Functions to access the Amazon Security Token Service.
Each function takes a map of credentials as its first argument. The credentials map should contain an :access-key key and a :secret-key key.
Functions to access the Amazon Security Token Service. Each function takes a map of credentials as its first argument. The credentials map should contain an :access-key key and a :secret-key key.
(assume-role cred params)
Returns a set of temporary security credentials that you can use to access resources that are defined in the role's policy. It expects the following parameters:
:role-arn - the Amazon Resource Name (ARN) of the role that the caller is assuming :role-session-name - an identifier for the assumed role session
See http://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRole.html for descriptions of all available parameters.
Returns a data structure containing credentials and information about the assumed user role:
{:credentials { :access-key-id - the AccessKeyId ID that identifies the temporary credentials :secret-access-key - the Secret Access Key to sign requests :session-token - the security token that users must pass to the service API to use the temporary credentials :expiration - the date on which these credentials expire } :assumed-role-user { :arn - the ARN specifying the federated user associated with the credentials :assumed-role-id - a unique identifier that contains the role ID and the role session name of the role that is being assumed } }
E.g.: (sts/assume-role cred {:role-arn "arn:aws:iam::123456789012:role/demo" :role-session-name "Demo" :duration-seconds 1800 })
Returns a set of temporary security credentials that you can use to access resources that are defined in the role's policy. It expects the following parameters: :role-arn - the Amazon Resource Name (ARN) of the role that the caller is assuming :role-session-name - an identifier for the assumed role session See http://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRole.html for descriptions of all available parameters. Returns a data structure containing credentials and information about the assumed user role: {:credentials { :access-key-id - the AccessKeyId ID that identifies the temporary credentials :secret-access-key - the Secret Access Key to sign requests :session-token - the security token that users must pass to the service API to use the temporary credentials :expiration - the date on which these credentials expire } :assumed-role-user { :arn - the ARN specifying the federated user associated with the credentials :assumed-role-id - a unique identifier that contains the role ID and the role session name of the role that is being assumed } } E.g.: (sts/assume-role cred {:role-arn "arn:aws:iam::123456789012:role/demo" :role-session-name "Demo" :duration-seconds 1800 })
(decode-exceptions & exceptions)
Returns a Clojure map containing the details of an AmazonServiceException
Returns a Clojure map containing the details of an AmazonServiceException
(get-federation-token cred params)
Returns a set of temporary credentials for a federated user with the user name and policy specified in the request. It expects the following parameter:
:name - the name of the federated user associated with the credentials
and optionally:
:duration-seconds - the duration, in seconds, that the credentials should remain valid :policy - a policy specifying the permissions to associate with the credentials
See http://docs.aws.amazon.com/STS/latest/UsingSTS/FederationPermissions.html for more details about specifying permissions in a policy.
Returns a data structure containing credentials and information about the assumed user role:
{:credentials { :access-key-id - the AccessKeyId ID that identifies the temporary credentials :secret-access-key - the Secret Access Key to sign requests :session-token - the security token that users must pass to the service API to use the temporary credentials :expiration - the date on which these credentials expire } :federated-user { :arn - the ARN specifying the federated user associated with the credentials :federated-user-id - the string identifying the federated user associated with the credentials } }
E.g.: (sts/get-federation-token cred {:name "auser"}
Returns a set of temporary credentials for a federated user with the user name and policy specified in the request. It expects the following parameter: :name - the name of the federated user associated with the credentials and optionally: :duration-seconds - the duration, in seconds, that the credentials should remain valid :policy - a policy specifying the permissions to associate with the credentials See http://docs.aws.amazon.com/STS/latest/UsingSTS/FederationPermissions.html for more details about specifying permissions in a policy. Returns a data structure containing credentials and information about the assumed user role: {:credentials { :access-key-id - the AccessKeyId ID that identifies the temporary credentials :secret-access-key - the Secret Access Key to sign requests :session-token - the security token that users must pass to the service API to use the temporary credentials :expiration - the date on which these credentials expire } :federated-user { :arn - the ARN specifying the federated user associated with the credentials :federated-user-id - the string identifying the federated user associated with the credentials } } E.g.: (sts/get-federation-token cred {:name "auser"}
(get-session-token cred)
(get-session-token cred params)
Get a set of temporary credentials for an AWS account or IAM user. Optionally, pass a map of params including:
:duration-seconds - the duration, in seconds, that the credentials should remain valid :serial-number - the identification number of the MFA device for the user :token-code - the value provided by the MFA device
Returns Credentials, a data structure which contains the following keys:
:access-key-id - the AccessKeyId ID that identifies the temporary credentials :secret-access-key - the Secret Access Key to sign requests :session-token - the security token that users must pass to the service API to use the temporary credentials :expiration - the date on which these credentials expire
E.g.: (sts/get-session-token cred) (sts/get-session-token cred { :duration-seconds 3600 })
Get a set of temporary credentials for an AWS account or IAM user. Optionally, pass a map of params including: :duration-seconds - the duration, in seconds, that the credentials should remain valid :serial-number - the identification number of the MFA device for the user :token-code - the value provided by the MFA device Returns Credentials, a data structure which contains the following keys: :access-key-id - the AccessKeyId ID that identifies the temporary credentials :secret-access-key - the Secret Access Key to sign requests :session-token - the security token that users must pass to the service API to use the temporary credentials :expiration - the date on which these credentials expire E.g.: (sts/get-session-token cred) (sts/get-session-token cred { :duration-seconds 3600 })
(mapper-> type)
Creates a function that invokes set-fields on a new object of type with mapped parameters.
Creates a function that invokes set-fields on a new object of type with mapped parameters.
(set-fields obj params)
Use a map of params to call setters on a Java object
Use a map of params to call setters on a Java object
cljdoc is a website building & hosting documentation for Clojure/Script libraries
× close