aws-sdk 1.12.0 → 1.13.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/README.md +2 -2
- data/bin/aws-rb +18 -0
- data/lib/aws/api_config/{CloudFront-2012-07-01.yml → CloudFront-2013-05-12.yml} +73 -23
- data/lib/aws/api_config/{RDS-2013-02-12.yml → RDS-2013-05-15.yml} +92 -5
- data/lib/aws/api_config/Redshift-2012-12-01.yml +188 -12
- data/lib/aws/api_config/STS-2011-06-15.yml +10 -0
- data/lib/aws/auto_scaling/client.rb +6 -0
- data/lib/aws/cloud_formation/client.rb +6 -0
- data/lib/aws/cloud_front/client.rb +37 -1
- data/lib/aws/cloud_search/client.rb +6 -0
- data/lib/aws/cloud_watch/client.rb +6 -0
- data/lib/aws/core.rb +15 -20
- data/lib/aws/core/client.rb +36 -0
- data/lib/aws/core/credential_providers.rb +45 -0
- data/lib/aws/core/region_collection.rb +4 -1
- data/lib/aws/data_pipeline/client.rb +6 -0
- data/lib/aws/direct_connect/client.rb +6 -0
- data/lib/aws/dynamo_db/client.rb +35 -1249
- data/lib/aws/dynamo_db/client/v20111205.rb +1266 -0
- data/lib/aws/dynamo_db/client/v20120810.rb +1409 -0
- data/lib/aws/dynamo_db/client_base.rb +1 -0
- data/lib/aws/dynamo_db/client_v2.rb +25 -1396
- data/lib/aws/ec2/client.rb +6 -0
- data/lib/aws/elastic_beanstalk/client.rb +6 -0
- data/lib/aws/elastic_transcoder/client.rb +6 -0
- data/lib/aws/elasticache/client.rb +6 -0
- data/lib/aws/elb/client.rb +6 -0
- data/lib/aws/emr/client.rb +6 -0
- data/lib/aws/glacier/client.rb +14 -8
- data/lib/aws/iam/client.rb +6 -0
- data/lib/aws/import_export/client.rb +6 -0
- data/lib/aws/ops_works/client.rb +6 -0
- data/lib/aws/rds/client.rb +83 -18
- data/lib/aws/record/abstract_base.rb +19 -22
- data/lib/aws/record/attributes.rb +5 -1
- data/lib/aws/record/hash_model.rb +50 -6
- data/lib/aws/record/model.rb +26 -0
- data/lib/aws/record/validator.rb +1 -1
- data/lib/aws/redshift/client.rb +186 -53
- data/lib/aws/route_53/client.rb +6 -0
- data/lib/aws/route_53/hosted_zone.rb +1 -1
- data/lib/aws/route_53/resource_record_set.rb +3 -3
- data/lib/aws/s3/client.rb +4 -1
- data/lib/aws/s3/presigned_post.rb +18 -21
- data/lib/aws/simple_db/client.rb +6 -0
- data/lib/aws/simple_email_service/client.rb +6 -0
- data/lib/aws/simple_email_service/identity.rb +1 -1
- data/lib/aws/simple_workflow/client.rb +24 -18
- data/lib/aws/sns/client.rb +6 -0
- data/lib/aws/sqs/client.rb +21 -15
- data/lib/aws/storage_gateway/client.rb +6 -0
- data/lib/aws/sts/client.rb +57 -38
- data/lib/aws/support/client.rb +6 -0
- data/lib/aws/version.rb +1 -1
- metadata +6 -4
data/lib/aws/route_53/client.rb
CHANGED
@@ -17,9 +17,15 @@ module AWS
|
|
17
17
|
# Client class for Route53.
|
18
18
|
class Client < Core::RESTXMLClient
|
19
19
|
|
20
|
+
API_VERSION = '2012-12-12'
|
21
|
+
|
20
22
|
# @api private
|
21
23
|
CACHEABLE_REQUESTS = Set[]
|
22
