aws.sdk.kotlin.runtime.auth.credentials (original) (raw)

Package-level declarations

Types

class AssumeRoleParameters(val roleArn: String, val roleSessionName: String? = null, val externalId: String? = null, val duration: Duration = DEFAULT_CREDENTIALS_REFRESH_SECONDS.seconds, val policyArns: List<String>? = null, val policy: String? = null, val tags: Map<String, String>? = null, val transitiveTagKeys: List<String>? = null, val serialNumber: String? = null, val tokenCode: String? = null, val sourceIdentity: String? = null)

Parameters passed to an AssumeRole call

Parameters passed to an AssumeRoleWithWebIdentity call

No credentials were available from this CredentialsProvider

Default AWS bearer token provider chain used by services marked with @httpBearerAuth

Default AWS credential provider chain used by most AWS SDKs.

A CredentialsProvider which reads from AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, and AWS_SESSION_TOKEN.

CredentialsProvider that uses EC2 instance metadata service (IMDS) to provide credentials information. This provider requires that the EC2 instance has an instance profile configured.

Exception thrown when credentials from response do not contain valid credentials or malformed JSON

An error associated with a cached SSO token from ~/.aws/sso/cache/

CredentialsProvider that invokes a command to retrieve Credentials from stdout. If the exit code is non-zero, log and throw an exception including the stderr from the command.

The CredentialsProvider was given an invalid configuration (e.g. invalid aws configuration file, invalid IMDS endpoint, etc)

CredentialsProvider that uses AWS Single Sign-On (AWS SSO) to source credentials. The provider is expected to be configured for the AWS Region where the AWS SSO user portal is hosted.

SsoTokenProvider provides a utility for refreshing SSO AccessTokens for Bearer Authentication. The provider can only be used to refresh already cached SSO Tokens. This utility cannot perform the initial SSO create token flow.

A credentials provider for a fixed set of credentials

A CredentialsProvider that uses another provider to assume a role from the AWS Security Token Service (STS).

A CredentialsProvider that exchanges a Web Identity Token for credentials from the AWS Security Token Service (STS).

Wrapper around StsWebIdentityCredentialsProvider that delays any exceptions until resolve is invoked. This allows it to be part of the default chain and any failures result in the chain to move onto the next provider.

A CredentialsProvider which reads aws.accessKeyId, aws.secretAccessKey, and aws.sessionToken from system properties.