aws-sdk-eksauth 1.0.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +7 -0
- data/CHANGELOG.md +8 -0
- data/LICENSE.txt +202 -0
- data/VERSION +1 -0
- data/lib/aws-sdk-eksauth/client.rb +478 -0
- data/lib/aws-sdk-eksauth/client_api.rb +129 -0
- data/lib/aws-sdk-eksauth/customizations.rb +0 -0
- data/lib/aws-sdk-eksauth/endpoint_parameters.rb +54 -0
- data/lib/aws-sdk-eksauth/endpoint_provider.rb +47 -0
- data/lib/aws-sdk-eksauth/endpoints.rb +29 -0
- data/lib/aws-sdk-eksauth/errors.rb +182 -0
- data/lib/aws-sdk-eksauth/plugins/endpoints.rb +70 -0
- data/lib/aws-sdk-eksauth/resource.rb +26 -0
- data/lib/aws-sdk-eksauth/types.rb +310 -0
- data/lib/aws-sdk-eksauth/waiters.rb +15 -0
- data/lib/aws-sdk-eksauth.rb +58 -0
- metadata +95 -0
@@ -0,0 +1,47 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# WARNING ABOUT GENERATED CODE
|
4
|
+
#
|
5
|
+
# This file is generated. See the contributing guide for more information:
|
6
|
+
# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
|
7
|
+
#
|
8
|
+
# WARNING ABOUT GENERATED CODE
|
9
|
+
|
10
|
+
module Aws::EKSAuth
|
11
|
+
class EndpointProvider
|
12
|
+
def resolve_endpoint(parameters)
|
13
|
+
region = parameters.region
|
14
|
+
use_fips = parameters.use_fips
|
15
|
+
endpoint = parameters.endpoint
|
16
|
+
if Aws::Endpoints::Matchers.set?(endpoint)
|
17
|
+
if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
|
18
|
+
raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
|
19
|
+
end
|
20
|
+
return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
|
21
|
+
end
|
22
|
+
if Aws::Endpoints::Matchers.set?(region)
|
23
|
+
if (partition_result = Aws::Endpoints::Matchers.aws_partition(region))
|
24
|
+
if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
|
25
|
+
if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
|
26
|
+
if Aws::Endpoints::Matchers.boolean_equals?(Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"), true)
|
27
|
+
return Aws::Endpoints::Endpoint.new(url: "https://eks-auth-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
|
28
|
+
end
|
29
|
+
raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
|
30
|
+
end
|
31
|
+
return Aws::Endpoints::Endpoint.new(url: "https://eks-auth.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
|
32
|
+
end
|
33
|
+
if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
|
34
|
+
if Aws::Endpoints::Matchers.boolean_equals?(Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"), true)
|
35
|
+
return Aws::Endpoints::Endpoint.new(url: "https://eks-auth-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
|
36
|
+
end
|
37
|
+
raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
|
38
|
+
end
|
39
|
+
return Aws::Endpoints::Endpoint.new(url: "https://eks-auth.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
|
40
|
+
end
|
41
|
+
end
|
42
|
+
raise ArgumentError, "Invalid Configuration: Missing Region"
|
43
|
+
raise ArgumentError, 'No endpoint could be resolved'
|
44
|
+
|
45
|
+
end
|
46
|
+
end
|
47
|
+
end
|
@@ -0,0 +1,29 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# WARNING ABOUT GENERATED CODE
|
4
|
+
#
|
5
|
+
# This file is generated. See the contributing guide for more information:
|
6
|
+
# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
|
7
|
+
#
|
8
|
+
# WARNING ABOUT GENERATED CODE
|
9
|
+
|
10
|
+
|
11
|
+
module Aws::EKSAuth
|
12
|
+
# @api private
|
13
|
+
module Endpoints
|
14
|
+
|
15
|
+
class AssumeRoleForPodIdentity
|
16
|
+
def self.build(context)
|
17
|
+
unless context.config.regional_endpoint
|
18
|
+
endpoint = context.config.endpoint.to_s
|
19
|
+
end
|
20
|
+
Aws::EKSAuth::EndpointParameters.new(
|
21
|
+
region: context.config.region,
|
22
|
+
use_fips: context.config.use_fips_endpoint,
|
23
|
+
endpoint: endpoint,
|
24
|
+
)
|
25
|
+
end
|
26
|
+
end
|
27
|
+
|
28
|
+
end
|
29
|
+
end
|
@@ -0,0 +1,182 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# WARNING ABOUT GENERATED CODE
