| Copyright | (c) 2013-2018 Brendan Hay |
|---|---|
| License | Mozilla Public License, v. 2.0. |
| Maintainer | Brendan Hay <brendan.g.hay+amazonka@gmail.com> |
| Stability | auto-generated |
| Portability | non-portable (GHC extensions) |
| Safe Haskell | None |
| Language | Haskell2010 |
Network.AWS.IAM.Types
Contents
- Service Configuration
- Errors
- AssignmentStatusType
- ContextKeyTypeEnum
- DeletionTaskStatusType
- EncodingType
- EntityType
- PolicyEvaluationDecisionType
- PolicyScopeType
- PolicySourceType
- ReportFormatType
- ReportStateType
- StatusType
- SummaryKeyType
- AccessKeyInfo
- AccessKeyLastUsed
- AccessKeyMetadata
- AttachedPolicy
- ContextEntry
- DeletionTaskFailureReasonType
- EvaluationResult
- GetContextKeysForPolicyResponse
- Group
- GroupDetail
- InstanceProfile
- LoginProfile
- MFADevice
- ManagedPolicyDetail
- OpenIdConnectProviderListEntry
- OrganizationsDecisionDetail
- PasswordPolicy
- Policy
- PolicyDetail
- PolicyGroup
- PolicyRole
- PolicyUser
- PolicyVersion
- Position
- ResourceSpecificResult
- Role
- RoleDetail
- RoleUsageType
- SAMLProviderListEntry
- SSHPublicKey
- SSHPublicKeyMetadata
- ServerCertificate
- ServerCertificateMetadata
- ServiceSpecificCredential
- ServiceSpecificCredentialMetadata
- SigningCertificate
- SimulatePolicyResponse
- Statement
- User
- UserDetail
- VirtualMFADevice
Description
Synopsis
- iam :: Service
- _CredentialReportNotPresentException :: AsError a => Getting (First ServiceError) a ServiceError
- _CredentialReportNotReadyException :: AsError a => Getting (First ServiceError) a ServiceError
- _MalformedPolicyDocumentException :: AsError a => Getting (First ServiceError) a ServiceError
- _EntityAlreadyExistsException :: AsError a => Getting (First ServiceError) a ServiceError
- _MalformedCertificateException :: AsError a => Getting (First ServiceError) a ServiceError
- _CredentialReportExpiredException :: AsError a => Getting (First ServiceError) a ServiceError
- _UnmodifiableEntityException :: AsError a => Getting (First ServiceError) a ServiceError
- _DuplicateCertificateException :: AsError a => Getting (First ServiceError) a ServiceError
- _DeleteConflictException :: AsError a => Getting (First ServiceError) a ServiceError
- _NoSuchEntityException :: AsError a => Getting (First ServiceError) a ServiceError
- _InvalidCertificateException :: AsError a => Getting (First ServiceError) a ServiceError
- _PolicyNotAttachableException :: AsError a => Getting (First ServiceError) a ServiceError
- _ServiceNotSupportedException :: AsError a => Getting (First ServiceError) a ServiceError
- _UnrecognizedPublicKeyEncodingException :: AsError a => Getting (First ServiceError) a ServiceError
- _InvalidUserTypeException :: AsError a => Getting (First ServiceError) a ServiceError
- _ServiceFailureException :: AsError a => Getting (First ServiceError) a ServiceError
- _InvalidInputException :: AsError a => Getting (First ServiceError) a ServiceError
- _InvalidPublicKeyException :: AsError a => Getting (First ServiceError) a ServiceError
- _InvalidAuthenticationCodeException :: AsError a => Getting (First ServiceError) a ServiceError
- _EntityTemporarilyUnmodifiableException :: AsError a => Getting (First ServiceError) a ServiceError
- _DuplicateSSHPublicKeyException :: AsError a => Getting (First ServiceError) a ServiceError
- _KeyPairMismatchException :: AsError a => Getting (First ServiceError) a ServiceError
- _PolicyEvaluationException :: AsError a => Getting (First ServiceError) a ServiceError
- _PasswordPolicyViolationException :: AsError a => Getting (First ServiceError) a ServiceError
- _LimitExceededException :: AsError a => Getting (First ServiceError) a ServiceError
- data AssignmentStatusType
- = Any
- | Assigned
- | Unassigned
- data ContextKeyTypeEnum
- = Binary
- | BinaryList
- | Boolean
- | BooleanList
- | Date
- | DateList
- | IP
- | IPList
- | Numeric
- | NumericList
- | String
- | StringList
- data DeletionTaskStatusType
- data EncodingType
- data EntityType
- data PolicyEvaluationDecisionType
- data PolicyScopeType
- data PolicySourceType
- = AWSManaged
- | Group
- | None
- | Resource
- | Role
- | User
- | UserManaged
- data ReportFormatType = TextCSV
- data ReportStateType
- data StatusType
- data SummaryKeyType
- = AccessKeysPerUserQuota
- | AccountAccessKeysPresent
- | AccountMFAEnabled
- | AccountSigningCertificatesPresent
- | AttachedPoliciesPerGroupQuota
- | AttachedPoliciesPerRoleQuota
- | AttachedPoliciesPerUserQuota
- | GroupPolicySizeQuota
- | Groups
- | GroupsPerUserQuota
- | GroupsQuota
- | MFADevices
- | MFADevicesInUse
- | Policies
- | PoliciesQuota
- | PolicySizeQuota
- | PolicyVersionsInUse
- | PolicyVersionsInUseQuota
- | ServerCertificates
- | ServerCertificatesQuota
- | SigningCertificatesPerUserQuota
- | UserPolicySizeQuota
- | Users
- | UsersQuota
- | VersionsPerPolicyQuota
- data AccessKeyInfo
- accessKeyInfo :: Text -> AccessKey -> StatusType -> Text -> AccessKeyInfo
- akiCreateDate :: Lens' AccessKeyInfo (Maybe UTCTime)
- akiUserName :: Lens' AccessKeyInfo Text
- akiAccessKeyId :: Lens' AccessKeyInfo AccessKey
- akiStatus :: Lens' AccessKeyInfo StatusType
- akiSecretAccessKey :: Lens' AccessKeyInfo Text
- data AccessKeyLastUsed
- accessKeyLastUsed :: UTCTime -> Text -> Text -> AccessKeyLastUsed
- akluLastUsedDate :: Lens' AccessKeyLastUsed UTCTime
- akluServiceName :: Lens' AccessKeyLastUsed Text
- akluRegion :: Lens' AccessKeyLastUsed Text
- data AccessKeyMetadata
- accessKeyMetadata :: AccessKeyMetadata
- akmStatus :: Lens' AccessKeyMetadata (Maybe StatusType)
- akmCreateDate :: Lens' AccessKeyMetadata (Maybe UTCTime)
- akmUserName :: Lens' AccessKeyMetadata (Maybe Text)
- akmAccessKeyId :: Lens' AccessKeyMetadata (Maybe AccessKey)
- data AttachedPolicy
- attachedPolicy :: AttachedPolicy
- apPolicyName :: Lens' AttachedPolicy (Maybe Text)
- apPolicyARN :: Lens' AttachedPolicy (Maybe Text)
- data ContextEntry
- contextEntry :: ContextEntry
- ceContextKeyValues :: Lens' ContextEntry [Text]
- ceContextKeyName :: Lens' ContextEntry (Maybe Text)
- ceContextKeyType :: Lens' ContextEntry (Maybe ContextKeyTypeEnum)
- data DeletionTaskFailureReasonType
- deletionTaskFailureReasonType :: DeletionTaskFailureReasonType
- dtfrtRoleUsageList :: Lens' DeletionTaskFailureReasonType [RoleUsageType]
- dtfrtReason :: Lens' DeletionTaskFailureReasonType (Maybe Text)
- data EvaluationResult
- evaluationResult :: Text -> PolicyEvaluationDecisionType -> EvaluationResult
- erMatchedStatements :: Lens' EvaluationResult [Statement]
- erEvalDecisionDetails :: Lens' EvaluationResult (HashMap Text PolicyEvaluationDecisionType)
- erResourceSpecificResults :: Lens' EvaluationResult [ResourceSpecificResult]
- erEvalResourceName :: Lens' EvaluationResult (Maybe Text)
- erMissingContextValues :: Lens' EvaluationResult [Text]
- erOrganizationsDecisionDetail :: Lens' EvaluationResult (Maybe OrganizationsDecisionDetail)
- erEvalActionName :: Lens' EvaluationResult Text
- erEvalDecision :: Lens' EvaluationResult PolicyEvaluationDecisionType
- data GetContextKeysForPolicyResponse
- getContextKeysForPolicyResponse :: GetContextKeysForPolicyResponse
- gckfpContextKeyNames :: Lens' GetContextKeysForPolicyResponse [Text]
- data Group
- group' :: Text -> Text -> Text -> Text -> UTCTime -> Group
- gPath :: Lens' Group Text
- gGroupName :: Lens' Group Text
- gGroupId :: Lens' Group Text
- gARN :: Lens' Group Text
- gCreateDate :: Lens' Group UTCTime
- data GroupDetail
- groupDetail :: GroupDetail
- gdARN :: Lens' GroupDetail (Maybe Text)
- gdPath :: Lens' GroupDetail (Maybe Text)
- gdCreateDate :: Lens' GroupDetail (Maybe UTCTime)
- gdGroupId :: Lens' GroupDetail (Maybe Text)
- gdGroupPolicyList :: Lens' GroupDetail [PolicyDetail]
- gdGroupName :: Lens' GroupDetail (Maybe Text)
- gdAttachedManagedPolicies :: Lens' GroupDetail [AttachedPolicy]
- data InstanceProfile
- instanceProfile :: Text -> Text -> Text -> Text -> UTCTime -> InstanceProfile
- ipPath :: Lens' InstanceProfile Text
- ipInstanceProfileName :: Lens' InstanceProfile Text
- ipInstanceProfileId :: Lens' InstanceProfile Text
- ipARN :: Lens' InstanceProfile Text
- ipCreateDate :: Lens' InstanceProfile UTCTime
- ipRoles :: Lens' InstanceProfile [Role]
- data LoginProfile
- loginProfile :: Text -> UTCTime -> LoginProfile
- lpPasswordResetRequired :: Lens' LoginProfile (Maybe Bool)
- lpUserName :: Lens' LoginProfile Text
- lpCreateDate :: Lens' LoginProfile UTCTime
- data MFADevice
- mfaDevice :: Text -> Text -> UTCTime -> MFADevice
- mdUserName :: Lens' MFADevice Text
- mdSerialNumber :: Lens' MFADevice Text
- mdEnableDate :: Lens' MFADevice UTCTime
- data ManagedPolicyDetail
- managedPolicyDetail :: ManagedPolicyDetail
- mpdPolicyName :: Lens' ManagedPolicyDetail (Maybe Text)
- mpdARN :: Lens' ManagedPolicyDetail (Maybe Text)
- mpdUpdateDate :: Lens' ManagedPolicyDetail (Maybe UTCTime)
- mpdPolicyId :: Lens' ManagedPolicyDetail (Maybe Text)
- mpdPath :: Lens' ManagedPolicyDetail (Maybe Text)
- mpdPolicyVersionList :: Lens' ManagedPolicyDetail [PolicyVersion]
- mpdCreateDate :: Lens' ManagedPolicyDetail (Maybe UTCTime)
- mpdIsAttachable :: Lens' ManagedPolicyDetail (Maybe Bool)
- mpdDefaultVersionId :: Lens' ManagedPolicyDetail (Maybe Text)
- mpdAttachmentCount :: Lens' ManagedPolicyDetail (Maybe Int)
- mpdDescription :: Lens' ManagedPolicyDetail (Maybe Text)
- data OpenIdConnectProviderListEntry
- openIdConnectProviderListEntry :: OpenIdConnectProviderListEntry
- oicpleARN :: Lens' OpenIdConnectProviderListEntry (Maybe Text)
- data OrganizationsDecisionDetail
- organizationsDecisionDetail :: OrganizationsDecisionDetail
- oddAllowedByOrganizations :: Lens' OrganizationsDecisionDetail (Maybe Bool)
- data PasswordPolicy
- passwordPolicy :: PasswordPolicy
- ppExpirePasswords :: Lens' PasswordPolicy (Maybe Bool)
- ppMinimumPasswordLength :: Lens' PasswordPolicy (Maybe Natural)
- ppRequireNumbers :: Lens' PasswordPolicy (Maybe Bool)
- ppPasswordReusePrevention :: Lens' PasswordPolicy (Maybe Natural)
- ppRequireLowercaseCharacters :: Lens' PasswordPolicy (Maybe Bool)
- ppMaxPasswordAge :: Lens' PasswordPolicy (Maybe Natural)
- ppHardExpiry :: Lens' PasswordPolicy (Maybe Bool)
- ppRequireSymbols :: Lens' PasswordPolicy (Maybe Bool)
- ppRequireUppercaseCharacters :: Lens' PasswordPolicy (Maybe Bool)
- ppAllowUsersToChangePassword :: Lens' PasswordPolicy (Maybe Bool)
- data Policy
- policy :: Policy
- pPolicyName :: Lens' Policy (Maybe Text)
- pARN :: Lens' Policy (Maybe Text)
- pUpdateDate :: Lens' Policy (Maybe UTCTime)
- pPolicyId :: Lens' Policy (Maybe Text)
- pPath :: Lens' Policy (Maybe Text)
- pCreateDate :: Lens' Policy (Maybe UTCTime)
