aws-sdk-core 3.104.0 → 3.105.0

data/lib/aws-sdk-sso/client_api.rb

@@ -0,0 +1,190 @@
+# frozen_string_literal: true
+
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+
+module Aws::SSO
+  # @api private
+  module ClientApi
+
+    include Seahorse::Model
+
+    AccessKeyType = Shapes::StringShape.new(name: 'AccessKeyType')
+    AccessTokenType = Shapes::StringShape.new(name: 'AccessTokenType')
+    AccountIdType = Shapes::StringShape.new(name: 'AccountIdType')
+    AccountInfo = Shapes::StructureShape.new(name: 'AccountInfo')
+    AccountListType = Shapes::ListShape.new(name: 'AccountListType')
+    AccountNameType = Shapes::StringShape.new(name: 'AccountNameType')
+    EmailAddressType = Shapes::StringShape.new(name: 'EmailAddressType')
+    ErrorDescription = Shapes::StringShape.new(name: 'ErrorDescription')
+    ExpirationTimestampType = Shapes::IntegerShape.new(name: 'ExpirationTimestampType')
+    GetRoleCredentialsRequest = Shapes::StructureShape.new(name: 'GetRoleCredentialsRequest')
+    GetRoleCredentialsResponse = Shapes::StructureShape.new(name: 'GetRoleCredentialsResponse')
+    InvalidRequestException = Shapes::StructureShape.new(name: 'InvalidRequestException')
+    ListAccountRolesRequest = Shapes::StructureShape.new(name: 'ListAccountRolesRequest')
+    ListAccountRolesResponse = Shapes::StructureShape.new(name: 'ListAccountRolesResponse')
+    ListAccountsRequest = Shapes::StructureShape.new(name: 'ListAccountsRequest')
+    ListAccountsResponse = Shapes::StructureShape.new(name: 'ListAccountsResponse')
+    LogoutRequest = Shapes::StructureShape.new(name: 'LogoutRequest')
+    MaxResultType = Shapes::IntegerShape.new(name: 'MaxResultType')
+    NextTokenType = Shapes::StringShape.new(name: 'NextTokenType')
+    ResourceNotFoundException = Shapes::StructureShape.new(name: 'ResourceNotFoundException')
+    RoleCredentials = Shapes::StructureShape.new(name: 'RoleCredentials')
+    RoleInfo = Shapes::StructureShape.new(name: 'RoleInfo')
+    RoleListType = Shapes::ListShape.new(name: 'RoleListType')
+    RoleNameType = Shapes::StringShape.new(name: 'RoleNameType')
+    SecretAccessKeyType = Shapes::StringShape.new(name: 'SecretAccessKeyType')
+    SessionTokenType = Shapes::StringShape.new(name: 'SessionTokenType')
+    TooManyRequestsException = Shapes::StructureShape.new(name: 'TooManyRequestsException')
+    UnauthorizedException = Shapes::StructureShape.new(name: 'UnauthorizedException')
+
+    AccountInfo.add_member(:account_id, Shapes::ShapeRef.new(shape: AccountIdType, location_name: "accountId"))
+    AccountInfo.add_member(:account_name, Shapes::ShapeRef.new(shape: AccountNameType, location_name: "accountName"))
+    AccountInfo.add_member(:email_address, Shapes::ShapeRef.new(shape: EmailAddressType, location_name: "emailAddress"))
+    AccountInfo.struct_class = Types::AccountInfo
+
+    AccountListType.member = Shapes::ShapeRef.new(shape: AccountInfo)
+
+    GetRoleCredentialsRequest.add_member(:role_name, Shapes::ShapeRef.new(shape: RoleNameType, required: true, location: "querystring", location_name: "role_name"))
+    GetRoleCredentialsRequest.add_member(:account_id, Shapes::ShapeRef.new(shape: AccountIdType, required: true, location: "querystring", location_name: "account_id"))
+    GetRoleCredentialsRequest.add_member(:access_token, Shapes::ShapeRef.new(shape: AccessTokenType, required: true, location: "header", location_name: "x-amz-sso_bearer_token"))
+    GetRoleCredentialsRequest.struct_class = Types::GetRoleCredentialsRequest
+
+    GetRoleCredentialsResponse.add_member(:role_credentials, Shapes::ShapeRef.new(shape: RoleCredentials, location_name: "roleCredentials"))
+    GetRoleCredentialsResponse.struct_class = Types::GetRoleCredentialsResponse
+
+    InvalidRequestException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "message"))
+    InvalidRequestException.struct_class = Types::InvalidRequestException
+
+    ListAccountRolesRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextTokenType, location: "querystring", location_name: "next_token"))
+    ListAccountRolesRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: MaxResultType, location: "querystring", location_name: "max_result"))
+    ListAccountRolesRequest.add_member(:access_token, Shapes::ShapeRef.new(shape: AccessTokenType, required: true, location: "header", location_name: "x-amz-sso_bearer_token"))
+    ListAccountRolesRequest.add_member(:account_id, Shapes::ShapeRef.new(shape: AccountIdType, required: true, location: "querystring", location_name: "account_id"))
+    ListAccountRolesRequest.struct_class = Types::ListAccountRolesRequest
+
+    ListAccountRolesResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: NextTokenType, location_name: "nextToken"))
+    ListAccountRolesResponse.add_member(:role_list, Shapes::ShapeRef.new(shape: RoleListType, location_name: "roleList"))
+    ListAccountRolesResponse.struct_class = Types::ListAccountRolesResponse
+
+    ListAccountsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextTokenType, location: "querystring", location_name: "next_token"))
+    ListAccountsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: MaxResultType, location: "querystring", location_name: "max_result"))
+    ListAccountsRequest.add_member(:access_token, Shapes::ShapeRef.new(shape: AccessTokenType, required: true, location: "header", location_name: "x-amz-sso_bearer_token"))