24
|
|
25
|
+
end
|
26
|
+
|
27
|
+
class Client::V20121212 < Client
|
28
|
+
|
23
29
|
# client methods #
|
24
30
|
|
25
31
|
# @!method change_resource_record_sets(options = {})
|
@@ -211,9 +211,7 @@ module AWS
|
|
211
211
|
DeleteRequest.new(options[:name], options[:type], options)
|
212
212
|
end
|
213
213
|
|
214
|
-
|
215
|
-
private
|
216
|
-
|
214
|
+
protected
|
217
215
|
|
218
216
|
def resource_identifiers
|
219
217
|
[[:name, name], [:type, type], [:set_identifier, set_identifier]]
|
@@ -229,6 +227,8 @@ module AWS
|
|
229
227
|
client.list_resource_record_sets(options)
|
230
228
|
end
|
231
229
|
|
230
|
+
private
|
231
|
+
|
232
232
|
# Format a hash of options that can be used to initialize a change
|
233
233
|
# request.
|
234
234
|
# @return [Hash]
|
data/lib/aws/s3/client.rb
CHANGED
@@ -181,7 +181,8 @@ module AWS
|
|
181
181
|
end
|
182
182
|
end
|
183
183
|
|
184
|
-
|
184
|
+
rules = options[:routing_rules]
|
185
|
+
if rules.is_a?(Array) && !rules.empty?
|
185
186
|
xml.RoutingRules do
|
186
187
|
rules.each do |rule|
|
187
188
|
xml.RoutingRule do
|
@@ -1724,5 +1725,7 @@ module AWS
|
|
1724
1725
|
|
1725
1726
|
end
|
1726
1727
|
|
1728
|
+
class Client::V20060301 < Client; end
|
1729
|
+
|
1727
1730
|
end
|
1728
1731
|
end
|
@@ -74,18 +74,6 @@ module AWS
|
|
74
74
|
# upload. By default any size object may be uploaded.
|
75
75
|
attr_reader :content_length
|
76
76
|
|
77
|
-
# @api private
|
78
|
-
SPECIAL_FIELDS = [:cache_control,
|
79
|
-
:content_type,
|
80
|
-
:content_disposition,
|
81
|
-
:content_encoding,
|
82
|
-
:expires_header,
|
83
|
-
:acl,
|
84
|
-
:server_side_encryption,
|
85
|
-
:success_action_redirect,
|
86
|
-
:success_action_status,
|
87
|
-
:filename]
|
88
|
-
|
89
77
|
# @api private
|
90
78
|
attr_reader :conditions
|
91
79
|
|
@@ -99,6 +87,16 @@ module AWS
|
|
99
87
|
# the signature will expire an hour after it is generated.
|
100
88
|
attr_reader :expires
|
101
89
|
|
90
|
+
# @api private
|
91
|
+
SPECIAL_FIELDS = [:key,
|
92
|
+
:policy,
|
93
|
+
:signature,
|
94
|
+
:expires,
|
95
|
+
:metadata,
|
96
|
+
:content_length,
|
97
|
+
:conditions,
|
98
|
+
:ignore]
|
99
|
+
|
102
100
|
# Creates a new presigned post object.
|
103
101
|
#
|
104
102
|
# @param [Bucket] bucket The bucket to which data can be uploaded
|
@@ -200,8 +198,9 @@ module AWS
|
|
200
198
|
@key = opts[:key]
|
201
199
|
@secure = (opts[:secure] != false)
|
202
200
|
@fields = {}
|
203
|
-
|
204
|
-
|
201
|
+
# TODO normalize all values to @fields
|
202
|
+
opts.each do |opt_key, opt_val|
|
203
|
+
@fields[opt_key] = opt_val unless SPECIAL_FIELDS.include? opt_key
|
205
204
|
end
|
206
205
|
@metadata = opts[:metadata] || {}
|
207
206
|
@content_length = range_value(opts[:content_length])
