Copyright | (c) 2013-2015 Brendan Hay |
---|---|
License | Mozilla Public License, v. 2.0. |
Maintainer | Brendan Hay <brendan.g.hay@gmail.com> |
Stability | auto-generated |
Portability | non-portable (GHC extensions) |
Safe Haskell | None |
Language | Haskell2010 |
- sTS :: Service
- _MalformedPolicyDocumentException :: AsError a => Getting (First ServiceError) a ServiceError
- _InvalidAuthorizationMessageException :: AsError a => Getting (First ServiceError) a ServiceError
- _PackedPolicyTooLargeException :: AsError a => Getting (First ServiceError) a ServiceError
- _IdPCommunicationErrorException :: AsError a => Getting (First ServiceError) a ServiceError
- _InvalidIdentityTokenException :: AsError a => Getting (First ServiceError) a ServiceError
- _ExpiredTokenException :: AsError a => Getting (First ServiceError) a ServiceError
- _IdPRejectedClaimException :: AsError a => Getting (First ServiceError) a ServiceError
- data AssumedRoleUser
- assumedRoleUser :: Text -> Text -> AssumedRoleUser
- aruAssumedRoleId :: Lens' AssumedRoleUser Text
- aruARN :: Lens' AssumedRoleUser Text
- data Credentials
- credentials :: Text -> Text -> Text -> UTCTime -> Credentials
- cAccessKeyId :: Lens' Credentials Text
- cSecretAccessKey :: Lens' Credentials Text
- cSessionToken :: Lens' Credentials Text
- cExpiration :: Lens' Credentials UTCTime
- data FederatedUser
- federatedUser :: Text -> Text -> FederatedUser
- fuFederatedUserId :: Lens' FederatedUser Text
- fuARN :: Lens' FederatedUser Text
Service Configuration
API version '2011-06-15' of the Amazon Security Token Service SDK configuration.
Errors
_MalformedPolicyDocumentException :: AsError a => Getting (First ServiceError) a ServiceError Source
The request was rejected because the policy document was malformed. The error message describes the specific error.
_InvalidAuthorizationMessageException :: AsError a => Getting (First ServiceError) a ServiceError Source
The error returned if the message passed to DecodeAuthorizationMessage
was invalid. This can happen if the token contains invalid characters,
such as linebreaks.
_PackedPolicyTooLargeException :: AsError a => Getting (First ServiceError) a ServiceError Source
The request was rejected because the policy document was too large. The error message describes how big the policy document is, in packed form, as a percentage of what the API allows.
_IdPCommunicationErrorException :: AsError a => Getting (First ServiceError) a ServiceError Source
The request could not be fulfilled because the non-AWS identity provider (IDP) that was asked to verify the incoming identity token could not be reached. This is often a transient error caused by network conditions. Retry the request a limited number of times so that you don't exceed the request rate. If the error persists, the non-AWS identity provider might be down or not responding.
_InvalidIdentityTokenException :: AsError a => Getting (First ServiceError) a ServiceError Source
The web identity token that was passed could not be validated by AWS. Get a new identity token from the identity provider and then retry the request.
_ExpiredTokenException :: AsError a => Getting (First ServiceError) a ServiceError Source
The web identity token that was passed is expired or is not valid. Get a new identity token from the identity provider and then retry the request.
_IdPRejectedClaimException :: AsError a => Getting (First ServiceError) a ServiceError Source
The identity provider (IdP) reported that authentication failed. This might be because the claim is invalid.
If this error is returned for the AssumeRoleWithWebIdentity
operation,
it can also mean that the claim has expired or has been explicitly
revoked.
AssumedRoleUser
data AssumedRoleUser Source
The identifiers for the temporary security credentials that the operation returns.
See: assumedRoleUser
smart constructor.
Creates a value of AssumedRoleUser
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
aruAssumedRoleId :: Lens' AssumedRoleUser Text Source
A unique identifier that contains the role ID and the role session name of the role that is being assumed. The role ID is generated by AWS when the role is created.
aruARN :: Lens' AssumedRoleUser Text Source
The ARN of the temporary security credentials that are returned from the AssumeRole action. For more information about ARNs and how to use them in policies, see IAM Identifiers in Using IAM.
Credentials
data Credentials Source
AWS credentials for API authentication.
See: credentials
smart constructor.
Creates a value of Credentials
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
cAccessKeyId :: Lens' Credentials Text Source
The access key ID that identifies the temporary security credentials.
cSecretAccessKey :: Lens' Credentials Text Source
The secret access key that can be used to sign requests.
cSessionToken :: Lens' Credentials Text Source
The token that users must pass to the service API to use the temporary credentials.
cExpiration :: Lens' Credentials UTCTime Source
The date on which the current credentials expire.
FederatedUser
data FederatedUser Source
Identifiers for the federated user that is associated with the credentials.
See: federatedUser
smart constructor.
Creates a value of FederatedUser
with the minimum fields required to make a request.
Use one of the following lenses to modify other fields as desired:
fuFederatedUserId :: Lens' FederatedUser Text Source
The string that identifies the federated user associated with the credentials, similar to the unique ID of an IAM user.
fuARN :: Lens' FederatedUser Text Source
The ARN that specifies the federated user that is associated with the credentials. For more information about ARNs and how to use them in policies, see IAM Identifiers in Using IAM.