- pIsAttachable :: Lens' Policy (Maybe Bool)
- pDefaultVersionId :: Lens' Policy (Maybe Text)
- pAttachmentCount :: Lens' Policy (Maybe Int)
- pDescription :: Lens' Policy (Maybe Text)
- data PolicyDetail
- policyDetail :: PolicyDetail
- pdPolicyDocument :: Lens' PolicyDetail (Maybe Text)
- pdPolicyName :: Lens' PolicyDetail (Maybe Text)
- data PolicyGroup
- policyGroup :: PolicyGroup
- pgGroupId :: Lens' PolicyGroup (Maybe Text)
- pgGroupName :: Lens' PolicyGroup (Maybe Text)
- data PolicyRole
- policyRole :: PolicyRole
- prRoleName :: Lens' PolicyRole (Maybe Text)
- prRoleId :: Lens' PolicyRole (Maybe Text)
- data PolicyUser
- policyUser :: PolicyUser
- puUserName :: Lens' PolicyUser (Maybe Text)
- puUserId :: Lens' PolicyUser (Maybe Text)
- data PolicyVersion
- policyVersion :: PolicyVersion
- pvVersionId :: Lens' PolicyVersion (Maybe Text)
- pvCreateDate :: Lens' PolicyVersion (Maybe UTCTime)
- pvDocument :: Lens' PolicyVersion (Maybe Text)
- pvIsDefaultVersion :: Lens' PolicyVersion (Maybe Bool)
- data Position
- position :: Position
- pLine :: Lens' Position (Maybe Int)
- pColumn :: Lens' Position (Maybe Int)
- data ResourceSpecificResult
- resourceSpecificResult :: Text -> PolicyEvaluationDecisionType -> ResourceSpecificResult
- rsrMatchedStatements :: Lens' ResourceSpecificResult [Statement]
- rsrEvalDecisionDetails :: Lens' ResourceSpecificResult (HashMap Text PolicyEvaluationDecisionType)
- rsrMissingContextValues :: Lens' ResourceSpecificResult [Text]
- rsrEvalResourceName :: Lens' ResourceSpecificResult Text
- rsrEvalResourceDecision :: Lens' ResourceSpecificResult PolicyEvaluationDecisionType
- data Role
- role' :: Text -> Text -> Text -> Text -> UTCTime -> Role
- rMaxSessionDuration :: Lens' Role (Maybe Natural)
- rAssumeRolePolicyDocument :: Lens' Role (Maybe Text)
- rDescription :: Lens' Role (Maybe Text)
- rPath :: Lens' Role Text
- rRoleName :: Lens' Role Text
- rRoleId :: Lens' Role Text
- rARN :: Lens' Role Text
- rCreateDate :: Lens' Role UTCTime
- data RoleDetail
- roleDetail :: RoleDetail
- rdAssumeRolePolicyDocument :: Lens' RoleDetail (Maybe Text)
- rdARN :: Lens' RoleDetail (Maybe Text)
- rdPath :: Lens' RoleDetail (Maybe Text)
- rdInstanceProfileList :: Lens' RoleDetail [InstanceProfile]
- rdCreateDate :: Lens' RoleDetail (Maybe UTCTime)
- rdRoleName :: Lens' RoleDetail (Maybe Text)
- rdRoleId :: Lens' RoleDetail (Maybe Text)
- rdRolePolicyList :: Lens' RoleDetail [PolicyDetail]
- rdAttachedManagedPolicies :: Lens' RoleDetail [AttachedPolicy]
- data RoleUsageType
- roleUsageType :: RoleUsageType
- rutResources :: Lens' RoleUsageType [Text]
- rutRegion :: Lens' RoleUsageType (Maybe Text)
- data SAMLProviderListEntry
- sAMLProviderListEntry :: SAMLProviderListEntry
- samlpleARN :: Lens' SAMLProviderListEntry (Maybe Text)
- samlpleCreateDate :: Lens' SAMLProviderListEntry (Maybe UTCTime)
- samlpleValidUntil :: Lens' SAMLProviderListEntry (Maybe UTCTime)
- data SSHPublicKey
- sshPublicKey :: Text -> Text -> Text -> Text -> StatusType -> SSHPublicKey
- spkUploadDate :: Lens' SSHPublicKey (Maybe UTCTime)
- spkUserName :: Lens' SSHPublicKey Text
- spkSSHPublicKeyId :: Lens' SSHPublicKey Text
- spkFingerprint :: Lens' SSHPublicKey Text
- spkSSHPublicKeyBody :: Lens' SSHPublicKey Text
- spkStatus :: Lens' SSHPublicKey StatusType
- data SSHPublicKeyMetadata
- sshPublicKeyMetadata :: Text -> Text -> StatusType -> UTCTime -> SSHPublicKeyMetadata
- spkmUserName :: Lens' SSHPublicKeyMetadata Text
- spkmSSHPublicKeyId :: Lens' SSHPublicKeyMetadata Text
- spkmStatus :: Lens' SSHPublicKeyMetadata StatusType
- spkmUploadDate :: Lens' SSHPublicKeyMetadata UTCTime
- data ServerCertificate
- serverCertificate :: ServerCertificateMetadata -> Text -> ServerCertificate
- sCertificateChain :: Lens' ServerCertificate (Maybe Text)
- sServerCertificateMetadata :: Lens' ServerCertificate ServerCertificateMetadata
- sCertificateBody :: Lens' ServerCertificate Text
- data ServerCertificateMetadata
- serverCertificateMetadata :: Text -> Text -> Text -> Text -> ServerCertificateMetadata
- scmUploadDate :: Lens' ServerCertificateMetadata (Maybe UTCTime)
- scmExpiration :: Lens' ServerCertificateMetadata (Maybe UTCTime)
- scmPath :: Lens' ServerCertificateMetadata Text
- scmServerCertificateName :: Lens' ServerCertificateMetadata Text
- scmServerCertificateId :: Lens' ServerCertificateMetadata Text
- scmARN :: Lens' ServerCertificateMetadata Text
- data ServiceSpecificCredential
- serviceSpecificCredential :: UTCTime -> Text -> Text -> Text -> Text -> Text -> StatusType -> ServiceSpecificCredential
- sscCreateDate :: Lens' ServiceSpecificCredential UTCTime
- sscServiceName :: Lens' ServiceSpecificCredential Text
- sscServiceUserName :: Lens' ServiceSpecificCredential Text
- sscServicePassword :: Lens' ServiceSpecificCredential Text
- sscServiceSpecificCredentialId :: Lens' ServiceSpecificCredential Text
- sscUserName :: Lens' ServiceSpecificCredential Text
- sscStatus :: Lens' ServiceSpecificCredential StatusType
- data ServiceSpecificCredentialMetadata
- serviceSpecificCredentialMetadata :: Text -> StatusType -> Text -> UTCTime -> Text -> Text -> ServiceSpecificCredentialMetadata
- sscmUserName :: Lens' ServiceSpecificCredentialMetadata Text
- sscmStatus :: Lens' ServiceSpecificCredentialMetadata StatusType
- sscmServiceUserName :: Lens' ServiceSpecificCredentialMetadata Text
- sscmCreateDate :: Lens' ServiceSpecificCredentialMetadata UTCTime
- sscmServiceSpecificCredentialId :: Lens' ServiceSpecificCredentialMetadata Text
- sscmServiceName :: Lens' ServiceSpecificCredentialMetadata Text
- data SigningCertificate
- signingCertificate :: Text -> Text -> Text -> StatusType -> SigningCertificate
- scUploadDate :: Lens' SigningCertificate (Maybe UTCTime)
- scUserName :: Lens' SigningCertificate Text
- scCertificateId :: Lens' SigningCertificate Text
- scCertificateBody :: Lens' SigningCertificate Text
- scStatus :: Lens' SigningCertificate StatusType
- data SimulatePolicyResponse
- simulatePolicyResponse :: SimulatePolicyResponse
- spEvaluationResults :: Lens' SimulatePolicyResponse [EvaluationResult]
- spMarker :: Lens' SimulatePolicyResponse (Maybe Text)
- spIsTruncated :: Lens' SimulatePolicyResponse (Maybe Bool)
- data Statement
- statement :: Statement
- sSourcePolicyType :: Lens' Statement (Maybe PolicySourceType)
- sSourcePolicyId :: Lens' Statement (Maybe Text)
- sEndPosition :: Lens' Statement (Maybe Position)
- sStartPosition :: Lens' Statement (Maybe Position)
- data User
- user :: Text -> Text -> Text -> Text -> UTCTime -> User
- uPasswordLastUsed :: Lens' User (Maybe UTCTime)
- uPath :: Lens' User Text
- uUserName :: Lens' User Text
- uUserId :: Lens' User Text
- uARN :: Lens' User Text
- uCreateDate :: Lens' User UTCTime
- data UserDetail
- userDetail :: UserDetail
- udGroupList :: Lens' UserDetail [Text]
- udARN :: Lens' UserDetail (Maybe Text)
- udPath :: Lens' UserDetail (Maybe Text)
- udCreateDate :: Lens' UserDetail (Maybe UTCTime)
- udUserName :: Lens' UserDetail (Maybe Text)
- udUserId :: Lens' UserDetail (Maybe Text)
- udUserPolicyList :: Lens' UserDetail [PolicyDetail]
- udAttachedManagedPolicies :: Lens' UserDetail [AttachedPolicy]
- data VirtualMFADevice
- virtualMFADevice :: Text -> VirtualMFADevice
- vmdQRCodePNG :: Lens' VirtualMFADevice (Maybe ByteString)
- vmdBase32StringSeed :: Lens' VirtualMFADevice (Maybe ByteString)
- vmdUser :: Lens' VirtualMFADevice (Maybe User)
- vmdEnableDate :: Lens' VirtualMFADevice (Maybe UTCTime)
- vmdSerialNumber :: Lens' VirtualMFADevice Text
Service Configuration
API version 2010-05-08 of the Amazon Identity and Access Management SDK configuration.
Errors
_CredentialReportNotPresentException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the credential report does not exist. To generate a credential report, use GenerateCredentialReport .
_CredentialReportNotReadyException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the credential report is still being generated.
_MalformedPolicyDocumentException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the policy document was malformed. The error message describes the specific error.
_EntityAlreadyExistsException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because it attempted to create a resource that already exists.
_MalformedCertificateException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the certificate was malformed or expired. The error message describes the specific error.
_CredentialReportExpiredException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the most recent credential report has expired. To generate a new credential report, use GenerateCredentialReport . For more information about credential report expiration, see Getting Credential Reports in the IAM User Guide .
_UnmodifiableEntityException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because only the service that depends on the service-linked role can modify or delete the role on your behalf. The error message includes the name of the service that depends on this service-linked role. You must request the change through that service.
_DuplicateCertificateException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the same certificate is associated with an IAM user in the account.
_DeleteConflictException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because it attempted to delete a resource that has attached subordinate entities. The error message describes these entities.
_NoSuchEntityException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because it referenced an entity that does not exist. The error message describes the entity.
_InvalidCertificateException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the certificate is invalid.
_PolicyNotAttachableException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request failed because AWS service role policies can only be attached to the service-linked role for that service.
_ServiceNotSupportedException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The specified service does not support service-specific credentials.
_UnrecognizedPublicKeyEncodingException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the public key encoding format is unsupported or unrecognized.
_InvalidUserTypeException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the type of user for the transaction was incorrect.
_ServiceFailureException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request processing has failed because of an unknown error, exception or failure.
_InvalidInputException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because an invalid or out-of-range value was supplied for an input parameter.
_InvalidPublicKeyException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the public key is malformed or otherwise invalid.
_InvalidAuthenticationCodeException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the authentication code was not recognized. The error message describes the specific error.
_EntityTemporarilyUnmodifiableException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because it referenced an entity that is temporarily unmodifiable, such as a user name that was deleted and then recreated. The error indicates that the request is likely to succeed if you try again after waiting several minutes. The error message describes the entity.
_DuplicateSSHPublicKeyException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the SSH public key is already associated with the specified IAM user.
_KeyPairMismatchException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the public key certificate and the private key do not match.
_PolicyEvaluationException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request failed because a provided policy could not be successfully evaluated. An additional detailed message indicates the source of the failure.
_PasswordPolicyViolationException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because the provided password did not meet the requirements imposed by the account password policy.
_LimitExceededException :: AsError a => Getting (First ServiceError) a ServiceError Source #
The request was rejected because it attempted to create resources beyond the current AWS account limits. The error message describes the limit exceeded.
AssignmentStatusType
data AssignmentStatusType Source #
Constructors
| Any | |
| Assigned | |
| Unassigned |
Instances
ContextKeyTypeEnum
data ContextKeyTypeEnum Source #
Constructors
| Binary | |
| BinaryList | |
| Boolean | |
| BooleanList | |
| Date | |
| DateList | |
| IP | |
| IPList | |
| Numeric | |
| NumericList | |
| String | |
| StringList |
Instances
DeletionTaskStatusType
data DeletionTaskStatusType Source #
Constructors
| Failed | |
| InProgress | |
| NotStarted | |
| Succeeded |
Instances
EncodingType
data EncodingType Source #
Instances
EntityType
data EntityType Source #
Constructors
| ETAWSManagedPolicy | |
| ETGroup | |
| ETLocalManagedPolicy | |
| ETRole | |
| ETUser |
Instances
PolicyEvaluationDecisionType
data PolicyEvaluationDecisionType Source #
Constructors
| Allowed | |
| ExplicitDeny | |
| ImplicitDeny |
Instances
PolicyScopeType
data PolicyScopeType Source #
Instances
PolicySourceType
data PolicySourceType Source #
Constructors
| AWSManaged | |
| Group | |
| None | |
| Resource | |
| Role | |
| User | |
| UserManaged |
Instances
ReportFormatType
data ReportFormatType Source #
Constructors
| TextCSV |
Instances
ReportStateType
data ReportStateType Source #
Constructors
| RSTComplete | |
| RSTInprogress | |
| RSTStarted |
Instances
StatusType
data StatusType Source #
Instances
SummaryKeyType
data SummaryKeyType Source #
Constructors
Instances
AccessKeyInfo
data AccessKeyInfo Source #
Contains information about an AWS access key.
This data type is used as a response element in the CreateAccessKey and ListAccessKeys operations.
See: accessKeyInfo smart constructor.
Instances
Arguments
| :: Text | |
| -> AccessKey | |
| -> StatusType | |
| -> Text | |
| -> AccessKeyInfo |
Creates a value of AccessKeyInfo with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
akiCreateDate- The date when the access key was created.akiUserName- The name of the IAM user that the access key is associated with.akiAccessKeyId- The ID for this access key.akiStatus- The status of the access key.Activemeans that the key is valid for API calls, whileInactivemeans it is not.akiSecretAccessKey- The secret key used to sign requests.
akiCreateDate :: Lens' AccessKeyInfo (Maybe UTCTime) Source #
The date when the access key was created.
akiUserName :: Lens' AccessKeyInfo Text Source #
The name of the IAM user that the access key is associated with.
akiAccessKeyId :: Lens' AccessKeyInfo AccessKey Source #
The ID for this access key.
akiStatus :: Lens' AccessKeyInfo StatusType Source #
The status of the access key. Active means that the key is valid for API calls, while Inactive means it is not.
akiSecretAccessKey :: Lens' AccessKeyInfo Text Source #
The secret key used to sign requests.
AccessKeyLastUsed
data AccessKeyLastUsed Source #
Contains information about the last time an AWS access key was used.
This data type is used as a response element in the GetAccessKeyLastUsed operation.
See: accessKeyLastUsed smart constructor.
Instances
Arguments
| :: UTCTime | |
| -> Text | |
| -> Text | |
| -> AccessKeyLastUsed |
Creates a value of AccessKeyLastUsed with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
akluLastUsedDate- The date and time, in ISO 8601 date-time format , when the access key was most recently used. This field is null in the following situations: * The user does not have an access key. * An access key exists but has never been used, at least not since IAM started tracking this information on April 22nd, 2015. * There is no sign-in data associated with the userakluServiceName- The name of the AWS service with which this access key was most recently used. This field displays "N/A" in the following situations: * The user does not have an access key. * An access key exists but has never been used, at least not since IAM started tracking this information on April 22nd, 2015. * There is no sign-in data associated with the userakluRegion- The AWS region where this access key was most recently used. This field is displays "NA" in the following situations: * The user does not have an access key. * An access key exists but has never been used, at least not since IAM started tracking this information on April 22nd, 2015. * There is no sign-in data associated with the user For more information about AWS regions, see <http:docs.aws.amazon.comgenerallatestgr/rande.html Regions and Endpoints> in the Amazon Web Services General Reference.
akluLastUsedDate :: Lens' AccessKeyLastUsed UTCTime Source #
The date and time, in ISO 8601 date-time format , when the access key was most recently used. This field is null in the following situations: * The user does not have an access key. * An access key exists but has never been used, at least not since IAM started tracking this information on April 22nd, 2015. * There is no sign-in data associated with the user
akluServiceName :: Lens' AccessKeyLastUsed Text Source #
The name of the AWS service with which this access key was most recently used. This field displays "N/A" in the following situations: * The user does not have an access key. * An access key exists but has never been used, at least not since IAM started tracking this information on April 22nd, 2015. * There is no sign-in data associated with the user
akluRegion :: Lens' AccessKeyLastUsed Text Source #
The AWS region where this access key was most recently used. This field is displays "NA" in the following situations: * The user does not have an access key. * An access key exists but has never been used, at least not since IAM started tracking this information on April 22nd, 2015. * There is no sign-in data associated with the user For more information about AWS regions, see <http:docs.aws.amazon.comgenerallatestgr/rande.html Regions and Endpoints> in the Amazon Web Services General Reference.
AccessKeyMetadata
data AccessKeyMetadata Source #
Contains information about an AWS access key, without its secret key.
This data type is used as a response element in the ListAccessKeys operation.
See: accessKeyMetadata smart constructor.
Instances
accessKeyMetadata :: AccessKeyMetadata Source #
Creates a value of AccessKeyMetadata with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
akmStatus- The status of the access key.Activemeans the key is valid for API calls;Inactivemeans it is not.akmCreateDate- The date when the access key was created.akmUserName- The name of the IAM user that the key is associated with.akmAccessKeyId- The ID for this access key.
akmStatus :: Lens' AccessKeyMetadata (Maybe StatusType) Source #
The status of the access key. Active means the key is valid for API calls; Inactive means it is not.
akmCreateDate :: Lens' AccessKeyMetadata (Maybe UTCTime) Source #
The date when the access key was created.
akmUserName :: Lens' AccessKeyMetadata (Maybe Text) Source #
The name of the IAM user that the key is associated with.
akmAccessKeyId :: Lens' AccessKeyMetadata (Maybe AccessKey) Source #
The ID for this access key.
AttachedPolicy
data AttachedPolicy Source #
Contains information about an attached policy.
An attached policy is a managed policy that has been attached to a user, group, or role. This data type is used as a response element in the ListAttachedGroupPolicies , ListAttachedRolePolicies , ListAttachedUserPolicies , and GetAccountAuthorizationDetails operations.
For more information about managed policies, refer to Managed Policies and Inline Policies in the Using IAM guide.
See: attachedPolicy smart constructor.
Instances
attachedPolicy :: AttachedPolicy Source #
Creates a value of AttachedPolicy with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
apPolicyName- The friendly name of the attached policy.apPolicyARN- Undocumented member.
apPolicyName :: Lens' AttachedPolicy (Maybe Text) Source #
The friendly name of the attached policy.
apPolicyARN :: Lens' AttachedPolicy (Maybe Text) Source #
Undocumented member.
ContextEntry
data ContextEntry Source #
Contains information about a condition context key. It includes the name of the key and specifies the value (or values, if the context key supports multiple values) to use in the simulation. This information is used when evaluating the Condition elements of the input policies.
This data type is used as an input parameter to SimulateCustomPolicy SimulateCustomPolicy
See: contextEntry smart constructor.
Instances
contextEntry :: ContextEntry Source #
Creates a value of ContextEntry with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
ceContextKeyValues- The value (or values, if the condition context key supports multiple values) to provide to the simulation when the key is referenced by aConditionelement in an input policy.ceContextKeyName- The full name of a condition context key, including the service prefix. For example,aws:SourceIpors3:VersionId.ceContextKeyType- The data type of the value (or values) specified in theContextKeyValuesparameter.
ceContextKeyValues :: Lens' ContextEntry [Text] Source #
The value (or values, if the condition context key supports multiple values) to provide to the simulation when the key is referenced by a Condition element in an input policy.
ceContextKeyName :: Lens' ContextEntry (Maybe Text) Source #
The full name of a condition context key, including the service prefix. For example, aws:SourceIp or s3:VersionId .
ceContextKeyType :: Lens' ContextEntry (Maybe ContextKeyTypeEnum) Source #
The data type of the value (or values) specified in the ContextKeyValues parameter.
DeletionTaskFailureReasonType
data DeletionTaskFailureReasonType Source #
The reason that the service-linked role deletion failed.
This data type is used as a response element in the GetServiceLinkedRoleDeletionStatus operation.
See: deletionTaskFailureReasonType smart constructor.
Instances
deletionTaskFailureReasonType :: DeletionTaskFailureReasonType Source #
Creates a value of DeletionTaskFailureReasonType with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
dtfrtRoleUsageList- A list of objects that contains details about the service-linked role deletion failure, if that information is returned by the service. If the service-linked role has active sessions or if any resources that were used by the role have not been deleted from the linked service, the role can't be deleted. This parameter includes a list of the resources that are associated with the role and the region in which the resources are being used.dtfrtReason- A short description of the reason that the service-linked role deletion failed.
dtfrtRoleUsageList :: Lens' DeletionTaskFailureReasonType [RoleUsageType] Source #
A list of objects that contains details about the service-linked role deletion failure, if that information is returned by the service. If the service-linked role has active sessions or if any resources that were used by the role have not been deleted from the linked service, the role can't be deleted. This parameter includes a list of the resources that are associated with the role and the region in which the resources are being used.
dtfrtReason :: Lens' DeletionTaskFailureReasonType (Maybe Text) Source #
A short description of the reason that the service-linked role deletion failed.
EvaluationResult
data EvaluationResult Source #
Contains the results of a simulation.
This data type is used by the return parameter of SimulateCustomPolicy SimulatePrincipalPolicy
See: evaluationResult smart constructor.
Instances
Creates a value of EvaluationResult with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
erMatchedStatements- A list of the statements in the input policies that determine the result for this scenario. Remember that even if multiple statements allow the operation on the resource, if only one statement denies that operation, then the explicit deny overrides any allow, and the deny statement is the only entry included in the result.erEvalDecisionDetails- Additional details about the results of the evaluation decision. When there are both IAM policies and resource policies, this parameter explains how each set of policies contributes to the final evaluation decision. When simulating cross-account access to a resource, both the resource-based policy and the caller's IAM policy must grant access. See How IAM Roles Differ from Resource-based PolicieserResourceSpecificResults- The individual results of the simulation of the API operation specified in EvalActionName on each resource.erEvalResourceName- The ARN of the resource that the indicated API operation was tested on.erMissingContextValues- A list of context keys that are required by the included input policies but that were not provided by one of the input parameters. This list is used when the resource in a simulation is "*", either explicitly, or when theResourceArnsparameter blank. If you include a list of resources, then any missing context values are instead included under theResourceSpecificResultssection. To discover the context keys used by a set of policies, you can callGetContextKeysForCustomPolicyorGetContextKeysForPrincipalPolicy.erOrganizationsDecisionDetail- A structure that details how AWS Organizations and its service control policies affect the results of the simulation. Only applies if the simulated user's account is part of an organization.erEvalActionName- The name of the API operation tested on the indicated resource.erEvalDecision- The result of the simulation.
erMatchedStatements :: Lens' EvaluationResult [Statement] Source #
A list of the statements in the input policies that determine the result for this scenario. Remember that even if multiple statements allow the operation on the resource, if only one statement denies that operation, then the explicit deny overrides any allow, and the deny statement is the only entry included in the result.
erEvalDecisionDetails :: Lens' EvaluationResult (HashMap Text PolicyEvaluationDecisionType) Source #
Additional details about the results of the evaluation decision. When there are both IAM policies and resource policies, this parameter explains how each set of policies contributes to the final evaluation decision. When simulating cross-account access to a resource, both the resource-based policy and the caller's IAM policy must grant access. See How IAM Roles Differ from Resource-based Policies
erResourceSpecificResults :: Lens' EvaluationResult [ResourceSpecificResult] Source #
The individual results of the simulation of the API operation specified in EvalActionName on each resource.
erEvalResourceName :: Lens' EvaluationResult (Maybe Text) Source #
The ARN of the resource that the indicated API operation was tested on.
erMissingContextValues :: Lens' EvaluationResult [Text] Source #
A list of context keys that are required by the included input policies but that were not provided by one of the input parameters. This list is used when the resource in a simulation is "*", either explicitly, or when the ResourceArns parameter blank. If you include a list of resources, then any missing context values are instead included under the ResourceSpecificResults section. To discover the context keys used by a set of policies, you can call GetContextKeysForCustomPolicy or GetContextKeysForPrincipalPolicy .
erOrganizationsDecisionDetail :: Lens' EvaluationResult (Maybe OrganizationsDecisionDetail) Source #
A structure that details how AWS Organizations and its service control policies affect the results of the simulation. Only applies if the simulated user's account is part of an organization.
erEvalActionName :: Lens' EvaluationResult Text Source #
The name of the API operation tested on the indicated resource.
erEvalDecision :: Lens' EvaluationResult PolicyEvaluationDecisionType Source #
The result of the simulation.
GetContextKeysForPolicyResponse
data GetContextKeysForPolicyResponse Source #
Contains the response to a successful GetContextKeysForPrincipalPolicy or GetContextKeysForCustomPolicy request.
See: getContextKeysForPolicyResponse smart constructor.
Instances
getContextKeysForPolicyResponse :: GetContextKeysForPolicyResponse Source #
Creates a value of GetContextKeysForPolicyResponse with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
gckfpContextKeyNames- The list of context keys that are referenced in the input policies.
gckfpContextKeyNames :: Lens' GetContextKeysForPolicyResponse [Text] Source #
The list of context keys that are referenced in the input policies.
Group
Contains information about an IAM group entity.
This data type is used as a response element in the following operations:
CreateGroupGetGroupListGroups
See: group' smart constructor.
Instances
| Eq Group Source # | |
| Data Group Source # | |
Defined in Network.AWS.IAM.Types.Product Methods gfoldl :: (forall d b. Data d => c (d -> b) -> d -> c b) -> (forall g. g -> c g) -> Group -> c Group # gunfold :: (forall b r. Data b => c (b -> r) -> c r) -> (forall r. r -> c r) -> Constr -> c Group # dataTypeOf :: Group -> DataType # dataCast1 :: Typeable t => (forall d. Data d => c (t d)) -> Maybe (c Group) # dataCast2 :: Typeable t => (forall d e. (Data d, Data e) => c (t d e)) -> Maybe (c Group) # gmapT :: (forall b. Data b => b -> b) -> Group -> Group # gmapQl :: (r -> r' -> r) -> r -> (forall d. Data d => d -> r') -> Group -> r # gmapQr :: (r' -> r -> r) -> r -> (forall d. Data d => d -> r') -> Group -> r # gmapQ :: (forall d. Data d => d -> u) -> Group -> [u] # gmapQi :: Int -> (forall d. Data d => d -> u) -> Group -> u # gmapM :: Monad m => (forall d. Data d => d -> m d) -> Group -> m Group # gmapMp :: MonadPlus m => (forall d. Data d => d -> m d) -> Group -> m Group # gmapMo :: MonadPlus m => (forall d. Data d => d -> m d) -> Group -> m Group # | |
| Read Group Source # | |
| Show Group Source # | |
| Generic Group Source # | |
| Hashable Group Source # | |
Defined in Network.AWS.IAM.Types.Product | |
| FromXML Group Source # | |
| NFData Group Source # | |
Defined in Network.AWS.IAM.Types.Product | |
| type Rep Group Source # | |
Defined in Network.AWS.IAM.Types.Product type Rep Group = D1 (MetaData "Group" "Network.AWS.IAM.Types.Product" "amazonka-iam-1.6.1-BDjAp2BAcQu3GSS4Bsr6zu" False) (C1 (MetaCons "Group'" PrefixI True) ((S1 (MetaSel (Just "_gPath") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 Text) :*: S1 (MetaSel (Just "_gGroupName") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 Text)) :*: (S1 (MetaSel (Just "_gGroupId") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 Text) :*: (S1 (MetaSel (Just "_gARN") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 Text) :*: S1 (MetaSel (Just "_gCreateDate") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 ISO8601))))) | |
Creates a value of Group with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
gPath- The path to the group. For more information about paths, see IAM Identifiers in the Using IAM guide.gGroupName- The friendly name that identifies the group.gGroupId- The stable and unique string identifying the group. For more information about IDs, see IAM Identifiers in the Using IAM guide.gARN- The Amazon Resource Name (ARN) specifying the group. For more information about ARNs and how to use them in policies, see IAM Identifiers in the Using IAM guide.gCreateDate- The date and time, in ISO 8601 date-time format , when the group was created.
gPath :: Lens' Group Text Source #
The path to the group. For more information about paths, see IAM Identifiers in the Using IAM guide.
gGroupId :: Lens' Group Text Source #
The stable and unique string identifying the group. For more information about IDs, see IAM Identifiers in the Using IAM guide.
gARN :: Lens' Group Text Source #
The Amazon Resource Name (ARN) specifying the group. For more information about ARNs and how to use them in policies, see IAM Identifiers in the Using IAM guide.
gCreateDate :: Lens' Group UTCTime Source #
The date and time, in ISO 8601 date-time format , when the group was created.
GroupDetail
data GroupDetail Source #
Contains information about an IAM group, including all of the group's policies.
This data type is used as a response element in the GetAccountAuthorizationDetails operation.
See: groupDetail smart constructor.
Instances
groupDetail :: GroupDetail Source #
Creates a value of GroupDetail with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
gdARN- Undocumented member.gdPath- The path to the group. For more information about paths, see IAM Identifiers in the Using IAM guide.gdCreateDate- The date and time, in ISO 8601 date-time format , when the group was created.gdGroupId- The stable and unique string identifying the group. For more information about IDs, see IAM Identifiers in the Using IAM guide.gdGroupPolicyList- A list of the inline policies embedded in the group.gdGroupName- The friendly name that identifies the group.gdAttachedManagedPolicies- A list of the managed policies attached to the group.
gdPath :: Lens' GroupDetail (Maybe Text) Source #
The path to the group. For more information about paths, see IAM Identifiers in the Using IAM guide.
gdCreateDate :: Lens' GroupDetail (Maybe UTCTime) Source #
The date and time, in ISO 8601 date-time format , when the group was created.
gdGroupId :: Lens' GroupDetail (Maybe Text) Source #
The stable and unique string identifying the group. For more information about IDs, see IAM Identifiers in the Using IAM guide.
gdGroupPolicyList :: Lens' GroupDetail [PolicyDetail] Source #
A list of the inline policies embedded in the group.
gdGroupName :: Lens' GroupDetail (Maybe Text) Source #
The friendly name that identifies the group.
gdAttachedManagedPolicies :: Lens' GroupDetail [AttachedPolicy] Source #
A list of the managed policies attached to the group.
InstanceProfile
data InstanceProfile Source #
Contains information about an instance profile.
This data type is used as a response element in the following operations:
CreateInstanceProfileGetInstanceProfileListInstanceProfilesListInstanceProfilesForRole
See: instanceProfile smart constructor.
Instances
Creates a value of InstanceProfile with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
ipPath- The path to the instance profile. For more information about paths, see IAM Identifiers in the Using IAM guide.ipInstanceProfileName- The name identifying the instance profile.ipInstanceProfileId- The stable and unique string identifying the instance profile. For more information about IDs, see IAM Identifiers in the Using IAM guide.ipARN- The Amazon Resource Name (ARN) specifying the instance profile. For more information about ARNs and how to use them in policies, see IAM Identifiers in the Using IAM guide.ipCreateDate- The date when the instance profile was created.ipRoles- The role associated with the instance profile.
ipPath :: Lens' InstanceProfile Text Source #
The path to the instance profile. For more information about paths, see IAM Identifiers in the Using IAM guide.
ipInstanceProfileName :: Lens' InstanceProfile Text Source #
The name identifying the instance profile.
ipInstanceProfileId :: Lens' InstanceProfile Text Source #
The stable and unique string identifying the instance profile. For more information about IDs, see IAM Identifiers in the Using IAM guide.
ipARN :: Lens' InstanceProfile Text Source #
The Amazon Resource Name (ARN) specifying the instance profile. For more information about ARNs and how to use them in policies, see IAM Identifiers in the Using IAM guide.
ipCreateDate :: Lens' InstanceProfile UTCTime Source #
The date when the instance profile was created.
LoginProfile
data LoginProfile Source #
Contains the user name and password create date for a user.
This data type is used as a response element in the CreateLoginProfile and GetLoginProfile operations.
See: loginProfile smart constructor.
Instances
Arguments
| :: Text | |
| -> UTCTime | |
| -> LoginProfile |
Creates a value of LoginProfile with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
lpPasswordResetRequired- Specifies whether the user is required to set a new password on next sign-in.lpUserName- The name of the user, which can be used for signing in to the AWS Management Console.lpCreateDate- The date when the password for the user was created.
lpPasswordResetRequired :: Lens' LoginProfile (Maybe Bool) Source #
Specifies whether the user is required to set a new password on next sign-in.
lpUserName :: Lens' LoginProfile Text Source #
The name of the user, which can be used for signing in to the AWS Management Console.
lpCreateDate :: Lens' LoginProfile UTCTime Source #
The date when the password for the user was created.
MFADevice
Contains information about an MFA device.
This data type is used as a response element in the ListMFADevices operation.
See: mfaDevice smart constructor.
Instances
| Eq MFADevice Source # | |
| Data MFADevice Source # | |
Defined in Network.AWS.IAM.Types.Product Methods gfoldl :: (forall d b. Data d => c (d -> b) -> d -> c b) -> (forall g. g -> c g) -> MFADevice -> c MFADevice # gunfold :: (forall b r. Data b => c (b -> r) -> c r) -> (forall r. r -> c r) -> Constr -> c MFADevice # toConstr :: MFADevice -> Constr # dataTypeOf :: MFADevice -> DataType # dataCast1 :: Typeable t => (forall d. Data d => c (t d)) -> Maybe (c MFADevice) # dataCast2 :: Typeable t => (forall d e. (Data d, Data e) => c (t d e)) -> Maybe (c MFADevice) # gmapT :: (forall b. Data b => b -> b) -> MFADevice -> MFADevice # gmapQl :: (r -> r' -> r) -> r -> (forall d. Data d => d -> r') -> MFADevice -> r # gmapQr :: (r' -> r -> r) -> r -> (forall d. Data d => d -> r') -> MFADevice -> r # gmapQ :: (forall d. Data d => d -> u) -> MFADevice -> [u] # gmapQi :: Int -> (forall d. Data d => d -> u) -> MFADevice -> u # gmapM :: Monad m => (forall d. Data d => d -> m d) -> MFADevice -> m MFADevice # gmapMp :: MonadPlus m => (forall d. Data d => d -> m d) -> MFADevice -> m MFADevice # gmapMo :: MonadPlus m => (forall d. Data d => d -> m d) -> MFADevice -> m MFADevice # | |
| Read MFADevice Source # | |
| Show MFADevice Source # | |
| Generic MFADevice Source # | |
| Hashable MFADevice Source # | |
Defined in Network.AWS.IAM.Types.Product | |
| FromXML MFADevice Source # | |
| NFData MFADevice Source # | |
Defined in Network.AWS.IAM.Types.Product | |
| type Rep MFADevice Source # | |
Defined in Network.AWS.IAM.Types.Product type Rep MFADevice = D1 (MetaData "MFADevice" "Network.AWS.IAM.Types.Product" "amazonka-iam-1.6.1-BDjAp2BAcQu3GSS4Bsr6zu" False) (C1 (MetaCons "MFADevice'" PrefixI True) (S1 (MetaSel (Just "_mdUserName") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 Text) :*: (S1 (MetaSel (Just "_mdSerialNumber") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 Text) :*: S1 (MetaSel (Just "_mdEnableDate") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 ISO8601)))) | |
Creates a value of MFADevice with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
mdUserName- The user with whom the MFA device is associated.mdSerialNumber- The serial number that uniquely identifies the MFA device. For virtual MFA devices, the serial number is the device ARN.mdEnableDate- The date when the MFA device was enabled for the user.
mdSerialNumber :: Lens' MFADevice Text Source #
The serial number that uniquely identifies the MFA device. For virtual MFA devices, the serial number is the device ARN.
mdEnableDate :: Lens' MFADevice UTCTime Source #
The date when the MFA device was enabled for the user.
ManagedPolicyDetail
data ManagedPolicyDetail Source #
Contains information about a managed policy, including the policy's ARN, versions, and the number of principal entities (users, groups, and roles) that the policy is attached to.
This data type is used as a response element in the GetAccountAuthorizationDetails operation.
For more information about managed policies, see Managed Policies and Inline Policies in the Using IAM guide.
See: managedPolicyDetail smart constructor.
Instances
managedPolicyDetail :: ManagedPolicyDetail Source #
Creates a value of ManagedPolicyDetail with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
mpdPolicyName- The friendly name (not ARN) identifying the policy.mpdARN- Undocumented member.mpdUpdateDate- The date and time, in ISO 8601 date-time format , when the policy was last updated. When a policy has only one version, this field contains the date and time when the policy was created. When a policy has more than one version, this field contains the date and time when the most recent policy version was created.mpdPolicyId- The stable and unique string identifying the policy. For more information about IDs, see IAM Identifiers in the Using IAM guide.mpdPath- The path to the policy. For more information about paths, see IAM Identifiers in the Using IAM guide.mpdPolicyVersionList- A list containing information about the versions of the policy.mpdCreateDate- The date and time, in ISO 8601 date-time format , when the policy was created.mpdIsAttachable- Specifies whether the policy can be attached to an IAM user, group, or role.mpdDefaultVersionId- The identifier for the version of the policy that is set as the default (operative) version. For more information about policy versions, see Versioning for Managed Policies in the Using IAM guide.mpdAttachmentCount- The number of principal entities (users, groups, and roles) that the policy is attached to.mpdDescription- A friendly description of the policy.
mpdPolicyName :: Lens' ManagedPolicyDetail (Maybe Text) Source #
The friendly name (not ARN) identifying the policy.
mpdUpdateDate :: Lens' ManagedPolicyDetail (Maybe UTCTime) Source #
The date and time, in ISO 8601 date-time format , when the policy was last updated. When a policy has only one version, this field contains the date and time when the policy was created. When a policy has more than one version, this field contains the date and time when the most recent policy version was created.
mpdPolicyId :: Lens' ManagedPolicyDetail (Maybe Text) Source #
The stable and unique string identifying the policy. For more information about IDs, see IAM Identifiers in the Using IAM guide.
mpdPath :: Lens' ManagedPolicyDetail (Maybe Text) Source #
The path to the policy. For more information about paths, see IAM Identifiers in the Using IAM guide.
mpdPolicyVersionList :: Lens' ManagedPolicyDetail [PolicyVersion] Source #
A list containing information about the versions of the policy.
mpdCreateDate :: Lens' ManagedPolicyDetail (Maybe UTCTime) Source #
The date and time, in ISO 8601 date-time format , when the policy was created.
mpdIsAttachable :: Lens' ManagedPolicyDetail (Maybe Bool) Source #
Specifies whether the policy can be attached to an IAM user, group, or role.
mpdDefaultVersionId :: Lens' ManagedPolicyDetail (Maybe Text) Source #
The identifier for the version of the policy that is set as the default (operative) version. For more information about policy versions, see Versioning for Managed Policies in the Using IAM guide.
mpdAttachmentCount :: Lens' ManagedPolicyDetail (Maybe Int) Source #
The number of principal entities (users, groups, and roles) that the policy is attached to.
mpdDescription :: Lens' ManagedPolicyDetail (Maybe Text) Source #
A friendly description of the policy.
OpenIdConnectProviderListEntry
data OpenIdConnectProviderListEntry Source #
Contains the Amazon Resource Name (ARN) for an IAM OpenID Connect provider.
See: openIdConnectProviderListEntry smart constructor.
Instances
openIdConnectProviderListEntry :: OpenIdConnectProviderListEntry Source #
Creates a value of OpenIdConnectProviderListEntry with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
oicpleARN- Undocumented member.
OrganizationsDecisionDetail
data OrganizationsDecisionDetail Source #
Contains information about AWS Organizations's effect on a policy simulation.
See: organizationsDecisionDetail smart constructor.
Instances
organizationsDecisionDetail :: OrganizationsDecisionDetail Source #
Creates a value of OrganizationsDecisionDetail with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
oddAllowedByOrganizations- Specifies whether the simulated operation is allowed by the AWS Organizations service control policies that impact the simulated user's account.
oddAllowedByOrganizations :: Lens' OrganizationsDecisionDetail (Maybe Bool) Source #
Specifies whether the simulated operation is allowed by the AWS Organizations service control policies that impact the simulated user's account.
PasswordPolicy
data PasswordPolicy Source #
Contains information about the account password policy.
This data type is used as a response element in the GetAccountPasswordPolicy operation.
See: passwordPolicy smart constructor.
Instances
passwordPolicy :: PasswordPolicy Source #
Creates a value of PasswordPolicy with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
ppExpirePasswords- Indicates whether passwords in the account expire. Returns true ifMaxPasswordAgecontains a value greater than 0. Returns false if MaxPasswordAge is 0 or not present.ppMinimumPasswordLength- Minimum length to require for IAM user passwords.ppRequireNumbers- Specifies whether to require numbers for IAM user passwords.ppPasswordReusePrevention- Specifies the number of previous passwords that IAM users are prevented from reusing.ppRequireLowercaseCharacters- Specifies whether to require lowercase characters for IAM user passwords.ppMaxPasswordAge- The number of days that an IAM user password is valid.ppHardExpiry- Specifies whether IAM users are prevented from setting a new password after their password has expired.ppRequireSymbols- Specifies whether to require symbols for IAM user passwords.ppRequireUppercaseCharacters- Specifies whether to require uppercase characters for IAM user passwords.ppAllowUsersToChangePassword- Specifies whether IAM users are allowed to change their own password.
ppExpirePasswords :: Lens' PasswordPolicy (Maybe Bool) Source #
Indicates whether passwords in the account expire. Returns true if MaxPasswordAge contains a value greater than 0. Returns false if MaxPasswordAge is 0 or not present.
ppMinimumPasswordLength :: Lens' PasswordPolicy (Maybe Natural) Source #
Minimum length to require for IAM user passwords.
ppRequireNumbers :: Lens' PasswordPolicy (Maybe Bool) Source #
Specifies whether to require numbers for IAM user passwords.
ppPasswordReusePrevention :: Lens' PasswordPolicy (Maybe Natural) Source #
Specifies the number of previous passwords that IAM users are prevented from reusing.
ppRequireLowercaseCharacters :: Lens' PasswordPolicy (Maybe Bool) Source #
Specifies whether to require lowercase characters for IAM user passwords.
ppMaxPasswordAge :: Lens' PasswordPolicy (Maybe Natural) Source #
The number of days that an IAM user password is valid.
ppHardExpiry :: Lens' PasswordPolicy (Maybe Bool) Source #
Specifies whether IAM users are prevented from setting a new password after their password has expired.
ppRequireSymbols :: Lens' PasswordPolicy (Maybe Bool) Source #
Specifies whether to require symbols for IAM user passwords.
ppRequireUppercaseCharacters :: Lens' PasswordPolicy (Maybe Bool) Source #
Specifies whether to require uppercase characters for IAM user passwords.
ppAllowUsersToChangePassword :: Lens' PasswordPolicy (Maybe Bool) Source #
Specifies whether IAM users are allowed to change their own password.
Policy
Contains information about a managed policy.
This data type is used as a response element in the CreatePolicy , GetPolicy , and ListPolicies operations.
For more information about managed policies, refer to Managed Policies and Inline Policies in the Using IAM guide.
See: policy smart constructor.
Instances
Creates a value of Policy with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
pPolicyName- The friendly name (not ARN) identifying the policy.pARN- Undocumented member.pUpdateDate- The date and time, in ISO 8601 date-time format , when the policy was last updated. When a policy has only one version, this field contains the date and time when the policy was created. When a policy has more than one version, this field contains the date and time when the most recent policy version was created.pPolicyId- The stable and unique string identifying the policy. For more information about IDs, see IAM Identifiers in the Using IAM guide.pPath- The path to the policy. For more information about paths, see IAM Identifiers in the Using IAM guide.pCreateDate- The date and time, in ISO 8601 date-time format , when the policy was created.pIsAttachable- Specifies whether the policy can be attached to an IAM user, group, or role.pDefaultVersionId- The identifier for the version of the policy that is set as the default version.pAttachmentCount- The number of entities (users, groups, and roles) that the policy is attached to.pDescription- A friendly description of the policy. This element is included in the response to theGetPolicyoperation. It is not included in the response to theListPoliciesoperation.
pPolicyName :: Lens' Policy (Maybe Text) Source #
The friendly name (not ARN) identifying the policy.
pUpdateDate :: Lens' Policy (Maybe UTCTime) Source #
The date and time, in ISO 8601 date-time format , when the policy was last updated. When a policy has only one version, this field contains the date and time when the policy was created. When a policy has more than one version, this field contains the date and time when the most recent policy version was created.
pPolicyId :: Lens' Policy (Maybe Text) Source #
The stable and unique string identifying the policy. For more information about IDs, see IAM Identifiers in the Using IAM guide.
pPath :: Lens' Policy (Maybe Text) Source #
The path to the policy. For more information about paths, see IAM Identifiers in the Using IAM guide.
pCreateDate :: Lens' Policy (Maybe UTCTime) Source #
The date and time, in ISO 8601 date-time format , when the policy was created.
pIsAttachable :: Lens' Policy (Maybe Bool) Source #
Specifies whether the policy can be attached to an IAM user, group, or role.
pDefaultVersionId :: Lens' Policy (Maybe Text) Source #
The identifier for the version of the policy that is set as the default version.
pAttachmentCount :: Lens' Policy (Maybe Int) Source #
The number of entities (users, groups, and roles) that the policy is attached to.
pDescription :: Lens' Policy (Maybe Text) Source #
A friendly description of the policy. This element is included in the response to the GetPolicy operation. It is not included in the response to the ListPolicies operation.
PolicyDetail
data PolicyDetail Source #
Contains information about an IAM policy, including the policy document.
This data type is used as a response element in the GetAccountAuthorizationDetails operation.
See: policyDetail smart constructor.
Instances
policyDetail :: PolicyDetail Source #
Creates a value of PolicyDetail with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
pdPolicyDocument- The policy document.pdPolicyName- The name of the policy.
pdPolicyDocument :: Lens' PolicyDetail (Maybe Text) Source #
The policy document.
pdPolicyName :: Lens' PolicyDetail (Maybe Text) Source #
The name of the policy.
PolicyGroup
data PolicyGroup Source #
Contains information about a group that a managed policy is attached to.
This data type is used as a response element in the ListEntitiesForPolicy operation.
For more information about managed policies, refer to Managed Policies and Inline Policies in the Using IAM guide.
See: policyGroup smart constructor.
Instances
policyGroup :: PolicyGroup Source #
Creates a value of PolicyGroup with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
pgGroupId- The stable and unique string identifying the group. For more information about IDs, see IAM Identifiers in the IAM User Guide .pgGroupName- The name (friendly name, not ARN) identifying the group.
pgGroupId :: Lens' PolicyGroup (Maybe Text) Source #
The stable and unique string identifying the group. For more information about IDs, see IAM Identifiers in the IAM User Guide .
pgGroupName :: Lens' PolicyGroup (Maybe Text) Source #
The name (friendly name, not ARN) identifying the group.
PolicyRole
data PolicyRole Source #
Contains information about a role that a managed policy is attached to.
This data type is used as a response element in the ListEntitiesForPolicy operation.
For more information about managed policies, refer to Managed Policies and Inline Policies in the Using IAM guide.
See: policyRole smart constructor.
Instances
policyRole :: PolicyRole Source #
Creates a value of PolicyRole with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
prRoleName- The name (friendly name, not ARN) identifying the role.prRoleId- The stable and unique string identifying the role. For more information about IDs, see IAM Identifiers in the IAM User Guide .
prRoleName :: Lens' PolicyRole (Maybe Text) Source #
The name (friendly name, not ARN) identifying the role.
prRoleId :: Lens' PolicyRole (Maybe Text) Source #
The stable and unique string identifying the role. For more information about IDs, see IAM Identifiers in the IAM User Guide .
PolicyUser
data PolicyUser Source #
Contains information about a user that a managed policy is attached to.
This data type is used as a response element in the ListEntitiesForPolicy operation.
For more information about managed policies, refer to Managed Policies and Inline Policies in the Using IAM guide.
See: policyUser smart constructor.
Instances
policyUser :: PolicyUser Source #
Creates a value of PolicyUser with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
puUserName- The name (friendly name, not ARN) identifying the user.puUserId- The stable and unique string identifying the user. For more information about IDs, see IAM Identifiers in the IAM User Guide .
puUserName :: Lens' PolicyUser (Maybe Text) Source #
The name (friendly name, not ARN) identifying the user.
puUserId :: Lens' PolicyUser (Maybe Text) Source #
The stable and unique string identifying the user. For more information about IDs, see IAM Identifiers in the IAM User Guide .
PolicyVersion
data PolicyVersion Source #
Contains information about a version of a managed policy.
This data type is used as a response element in the CreatePolicyVersion , GetPolicyVersion , ListPolicyVersions , and GetAccountAuthorizationDetails operations.
For more information about managed policies, refer to Managed Policies and Inline Policies in the Using IAM guide.
See: policyVersion smart constructor.
Instances
policyVersion :: PolicyVersion Source #
Creates a value of PolicyVersion with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
pvVersionId- The identifier for the policy version. Policy version identifiers always begin withv(always lowercase). When a policy is created, the first policy version isv1.pvCreateDate- The date and time, in ISO 8601 date-time format , when the policy version was created.pvDocument- The policy document. The policy document is returned in the response to theGetPolicyVersionandGetAccountAuthorizationDetailsoperations. It is not returned in the response to theCreatePolicyVersionorListPolicyVersionsoperations. The policy document returned in this structure is URL-encoded compliant with RFC 3986 . You can use a URL decoding method to convert the policy back to plain JSON text. For example, if you use Java, you can use thedecodemethod of thejava.net.URLDecoderutility class in the Java SDK. Other languages and SDKs provide similar functionality.pvIsDefaultVersion- Specifies whether the policy version is set as the policy's default version.
pvVersionId :: Lens' PolicyVersion (Maybe Text) Source #
The identifier for the policy version. Policy version identifiers always begin with v (always lowercase). When a policy is created, the first policy version is v1 .
pvCreateDate :: Lens' PolicyVersion (Maybe UTCTime) Source #
The date and time, in ISO 8601 date-time format , when the policy version was created.
pvDocument :: Lens' PolicyVersion (Maybe Text) Source #
The policy document. The policy document is returned in the response to the GetPolicyVersion and GetAccountAuthorizationDetails operations. It is not returned in the response to the CreatePolicyVersion or ListPolicyVersions operations. The policy document returned in this structure is URL-encoded compliant with RFC 3986 . You can use a URL decoding method to convert the policy back to plain JSON text. For example, if you use Java, you can use the decode method of the java.net.URLDecoder utility class in the Java SDK. Other languages and SDKs provide similar functionality.
pvIsDefaultVersion :: Lens' PolicyVersion (Maybe Bool) Source #
Specifies whether the policy version is set as the policy's default version.
Position
Contains the row and column of a location of a Statement element in a policy document.
This data type is used as a member of the Statement
See: position smart constructor.
Instances
| Eq Position Source # | |
| Data Position Source # | |
Defined in Network.AWS.IAM.Types.Product Methods gfoldl :: (forall d b. Data d => c (d -> b) -> d -> c b) -> (forall g. g -> c g) -> Position -> c Position # gunfold :: (forall b r. Data b => c (b -> r) -> c r) -> (forall r. r -> c r) -> Constr -> c Position # toConstr :: Position -> Constr # dataTypeOf :: Position -> DataType # dataCast1 :: Typeable t => (forall d. Data d => c (t d)) -> Maybe (c Position) # dataCast2 :: Typeable t => (forall d e. (Data d, Data e) => c (t d e)) -> Maybe (c Position) # gmapT :: (forall b. Data b => b -> b) -> Position -> Position # gmapQl :: (r -> r' -> r) -> r -> (forall d. Data d => d -> r') -> Position -> r # gmapQr :: (r' -> r -> r) -> r -> (forall d. Data d => d -> r') -> Position -> r # gmapQ :: (forall d. Data d => d -> u) -> Position -> [u] # gmapQi :: Int -> (forall d. Data d => d -> u) -> Position -> u # gmapM :: Monad m => (forall d. Data d => d -> m d) -> Position -> m Position # gmapMp :: MonadPlus m => (forall d. Data d => d -> m d) -> Position -> m Position # gmapMo :: MonadPlus m => (forall d. Data d => d -> m d) -> Position -> m Position # | |
| Read Position Source # | |
| Show Position Source # | |
| Generic Position Source # | |
| Hashable Position Source # | |
Defined in Network.AWS.IAM.Types.Product | |
| FromXML Position Source # | |
| NFData Position Source # | |
Defined in Network.AWS.IAM.Types.Product | |
| type Rep Position Source # | |
Defined in Network.AWS.IAM.Types.Product type Rep Position = D1 (MetaData "Position" "Network.AWS.IAM.Types.Product" "amazonka-iam-1.6.1-BDjAp2BAcQu3GSS4Bsr6zu" False) (C1 (MetaCons "Position'" PrefixI True) (S1 (MetaSel (Just "_pLine") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 (Maybe Int)) :*: S1 (MetaSel (Just "_pColumn") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 (Maybe Int)))) | |
pLine :: Lens' Position (Maybe Int) Source #
The line containing the specified position in the document.
pColumn :: Lens' Position (Maybe Int) Source #
The column in the line containing the specified position in the document.
ResourceSpecificResult
data ResourceSpecificResult Source #
Contains the result of the simulation of a single API operation call on a single resource.
This data type is used by a member of the EvaluationResult data type.
See: resourceSpecificResult smart constructor.
Instances
resourceSpecificResult Source #
Arguments
| :: Text | |
| -> PolicyEvaluationDecisionType | |
| -> ResourceSpecificResult |
Creates a value of ResourceSpecificResult with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
rsrMatchedStatements- A list of the statements in the input policies that determine the result for this part of the simulation. Remember that even if multiple statements allow the operation on the resource, if any statement denies that operation, then the explicit deny overrides any allow, and the deny statement is the only entry included in the result.rsrEvalDecisionDetails- Additional details about the results of the evaluation decision. When there are both IAM policies and resource policies, this parameter explains how each set of policies contributes to the final evaluation decision. When simulating cross-account access to a resource, both the resource-based policy and the caller's IAM policy must grant access.rsrMissingContextValues- A list of context keys that are required by the included input policies but that were not provided by one of the input parameters. This list is used when a list of ARNs is included in theResourceArnsparameter instead of "*". If you do not specify individual resources, by settingResourceArnsto "*" or by not including theResourceArnsparameter, then any missing context values are instead included under theEvaluationResultssection. To discover the context keys used by a set of policies, you can callGetContextKeysForCustomPolicyorGetContextKeysForPrincipalPolicy.rsrEvalResourceName- The name of the simulated resource, in Amazon Resource Name (ARN) format.rsrEvalResourceDecision- The result of the simulation of the simulated API operation on the resource specified inEvalResourceName.
rsrMatchedStatements :: Lens' ResourceSpecificResult [Statement] Source #
A list of the statements in the input policies that determine the result for this part of the simulation. Remember that even if multiple statements allow the operation on the resource, if any statement denies that operation, then the explicit deny overrides any allow, and the deny statement is the only entry included in the result.
rsrEvalDecisionDetails :: Lens' ResourceSpecificResult (HashMap Text PolicyEvaluationDecisionType) Source #
Additional details about the results of the evaluation decision. When there are both IAM policies and resource policies, this parameter explains how each set of policies contributes to the final evaluation decision. When simulating cross-account access to a resource, both the resource-based policy and the caller's IAM policy must grant access.
rsrMissingContextValues :: Lens' ResourceSpecificResult [Text] Source #
A list of context keys that are required by the included input policies but that were not provided by one of the input parameters. This list is used when a list of ARNs is included in the ResourceArns parameter instead of "*". If you do not specify individual resources, by setting ResourceArns to "*" or by not including the ResourceArns parameter, then any missing context values are instead included under the EvaluationResults section. To discover the context keys used by a set of policies, you can call GetContextKeysForCustomPolicy or GetContextKeysForPrincipalPolicy .
rsrEvalResourceName :: Lens' ResourceSpecificResult Text Source #
The name of the simulated resource, in Amazon Resource Name (ARN) format.
rsrEvalResourceDecision :: Lens' ResourceSpecificResult PolicyEvaluationDecisionType Source #
The result of the simulation of the simulated API operation on the resource specified in EvalResourceName .
Role
Contains information about an IAM role. This structure is returned as a response element in several API operations that interact with roles.
See: role' smart constructor.
Instances
Creates a value of Role with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
rMaxSessionDuration- The maximum session duration (in seconds) for the specified role. Anyone who uses the AWS CLI or API to assume the role can specify the duration using the optionalDurationSecondsAPI parameter orduration-secondsCLI parameter.rAssumeRolePolicyDocument- The policy that grants an entity permission to assume the role.rDescription- A description of the role that you provide.rPath- The path to the role. For more information about paths, see IAM Identifiers in the Using IAM guide.rRoleName- The friendly name that identifies the role.rRoleId- The stable and unique string identifying the role. For more information about IDs, see IAM Identifiers in the Using IAM guide.rARN- The Amazon Resource Name (ARN) specifying the role. For more information about ARNs and how to use them in policies, see IAM Identifiers in the IAM User Guide guide.rCreateDate- The date and time, in ISO 8601 date-time format , when the role was created.
rMaxSessionDuration :: Lens' Role (Maybe Natural) Source #
The maximum session duration (in seconds) for the specified role. Anyone who uses the AWS CLI or API to assume the role can specify the duration using the optional DurationSeconds API parameter or duration-seconds CLI parameter.
rAssumeRolePolicyDocument :: Lens' Role (Maybe Text) Source #
The policy that grants an entity permission to assume the role.
rPath :: Lens' Role Text Source #
The path to the role. For more information about paths, see IAM Identifiers in the Using IAM guide.
rRoleId :: Lens' Role Text Source #
The stable and unique string identifying the role. For more information about IDs, see IAM Identifiers in the Using IAM guide.
rARN :: Lens' Role Text Source #
The Amazon Resource Name (ARN) specifying the role. For more information about ARNs and how to use them in policies, see IAM Identifiers in the IAM User Guide guide.
rCreateDate :: Lens' Role UTCTime Source #
The date and time, in ISO 8601 date-time format , when the role was created.
RoleDetail
data RoleDetail Source #
Contains information about an IAM role, including all of the role's policies.
This data type is used as a response element in the GetAccountAuthorizationDetails operation.
See: roleDetail smart constructor.
Instances
roleDetail :: RoleDetail Source #
Creates a value of RoleDetail with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
rdAssumeRolePolicyDocument- The trust policy that grants permission to assume the role.rdARN- Undocumented member.rdPath- The path to the role. For more information about paths, see IAM Identifiers in the Using IAM guide.rdInstanceProfileList- A list of instance profiles that contain this role.rdCreateDate- The date and time, in ISO 8601 date-time format , when the role was created.rdRoleName- The friendly name that identifies the role.rdRoleId- The stable and unique string identifying the role. For more information about IDs, see IAM Identifiers in the Using IAM guide.rdRolePolicyList- A list of inline policies embedded in the role. These policies are the role's access (permissions) policies.rdAttachedManagedPolicies- A list of managed policies attached to the role. These policies are the role's access (permissions) policies.
rdAssumeRolePolicyDocument :: Lens' RoleDetail (Maybe Text) Source #
The trust policy that grants permission to assume the role.
rdPath :: Lens' RoleDetail (Maybe Text) Source #
The path to the role. For more information about paths, see IAM Identifiers in the Using IAM guide.
rdInstanceProfileList :: Lens' RoleDetail [InstanceProfile] Source #
A list of instance profiles that contain this role.
rdCreateDate :: Lens' RoleDetail (Maybe UTCTime) Source #
The date and time, in ISO 8601 date-time format , when the role was created.
rdRoleName :: Lens' RoleDetail (Maybe Text) Source #
The friendly name that identifies the role.
rdRoleId :: Lens' RoleDetail (Maybe Text) Source #
The stable and unique string identifying the role. For more information about IDs, see IAM Identifiers in the Using IAM guide.
rdRolePolicyList :: Lens' RoleDetail [PolicyDetail] Source #
A list of inline policies embedded in the role. These policies are the role's access (permissions) policies.
rdAttachedManagedPolicies :: Lens' RoleDetail [AttachedPolicy] Source #
A list of managed policies attached to the role. These policies are the role's access (permissions) policies.