|
@@ -290,7 +289,8 @@ module AWS
|
|
290
289
|
# presigned_post.where(:acl).starts_with("bucket-owner")
|
291
290
|
#
|
292
291
|
# @param [Symbol] field The field for which a condition should
|
293
|
-
# be added.
|
292
|
+
# be added. In addition to any arbitrary values you have set,
|
293
|
+
# the following values are also permitted:
|
294
294
|
#
|
295
295
|
# * `:key`
|
296
296
|
# * `:content_length`
|
@@ -306,9 +306,6 @@ module AWS
|
|
306
306
|
# @return [ConditionBuilder] An object that allows you to
|
307
307
|
# specify a condition on the field.
|
308
308
|
def where(field)
|
309
|
-
raise ArgumentError.new("unrecognized field name #{field}") unless
|
310
|
-
[:key, :content_length, *SPECIAL_FIELDS].include?(field) or
|
311
|
-
field =~ /^x-amz-meta-/
|
312
309
|
ConditionBuilder.new(self, field)
|
313
310
|
end
|
314
311
|
|
@@ -359,7 +356,6 @@ module AWS
|
|
359
356
|
end
|
360
357
|
|
361
358
|
fields.merge(optional_fields)
|
362
|
-
|
363
359
|
end
|
364
360
|
|
365
361
|
# @api private
|
@@ -439,8 +435,7 @@ module AWS
|
|
439
435
|
# @api private
|
440
436
|
private
|
441
437
|
def optional_fields
|
442
|
-
fields = (
|
443
|
-
@fields.keys).inject({}) do |fields, option_name|
|
438
|
+
fields = @fields.keys.inject({}) do |fields, option_name|
|
444
439
|
fields[field_name(option_name)] =
|
445
440
|
field_value(option_name)
|
446
441
|
fields
|
@@ -461,6 +456,8 @@ module AWS
|
|
461
456
|
"Expires"
|
462
457
|
when :server_side_encryption
|
463
458
|
"x-amz-server-side-encryption"
|
459
|
+
when :key, "Key", :policy, "Policy"
|
460
|
+
option_name.to_s.downcase
|
464
461
|
when :acl, :success_action_redirect, :success_action_status
|
465
462
|
option_name.to_s
|
466
463
|
else
|
data/lib/aws/simple_db/client.rb
CHANGED
@@ -17,6 +17,8 @@ module AWS
|
|
17
17
|
# Client class for Amazon SimpleDB.
|
18
18
|
class Client < Core::QueryClient
|
19
19
|
|
20
|
+
API_VERSION = '2009-04-15'
|
21
|
+
|
20
22
|
# @api private
|
21
23
|
REGION_US_E1 = 'sdb.amazonaws.com'
|
22
24
|
|
@@ -37,6 +39,10 @@ module AWS
|
|
37
39
|
:select,
|
38
40
|
]
|
39
41
|
|
42
|
+
end
|
43
|
+
|
44
|
+
class Client::V20090415 < Client
|
45
|
+
|
40
46
|
# @param [String] name
|
41
47
|
# @return [Boolean] Returns true if the given name is a valid
|
42
48
|
# Amazon SimpleDB domain name.
|
@@ -17,11 +17,17 @@ module AWS
|
|
17
17
|
# Client class for Amazon Simple E-mail Service (SES).
|
18
18
|
class Client < Core::QueryClient
|
19
19
|
|
20
|
+
API_VERSION = '2010-12-01'
|
21
|
+
|
20
22
|
REGION_US_E1 = 'email.us-east-1.amazonaws.com'
|
21
23
|
|
22
24
|
# @api private
|
23
25
|
CACHEABLE_REQUESTS = Set[]
