CreateWorkloadShare - AWS Well-Architected Tool


Create a workload share.

The owner of a workload can share it with other AWS accounts and IAM users in the same AWS Region. Shared access to a workload is not removed until the workload invitation is deleted.

For more information, see Sharing a Workload in the AWS Well-Architected Tool User Guide.

Request Syntax

POST /workloads/WorkloadId/shares HTTP/1.1 Content-type: application/json { "ClientRequestToken": "string", "PermissionType": "string", "SharedWith": "string" }

URI Request Parameters

The request uses the following URI parameters.


The ID assigned to the workload. This ID is unique within an AWS Region.

Pattern: [0-9a-f]{32}

Required: Yes

Request Body

The request accepts the following data in JSON format.


A unique case-sensitive string used to ensure that this request is idempotent (executes only once).

You should not reuse the same token for other requests. If you retry a request with the same client request token and the same parameters after it has completed successfully, the result of the original request is returned.


This token is listed as required, however, if you do not specify it, the AWS SDKs automatically generate one for you. If you are not using the AWS SDK or the AWS CLI, you must provide this token or the request will fail.

Type: String

Required: Yes


Permission granted on a workload share.

Type: String


Required: Yes


The AWS account ID, IAM role, organization ID, or organizational unit (OU) ID with which the workload is shared.

Type: String

Length Constraints: Minimum length of 12. Maximum length of 2048.

Required: Yes

Response Syntax

HTTP/1.1 200 Content-type: application/json { "ShareId": "string", "WorkloadId": "string" }

Response Elements

If the action is successful, the service sends back an HTTP 200 response.

The following data is returned in JSON format by the service.


The ID associated with the workload share.

Type: String

Pattern: [0-9a-f]{32}


The ID assigned to the workload. This ID is unique within an AWS Region.

Type: String

Pattern: [0-9a-f]{32}


For information about the errors that are common to all actions, see Common Errors.


User does not have sufficient access to perform this action.

HTTP Status Code: 403


The resource already exists.

HTTP Status Code: 409


There is a problem with the AWS Well-Architected Tool API service.

HTTP Status Code: 500


The requested resource was not found.

HTTP Status Code: 404


The user has reached their resource quota.

HTTP Status Code: 402


Request was denied due to request throttling.

HTTP Status Code: 429


The user input is not valid.

HTTP Status Code: 400

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: