|
Copyright © 2019-2021 Appercept Ltd. All rights reserved.
|
   |
Request a set of temporary security credentials for users who have been authenticated in a mobile or web application with a web identity provider.
|
Parameters |
Description |
|
const ARequest: ISTSAssumeRoleWithWebIdentityRequest |
An AssumeRoleWithWebIdentity request object. |
|
const ARoleArn: TARN |
An Amazon Resource Name (ARN) for an IAM role to assume. |
|
const ARoleSessionName: string |
An identifier for the assumed role session. |
|
const AWebIdentityToken: string |
The OAuth 2.0 access token or OpenID Connect ID token that is provided by the identity provider. |
Response containing AssumeRoleWithWebIdentity results.
|
Exceptions |
Description |
|
The web identity that was passed is expired or invalid. | |
|
The request could not be filfilled because the identity provider (IdP) that was asked to verify the identity token could not be reached. | |
|
The Identity Provider (IdP) reported that the authentication failed. This may be because the claim is invalid. | |
|
The web identity token provided could not be validated by AWS. | |
|
The request was rejected because the policy document was malformed. | |
|
The request was rejected beacuse the total packed size of the session policies and tags combined was too large. | |
|
AWS STS is not activated in the region for the account being asked to generate credentials. |
|
Copyright © 2019-2021 Appercept Ltd. All rights reserved.
|
|