|
24
26
|
|
27
|
+
end
|
28
|
+
|
29
|
+
class Client::V20101201 < Client
|
30
|
+
|
25
31
|
# client methods #
|
26
32
|
|
27
33
|
# @!method delete_identity(options = {})
|
@@ -17,6 +17,8 @@ module AWS
|
|
17
17
|
# Client class for Amazon Simple Workflow Service (SWF).
|
18
18
|
class Client < Core::JSONClient
|
19
19
|
|
20
|
+
API_VERSION = '2012-01-25'
|
21
|
+
|
20
22
|
# @api private
|
21
23
|
CACHEABLE_REQUESTS = Set[
|
22
24
|
:count_pending_activity_tasks,
|
@@ -36,6 +38,28 @@ module AWS
|
|
36
38
|
:list_workfow_types,
|
37
39
|
]
|
38
40
|
|
41
|
+
protected
|
42
|
+
|
43
|
+
def cacheable_request? name, options
|
44
|
+
if name == :poll_for_decision_task
|
45
|
+
options.keys.include?(:next_page_token)
|
46
|
+
else
|
47
|
+
self.class::CACHEABLE_REQUESTS.include?(name)
|
48
|
+
end
|
49
|
+
end
|
50
|
+
|
51
|
+
def build_request *args
|
52
|
+
request = super(*args)
|
53
|
+
if request.headers['x-amz-target'] =~ /PollFor(Decision|Activity)Task/
|
54
|
+
request.read_timeout = 90
|
55
|
+
end
|
56
|
+
request
|
57
|
+
end
|
58
|
+
|
59
|
+
end
|
60
|
+
|
61
|
+
class Client::V20120125 < Client
|
62
|
+
|
39
63
|
# client methods #
|
40
64
|
|
41
65
|
# @!method count_closed_workflow_executions(options = {})
|
@@ -1286,24 +1310,6 @@ module AWS
|
|
1286
1310
|
|
1287
1311
|
define_client_methods('2012-01-25')
|
1288
1312
|
|
1289
|
-
protected
|
1290
|
-
|
1291
|
-
def cacheable_request? name, options
|
1292
|
-
if name == :poll_for_decision_task
|
1293
|
-
options.keys.include?(:next_page_token)
|
1294
|
-
else
|
1295
|
-
self.class::CACHEABLE_REQUESTS.include?(name)
|
1296
|
-
end
|
1297
|
-
end
|
1298
|
-
|
1299
|
-
def build_request *args
|
1300
|
-
request = super(*args)
|
1301
|
-
if request.headers['x-amz-target'] =~ /PollFor(Decision|Activity)Task/
|
1302
|
-
request.read_timeout = 90
|
1303
|
-
end
|
1304
|
-
request
|
1305
|
-
end
|
1306
|
-
|
1307
1313
|
end
|
1308
1314
|
end
|
1309
1315
|
end
|
data/lib/aws/sns/client.rb
CHANGED
@@ -17,9 +17,15 @@ module AWS
|
|
17
17
|
# Client class for Amazon Simple Notifications Service (SNS).
|
18
18
|
class Client < Core::QueryClient
|
19
19
|
|
20
|
+
API_VERSION = '2010-03-31'
|
21
|
+
|
20
22
|
# @api private
|
21
23
|
CACHEABLE_REQUESTS = Set[]
