Interface for accessing AmazonSecurityTokenService. AWS Security Token Service

This is the AWS Security Token Service API Reference . The AWS Security Token Service is a web service that enables you to request temporary, limited-privilege credentials for AWS Identity and Access Management (IAM) users or for users that you authenticate (federated users). This guide provides descriptions of the AWS Security Token Service API as well as links to related content in Using IAM.

For more detailed information about using this service, go to Granting Temporary Access to Your AWS Resources in Using IAM .

For specific information about setting up signatures and authorization through the API, go to Making Query Requests in Using IAM .

If you're new to AWS and need additional technical information about a specific AWS product, you can find the product's technical documentation at http://aws.amazon.com/documentation/.

We will refer to Amazon Identity and Access Management using the abbreviated form IAM. All copyrights and legal protections still apply.

Namespace: Amazon.SecurityToken
Assembly: AWSSDK (in AWSSDK.dll) Version: 1.4.10.0 (1.4.10.0)

Syntax

         
 C#  Visual Basic  Visual C++ 
public interface AmazonSecurityTokenService : IDisposable
Public Interface AmazonSecurityTokenService _
	Inherits IDisposable
public interface class AmazonSecurityTokenService : IDisposable

Members

      
 All Members  Methods  
 Public

 Protected
 Instance

 Static 
 Declared

 Inherited
 XNA Framework Only 

 .NET Compact Framework Only 

 MemberDescription
BeginGetFederationToken(GetFederationTokenRequest, AsyncCallback, Object)
Initiates the asynchronous execution of the GetFederationToken operation.
BeginGetSessionToken(GetSessionTokenRequest, AsyncCallback, Object)
Initiates the asynchronous execution of the GetSessionToken operation.
Dispose()()()()
Performs application-defined tasks associated with freeing, releasing, or resetting unmanaged resources.
(Inherited from IDisposable.)
EndGetFederationToken(IAsyncResult)
Finishes the asynchronous execution of the GetFederationToken operation.
EndGetSessionToken(IAsyncResult)
Finishes the asynchronous execution of the GetSessionToken operation.
GetFederationToken(GetFederationTokenRequest)

The GetFederationToken action returns a set of temporary credentials for a federated user with the user name and policy specified in the request. The credentials consist of an Access Key ID, a Secret Access Key, and a security token. The credentials are valid for the specified duration, between one and 36 hours.

The federated user who holds these credentials has any permissions allowed by the intersection of the specified policy and any resource or user policies that apply to the caller of the GetFederationToken API, and any resource policies that apply to the federated user's Amazon Resource Name (ARN). For more information about how token permissions work, see Controlling Permissions in Temporary Credentials in Using AWS Identity and Access Management . For information about using GetFederationToken to create temporary credentials, see Creating Temporary Credentials to Enable Access for Federated Users in Using AWS Identity and Access Management .

GetSessionToken()()()()

The GetSessionToken action returns a set of temporary credentials for an AWS account or IAM user. The credentials consist of an Access Key ID, a Secret Access Key, and a security token. These credentials are valid for the specified duration only. The session duration for IAM users can be between one and 36 hours, with a default of 12 hours. The session duration for AWS account owners is restricted to one hour.

For more information about using GetSessionToken to create temporary credentials, go to Creating Temporary Credentials to Enable Access for IAM Users in Using IAM .

GetSessionToken(GetSessionTokenRequest)

The GetSessionToken action returns a set of temporary credentials for an AWS account or IAM user. The credentials consist of an Access Key ID, a Secret Access Key, and a security token. These credentials are valid for the specified duration only. The session duration for IAM users can be between one and 36 hours, with a default of 12 hours. The session duration for AWS account owners is restricted to one hour.

For more information about using GetSessionToken to create temporary credentials, go to Creating Temporary Credentials to Enable Access for IAM Users in Using IAM .

See Also