcurrentModificationException "ConcurrentModification" The request was rejected because multiple requests to change this object were submitted simultaneously. Wait a few minutes and submit your request again. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteRole
func (c *IAM) DeleteRolePermissionsBoundary(input *DeleteRolePermissionsBoundaryInput) (*DeleteRolePermissionsBoundaryOutput, error)
DeleteRolePermissionsBoundary API operation for AWS Identity and Access Management.
Deletes the permissions boundary for the specified IAM role.
Deleting the permissions boundary for a role might increase its permissions. For example, it might allow anyone who assumes the role to perform all the actions granted in its permissions policies.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteRolePermissionsBoundary for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeUnmodifiableEntityException "UnmodifiableEntity" The request was rejected because only the service that depends on the service-linked role can modify or delete the role on your behalf. The error message includes the name of the service that depends on this service-linked role. You must request the change through that service. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteRolePermissionsBoundary
func (c *IAM) DeleteRolePermissionsBoundaryRequest(input *DeleteRolePermissionsBoundaryInput) (req *request.Request, output *DeleteRolePermissionsBoundaryOutput)
DeleteRolePermissionsBoundaryRequest generates a "aws/request.Request" representing the client's request for the DeleteRolePermissionsBoundary operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteRolePermissionsBoundary for more information on using the DeleteRolePermissionsBoundary API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteRolePermissionsBoundaryRequest method.
req, resp := client.DeleteRolePermissionsBoundaryRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteRolePermissionsBoundary
func (c *IAM) DeleteRolePermissionsBoundaryWithContext(ctx aws.Context, input *DeleteRolePermissionsBoundaryInput, opts ...request.Option) (*DeleteRolePermissionsBoundaryOutput, error)
DeleteRolePermissionsBoundaryWithContext is the same as DeleteRolePermissionsBoundary with the addition of the ability to pass a context and additional request options.
See DeleteRolePermissionsBoundary for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteRolePolicy(input *DeleteRolePolicyInput) (*DeleteRolePolicyOutput, error)
DeleteRolePolicy API operation for AWS Identity and Access Management.
Deletes the specified inline policy that is embedded in the specified IAM role.
A role can also have managed policies attached to it. To detach a managed policy from a role, use DetachRolePolicy. For more information about policies, refer to Managed Policies and Inline Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteRolePolicy for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeUnmodifiableEntityException "UnmodifiableEntity" The request was rejected because only the service that depends on the service-linked role can modify or delete the role on your behalf. The error message includes the name of the service that depends on this service-linked role. You must request the change through that service. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteRolePolicy
func (c *IAM) DeleteRolePolicyRequest(input *DeleteRolePolicyInput) (req *request.Request, output *DeleteRolePolicyOutput)
DeleteRolePolicyRequest generates a "aws/request.Request" representing the client's request for the DeleteRolePolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteRolePolicy for more information on using the DeleteRolePolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteRolePolicyRequest method.
req, resp := client.DeleteRolePolicyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteRolePolicy
func (c *IAM) DeleteRolePolicyWithContext(ctx aws.Context, input *DeleteRolePolicyInput, opts ...request.Option) (*DeleteRolePolicyOutput, error)
DeleteRolePolicyWithContext is the same as DeleteRolePolicy with the addition of the ability to pass a context and additional request options.
See DeleteRolePolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteRoleRequest(input *DeleteRoleInput) (req *request.Request, output *DeleteRoleOutput)
DeleteRoleRequest generates a "aws/request.Request" representing the client's request for the DeleteRole operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteRole for more information on using the DeleteRole API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteRoleRequest method.
req, resp := client.DeleteRoleRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteRole
func (c *IAM) DeleteRoleWithContext(ctx aws.Context, input *DeleteRoleInput, opts ...request.Option) (*DeleteRoleOutput, error)
DeleteRoleWithContext is the same as DeleteRole with the addition of the ability to pass a context and additional request options.