|
22
24
|
|
25
|
+
end
|
26
|
+
|
27
|
+
class Client::V20100331 < Client
|
28
|
+
|
23
29
|
# client methods #
|
24
30
|
|
25
31
|
# @!method add_permission(options = {})
|
data/lib/aws/sqs/client.rb
CHANGED
@@ -17,9 +17,30 @@ module AWS
|
|
17
17
|
# Client class for Amazon Simple Queue Service (SQS).
|
18
18
|
class Client < Core::QueryClient
|
19
19
|
|
20
|
+
API_VERSION = '2012-11-05'
|
21
|
+
|
20
22
|
# @api private
|
21
23
|
CACHEABLE_REQUESTS = Set[]
|
22
24
|
|
25
|
+
private
|
26
|
+
|
27
|
+
def build_request *args
|
28
|
+
request = super(*args)
|
29
|
+
if url_param = request.params.find { |p| p.name == "QueueUrl" }
|
30
|
+
url = URI.parse(url_param.value)
|
31
|
+
request.host = url.host
|
32
|
+
request.uri = url.request_uri
|
33
|
+
if matches = request.host.match(/^sqs\.(.+?)\./)
|
34
|
+
request.region = matches[1]
|
35
|
+
end
|
36
|
+
end
|
37
|
+
request
|
38
|
+
end
|
39
|
+
|
40
|
+
end
|
41
|
+
|
42
|
+
class Client::V20121105 < Client
|
43
|
+
|
23
44
|
# client methods #
|
24
45
|
|
25
46
|
# @!method add_permission(options = {})
|
@@ -277,21 +298,6 @@ module AWS
|
|
277
298
|
|
278
299
|
define_client_methods('2012-11-05')
|
279
300
|
|
280
|
-
private
|
281
|
-
|
282
|
-
def build_request *args
|
283
|
-
request = super(*args)
|
284
|
-
if url_param = request.params.find { |p| p.name == "QueueUrl" }
|
285
|
-
url = URI.parse(url_param.value)
|
286
|
-
request.host = url.host
|
287
|
-
request.uri = url.request_uri
|
288
|
-
if matches = request.host.match(/^sqs\.(.+?)\./)
|
289
|
-
request.region = matches[1]
|
290
|
-
end
|
291
|
-
end
|
292
|
-
request
|
293
|
-
end
|
294
|
-
|
295
301
|
end
|
296
302
|
end
|
297
303
|
end
|
@@ -17,9 +17,15 @@ module AWS
|
|
17
17
|
# Client class for AWS Storage Gateway.
|
18
18
|
class Client < Core::JSONClient
|
19
19
|
|
20
|
+
API_VERSION = '2012-06-30'
|
21
|
+
|
20
22
|
# @api private
|
21
23
|
CACHEABLE_REQUESTS = Set[]
|
22
24
|
|
25
|
+
end
|
26
|
+
|
27
|
+
class Client::V20120630 < Client
|
28
|
+
|
23
29
|
# client methods #
|
24
30
|
|
25
31
|
# @!method activate_gateway(options = {})
|
data/lib/aws/sts/client.rb
CHANGED
@@ -17,6 +17,8 @@ module AWS
|
|
17
17
|
# Client class for AWS Security Token Service (STS).
|
18
18
|
class Client < Core::QueryClient
|
19
19
|
|
20
|
+
API_VERSION = '2011-06-15'
|
21
|
+
|
20
22
|
REGION_US_E1 = 'sts.amazonaws.com'