RoleUsageType
data RoleUsageType Source #
An object that contains details about how a service-linked role is used, if that information is returned by the service.
This data type is used as a response element in the GetServiceLinkedRoleDeletionStatus operation.
See: roleUsageType smart constructor.
Instances
roleUsageType :: RoleUsageType Source #
Creates a value of RoleUsageType with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
rutResources- The name of the resource that is using the service-linked role.rutRegion- The name of the region where the service-linked role is being used.
rutResources :: Lens' RoleUsageType [Text] Source #
The name of the resource that is using the service-linked role.
rutRegion :: Lens' RoleUsageType (Maybe Text) Source #
The name of the region where the service-linked role is being used.
SAMLProviderListEntry
data SAMLProviderListEntry Source #
Contains the list of SAML providers for this account.
See: sAMLProviderListEntry smart constructor.
Instances
sAMLProviderListEntry :: SAMLProviderListEntry Source #
Creates a value of SAMLProviderListEntry with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
samlpleARN- The Amazon Resource Name (ARN) of the SAML provider.samlpleCreateDate- The date and time when the SAML provider was created.samlpleValidUntil- The expiration date and time for the SAML provider.
samlpleARN :: Lens' SAMLProviderListEntry (Maybe Text) Source #
The Amazon Resource Name (ARN) of the SAML provider.
samlpleCreateDate :: Lens' SAMLProviderListEntry (Maybe UTCTime) Source #
The date and time when the SAML provider was created.
samlpleValidUntil :: Lens' SAMLProviderListEntry (Maybe UTCTime) Source #
The expiration date and time for the SAML provider.
SSHPublicKey
data SSHPublicKey Source #
Contains information about an SSH public key.
This data type is used as a response element in the GetSSHPublicKey and UploadSSHPublicKey operations.
See: sshPublicKey smart constructor.
Instances
Arguments
| :: Text | |
| -> Text | |
| -> Text | |
| -> Text | |
| -> StatusType | |
| -> SSHPublicKey |
Creates a value of SSHPublicKey with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
spkUploadDate- The date and time, in ISO 8601 date-time format , when the SSH public key was uploaded.spkUserName- The name of the IAM user associated with the SSH public key.spkSSHPublicKeyId- The unique identifier for the SSH public key.spkFingerprint- The MD5 message digest of the SSH public key.spkSSHPublicKeyBody- The SSH public key.spkStatus- The status of the SSH public key.Activemeans that the key can be used for authentication with an AWS CodeCommit repository.Inactivemeans that the key cannot be used.
spkUploadDate :: Lens' SSHPublicKey (Maybe UTCTime) Source #
The date and time, in ISO 8601 date-time format , when the SSH public key was uploaded.
spkUserName :: Lens' SSHPublicKey Text Source #
The name of the IAM user associated with the SSH public key.
spkSSHPublicKeyId :: Lens' SSHPublicKey Text Source #
The unique identifier for the SSH public key.
spkFingerprint :: Lens' SSHPublicKey Text Source #
The MD5 message digest of the SSH public key.
spkSSHPublicKeyBody :: Lens' SSHPublicKey Text Source #
The SSH public key.
spkStatus :: Lens' SSHPublicKey StatusType Source #
The status of the SSH public key. Active means that the key can be used for authentication with an AWS CodeCommit repository. Inactive means that the key cannot be used.
SSHPublicKeyMetadata
data SSHPublicKeyMetadata Source #
Contains information about an SSH public key, without the key's body or fingerprint.
This data type is used as a response element in the ListSSHPublicKeys operation.
See: sshPublicKeyMetadata smart constructor.
Instances
Arguments
| :: Text | |
| -> Text | |
| -> StatusType | |
| -> UTCTime | |
| -> SSHPublicKeyMetadata |
Creates a value of SSHPublicKeyMetadata with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
spkmUserName- The name of the IAM user associated with the SSH public key.spkmSSHPublicKeyId- The unique identifier for the SSH public key.spkmStatus- The status of the SSH public key.Activemeans that the key can be used for authentication with an AWS CodeCommit repository.Inactivemeans that the key cannot be used.spkmUploadDate- The date and time, in ISO 8601 date-time format , when the SSH public key was uploaded.
spkmUserName :: Lens' SSHPublicKeyMetadata Text Source #
The name of the IAM user associated with the SSH public key.
spkmSSHPublicKeyId :: Lens' SSHPublicKeyMetadata Text Source #
The unique identifier for the SSH public key.
spkmStatus :: Lens' SSHPublicKeyMetadata StatusType Source #
The status of the SSH public key. Active means that the key can be used for authentication with an AWS CodeCommit repository. Inactive means that the key cannot be used.
spkmUploadDate :: Lens' SSHPublicKeyMetadata UTCTime Source #
The date and time, in ISO 8601 date-time format , when the SSH public key was uploaded.
ServerCertificate
data ServerCertificate Source #
Contains information about a server certificate.
This data type is used as a response element in the GetServerCertificate operation.
See: serverCertificate smart constructor.
Instances
Arguments
| :: ServerCertificateMetadata | |
| -> Text | |
| -> ServerCertificate |
Creates a value of ServerCertificate with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
sCertificateChain- The contents of the public key certificate chain.sServerCertificateMetadata- The meta information of the server certificate, such as its name, path, ID, and ARN.sCertificateBody- The contents of the public key certificate.
sCertificateChain :: Lens' ServerCertificate (Maybe Text) Source #
The contents of the public key certificate chain.
sServerCertificateMetadata :: Lens' ServerCertificate ServerCertificateMetadata Source #
The meta information of the server certificate, such as its name, path, ID, and ARN.
sCertificateBody :: Lens' ServerCertificate Text Source #
The contents of the public key certificate.
ServerCertificateMetadata
data ServerCertificateMetadata Source #
Contains information about a server certificate without its certificate body, certificate chain, and private key.
This data type is used as a response element in the UploadServerCertificate and ListServerCertificates operations.
See: serverCertificateMetadata smart constructor.
Instances
serverCertificateMetadata Source #
Arguments
| :: Text | |
| -> Text | |
| -> Text | |
| -> Text | |
| -> ServerCertificateMetadata |
Creates a value of ServerCertificateMetadata with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
scmUploadDate- The date when the server certificate was uploaded.scmExpiration- The date on which the certificate is set to expire.scmPath- The path to the server certificate. For more information about paths, see IAM Identifiers in the Using IAM guide.scmServerCertificateName- The name that identifies the server certificate.scmServerCertificateId- The stable and unique string identifying the server certificate. For more information about IDs, see IAM Identifiers in the Using IAM guide.scmARN- The Amazon Resource Name (ARN) specifying the server certificate. For more information about ARNs and how to use them in policies, see IAM Identifiers in the Using IAM guide.
scmUploadDate :: Lens' ServerCertificateMetadata (Maybe UTCTime) Source #
The date when the server certificate was uploaded.
scmExpiration :: Lens' ServerCertificateMetadata (Maybe UTCTime) Source #
The date on which the certificate is set to expire.
scmPath :: Lens' ServerCertificateMetadata Text Source #
The path to the server certificate. For more information about paths, see IAM Identifiers in the Using IAM guide.
scmServerCertificateName :: Lens' ServerCertificateMetadata Text Source #
The name that identifies the server certificate.
scmServerCertificateId :: Lens' ServerCertificateMetadata Text Source #
The stable and unique string identifying the server certificate. For more information about IDs, see IAM Identifiers in the Using IAM guide.
scmARN :: Lens' ServerCertificateMetadata Text Source #
The Amazon Resource Name (ARN) specifying the server certificate. For more information about ARNs and how to use them in policies, see IAM Identifiers in the Using IAM guide.
ServiceSpecificCredential
data ServiceSpecificCredential Source #
Contains the details of a service-specific credential.
See: serviceSpecificCredential smart constructor.
Instances
serviceSpecificCredential Source #
Arguments
| :: UTCTime | |
| -> Text | |
| -> Text | |
| -> Text | |
| -> Text | |
| -> Text | |
| -> StatusType | |
| -> ServiceSpecificCredential |
Creates a value of ServiceSpecificCredential with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
sscCreateDate- The date and time, in ISO 8601 date-time format , when the service-specific credential were created.sscServiceName- The name of the service associated with the service-specific credential.sscServiceUserName- The generated user name for the service-specific credential. This value is generated by combining the IAM user's name combined with the ID number of the AWS account, as injane-at-123456789012, for example. This value cannot be configured by the user.sscServicePassword- The generated password for the service-specific credential.sscServiceSpecificCredentialId- The unique identifier for the service-specific credential.sscUserName- The name of the IAM user associated with the service-specific credential.sscStatus- The status of the service-specific credential.Activemeans that the key is valid for API calls, whileInactivemeans it is not.
sscCreateDate :: Lens' ServiceSpecificCredential UTCTime Source #
The date and time, in ISO 8601 date-time format , when the service-specific credential were created.
sscServiceName :: Lens' ServiceSpecificCredential Text Source #
The name of the service associated with the service-specific credential.
sscServiceUserName :: Lens' ServiceSpecificCredential Text Source #
The generated user name for the service-specific credential. This value is generated by combining the IAM user's name combined with the ID number of the AWS account, as in jane-at-123456789012 , for example. This value cannot be configured by the user.
sscServicePassword :: Lens' ServiceSpecificCredential Text Source #
The generated password for the service-specific credential.
sscServiceSpecificCredentialId :: Lens' ServiceSpecificCredential Text Source #
The unique identifier for the service-specific credential.
sscUserName :: Lens' ServiceSpecificCredential Text Source #
The name of the IAM user associated with the service-specific credential.
sscStatus :: Lens' ServiceSpecificCredential StatusType Source #
The status of the service-specific credential. Active means that the key is valid for API calls, while Inactive means it is not.
ServiceSpecificCredentialMetadata
data ServiceSpecificCredentialMetadata Source #
Contains additional details about a service-specific credential.
See: serviceSpecificCredentialMetadata smart constructor.
Instances
serviceSpecificCredentialMetadata Source #
Arguments
| :: Text | |
| -> StatusType | |
| -> Text | |
| -> UTCTime | |
| -> Text | |
| -> Text | |
| -> ServiceSpecificCredentialMetadata |
Creates a value of ServiceSpecificCredentialMetadata with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
sscmUserName- The name of the IAM user associated with the service-specific credential.sscmStatus- The status of the service-specific credential.Activemeans that the key is valid for API calls, whileInactivemeans it is not.sscmServiceUserName- The generated user name for the service-specific credential.sscmCreateDate- The date and time, in ISO 8601 date-time format , when the service-specific credential were created.sscmServiceSpecificCredentialId- The unique identifier for the service-specific credential.sscmServiceName- The name of the service associated with the service-specific credential.
sscmUserName :: Lens' ServiceSpecificCredentialMetadata Text Source #
The name of the IAM user associated with the service-specific credential.
sscmStatus :: Lens' ServiceSpecificCredentialMetadata StatusType Source #
The status of the service-specific credential. Active means that the key is valid for API calls, while Inactive means it is not.
sscmServiceUserName :: Lens' ServiceSpecificCredentialMetadata Text Source #
The generated user name for the service-specific credential.
sscmCreateDate :: Lens' ServiceSpecificCredentialMetadata UTCTime Source #
The date and time, in ISO 8601 date-time format , when the service-specific credential were created.
sscmServiceSpecificCredentialId :: Lens' ServiceSpecificCredentialMetadata Text Source #
The unique identifier for the service-specific credential.
sscmServiceName :: Lens' ServiceSpecificCredentialMetadata Text Source #
The name of the service associated with the service-specific credential.
SigningCertificate
data SigningCertificate Source #
Contains information about an X.509 signing certificate.
This data type is used as a response element in the UploadSigningCertificate and ListSigningCertificates operations.
See: signingCertificate smart constructor.
