mirror of
https://github.com/VictoriaMetrics/VictoriaMetrics.git
synced 2024-12-22 08:26:19 +01:00
39 lines
2.5 KiB
Go
39 lines
2.5 KiB
Go
// Code generated by smithy-go-codegen DO NOT EDIT.
|
||
|
||
// Package ssooidc provides the API client, operations, and parameter types for
|
||
// AWS SSO OIDC.
|
||
//
|
||
// IAM Identity Center OpenID Connect (OIDC) is a web service that enables a
|
||
// client (such as CLI or a native application) to register with IAM Identity
|
||
// Center. The service also enables the client to fetch the user’s access token
|
||
// upon successful authentication and authorization with IAM Identity Center. IAM
|
||
// Identity Center uses the sso and identitystore API namespaces. Considerations
|
||
// for Using This Guide Before you begin using this guide, we recommend that you
|
||
// first review the following important information about how the IAM Identity
|
||
// Center OIDC service works.
|
||
// - The IAM Identity Center OIDC service currently implements only the portions
|
||
// of the OAuth 2.0 Device Authorization Grant standard (
|
||
// https://tools.ietf.org/html/rfc8628 (https://tools.ietf.org/html/rfc8628) )
|
||
// that are necessary to enable single sign-on authentication with the CLI.
|
||
// - With older versions of the CLI, the service only emits OIDC access tokens,
|
||
// so to obtain a new token, users must explicitly re-authenticate. To access the
|
||
// OIDC flow that supports token refresh and doesn’t require re-authentication,
|
||
// update to the latest CLI version (1.27.10 for CLI V1 and 2.9.0 for CLI V2) with
|
||
// support for OIDC token refresh and configurable IAM Identity Center session
|
||
// durations. For more information, see Configure Amazon Web Services access
|
||
// portal session duration (https://docs.aws.amazon.com/singlesignon/latest/userguide/configure-user-session.html)
|
||
// .
|
||
// - The access tokens provided by this service grant access to all Amazon Web
|
||
// Services account entitlements assigned to an IAM Identity Center user, not just
|
||
// a particular application.
|
||
// - The documentation in this guide does not describe the mechanism to convert
|
||
// the access token into Amazon Web Services Auth (“sigv4”) credentials for use
|
||
// with IAM-protected Amazon Web Services service endpoints. For more information,
|
||
// see GetRoleCredentials (https://docs.aws.amazon.com/singlesignon/latest/PortalAPIReference/API_GetRoleCredentials.html)
|
||
// in the IAM Identity Center Portal API Reference Guide.
|
||
//
|
||
// For general information about IAM Identity Center, see What is IAM Identity
|
||
// Center? (https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html)
|
||
// in the IAM Identity Center User Guide.
|
||
package ssooidc
|