+    ListAccountsRequest.struct_class = Types::ListAccountsRequest
+
+    ListAccountsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: NextTokenType, location_name: "nextToken"))
+    ListAccountsResponse.add_member(:account_list, Shapes::ShapeRef.new(shape: AccountListType, location_name: "accountList"))
+    ListAccountsResponse.struct_class = Types::ListAccountsResponse
+
+    LogoutRequest.add_member(:access_token, Shapes::ShapeRef.new(shape: AccessTokenType, required: true, location: "header", location_name: "x-amz-sso_bearer_token"))
+    LogoutRequest.struct_class = Types::LogoutRequest
+
+    ResourceNotFoundException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "message"))
+    ResourceNotFoundException.struct_class = Types::ResourceNotFoundException
+
+    RoleCredentials.add_member(:access_key_id, Shapes::ShapeRef.new(shape: AccessKeyType, location_name: "accessKeyId"))
+    RoleCredentials.add_member(:secret_access_key, Shapes::ShapeRef.new(shape: SecretAccessKeyType, location_name: "secretAccessKey"))
+    RoleCredentials.add_member(:session_token, Shapes::ShapeRef.new(shape: SessionTokenType, location_name: "sessionToken"))
+    RoleCredentials.add_member(:expiration, Shapes::ShapeRef.new(shape: ExpirationTimestampType, location_name: "expiration"))
+    RoleCredentials.struct_class = Types::RoleCredentials
+
+    RoleInfo.add_member(:role_name, Shapes::ShapeRef.new(shape: RoleNameType, location_name: "roleName"))
+    RoleInfo.add_member(:account_id, Shapes::ShapeRef.new(shape: AccountIdType, location_name: "accountId"))
+    RoleInfo.struct_class = Types::RoleInfo
+
+    RoleListType.member = Shapes::ShapeRef.new(shape: RoleInfo)
+
+    TooManyRequestsException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "message"))
+    TooManyRequestsException.struct_class = Types::TooManyRequestsException
+
+    UnauthorizedException.add_member(:message, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "message"))
+    UnauthorizedException.struct_class = Types::UnauthorizedException
+
+
+    # @api private
+    API = Seahorse::Model::Api.new.tap do |api|
+
+      api.version = "2019-06-10"
+
+      api.metadata = {
+        "apiVersion" => "2019-06-10",
+        "endpointPrefix" => "portal.sso",
+        "jsonVersion" => "1.1",
+        "protocol" => "rest-json",
+        "serviceAbbreviation" => "SSO",
+        "serviceFullName" => "AWS Single Sign-On",
+        "serviceId" => "SSO",
+        "signatureVersion" => "v4",
+        "signingName" => "awsssoportal",
+        "uid" => "sso-2019-06-10",
+      }
+
+      api.add_operation(:get_role_credentials, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "GetRoleCredentials"
+        o.http_method = "GET"
+        o.http_request_uri = "/federation/credentials"
+        o['authtype'] = "none"
+        o.input = Shapes::ShapeRef.new(shape: GetRoleCredentialsRequest)
+        o.output = Shapes::ShapeRef.new(shape: GetRoleCredentialsResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: UnauthorizedException)
+        o.errors << Shapes::ShapeRef.new(shape: TooManyRequestsException)
+        o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+      end)
+
+      api.add_operation(:list_account_roles, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "ListAccountRoles"
+        o.http_method = "GET"
+        o.http_request_uri = "/assignment/roles"
+        o['authtype'] = "none"
+        o.input = Shapes::ShapeRef.new(shape: ListAccountRolesRequest)
+        o.output = Shapes::ShapeRef.new(shape: ListAccountRolesResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: UnauthorizedException)
+        o.errors << Shapes::ShapeRef.new(shape: TooManyRequestsException)
+        o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+        o[:pager] = Aws::Pager.new(
+          limit_key: "max_results",
+          tokens: {
+            "next_token" => "next_token"
+          }
+        )
+      end)
+
+      api.add_operation(:list_accounts, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "ListAccounts"
+        o.http_method = "GET"
+        o.http_request_uri = "/assignment/accounts"
+        o['authtype'] = "none"
+        o.input = Shapes::ShapeRef.new(shape: ListAccountsRequest)
+        o.output = Shapes::ShapeRef.new(shape: ListAccountsResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: UnauthorizedException)
+        o.errors << Shapes::ShapeRef.new(shape: TooManyRequestsException)
+        o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+        o[:pager] = Aws::Pager.new(
+          limit_key: "max_results",
+          tokens: {
+            "next_token" => "next_token"
+          }
+        )
+      end)
+
+      api.add_operation(:logout, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "Logout"
+        o.http_method = "POST"
+        o.http_request_uri = "/logout"
+        o['authtype'] = "none"
+        o.input = Shapes::ShapeRef.new(shape: LogoutRequest)
+        o.output = Shapes::ShapeRef.new(shape: Shapes::StructureShape.new(struct_class: Aws::EmptyStructure))
+        o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: UnauthorizedException)
+        o.errors << Shapes::ShapeRef.new(shape: TooManyRequestsException)
+      end)
+    end
+
+  end
+end

