code.dwrz.net

Go monorepo.
Log | Files | Refs

doc.go (2455B)

      1 // Code generated by smithy-go-codegen DO NOT EDIT.
      2 
      3 // Package ssooidc provides the API client, operations, and parameter types for AWS
      4 // SSO OIDC.
      5 //
      6 // AWS IAM Identity Center (successor to AWS Single Sign-On) OpenID Connect (OIDC)
      7 // is a web service that enables a client (such as AWS CLI or a native application)
      8 // to register with IAM Identity Center. The service also enables the client to
      9 // fetch the user’s access token upon successful authentication and authorization
     10 // with IAM Identity Center. Although AWS Single Sign-On was renamed, the sso and
     11 // identitystore API namespaces will continue to retain their original name for
     12 // backward compatibility purposes. For more information, see IAM Identity Center
     13 // rename
     14 // (https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html#renamed).
     15 // Considerations for Using This Guide Before you begin using this guide, we
     16 // recommend that you first review the following important information about how
     17 // the IAM Identity Center OIDC service works.
     18 //
     19 // * The IAM Identity Center OIDC
     20 // service currently implements only the portions of the OAuth 2.0 Device
     21 // Authorization Grant standard (https://tools.ietf.org/html/rfc8628
     22 // (https://tools.ietf.org/html/rfc8628)) that are necessary to enable single
     23 // sign-on authentication with the AWS CLI. Support for other OIDC flows frequently
     24 // needed for native applications, such as Authorization Code Flow (+ PKCE), will
     25 // be addressed in future releases.
     26 //
     27 // * The service emits only OIDC access tokens,
     28 // such that obtaining a new token (For example, token refresh) requires explicit
     29 // user re-authentication.
     30 //
     31 // * The access tokens provided by this service grant
     32 // access to all AWS account entitlements assigned to an IAM Identity Center user,
     33 // not just a particular application.
     34 //
     35 // * The documentation in this guide does not
     36 // describe the mechanism to convert the access token into AWS Auth (“sigv4”)
     37 // credentials for use with IAM-protected AWS service endpoints. For more
     38 // information, see GetRoleCredentials
     39 // (https://docs.aws.amazon.com/singlesignon/latest/PortalAPIReference/API_GetRoleCredentials.html)
     40 // in the IAM Identity Center Portal API Reference Guide.
     41 //
     42 // For general information
     43 // about IAM Identity Center, see What is IAM Identity Center?
     44 // (https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html) in the
     45 // IAM Identity Center User Guide.
     46 package ssooidc