|
21
23
|
|
22
24
|
# @api private
|
@@ -31,6 +33,10 @@ module AWS
|
|
31
33
|
end
|
32
34
|
end
|
33
35
|
|
36
|
+
end
|
37
|
+
|
38
|
+
class Client::V20110615 < Client
|
39
|
+
|
34
40
|
# client methods #
|
35
41
|
|
36
42
|
# @!method assume_role(options = {})
|
@@ -45,19 +51,19 @@ module AWS
|
|
45
51
|
# * `:policy` - (String) A supplemental policy that is associated with
|
46
52
|
# the temporary security credentials from the AssumeRole call. The
|
47
53
|
# resulting permissions of the temporary security credentials are an
|
48
|
-
# intersection of this policy and the policy that is
|
49
|
-
# the role. Use this policy to further restrict the
|
50
|
-
# the temporary security credentials.
|
54
|
+
# intersection of this policy and the access policy that is
|
55
|
+
# associated with the role. Use this policy to further restrict the
|
56
|
+
# permissions of the temporary security credentials.
|
51
57
|
# * `:duration_seconds` - (Integer) The duration, in seconds, of the
|
52
58
|
# role session. The value can range from 900 seconds (15 minutes) to
|
53
|
-
# 3600 seconds (1 hour). By default, the value is set to 3600
|
54
|
-
#
|
55
|
-
# * `:external_id` - (String) A unique identifier that is
|
56
|
-
#
|
57
|
-
# third party can assume, they should instruct their
|
58
|
-
# create a role with the external ID that
|
59
|
-
# party. Each time the third party assumes the role, they
|
60
|
-
# the customer's
|
59
|
+
# 3600 seconds (1 hour). By default, the value is set to 3600
|
60
|
+
# seconds.
|
61
|
+
# * `:external_id` - (String) A unique identifier that is used by third
|
62
|
+
# parties to assume a role in their customers' accounts. For each
|
63
|
+
# role that the third party can assume, they should instruct their
|
64
|
+
# customers to create a role with the external ID that the third
|
65
|
+
# party generated. Each time the third party assumes the role, they
|
66
|
+
# must pass the customer's external ID. The external ID is useful in
|
61
67
|
# order to help third parties bind a role to the customer who created
|
62
68
|
# it. For more information about the external ID, see About the
|
63
69
|
# External ID in Using Temporary Security Credentials.
|
@@ -89,27 +95,27 @@ module AWS
|
|
89
95
|
# included as part of the ARN and assumed role ID in the
|
90
96
|
# AssumedRoleUser response element.
|
91
97
|
# * `:web_identity_token` - *required* - (String) The OAuth 2.0 access
|
92
|
-
# token or OpenID Connect
|
98
|
+
# token or OpenID Connect ID token that is provided by the identity
|
93
99
|
# provider. Your application must get this token by authenticating
|
94
100
|
# the user who is using your application with a web identity provider
|
95
101
|
# before the application makes an AssumeRoleWithWebIdentity call.
|
96
102
|
# * `:provider_id` - (String) The fully-qualified host component of the
|
97
|
-
# domain name of the identity provider.
|
98
|
-
#
|
99
|
-
#
|
100
|
-
#
|
101
|
-
#
|
103
|
+
# domain name of the identity provider. Specify this value only for
|
104
|
+
# OAuth access tokens. Do not specify this value for OpenID Connect
|
105
|
+
# ID tokens, such as accounts.google.com. Do not include URL schemes
|
106
|
+
# and port numbers. Currently, www.amazon.com and graph.facebook.com
|
107
|
+
# are supported.
|
102
108
|
# * `:policy` - (String) A supplemental policy that is associated with
|
103
109
|
# the temporary security credentials from the
|
104
110
|
# AssumeRoleWithWebIdentity call. The resulting permissions of the
|
105
111
|
# temporary security credentials are an intersection of this policy
|
106
|
-
# and the policy that is associated with the role. Use this
|
107
|
-
# further restrict the permissions of the temporary
|
108
|
-
# credentials.
|
112
|
+
# and the access policy that is associated with the role. Use this
|
113
|
+
# policy to further restrict the permissions of the temporary
|
114
|
+
# security credentials.
|
109
115
|
# * `:duration_seconds` - (Integer) The duration, in seconds, of the
|
110
116
|
# role session. The value can range from 900 seconds (15 minutes) to
|
111
|
-
# 3600 seconds (1 hour). By default, the value is set to 3600
|
112
|
-
#
|
117
|
+