data/lib/aws-sdk-sso/customizations.rb

@@ -0,0 +1 @@
+# frozen_string_literal: true

data/lib/aws-sdk-sso/errors.rb

@@ -0,0 +1,102 @@
+# frozen_string_literal: true
+
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+
+module Aws::SSO
+
+  # When SSO returns an error response, the Ruby SDK constructs and raises an error.
+  # These errors all extend Aws::SSO::Errors::ServiceError < {Aws::Errors::ServiceError}
+  #
+  # You can rescue all SSO errors using ServiceError:
+  #
+  #     begin
+  #       # do stuff
+  #     rescue Aws::SSO::Errors::ServiceError
+  #       # rescues all SSO API errors
+  #     end
+  #
+  #
+  # ## Request Context
+  # ServiceError objects have a {Aws::Errors::ServiceError#context #context} method that returns
+  # information about the request that generated the error.
+  # See {Seahorse::Client::RequestContext} for more information.
+  #
+  # ## Error Classes
+  # * {InvalidRequestException}
+  # * {ResourceNotFoundException}
+  # * {TooManyRequestsException}
+  # * {UnauthorizedException}
+  #
+  # Additionally, error classes are dynamically generated for service errors based on the error code
+  # if they are not defined above.
+  module Errors
+
+    extend Aws::Errors::DynamicErrors
+
+    class InvalidRequestException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::SSO::Types::InvalidRequestException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
+    class ResourceNotFoundException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::SSO::Types::ResourceNotFoundException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
+    class TooManyRequestsException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::SSO::Types::TooManyRequestsException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
+    class UnauthorizedException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::SSO::Types::UnauthorizedException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
+  end
+end