See DeleteRole for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteSAMLProvider(input *DeleteSAMLProviderInput) (*DeleteSAMLProviderOutput, error)
DeleteSAMLProvider API operation for AWS Identity and Access Management.
Deletes a SAML provider resource in IAM.
Deleting the provider resource from IAM does not update any roles that reference the SAML provider resource's ARN as a principal in their trust policies. Any attempt to assume a role that references a non-existent provider resource ARN fails.
This operation requires Signature Version 4 (https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html).
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteSAMLProvider for usage and error information.
Returned Error Codes:
* ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteSAMLProvider
func (c *IAM) DeleteSAMLProviderRequest(input *DeleteSAMLProviderInput) (req *request.Request, output *DeleteSAMLProviderOutput)
DeleteSAMLProviderRequest generates a "aws/request.Request" representing the client's request for the DeleteSAMLProvider operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteSAMLProvider for more information on using the DeleteSAMLProvider API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteSAMLProviderRequest method.
req, resp := client.DeleteSAMLProviderRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteSAMLProvider
func (c *IAM) DeleteSAMLProviderWithContext(ctx aws.Context, input *DeleteSAMLProviderInput, opts ...request.Option) (*DeleteSAMLProviderOutput, error)
DeleteSAMLProviderWithContext is the same as DeleteSAMLProvider with the addition of the ability to pass a context and additional request options.
See DeleteSAMLProvider for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteSSHPublicKey(input *DeleteSSHPublicKeyInput) (*DeleteSSHPublicKeyOutput, error)
DeleteSSHPublicKey API operation for AWS Identity and Access Management.
Deletes the specified SSH public key.
The SSH public key deleted by this operation is used only for authenticating the associated IAM user to an AWS CodeCommit repository. For more information about using SSH keys to authenticate to an AWS CodeCommit repository, see Set up AWS CodeCommit for SSH Connections (https://docs.aws.amazon.com/codecommit/latest/userguide/setting-up-credentials-ssh.html) in the AWS CodeCommit User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteSSHPublicKey for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteSSHPublicKey
func (c *IAM) DeleteSSHPublicKeyRequest(input *DeleteSSHPublicKeyInput) (req *request.Request, output *DeleteSSHPublicKeyOutput)
DeleteSSHPublicKeyRequest generates a "aws/request.Request" representing the client's request for the DeleteSSHPublicKey operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteSSHPublicKey for more information on using the DeleteSSHPublicKey API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteSSHPublicKeyRequest method.
req, resp := client.DeleteSSHPublicKeyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteSSHPublicKey
func (c *IAM) DeleteSSHPublicKeyWithContext(ctx aws.Context, input *DeleteSSHPublicKeyInput, opts ...request.Option) (*DeleteSSHPublicKeyOutput, error)
DeleteSSHPublicKeyWithContext is the same as DeleteSSHPublicKey with the addition of the ability to pass a context and additional request options.
See DeleteSSHPublicKey for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteServerCertificate(input *DeleteServerCertificateInput) (*DeleteServerCertificateOutput, error)
DeleteServerCertificate API operation for AWS Identity and Access Management.
Deletes the specified server certificate.
For more information about working with server certificates, see Working with Server Certificates (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_server-certs.html) in the IAM User Guide. This topic also includes a list of AWS services that can use the server certificates that you manage with IAM.