# 3600 seconds (1 hour). By default, the value is set to 3600
|
118
|
+
# seconds.
|
113
119
|
# @return [Core::Response]
|
114
120
|
# The #data method of the response object returns
|
115
121
|
# a hash with the following structure:
|
@@ -125,6 +131,18 @@ module AWS
|
|
125
131
|
# * `:arn` - (String)
|
126
132
|
# * `:packed_policy_size` - (Integer)
|
127
133
|
|
134
|
+
# @!method decode_authorization_message(options = {})
|
135
|
+
# Calls the DecodeAuthorizationMessage API operation.
|
136
|
+
# @param [Hash] options
|
137
|
+
#
|
138
|
+
# * `:encoded_message` - *required* - (String) The encoded message that
|
139
|
+
# was returned with the response.
|
140
|
+
# @return [Core::Response]
|
141
|
+
# The #data method of the response object returns
|
142
|
+
# a hash with the following structure:
|
143
|
+
#
|
144
|
+
# * `:decoded_message` - (String)
|
145
|
+
|
128
146
|
# @!method get_federation_token(options = {})
|
129
147
|
# Calls the GetFederationToken API operation.
|
130
148
|
# @param [Hash] options
|
@@ -144,11 +162,11 @@ module AWS
|
|
144
162
|
# such as in an Amazon S3 bucket policy.
|
145
163
|
# * `:duration_seconds` - (Integer) The duration, in seconds, that the
|
146
164
|
# session should last. Acceptable durations for federation sessions
|
147
|
-
# range from
|
148
|
-
# hours) as the default. Sessions for AWS
|
149
|
-
# restricted to a maximum of
|
150
|
-
# longer than one hour, the session for AWS
|
151
|
-
# to one hour.
|
165
|
+
# range from 900 seconds (15 minutes) to 129600 seconds (36 hours),
|
166
|
+
# with 43200 seconds (12 hours) as the default. Sessions for AWS
|
167
|
+
# account owners are restricted to a maximum of 3600 seconds (one
|
168
|
+
# hour). If the duration is longer than one hour, the session for AWS
|
169
|
+
# account owners defaults to one hour.
|
152
170
|
# @return [Core::Response]
|
153
171
|
# The #data method of the response object returns
|
154
172
|
# a hash with the following structure:
|
@@ -169,11 +187,11 @@ module AWS
|
|
169
187
|
#
|
170
188
|
# * `:duration_seconds` - (Integer) The duration, in seconds, that the
|
171
189
|
# credentials should remain valid. Acceptable durations for IAM user
|
172
|
-
# sessions range from
|
173
|
-
#
|
174
|
-
# are restricted to a maximum of
|
175
|
-
# longer than one hour, the session for AWS
|
176
|
-
# to one hour.
|
190
|
+
# sessions range from 900 seconds (15 minutes) to 129600 seconds (36
|
191
|
+
# hours), with 43200 seconds (12 hours) as the default. Sessions for
|
192
|
+
# AWS account owners are restricted to a maximum of 3600 seconds (one
|
193
|
+
# hour). If the duration is longer than one hour, the session for AWS
|
194
|
+
# account owners defaults to one hour.
|
177
195
|
# * `:serial_number` - (String) The identification number of the MFA
|
178
196
|
# device that is associated with the IAM user who is making the
|
179
197
|
# GetSessionToken call. Specify this value if the IAM user has a
|
@@ -183,12 +201,13 @@ module AWS
|
|
183
201
|
# arn:aws:iam::123456789012:mfa/user). You can find the device for an
|
184
202
|
# IAM user by going to the AWS Management Console and viewing the
|
185
203
|
# user's security credentials.
|
186
|
-
# * `:token_code` - (String) The value provided by the MFA device
|
187
|
-
# any policy requires the IAM user to submit an
|
188
|
-
# this value. If MFA authentication is required,
|
189
|
-
# not provide a code when requesting a set of
|
190
|
-
# credentials, the user will receive an "access
|
191
|
-
# requesting resources that require MFA
|
204
|
+
# * `:token_code` - (String) The value provided by the MFA device, if
|
205
|
+
# MFA is required. If any policy requires the IAM user to submit an
|
206
|
+
# MFA code, specify this value. If MFA authentication is required,
|
207
|
+
# and the user does not provide a code when requesting a set of
|
208
|
+
# temporary security credentials, the user will receive an "access
|
209
|
+
# denied" response when requesting resources that require MFA
|
210
|
+
# authentication.
|
192
211
|
# @return [Core::Response]
|
193
212
|
# The #data method of the response object returns
|
194
213
|
# a hash with the following structure:
|