data/lib/aws-sdk-sso/plugins/content_type.rb

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+
+module Aws
+  module SSO
+    module Plugins
+      class ContentType < Seahorse::Client::Plugin
+
+        def add_handlers(handlers, config)
+          handlers.add(Handler)
+        end
+
+        class Handler < Seahorse::Client::Handler
+          def call(context)
+            # Some SSO operations break when given an empty content-type header.
+            # The SDK adds this blank content-type header
+            # since Net::HTTP provides a default that can break services.
+            # We're setting one here even though it's not used or necessary.
+            context.http_request.headers['content-type'] = 'application/json'
+            @handler.call(context)
+          end
+        end
+      end
+    end
+  end
+end

data/lib/aws-sdk-sso/resource.rb

@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+
+module Aws::SSO
+
+  class Resource
+
+    # @param options ({})
+    # @option options [Client] :client
+    def initialize(options = {})
+      @client = options[:client] || Client.new(options)
+    end
+
+    # @return [Client]
+    def client
+      @client
+    end
+
+  end
+end

data/lib/aws-sdk-sso/types.rb

@@ -0,0 +1,352 @@
+# frozen_string_literal: true
+
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+
+module Aws::SSO
+  module Types
+
+    # Provides information about your AWS account.
+    #
+    # @!attribute [rw] account_id
+    #   The identifier of the AWS account that is assigned to the user.
+    #   @return [String]
+    #
+    # @!attribute [rw] account_name
+    #   The display name of the AWS account that is assigned to the user.
+    #   @return [String]
+    #
+    # @!attribute [rw] email_address
+    #   The email address of the AWS account that is assigned to the user.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/AccountInfo AWS API Documentation
+    #
+    class AccountInfo < Struct.new(
+      :account_id,
+      :account_name,
+      :email_address)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass GetRoleCredentialsRequest
+    #   data as a hash:
+    #
+    #       {
+    #         role_name: "RoleNameType", # required
+    #         account_id: "AccountIdType", # required
+    #         access_token: "AccessTokenType", # required
+    #       }
+    #
+    # @!attribute [rw] role_name
+    #   The friendly name of the role that is assigned to the user.
+    #   @return [String]
+    #
+    # @!attribute [rw] account_id
+    #   The identifier for the AWS account that is assigned to the user.
+    #   @return [String]
+    #
+    # @!attribute [rw] access_token
+    #   The token issued by the `CreateToken` API call. For more
+    #   information, see [CreateToken][1] in the *AWS SSO OIDC API Reference
+    #   Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/API_CreateToken.html
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/GetRoleCredentialsRequest AWS API Documentation
+    #
+    class GetRoleCredentialsRequest < Struct.new(
+      :role_name,
+      :account_id,
+      :access_token)
+      SENSITIVE = [:access_token]
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] role_credentials
+    #   The credentials for the role that is assigned to the user.
+    #   @return [Types::RoleCredentials]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/GetRoleCredentialsResponse AWS API Documentation
+    #
+    class GetRoleCredentialsResponse < Struct.new(
+      :role_credentials)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Indicates that a problem occurred with the input to the request. For
+    # example, a required parameter might be missing or out of range.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/InvalidRequestException AWS API Documentation
+    #
+    class InvalidRequestException < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass ListAccountRolesRequest
+    #   data as a hash:
+    #
+    #       {
+    #         next_token: "NextTokenType",
+    #         max_results: 1,
+    #         access_token: "AccessTokenType", # required
+    #         account_id: "AccountIdType", # required
+    #       }
+    #
+    # @!attribute [rw] next_token
+    #   The page token from the previous response output when you request
+    #   subsequent pages.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   The number of items that clients can request per page.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] access_token
+    #   The token issued by the `CreateToken` API call. For more
+    #   information, see [CreateToken][1] in the *AWS SSO OIDC API Reference
+    #   Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/API_CreateToken.html
+    #   @return [String]
+    #
+    # @!attribute [rw] account_id
+    #   The identifier for the AWS account that is assigned to the user.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/ListAccountRolesRequest AWS API Documentation
+    #
+    class ListAccountRolesRequest < Struct.new(
+      :next_token,
+      :max_results,
+      :access_token,
+      :account_id)
+      SENSITIVE = [:access_token]
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] next_token
+    #   The page token client that is used to retrieve the list of accounts.
+    #   @return [String]
+    #
+    # @!attribute [rw] role_list
+    #   A paginated response with the list of roles and the next token if
+    #   more results are available.
+    #   @return [Array<Types::RoleInfo>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/ListAccountRolesResponse AWS API Documentation