Instances
Arguments
| :: Text | |
| -> Text | |
| -> Text | |
| -> StatusType | |
| -> SigningCertificate |
Creates a value of SigningCertificate with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
scUploadDate- The date when the signing certificate was uploaded.scUserName- The name of the user the signing certificate is associated with.scCertificateId- The ID for the signing certificate.scCertificateBody- The contents of the signing certificate.scStatus- The status of the signing certificate.Activemeans that the key is valid for API calls, whileInactivemeans it is not.
scUploadDate :: Lens' SigningCertificate (Maybe UTCTime) Source #
The date when the signing certificate was uploaded.
scUserName :: Lens' SigningCertificate Text Source #
The name of the user the signing certificate is associated with.
scCertificateId :: Lens' SigningCertificate Text Source #
The ID for the signing certificate.
scCertificateBody :: Lens' SigningCertificate Text Source #
The contents of the signing certificate.
scStatus :: Lens' SigningCertificate StatusType Source #
The status of the signing certificate. Active means that the key is valid for API calls, while Inactive means it is not.
SimulatePolicyResponse
data SimulatePolicyResponse Source #
Contains the response to a successful SimulatePrincipalPolicy or SimulateCustomPolicy request.
See: simulatePolicyResponse smart constructor.
Instances
simulatePolicyResponse :: SimulatePolicyResponse Source #
Creates a value of SimulatePolicyResponse with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
spEvaluationResults- The results of the simulation.spMarker- WhenIsTruncatedistrue, this element is present and contains the value to use for theMarkerparameter in a subsequent pagination request.spIsTruncated- A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using theMarkerrequest parameter to retrieve more items. Note that IAM might return fewer than theMaxItemsnumber of results even when there are more results available. We recommend that you checkIsTruncatedafter every call to ensure that you receive all of your results.
spEvaluationResults :: Lens' SimulatePolicyResponse [EvaluationResult] Source #
The results of the simulation.
spMarker :: Lens' SimulatePolicyResponse (Maybe Text) Source #
When IsTruncated is true , this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.
spIsTruncated :: Lens' SimulatePolicyResponse (Maybe Bool) Source #
A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all of your results.
Statement
Contains a reference to a Statement element in a policy document that determines the result of the simulation.
This data type is used by the MatchedStatements member of the EvaluationResult
See: statement smart constructor.
Instances
statement :: Statement Source #
Creates a value of Statement with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
sSourcePolicyType- The type of the policy.sSourcePolicyId- The identifier of the policy that was provided as an input.sEndPosition- The row and column of the end of aStatementin an IAM policy.sStartPosition- The row and column of the beginning of theStatementin an IAM policy.
sSourcePolicyType :: Lens' Statement (Maybe PolicySourceType) Source #
The type of the policy.
sSourcePolicyId :: Lens' Statement (Maybe Text) Source #
The identifier of the policy that was provided as an input.
sEndPosition :: Lens' Statement (Maybe Position) Source #
The row and column of the end of a Statement in an IAM policy.
sStartPosition :: Lens' Statement (Maybe Position) Source #
The row and column of the beginning of the Statement in an IAM policy.
User
Contains information about an IAM user entity.
This data type is used as a response element in the following operations:
CreateUserGetUserListUsers
See: user smart constructor.
Instances
| Eq User Source # | |
| Data User Source # | |
Defined in Network.AWS.IAM.Types.Product Methods gfoldl :: (forall d b. Data d => c (d -> b) -> d -> c b) -> (forall g. g -> c g) -> User -> c User # gunfold :: (forall b r. Data b => c (b -> r) -> c r) -> (forall r. r -> c r) -> Constr -> c User # dataTypeOf :: User -> DataType # dataCast1 :: Typeable t => (forall d. Data d => c (t d)) -> Maybe (c User) # dataCast2 :: Typeable t => (forall d e. (Data d, Data e) => c (t d e)) -> Maybe (c User) # gmapT :: (forall b. Data b => b -> b) -> User -> User # gmapQl :: (r -> r' -> r) -> r -> (forall d. Data d => d -> r') -> User -> r # gmapQr :: (r' -> r -> r) -> r -> (forall d. Data d => d -> r') -> User -> r # gmapQ :: (forall d. Data d => d -> u) -> User -> [u] # gmapQi :: Int -> (forall d. Data d => d -> u) -> User -> u # gmapM :: Monad m => (forall d. Data d => d -> m d) -> User -> m User # gmapMp :: MonadPlus m => (forall d. Data d => d -> m d) -> User -> m User # gmapMo :: MonadPlus m => (forall d. Data d => d -> m d) -> User -> m User # | |
| Read User Source # | |
| Show User Source # | |
| Generic User Source # | |
| Hashable User Source # | |
Defined in Network.AWS.IAM.Types.Product | |
| FromXML User Source # | |
| NFData User Source # | |
Defined in Network.AWS.IAM.Types.Product | |
| type Rep User Source # | |
Defined in Network.AWS.IAM.Types.Product type Rep User = D1 (MetaData "User" "Network.AWS.IAM.Types.Product" "amazonka-iam-1.6.1-BDjAp2BAcQu3GSS4Bsr6zu" False) (C1 (MetaCons "User'" PrefixI True) ((S1 (MetaSel (Just "_uPasswordLastUsed") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 (Maybe ISO8601)) :*: (S1 (MetaSel (Just "_uPath") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 Text) :*: S1 (MetaSel (Just "_uUserName") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 Text))) :*: (S1 (MetaSel (Just "_uUserId") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 Text) :*: (S1 (MetaSel (Just "_uARN") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 Text) :*: S1 (MetaSel (Just "_uCreateDate") NoSourceUnpackedness SourceStrict DecidedStrict) (Rec0 ISO8601))))) | |
Creates a value of User with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
uPasswordLastUsed- The date and time, in ISO 8601 date-time format , when the user's password was last used to sign in to an AWS website. For a list of AWS websites that capture a user's last sign-in time, see the Credential Reports topic in the Using IAM guide. If a password is used more than once in a five-minute span, only the first use is returned in this field. If the field is null (no value) then it indicates that they never signed in with a password. This can be because: * The user never had a password. * A password exists but has not been used since IAM started tracking this information on October 20th, 2014. A null does not mean that the user never had a password. Also, if the user does not currently have a password, but had one in the past, then this field contains the date and time the most recent password was used. This value is returned only in theGetUserandListUsersoperations.uPath- The path to the user. For more information about paths, see IAM Identifiers in the Using IAM guide.uUserName- The friendly name identifying the user.uUserId- The stable and unique string identifying the user. For more information about IDs, see IAM Identifiers in the Using IAM guide.uARN- The Amazon Resource Name (ARN) that identifies the user. For more information about ARNs and how to use ARNs in policies, see IAM Identifiers in the Using IAM guide.uCreateDate- The date and time, in ISO 8601 date-time format , when the user was created.
uPasswordLastUsed :: Lens' User (Maybe UTCTime) Source #
The date and time, in ISO 8601 date-time format , when the user's password was last used to sign in to an AWS website. For a list of AWS websites that capture a user's last sign-in time, see the Credential Reports topic in the Using IAM guide. If a password is used more than once in a five-minute span, only the first use is returned in this field. If the field is null (no value) then it indicates that they never signed in with a password. This can be because: * The user never had a password. * A password exists but has not been used since IAM started tracking this information on October 20th, 2014. A null does not mean that the user never had a password. Also, if the user does not currently have a password, but had one in the past, then this field contains the date and time the most recent password was used. This value is returned only in the GetUser and ListUsers operations.
uPath :: Lens' User Text Source #
The path to the user. For more information about paths, see IAM Identifiers in the Using IAM guide.
uUserId :: Lens' User Text Source #
The stable and unique string identifying the user. For more information about IDs, see IAM Identifiers in the Using IAM guide.
uARN :: Lens' User Text Source #
The Amazon Resource Name (ARN) that identifies the user. For more information about ARNs and how to use ARNs in policies, see IAM Identifiers in the Using IAM guide.
uCreateDate :: Lens' User UTCTime Source #
The date and time, in ISO 8601 date-time format , when the user was created.
UserDetail
data UserDetail Source #
Contains information about an IAM user, including all the user's policies and all the IAM groups the user is in.
This data type is used as a response element in the GetAccountAuthorizationDetails operation.
See: userDetail smart constructor.
Instances
userDetail :: UserDetail Source #
Creates a value of UserDetail with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
udGroupList- A list of IAM groups that the user is in.udARN- Undocumented member.udPath- The path to the user. For more information about paths, see IAM Identifiers in the Using IAM guide.udCreateDate- The date and time, in ISO 8601 date-time format , when the user was created.udUserName- The friendly name identifying the user.udUserId- The stable and unique string identifying the user. For more information about IDs, see IAM Identifiers in the Using IAM guide.udUserPolicyList- A list of the inline policies embedded in the user.udAttachedManagedPolicies- A list of the managed policies attached to the user.
udGroupList :: Lens' UserDetail [Text] Source #
A list of IAM groups that the user is in.
udPath :: Lens' UserDetail (Maybe Text) Source #
The path to the user. For more information about paths, see IAM Identifiers in the Using IAM guide.
udCreateDate :: Lens' UserDetail (Maybe UTCTime) Source #
The date and time, in ISO 8601 date-time format , when the user was created.
udUserName :: Lens' UserDetail (Maybe Text) Source #
The friendly name identifying the user.
udUserId :: Lens' UserDetail (Maybe Text) Source #
The stable and unique string identifying the user. For more information about IDs, see IAM Identifiers in the Using IAM guide.
udUserPolicyList :: Lens' UserDetail [PolicyDetail] Source #
A list of the inline policies embedded in the user.
udAttachedManagedPolicies :: Lens' UserDetail [AttachedPolicy] Source #
A list of the managed policies attached to the user.
VirtualMFADevice
data VirtualMFADevice Source #
Contains information about a virtual MFA device.
See: virtualMFADevice smart constructor.
Instances
Arguments
| :: Text | |
| -> VirtualMFADevice |
Creates a value of VirtualMFADevice with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
vmdQRCodePNG- A QR code PNG image that encodesotpauth:/totp$virtualMFADeviceName$AccountName?secret=$Base32Stringwhere> virtualMFADeviceNameis one of the create call arguments,AccountNameis the user name if set (otherwise, the account ID otherwise), andBase32Stringis the seed in Base32 format. TheBase32String@ value is Base64-encoded. -- Note: ThisLensautomatically encodes and decodes Base64 data. The underlying isomorphism will encode to Base64 representation during serialisation, and decode from Base64 representation during deserialisation. ThisLensaccepts and returns only raw unencoded data.vmdBase32StringSeed- The Base32 seed defined as specified in RFC3548 . TheBase32StringSeedis Base64-encoded. -- Note: ThisLensautomatically encodes and decodes Base64 data. The underlying isomorphism will encode to Base64 representation during serialisation, and decode from Base64 representation during deserialisation. ThisLensaccepts and returns only raw unencoded data.vmdUser- The IAM user associated with this virtual MFA device.vmdEnableDate- The date and time on which the virtual MFA device was enabled.vmdSerialNumber- The serial number associated withVirtualMFADevice.
vmdQRCodePNG :: Lens' VirtualMFADevice (Maybe ByteString) Source #
A QR code PNG image that encodes otpauth:/totp$virtualMFADeviceName$AccountName?secret=$Base32String where > virtualMFADeviceName is one of the create call arguments, AccountName is the user name if set (otherwise, the account ID otherwise), and Base32String is the seed in Base32 format. The Base32String@ value is Base64-encoded. -- Note: This Lens automatically encodes and decodes Base64 data. The underlying isomorphism will encode to Base64 representation during serialisation, and decode from Base64 representation during deserialisation. This Lens accepts and returns only raw unencoded data.
vmdBase32StringSeed :: Lens' VirtualMFADevice (Maybe ByteString) Source #
The Base32 seed defined as specified in RFC3548 . The Base32StringSeed is Base64-encoded. -- Note: This Lens automatically encodes and decodes Base64 data. The underlying isomorphism will encode to Base64 representation during serialisation, and decode from Base64 representation during deserialisation. This Lens accepts and returns only raw unencoded data.
vmdUser :: Lens' VirtualMFADevice (Maybe User) Source #
The IAM user associated with this virtual MFA device.
vmdEnableDate :: Lens' VirtualMFADevice (Maybe UTCTime) Source #
The date and time on which the virtual MFA device was enabled.
vmdSerialNumber :: Lens' VirtualMFADevice Text Source #
The serial number associated with VirtualMFADevice .