If you are using a server certificate with Elastic Load Balancing, deleting the certificate could have implications for your application. If Elastic Load Balancing doesn't detect the deletion of bound certificates, it may continue to use the certificates. This could cause Elastic Load Balancing to stop accepting traffic. We recommend that you remove the reference to the certificate from Elastic Load Balancing before using this command to delete the certificate. For more information, go to DeleteLoadBalancerListeners (https://docs.aws.amazon.com/ElasticLoadBalancing/latest/APIReference/API_DeleteLoadBalancerListeners.html) in the Elastic Load Balancing API Reference.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteServerCertificate for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeDeleteConflictException "DeleteConflict" The request was rejected because it attempted to delete a resource that has attached subordinate entities. The error message describes these entities. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteServerCertificate
func (c *IAM) DeleteServerCertificateRequest(input *DeleteServerCertificateInput) (req *request.Request, output *DeleteServerCertificateOutput)
DeleteServerCertificateRequest generates a "aws/request.Request" representing the client's request for the DeleteServerCertificate operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteServerCertificate for more information on using the DeleteServerCertificate API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteServerCertificateRequest method.
req, resp := client.DeleteServerCertificateRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteServerCertificate
func (c *IAM) DeleteServerCertificateWithContext(ctx aws.Context, input *DeleteServerCertificateInput, opts ...request.Option) (*DeleteServerCertificateOutput, error)
DeleteServerCertificateWithContext is the same as DeleteServerCertificate with the addition of the ability to pass a context and additional request options.
See DeleteServerCertificate for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteServiceLinkedRole(input *DeleteServiceLinkedRoleInput) (*DeleteServiceLinkedRoleOutput, error)
DeleteServiceLinkedRole API operation for AWS Identity and Access Management.
Submits a service-linked role deletion request and returns a DeletionTaskId, which you can use to check the status of the deletion. Before you call this operation, confirm that the role has no active sessions and that any resources used by the role in the linked service are deleted. If you call this operation more than once for the same service-linked role and an earlier deletion task is not complete, then the DeletionTaskId of the earlier request is returned.
If you submit a deletion request for a service-linked role whose linked service is still accessing a resource, then the deletion task fails. If it fails, the GetServiceLinkedRoleDeletionStatus API operation returns the reason for the failure, usually including the resources that must be deleted. To delete the service-linked role, you must first remove those resources from the linked service and then submit the deletion request again. Resources are specific to the service that is linked to the role. For more information about removing resources from a service, see the AWS documentation (http://docs.aws.amazon.com/) for your service.
For more information about service-linked roles, see Roles Terms and Concepts: AWS Service-Linked Role (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_terms-and-concepts.html#iam-term-service-linked-role) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteServiceLinkedRole for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteServiceLinkedRole
func (c *IAM) DeleteServiceLinkedRoleRequest(input *DeleteServiceLinkedRoleInput) (req *request.Request, output *DeleteServiceLinkedRoleOutput)
DeleteServiceLinkedRoleRequest generates a "aws/request.Request" representing the client's request for the DeleteServiceLinkedRole operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteServiceLinkedRole for more information on using the DeleteServiceLinkedRole API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteServiceLinkedRoleRequest method.
req, resp := client.DeleteServiceLinkedRoleRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteServiceLinkedRole
func (c *IAM) DeleteServiceLinkedRoleWithContext(ctx aws.Context, input *DeleteServiceLinkedRoleInput, opts ...request.Option) (*DeleteServiceLinkedRoleOutput, error)
DeleteServiceLinkedRoleWithContext is the same as DeleteServiceLinkedRole with the addition of the ability to pass a context and additional request options.
See DeleteServiceLinkedRole for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteServiceSpecificCredential(input *DeleteServiceSpecificCredentialInput) (*DeleteServiceSpecificCredentialOutput, error)
DeleteServiceSpecificCredential API operation for AWS Identity and Access Management.
Deletes the specified service-specific credential.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteServiceSpecificCredential for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteServiceSpecificCredential
func (c *IAM) DeleteServiceSpecificCredentialRequest(input *DeleteServiceSpecificCredentialInput) (req *request.Request, output *DeleteServiceSpecificCredentialOutput)
DeleteServiceSpecificCredentialRequest generates a "aws/request.Request" representing the client's request for the DeleteServiceSpecificCredential operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteServiceSpecificCredential for more information on using the DeleteServiceSpecificCredential API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteServiceSpecificCredentialRequest method.
req, resp := client.DeleteServiceSpecificCredentialRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteServiceSpecificCredential
func (c *IAM) DeleteServiceSpecificCredentialWithContext(ctx aws.Context, input *DeleteServiceSpecificCredentialInput, opts ...request.Option) (*DeleteServiceSpecificCredentialOutput, error)
DeleteServiceSpecificCredentialWithContext is the same as DeleteServiceSpecificCredential with the addition of the ability to pass a context and additional request options.
See DeleteServiceSpecificCredential for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteSigningCertificate(input *DeleteSigningCertificateInput) (*DeleteSigningCertificateOutput, error)
DeleteSigningCertificate API operation for AWS Identity and Access Management.
Deletes a signing certificate associated with the specified IAM user.
If you do not specify a user name, IAM determines the user name implicitly based on the AWS access key ID signing the request. This operation works for access keys under the AWS account. Consequently, you can use this operation to manage AWS account root user credentials even if the AWS account has no associated IAM users.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteSigningCertificate for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteSigningCertificate
func (c *IAM) DeleteSigningCertificateRequest(input *DeleteSigningCertificateInput) (req *request.Request, output *DeleteSigningCertificateOutput)
DeleteSigningCertificateRequest generates a "aws/request.Request" representing the client's request for the DeleteSigningCertificate operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteSigningCertificate for more information on using the DeleteSigningCertificate API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteSigningCertificateRequest method.
req, resp := client.DeleteSigningCertificateRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteSigningCertificate
func (c *IAM) DeleteSigningCertificateWithContext(ctx aws.Context, input *DeleteSigningCertificateInput, opts ...request.Option) (*DeleteSigningCertificateOutput, error)
DeleteSigningCertificateWithContext is the same as DeleteSigningCertificate with the addition of the ability to pass a context and additional request options.
See DeleteSigningCertificate for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteUser(input *DeleteUserInput) (*DeleteUserOutput, error)
DeleteUser API operation for AWS Identity and Access Management.
Deletes the specified IAM user. Unlike the AWS Management Console, when you delete a user programmatically, you must delete the items attached to the user manually, or the deletion fails. For more information, see Deleting an IAM User (https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_manage.html#id_users_deleting_cli). Before attempting to delete a user, remove the following items:
* Password (DeleteLoginProfile) * Access keys (DeleteAccessKey) * Signing certificate (DeleteSigningCertificate) * SSH public key (DeleteSSHPublicKey) * Git credentials (DeleteServiceSpecificCredential) * Multi-factor authentication (MFA) device (DeactivateMFADevice, DeleteVirtualMFADevice) * Inline policies (DeleteUserPolicy) * Attached managed policies (DetachUserPolicy) * Group memberships (RemoveUserFromGroup)
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteUser for usage and error information.
Returned Error Codes:
* ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeDeleteConflictException "DeleteConflict" The request was rejected because it attempted to delete a resource that has attached subordinate entities. The error message describes these entities. * ErrCodeConcurrentModificationException "ConcurrentModification" The request was rejected because multiple requests to change this object were submitted simultaneously. Wait a few minutes and submit your request again. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteUser
func (c *IAM) DeleteUserPermissionsBoundary(input *DeleteUserPermissionsBoundaryInput) (*DeleteUserPermissionsBoundaryOutput, error)
DeleteUserPermissionsBoundary API operation for AWS Identity and Access Management.
Deletes the permissions boundary for the specified IAM user.