+    #
+    class ListAccountRolesResponse < Struct.new(
+      :next_token,
+      :role_list)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass ListAccountsRequest
+    #   data as a hash:
+    #
+    #       {
+    #         next_token: "NextTokenType",
+    #         max_results: 1,
+    #         access_token: "AccessTokenType", # required
+    #       }
+    #
+    # @!attribute [rw] next_token
+    #   (Optional) When requesting subsequent pages, this is the page token
+    #   from the previous response output.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   This is the number of items clients can request per page.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] access_token
+    #   The token issued by the `CreateToken` API call. For more
+    #   information, see [CreateToken][1] in the *AWS SSO OIDC API Reference
+    #   Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/API_CreateToken.html
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/ListAccountsRequest AWS API Documentation
+    #
+    class ListAccountsRequest < Struct.new(
+      :next_token,
+      :max_results,
+      :access_token)
+      SENSITIVE = [:access_token]
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] next_token
+    #   The page token client that is used to retrieve the list of accounts.
+    #   @return [String]
+    #
+    # @!attribute [rw] account_list
+    #   A paginated response with the list of account information and the
+    #   next token if more results are available.
+    #   @return [Array<Types::AccountInfo>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/ListAccountsResponse AWS API Documentation
+    #
+    class ListAccountsResponse < Struct.new(
+      :next_token,
+      :account_list)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @note When making an API call, you may pass LogoutRequest
+    #   data as a hash:
+    #
+    #       {
+    #         access_token: "AccessTokenType", # required
+    #       }
+    #
+    # @!attribute [rw] access_token
+    #   The token issued by the `CreateToken` API call. For more
+    #   information, see [CreateToken][1] in the *AWS SSO OIDC API Reference
+    #   Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/singlesignon/latest/OIDCAPIReference/API_CreateToken.html
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/LogoutRequest AWS API Documentation
+    #
+    class LogoutRequest < Struct.new(
+      :access_token)
+      SENSITIVE = [:access_token]
+      include Aws::Structure
+    end
+
+    # The specified resource doesn't exist.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/ResourceNotFoundException AWS API Documentation
+    #
+    class ResourceNotFoundException < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Provides information about the role credentials that are assigned to
+    # the user.
+    #
+    # @!attribute [rw] access_key_id
+    #   The identifier used for the temporary security credentials. For more
+    #   information, see [Using Temporary Security Credentials to Request
+    #   Access to AWS Resources][1] in the *AWS IAM User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_use-resources.html
+    #   @return [String]
+    #
+    # @!attribute [rw] secret_access_key
+    #   The key that is used to sign the request. For more information, see
+    #   [Using Temporary Security Credentials to Request Access to AWS
+    #   Resources][1] in the *AWS IAM User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_use-resources.html
+    #   @return [String]
+    #
+    # @!attribute [rw] session_token
+    #   The token used for temporary credentials. For more information, see
+    #   [Using Temporary Security Credentials to Request Access to AWS
+    #   Resources][1] in the *AWS IAM User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_use-resources.html
+    #   @return [String]
+    #
+    # @!attribute [rw] expiration
+    #   The date on which temporary security credentials expire.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/RoleCredentials AWS API Documentation
+    #
+    class RoleCredentials < Struct.new(
+      :access_key_id,
+      :secret_access_key,
+      :session_token,
+      :expiration)
+      SENSITIVE = [:secret_access_key, :session_token]
+      include Aws::Structure
+    end
+
+    # Provides information about the role that is assigned to the user.
+    #
+    # @!attribute [rw] role_name
+    #   The friendly name of the role that is assigned to the user.
+    #   @return [String]
+    #
+    # @!attribute [rw] account_id
+    #   The identifier of the AWS account assigned to the user.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/RoleInfo AWS API Documentation
+    #
+    class RoleInfo < Struct.new(
+      :role_name,
+      :account_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Indicates that the request is being made too frequently and is more
+    # than what the server can handle.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/TooManyRequestsException AWS API Documentation
+    #
+    class TooManyRequestsException < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Indicates that the request is not authorized. This can happen due to
+    # an invalid access token in the request.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-2019-06-10/UnauthorizedException AWS API Documentation
+    #
+    class UnauthorizedException < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+  end
+end