|
4
|
+
#
|
5
|
+
# This file is generated. See the contributing guide for more information:
|
6
|
+
# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
|
7
|
+
#
|
8
|
+
# WARNING ABOUT GENERATED CODE
|
9
|
+
|
10
|
+
module Aws::EKSAuth
|
11
|
+
|
12
|
+
# When EKSAuth returns an error response, the Ruby SDK constructs and raises an error.
|
13
|
+
# These errors all extend Aws::EKSAuth::Errors::ServiceError < {Aws::Errors::ServiceError}
|
14
|
+
#
|
15
|
+
# You can rescue all EKSAuth errors using ServiceError:
|
16
|
+
#
|
17
|
+
# begin
|
18
|
+
# # do stuff
|
19
|
+
# rescue Aws::EKSAuth::Errors::ServiceError
|
20
|
+
# # rescues all EKSAuth API errors
|
21
|
+
# end
|
22
|
+
#
|
23
|
+
#
|
24
|
+
# ## Request Context
|
25
|
+
# ServiceError objects have a {Aws::Errors::ServiceError#context #context} method that returns
|
26
|
+
# information about the request that generated the error.
|
27
|
+
# See {Seahorse::Client::RequestContext} for more information.
|
28
|
+
#
|
29
|
+
# ## Error Classes
|
30
|
+
# * {AccessDeniedException}
|
31
|
+
# * {ExpiredTokenException}
|
32
|
+
# * {InternalServerException}
|
33
|
+
# * {InvalidParameterException}
|
34
|
+
# * {InvalidRequestException}
|
35
|
+
# * {InvalidTokenException}
|
36
|
+
# * {ResourceNotFoundException}
|
37
|
+
# * {ServiceUnavailableException}
|
38
|
+
# * {ThrottlingException}
|
39
|
+
#
|
40
|
+
# Additionally, error classes are dynamically generated for service errors based on the error code
|
41
|
+
# if they are not defined above.
|
42
|
+
module Errors
|
43
|
+
|
44
|
+
extend Aws::Errors::DynamicErrors
|
45
|
+
|
46
|
+
class AccessDeniedException < ServiceError
|
47
|
+
|
48
|
+
# @param [Seahorse::Client::RequestContext] context
|
49
|
+
# @param [String] message
|
50
|
+
# @param [Aws::EKSAuth::Types::AccessDeniedException] data
|
51
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
52
|
+
super(context, message, data)
|
53
|
+
end
|
54
|
+
|
55
|
+
# @return [String]
|
56
|
+
def message
|
57
|
+
@message || @data[:message]
|
58
|
+
end
|
59
|
+
end
|
60
|
+
|
61
|
+
class ExpiredTokenException < ServiceError
|
62
|
+
|
63
|
+
# @param [Seahorse::Client::RequestContext] context
|
64
|
+
# @param [String] message
|
65
|
+
# @param [Aws::EKSAuth::Types::ExpiredTokenException] data
|
66
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
67
|
+
super(context, message, data)
|
68
|
+
end
|
69
|
+
|
70
|
+
# @return [String]
|
71
|
+
def message
|
72
|
+
@message || @data[:message]
|
73
|
+
end
|
74
|
+
end
|
75
|
+
|
76
|
+
class InternalServerException < ServiceError
|
77
|
+
|
78
|
+
# @param [Seahorse::Client::RequestContext] context
|
79
|
+
# @param [String] message
|
80
|
+
# @param [Aws::EKSAuth::Types::InternalServerException] data
|
81
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
82
|
+
super(context, message, data)
|
83
|
+
end
|
84
|
+
|
85
|
+
# @return [String]
|
86
|
+
def message
|
87
|
+
@message || @data[:message]
|
88
|
+
end
|
89
|
+
end
|
90
|
+
|
91
|
+
class InvalidParameterException < ServiceError
|
92
|
+
|
93
|
+
# @param [Seahorse::Client::RequestContext] context
|
94
|
+
# @param [String] message
|
95
|
+
# @param [Aws::EKSAuth::Types::InvalidParameterException] data
|
96
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
97
|
+
super(context, message, data)
|
98
|
+
end
|
99
|
+
|
100
|
+
# @return [String]
|
101
|
+
def message
|
102
|
+
@message || @data[:message]