Deleting the permissions boundary for a user might increase its permissions by allowing the user to perform all the actions granted in its permissions policies.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteUserPermissionsBoundary for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteUserPermissionsBoundary
func (c *IAM) DeleteUserPermissionsBoundaryRequest(input *DeleteUserPermissionsBoundaryInput) (req *request.Request, output *DeleteUserPermissionsBoundaryOutput)
DeleteUserPermissionsBoundaryRequest generates a "aws/request.Request" representing the client's request for the DeleteUserPermissionsBoundary operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteUserPermissionsBoundary for more information on using the DeleteUserPermissionsBoundary API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteUserPermissionsBoundaryRequest method.
req, resp := client.DeleteUserPermissionsBoundaryRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteUserPermissionsBoundary
func (c *IAM) DeleteUserPermissionsBoundaryWithContext(ctx aws.Context, input *DeleteUserPermissionsBoundaryInput, opts ...request.Option) (*DeleteUserPermissionsBoundaryOutput, error)
DeleteUserPermissionsBoundaryWithContext is the same as DeleteUserPermissionsBoundary with the addition of the ability to pass a context and additional request options.
See DeleteUserPermissionsBoundary for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteUserPolicy(input *DeleteUserPolicyInput) (*DeleteUserPolicyOutput, error)
DeleteUserPolicy API operation for AWS Identity and Access Management.
Deletes the specified inline policy that is embedded in the specified IAM user.
A user can also have managed policies attached to it. To detach a managed policy from a user, use DetachUserPolicy. For more information about policies, refer to Managed Policies and Inline Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteUserPolicy for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteUserPolicy
func (c *IAM) DeleteUserPolicyRequest(input *DeleteUserPolicyInput) (req *request.Request, output *DeleteUserPolicyOutput)
DeleteUserPolicyRequest generates a "aws/request.Request" representing the client's request for the DeleteUserPolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteUserPolicy for more information on using the DeleteUserPolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteUserPolicyRequest method.
req, resp := client.DeleteUserPolicyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteUserPolicy
func (c *IAM) DeleteUserPolicyWithContext(ctx aws.Context, input *DeleteUserPolicyInput, opts ...request.Option) (*DeleteUserPolicyOutput, error)
DeleteUserPolicyWithContext is the same as DeleteUserPolicy with the addition of the ability to pass a context and additional request options.
See DeleteUserPolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteUserRequest(input *DeleteUserInput) (req *request.Request, output *DeleteUserOutput)
DeleteUserRequest generates a "aws/request.Request" representing the client's request for the DeleteUser operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteUser for more information on using the DeleteUser API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteUserRequest method.
req, resp := client.DeleteUserRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteUser
func (c *IAM) DeleteUserWithContext(ctx aws.Context, input *DeleteUserInput, opts ...request.Option) (*DeleteUserOutput, error)
DeleteUserWithContext is the same as DeleteUser with the addition of the ability to pass a context and additional request options.
See DeleteUser for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DeleteVirtualMFADevice(input *DeleteVirtualMFADeviceInput) (*DeleteVirtualMFADeviceOutput, error)
DeleteVirtualMFADevice API operation for AWS Identity and Access Management.
Deletes a virtual MFA device.
You must deactivate a user's virtual MFA device before you can delete it. For information about deactivating MFA devices, see DeactivateMFADevice.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DeleteVirtualMFADevice for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeDeleteConflictException "DeleteConflict" The request was rejected because it attempted to delete a resource that has attached subordinate entities. The error message describes these entities. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteVirtualMFADevice
func (c *IAM) DeleteVirtualMFADeviceRequest(input *DeleteVirtualMFADeviceInput) (req *request.Request, output *DeleteVirtualMFADeviceOutput)
DeleteVirtualMFADeviceRequest generates a "aws/request.Request" representing the client's request for the DeleteVirtualMFADevice operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DeleteVirtualMFADevice for more information on using the DeleteVirtualMFADevice API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DeleteVirtualMFADeviceRequest method.
req, resp := client.DeleteVirtualMFADeviceRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DeleteVirtualMFADevice
func (c *IAM) DeleteVirtualMFADeviceWithContext(ctx aws.Context, input *DeleteVirtualMFADeviceInput, opts ...request.Option) (*DeleteVirtualMFADeviceOutput, error)
DeleteVirtualMFADeviceWithContext is the same as DeleteVirtualMFADevice with the addition of the ability to pass a context and additional request options.
