Class: Aws::SSO::Client
- Inherits:
-
Seahorse::Client::Base
- Object
- Seahorse::Client::Base
- Aws::SSO::Client
- Includes:
- ClientStubs
- Defined in:
- lib/aws-sdk-sso/client.rb
Overview
An API client for SSO. To construct a client, you need to configure a ‘:region` and `:credentials`.
client = Aws::SSO::Client.new(
region: region_name,
credentials: credentials,
# ...
)
For details on configuring region and credentials see the [developer guide](/sdk-for-ruby/v3/developer-guide/setup-config.html).
See #initialize for a full list of supported configuration options.
Class Attribute Summary collapse
- .identifier ⇒ Object readonly private
Attributes inherited from Seahorse::Client::Base
API Operations collapse
-
#get_role_credentials(params = {}) ⇒ Types::GetRoleCredentialsResponse
Returns the STS short-term credentials for a given role name that is assigned to the user.
-
#list_account_roles(params = {}) ⇒ Types::ListAccountRolesResponse
Lists all roles that are assigned to the user for a given AWS account.
-
#list_accounts(params = {}) ⇒ Types::ListAccountsResponse
Lists all AWS accounts assigned to the user.
-
#logout(params = {}) ⇒ Struct
Removes the locally stored SSO tokens from the client-side cache and sends an API call to the IAM Identity Center service to invalidate the corresponding server-side IAM Identity Center sign in session.
Class Method Summary collapse
- .errors_module ⇒ Object private
Instance Method Summary collapse
- #build_request(operation_name, params = {}) ⇒ Object private
-
#initialize(options) ⇒ Client
constructor
A new instance of Client.
- #waiter_names ⇒ Object deprecated private Deprecated.
Methods included from ClientStubs
#api_requests, #next_stub, #setup_stubbing, #stub_data, #stub_responses
Methods inherited from Seahorse::Client::Base
add_plugin, api, clear_plugins, define, #inspect, new, #operation_names, plugins, remove_plugin, set_api, set_plugins
Methods included from Seahorse::Client::HandlerBuilder
#handle, #handle_request, #handle_response, #handler_for, #new_handler
Constructor Details
#initialize(options) ⇒ Client
Returns a new instance of Client.
444 445 446 |
# File 'lib/aws-sdk-sso/client.rb', line 444 def initialize(*args) super end |
Class Attribute Details
.identifier ⇒ Object (readonly)
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
685 686 687 |
# File 'lib/aws-sdk-sso/client.rb', line 685 def identifier @identifier end |
Class Method Details
.errors_module ⇒ Object
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
688 689 690 |
# File 'lib/aws-sdk-sso/client.rb', line 688 def errors_module Errors end |
Instance Method Details
#build_request(operation_name, params = {}) ⇒ Object
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
658 659 660 661 662 663 664 665 666 667 668 669 670 671 672 673 674 |
# File 'lib/aws-sdk-sso/client.rb', line 658 def build_request(operation_name, params = {}) handlers = @handlers.for(operation_name) tracer = config.telemetry_provider.tracer_provider.tracer( Aws::Telemetry.module_to_tracer_name('Aws::SSO') ) context = Seahorse::Client::RequestContext.new( operation_name: operation_name, operation: config.api.operation(operation_name), client: self, params: params, config: config, tracer: tracer ) context[:gem_name] = 'aws-sdk-core' context[:gem_version] = '3.214.0' Seahorse::Client::Request.new(handlers, context) end |
#get_role_credentials(params = {}) ⇒ Types::GetRoleCredentialsResponse
Returns the STS short-term credentials for a given role name that is assigned to the user.
491 492 493 494 |
# File 'lib/aws-sdk-sso/client.rb', line 491 def get_role_credentials(params = {}, = {}) req = build_request(:get_role_credentials, params) req.send_request() end |
#list_account_roles(params = {}) ⇒ Types::ListAccountRolesResponse
Lists all roles that are assigned to the user for a given AWS account.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
544 545 546 547 |
# File 'lib/aws-sdk-sso/client.rb', line 544 def list_account_roles(params = {}, = {}) req = build_request(:list_account_roles, params) req.send_request() end |
#list_accounts(params = {}) ⇒ Types::ListAccountsResponse
Lists all AWS accounts assigned to the user. These AWS accounts are assigned by the administrator of the account. For more information, see [Assign User Access] in the *IAM Identity Center User Guide*. This operation returns a paginated response.
[1]: docs.aws.amazon.com/singlesignon/latest/userguide/useraccess.html#assignusers
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
601 602 603 604 |
# File 'lib/aws-sdk-sso/client.rb', line 601 def list_accounts(params = {}, = {}) req = build_request(:list_accounts, params) req.send_request() end |
#logout(params = {}) ⇒ Struct
Removes the locally stored SSO tokens from the client-side cache and sends an API call to the IAM Identity Center service to invalidate the corresponding server-side IAM Identity Center sign in session.
<note markdown=“1”> If a user uses IAM Identity Center to access the AWS CLI, the user’s IAM Identity Center sign in session is used to obtain an IAM session, as specified in the corresponding IAM Identity Center permission set. More specifically, IAM Identity Center assumes an IAM role in the target account on behalf of the user, and the corresponding temporary AWS credentials are returned to the client.
After user logout, any existing IAM role sessions that were created by
using IAM Identity Center permission sets continue based on the duration configured in the permission set. For more information, see
- User authentications][1
-
in the *IAM Identity Center User Guide*.
</note>
[1]: docs.aws.amazon.com/singlesignon/latest/userguide/authconcept.html
649 650 651 652 |
# File 'lib/aws-sdk-sso/client.rb', line 649 def logout(params = {}, = {}) req = build_request(:logout, params) req.send_request() end |
#waiter_names ⇒ Object
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
678 679 680 |
# File 'lib/aws-sdk-sso/client.rb', line 678 def waiter_names [] end |