|
103
|
+
end
|
104
|
+
end
|
105
|
+
|
106
|
+
class InvalidRequestException < ServiceError
|
107
|
+
|
108
|
+
# @param [Seahorse::Client::RequestContext] context
|
109
|
+
# @param [String] message
|
110
|
+
# @param [Aws::EKSAuth::Types::InvalidRequestException] data
|
111
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
112
|
+
super(context, message, data)
|
113
|
+
end
|
114
|
+
|
115
|
+
# @return [String]
|
116
|
+
def message
|
117
|
+
@message || @data[:message]
|
118
|
+
end
|
119
|
+
end
|
120
|
+
|
121
|
+
class InvalidTokenException < ServiceError
|
122
|
+
|
123
|
+
# @param [Seahorse::Client::RequestContext] context
|
124
|
+
# @param [String] message
|
125
|
+
# @param [Aws::EKSAuth::Types::InvalidTokenException] data
|
126
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
127
|
+
super(context, message, data)
|
128
|
+
end
|
129
|
+
|
130
|
+
# @return [String]
|
131
|
+
def message
|
132
|
+
@message || @data[:message]
|
133
|
+
end
|
134
|
+
end
|
135
|
+
|
136
|
+
class ResourceNotFoundException < ServiceError
|
137
|
+
|
138
|
+
# @param [Seahorse::Client::RequestContext] context
|
139
|
+
# @param [String] message
|
140
|
+
# @param [Aws::EKSAuth::Types::ResourceNotFoundException] data
|
141
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
142
|
+
super(context, message, data)
|
143
|
+
end
|
144
|
+
|
145
|
+
# @return [String]
|
146
|
+
def message
|
147
|
+
@message || @data[:message]
|
148
|
+
end
|
149
|
+
end
|
150
|
+
|
151
|
+
class ServiceUnavailableException < ServiceError
|
152
|
+
|
153
|
+
# @param [Seahorse::Client::RequestContext] context
|
154
|
+
# @param [String] message
|
155
|
+
# @param [Aws::EKSAuth::Types::ServiceUnavailableException] data
|
156
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
157
|
+
super(context, message, data)
|
158
|
+
end
|
159
|
+
|
160
|
+
# @return [String]
|
161
|
+
def message
|
162
|
+
@message || @data[:message]
|
163
|
+
end
|
164
|
+
end
|
165
|
+
|
166
|
+
class ThrottlingException < ServiceError
|
167
|
+
|
168
|
+
# @param [Seahorse::Client::RequestContext] context
|
169
|
+
# @param [String] message
|
170
|
+
# @param [Aws::EKSAuth::Types::ThrottlingException] data
|
171
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
172
|
+
super(context, message, data)
|
173
|
+
end
|
174
|
+
|
175
|
+
# @return [String]
|
176
|
+
def message
|
177
|
+
@message || @data[:message]
|
178
|
+
end
|
179
|
+
end
|
180
|
+
|
181
|
+
end
|
182
|
+
end
|
@@ -0,0 +1,70 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# WARNING ABOUT GENERATED CODE
|
4
|
+
#
|
5
|
+
# This file is generated. See the contributing guide for more information:
|
6
|
+
# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
|
7
|
+
#
|
8
|
+
# WARNING ABOUT GENERATED CODE
|
9
|
+
|
10
|
+
|
11
|
+
module Aws::EKSAuth
|
12
|
+
module Plugins
|
13
|
+
class Endpoints < Seahorse::Client::Plugin
|
14
|
+
option(
|
15
|
+
:endpoint_provider,
|
16
|
+
doc_type: 'Aws::EKSAuth::EndpointProvider',
|
17
|
+
docstring: 'The endpoint provider used to resolve endpoints. Any '\
|
18
|
+
'object that responds to `#resolve_endpoint(parameters)` '\
|
19
|
+
'where `parameters` is a Struct similar to '\
|
20
|
+
'`Aws::EKSAuth::EndpointParameters`'
|
21
|
+
) do |cfg|
|
22
|
+
Aws::EKSAuth::EndpointProvider.new
|
23
|
+
end
|
24
|
+
|
25
|
+
# @api private
|
26
|
+
class Handler < Seahorse::Client::Handler
|
27
|
+
def call(context)
|
28
|
+
# If endpoint was discovered, do not resolve or apply the endpoint.
|
29
|
+
unless context[:discovered_endpoint]
|
30
|
+
params = parameters_for_operation(context)
|
31
|
+
endpoint = context.config.endpoint_provider.resolve_endpoint(params)
|
32
|
+
|
33
|
+
context.http_request.endpoint = endpoint.url
|
34
|
+
apply_endpoint_headers(context, endpoint.headers)
|
35
|
+
end
|
36
|
+
|
37
|
+
context[:endpoint_params] = params
|
38
|
+
context[:auth_scheme] =
|
39
|
+
Aws::Endpoints.resolve_auth_scheme(context, endpoint)
|
40
|
+
|
41
|
+
@handler.call(context)
|
42
|
+
end
|
43
|
+
|
44
|
+
private
|
45
|
+
|
46
|
+
def apply_endpoint_headers(context, headers)
|
47
|
+
headers.each do |key, values|
|
48
|
+
value = values
|
49
|
+
.compact
|
50
|
+
.map { |s| Seahorse::Util.escape_header_list_string(s.to_s) }
|
51
|
+
.join(',')
|
52
|
+
|
53
|
+
context.http_request.headers[key] = value
|
54
|
+
end
|
55
|
+
end
|
56
|
+
|
57
|
+
def parameters_for_operation(context)
|
58
|
+
case context.operation_name
|
59
|
+
when :assume_role_for_pod_identity
|
60
|
+
Aws::EKSAuth::Endpoints::AssumeRoleForPodIdentity.build(context)
|
61
|
+
end
|
62
|
+
end
|
63
|
+
end
|
64
|
+
|
65
|
+
def add_handlers(handlers, _config)
|
66
|
+
handlers.add(Handler, step: :build, priority: 75)
|
67
|
+
end
|
68
|
+
end
|
69
|
+
end
|
70
|
+
end
|
@@ -0,0 +1,26 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# WARNING ABOUT GENERATED CODE
|
4
|
+
#
|
5
|
+
# This file is generated. See the contributing guide for more information:
|
6
|
+
# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
|
7
|
+
#
|
8
|
+
# WARNING ABOUT GENERATED CODE
|
9
|
+
|
10
|
+
module Aws::EKSAuth
|
11
|
+
|
12
|
+
class Resource
|
13
|
+
|
14
|
+
# @param options ({})
|
15
|
+
# @option options [Client] :client
|
16
|
+
def initialize(options = {})
|
17
|
+
@client = options[:client] || Client.new(options)
|
18
|
+
end
|
19
|
+
|
20
|
+
# @return [Client]
|
21
|
+
def client
|
22
|
+
@client
|
23
|
+
end
|
24
|
+
|
25
|
+
end
|
26
|
+
end
|
@@ -0,0 +1,310 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# WARNING ABOUT GENERATED CODE
|
4
|
+
#
|
5
|
+
# This file is generated. See the contributing guide for more information:
|
6
|
+
# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
|
7
|
+
#
|
8
|
+
# WARNING ABOUT GENERATED CODE
|
9
|
+
|
10
|
+
module Aws::EKSAuth
|
11
|
+
module Types
|
12
|
+
|
13
|
+
# You don't have permissions to perform the requested operation. The
|
14
|
+
# IAM principal making the request must have at least one IAM
|
15
|
+
# permissions policy attached that grants the required permissions. For
|
16
|
+
# more information, see [Access management][1] in the *IAM User Guide*.
|
17
|
+
#
|
18
|
+
#
|
19
|
+
#
|
20
|
+
# [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access.html
|
21
|
+
#
|
22
|
+
# @!attribute [rw] message
|
23
|
+
# @return [String]
|
24
|
+
#
|
25
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/AccessDeniedException AWS API Documentation
|
26
|
+
#
|
27
|
+
class AccessDeniedException < Struct.new(
|
28
|
+
:message)
|
29
|
+
SENSITIVE = []
|
30
|
+
include Aws::Structure
|
31
|
+
end
|
32
|
+
|
33
|
+
# @!attribute [rw] cluster_name
|
34
|
+
# The name of the cluster for the request.
|
35
|
+
# @return [String]
|
36
|
+
#
|
37
|
+
# @!attribute [rw] token
|
38
|
+
# The token of the Kubernetes service account for the pod.
|
39
|
+
# @return [String]
|
40
|
+
#
|
41
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/AssumeRoleForPodIdentityRequest AWS API Documentation
|
42
|
+
#
|
43
|
+
class AssumeRoleForPodIdentityRequest < Struct.new(
|
44
|
+
:cluster_name,
|
45
|
+
:token)
|
46
|
+
SENSITIVE = [:token]
|
47
|
+
include Aws::Structure
|
48
|
+
end
|
49
|
+
|
50
|
+
# @!attribute [rw] subject
|
51
|
+
# The name of the Kubernetes service account inside the cluster to
|
52
|
+
# associate the IAM credentials with.
|
53
|
+
# @return [Types::Subject]
|
54
|
+
#
|
55
|
+
# @!attribute [rw] audience
|
56
|
+
# The identity that is allowed to use the credentials. This value is
|
57
|
+
# always `pods.eks.amazonaws.com`.
|
58
|
+
# @return [String]
|
59
|
+
#
|
60
|
+
# @!attribute [rw] pod_identity_association
|
61
|
+
# The Amazon Resource Name (ARN) and ID of the EKS Pod Identity
|
62
|
+
# association.
|
63
|
+
# @return [Types::PodIdentityAssociation]
|
64
|
+
#
|
65
|
+
# @!attribute [rw] assumed_role_user
|
66
|
+
# An object with the permanent IAM role identity and the temporary
|
67
|
+
# session name.
|
68
|
+
#
|
69
|
+
# The ARN of the IAM role that the temporary credentials authenticate
|
70
|
+
# to.
|
71
|
+
#
|
72
|
+
# The session name of the temporary session requested to STS. The
|
73
|
+
# value is a unique identifier that contains the role ID, a colon
|
74
|
+
# (`:`), and the role session name of the role that is being assumed.
|
75
|
+
# The role ID is generated by IAM when the role is created. The role
|
76
|
+
# session name part of the value follows this format:
|
77
|
+
# `eks-clustername-podname-random UUID `
|
78
|
+
# @return [Types::AssumedRoleUser]
|
79
|
+
#
|
80
|
+
# @!attribute [rw] credentials
|
81
|
+
# The *Amazon Web Services Signature Version 4* type of temporary
|
82
|
+
# credentials.
|
83
|
+
# @return [Types::Credentials]
|
84
|
+
#
|
85
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/AssumeRoleForPodIdentityResponse AWS API Documentation
|
86
|
+
#
|
87
|
+
class AssumeRoleForPodIdentityResponse < Struct.new(
|
88
|
+
:subject,
|
89
|
+
:audience,
|
90
|
+
:pod_identity_association,
|
91
|
+
:assumed_role_user,
|
92
|
+
:credentials)
|
93
|
+
SENSITIVE = [:credentials]
|
94
|
+
include Aws::Structure
|
95
|
+
end
|
96
|
+
|
97
|
+
# An object with the permanent IAM role identity and the temporary
|
98
|
+
# session name.
|
99
|
+
#
|
100
|
+
# @!attribute [rw] arn
|
101
|
+
# The ARN of the IAM role that the temporary credentials authenticate
|
102
|
+
# to.
|
103
|
+
# @return [String]
|
104
|
+
#
|
105
|
+
# @!attribute [rw] assume_role_id
|
106
|
+
# The session name of the temporary session requested to STS. The
|
107
|
+
# value is a unique identifier that contains the role ID, a colon
|
108
|
+
# (`:`), and the role session name of the role that is being assumed.
|
109
|
+
# The role ID is generated by IAM when the role is created. The role
|
110
|
+
# session name part of the value follows this format:
|
111
|
+
# `eks-clustername-podname-random UUID `
|
112
|
+
# @return [String]
|
113
|
+
#
|
114
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/AssumedRoleUser AWS API Documentation
|
115
|
+
#
|
116
|
+
class AssumedRoleUser < Struct.new(
|
117
|
+
:arn,
|
118
|
+
:assume_role_id)
|
119
|
+
SENSITIVE = []
|
120
|
+
include Aws::Structure
|
121
|
+
end
|
122
|
+
|
123
|
+
# The *Amazon Web Services Signature Version 4* type of temporary
|
124
|
+
# credentials.
|
125
|
+
#
|
126
|
+
# @!attribute [rw] session_token
|
127
|
+
# The token that applications inside the pods must pass to any service
|
128
|
+
# API to use the temporary credentials.
|
129
|
+
# @return [String]
|
130
|
+
#
|
131
|
+
# @!attribute [rw] secret_access_key
|
132
|
+
# The secret access key that applications inside the pods use to sign
|
133
|
+
# requests.
|
134
|
+
# @return [String]
|
135
|
+
#
|
136
|
+
# @!attribute [rw] access_key_id
|
137
|
+
# The access key ID that identifies the temporary security
|
138
|
+
# credentials.
|
139
|
+
# @return [String]
|
140
|
+
#
|
141
|
+
# @!attribute [rw] expiration
|
142
|
+
# The Unix epoch timestamp in seconds when the current credentials
|
143
|
+
# expire.
|
144
|
+
# @return [Time]
|
145
|
+
#
|
146
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/Credentials AWS API Documentation
|
147
|
+
#
|
148
|
+
class Credentials < Struct.new(
|
149
|
+
:session_token,
|
150
|
+
:secret_access_key,
|
151
|
+
:access_key_id,
|
152
|
+
:expiration)
|
153
|
+
SENSITIVE = []
|
154
|
+
include Aws::Structure
|
155
|
+
end
|
156
|
+
|
157
|
+
# The specified Kubernetes service account token is expired.
|
158
|
+
#
|
159
|
+
# @!attribute [rw] message
|
160
|
+
# @return [String]
|
161
|
+
#
|
162
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/ExpiredTokenException AWS API Documentation
|
163
|
+
#
|
164
|
+
class ExpiredTokenException < Struct.new(
|
165
|
+
:message)
|
166
|
+
SENSITIVE = []
|
167
|
+
include Aws::Structure
|
168
|
+
end
|
169
|
+
|
170
|
+
# These errors are usually caused by a server-side issue.
|
171
|
+
#
|
172
|
+
# @!attribute [rw] message
|
173
|
+
# @return [String]
|
174
|
+
#
|
175
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/InternalServerException AWS API Documentation
|
176
|
+
#
|
177
|
+
class InternalServerException < Struct.new(
|
178
|
+
:message)
|
179
|
+
SENSITIVE = []
|
180
|
+
include Aws::Structure
|
181
|
+
end
|
182
|
+
|
183
|
+
# The specified parameter is invalid. Review the available parameters
|
184
|
+
# for the API request.
|
185
|
+
#
|
186
|
+
# @!attribute [rw] message
|
187
|
+
# @return [String]
|
188
|
+
#
|
189
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/InvalidParameterException AWS API Documentation
|
190
|
+
#
|
191
|
+
class InvalidParameterException < Struct.new(
|
192
|
+
:message)
|
193
|
+
SENSITIVE = []
|
194
|
+
include Aws::Structure
|
195
|
+
end
|
196
|
+
|
197
|
+
# This exception is thrown if the request contains a semantic error. The
|
198
|
+
# precise meaning will depend on the API, and will be documented in the
|
199
|
+
# error message.
|
200
|
+
#
|
201
|
+
# @!attribute [rw] message
|
202
|
+
# @return [String]
|
203
|
+
#
|
204
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/InvalidRequestException AWS API Documentation
|
205
|
+
#
|
206
|
+
class InvalidRequestException < Struct.new(
|
207
|
+
:message)
|
208
|
+
SENSITIVE = []
|
209
|
+
include Aws::Structure
|
210
|
+
end
|
211
|
+
|
212
|
+
# The specified Kubernetes service account token is invalid.
|
213
|
+
#
|
214
|
+
# @!attribute [rw] message
|
215
|
+
# @return [String]
|
216
|
+
#
|
217
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/InvalidTokenException AWS API Documentation
|
218
|
+
#
|
219
|
+
class InvalidTokenException < Struct.new(
|
220
|
+
:message)
|
221
|
+
SENSITIVE = []