See DeleteVirtualMFADevice for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DetachGroupPolicy(input *DetachGroupPolicyInput) (*DetachGroupPolicyOutput, error)
DetachGroupPolicy API operation for AWS Identity and Access Management.
Removes the specified managed policy from the specified IAM group.
A group can also have inline policies embedded with it. To delete an inline policy, use the DeleteGroupPolicy API. For information about policies, see Managed Policies and Inline Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DetachGroupPolicy for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DetachGroupPolicy
func (c *IAM) DetachGroupPolicyRequest(input *DetachGroupPolicyInput) (req *request.Request, output *DetachGroupPolicyOutput)
DetachGroupPolicyRequest generates a "aws/request.Request" representing the client's request for the DetachGroupPolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DetachGroupPolicy for more information on using the DetachGroupPolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DetachGroupPolicyRequest method.
req, resp := client.DetachGroupPolicyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DetachGroupPolicy
func (c *IAM) DetachGroupPolicyWithContext(ctx aws.Context, input *DetachGroupPolicyInput, opts ...request.Option) (*DetachGroupPolicyOutput, error)
DetachGroupPolicyWithContext is the same as DetachGroupPolicy with the addition of the ability to pass a context and additional request options.
See DetachGroupPolicy for details on how to use this API operation.
The context must be non-nil and will be used for request cancellation. If the context is nil a panic will occur. In the future the SDK may create sub-contexts for http.Requests. See https://golang.org/pkg/context/ for more information on using Contexts.
func (c *IAM) DetachRolePolicy(input *DetachRolePolicyInput) (*DetachRolePolicyOutput, error)
DetachRolePolicy API operation for AWS Identity and Access Management.
Removes the specified managed policy from the specified role.
A role can also have inline policies embedded with it. To delete an inline policy, use the DeleteRolePolicy API. For information about policies, see Managed Policies and Inline Policies (https://docs.aws.amazon.com/IAM/latest/UserGuide/policies-managed-vs-inline.html) in the IAM User Guide.
Returns awserr.Error for service API and SDK errors. Use runtime type assertions with awserr.Error's Code and Message methods to get detailed information about the error.
See the AWS API reference guide for AWS Identity and Access Management's API operation DetachRolePolicy for usage and error information.
Returned Error Codes:
* ErrCodeNoSuchEntityException "NoSuchEntity" The request was rejected because it referenced a resource entity that does not exist. The error message describes the resource. * ErrCodeLimitExceededException "LimitExceeded" The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded. * ErrCodeInvalidInputException "InvalidInput" The request was rejected because an invalid or out-of-range value was supplied for an input parameter. * ErrCodeUnmodifiableEntityException "UnmodifiableEntity" The request was rejected because only the service that depends on the service-linked role can modify or delete the role on your behalf. The error message includes the name of the service that depends on this service-linked role. You must request the change through that service. * ErrCodeServiceFailureException "ServiceFailure" The request processing has failed because of an unknown error, exception or failure.
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DetachRolePolicy
func (c *IAM) DetachRolePolicyRequest(input *DetachRolePolicyInput) (req *request.Request, output *DetachRolePolicyOutput)
DetachRolePolicyRequest generates a "aws/request.Request" representing the client's request for the DetachRolePolicy operation. The "output" return value will be populated with the request's response once the request completes successfully.
Use "Send" method on the returned Request to send the API call to the service. the "output" return value is not valid until after Send returns without error.
See DetachRolePolicy for more information on using the DetachRolePolicy API call, and error handling.
This method is useful when you want to inject custom logic or configuration into the SDK's request lifecycle. Such as custom headers, or retry logic.
// Example sending a request using the DetachRolePolicyRequest method.
req, resp := client.DetachRolePolicyRequest(params)
err := req.Send()
if err == nil { // resp is now filled
fmt.Println(resp)
}
See also, https://docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/DetachRolePolicy