|
222
|
+
include Aws::Structure
|
223
|
+
end
|
224
|
+
|
225
|
+
# Amazon EKS Pod Identity associations provide the ability to manage
|
226
|
+
# credentials for your applications, similar to the way that Amazon EC2
|
227
|
+
# instance profiles provide credentials to Amazon EC2 instances.
|
228
|
+
#
|
229
|
+
# @!attribute [rw] association_arn
|
230
|
+
# The Amazon Resource Name (ARN) of the EKS Pod Identity association.
|
231
|
+
# @return [String]
|
232
|
+
#
|
233
|
+
# @!attribute [rw] association_id
|
234
|
+
# The ID of the association.
|
235
|
+
# @return [String]
|
236
|
+
#
|
237
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/PodIdentityAssociation AWS API Documentation
|
238
|
+
#
|
239
|
+
class PodIdentityAssociation < Struct.new(
|
240
|
+
:association_arn,
|
241
|
+
:association_id)
|
242
|
+
SENSITIVE = []
|
243
|
+
include Aws::Structure
|
244
|
+
end
|
245
|
+
|
246
|
+
# The specified resource could not be found.
|
247
|
+
#
|
248
|
+
# @!attribute [rw] message
|
249
|
+
# @return [String]
|
250
|
+
#
|
251
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/ResourceNotFoundException AWS API Documentation
|
252
|
+
#
|
253
|
+
class ResourceNotFoundException < Struct.new(
|
254
|
+
:message)
|
255
|
+
SENSITIVE = []
|
256
|
+
include Aws::Structure
|
257
|
+
end
|
258
|
+
|
259
|
+
# The service is unavailable. Back off and retry the operation.
|
260
|
+
#
|
261
|
+
# @!attribute [rw] message
|
262
|
+
# @return [String]
|
263
|
+
#
|
264
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/ServiceUnavailableException AWS API Documentation
|
265
|
+
#
|
266
|
+
class ServiceUnavailableException < Struct.new(
|
267
|
+
:message)
|
268
|
+
SENSITIVE = []
|
269
|
+
include Aws::Structure
|
270
|
+
end
|
271
|
+
|
272
|
+
# An object containing the name of the Kubernetes service account inside
|
273
|
+
# the cluster to associate the IAM credentials with.
|
274
|
+
#
|
275
|
+
# @!attribute [rw] namespace
|
276
|
+
# The name of the Kubernetes namespace inside the cluster to create
|
277
|
+
# the association in. The service account and the pods that use the
|
278
|
+
# service account must be in this namespace.
|
279
|
+
# @return [String]
|
280
|
+
#
|
281
|
+
# @!attribute [rw] service_account
|
282
|
+
# The name of the Kubernetes service account inside the cluster to
|
283
|
+
# associate the IAM credentials with.
|
284
|
+
# @return [String]
|
285
|
+
#
|
286
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/Subject AWS API Documentation
|
287
|
+
#
|
288
|
+
class Subject < Struct.new(
|
289
|
+
:namespace,
|
290
|
+
:service_account)
|
291
|
+
SENSITIVE = []
|
292
|
+
include Aws::Structure
|
293
|
+
end
|
294
|
+
|
295
|
+
# The request was denied because your request rate is too high. Reduce
|
296
|
+
# the frequency of requests.
|
297
|
+
#
|
298
|
+
# @!attribute [rw] message
|
299
|
+
# @return [String]
|
300
|
+
#
|
301
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/eks-auth-2023-11-26/ThrottlingException AWS API Documentation
|
302
|
+
#
|
303
|
+
class ThrottlingException < Struct.new(
|
304
|
+
:message)
|
305
|
+
SENSITIVE = []
|
306
|
+
include Aws::Structure
|
307
|
+
end
|
308
|
+
|
309
|
+
end
|
310
|
+
end
|
@@ -0,0 +1,15 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# WARNING ABOUT GENERATED CODE
|
4
|
+
#
|
5
|
+
# This file is generated. See the contributing guide for more information:
|
6
|
+
# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
|
7
|
+
#
|
8
|
+
# WARNING ABOUT GENERATED CODE
|
9
|
+
|
10
|
+
require 'aws-sdk-core/waiters'
|
11
|
+
|
12
|
+
module Aws::EKSAuth
|
13
|
+
module Waiters
|
14
|
+
end
|
15
|
+
end
|