doc.go (2455B)
1 // Code generated by smithy-go-codegen DO NOT EDIT. 2 3 // Package ssooidc provides the API client, operations, and parameter types for AWS 4 // SSO OIDC. 5 // 6 // AWS IAM Identity Center (successor to AWS Single Sign-On) OpenID Connect (OIDC) 7 // is a web service that enables a client (such as AWS CLI or a native application) 8 // to register with IAM Identity Center. The service also enables the client to 9 // fetch the user’s access token upon successful authentication and authorization 10 // with IAM Identity Center. Although AWS Single Sign-On was renamed, the sso and 11 // identitystore API namespaces will continue to retain their original name for 12 // backward compatibility purposes. For more information, see IAM Identity Center 13 // rename 14 // (https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html#renamed). 15 // Considerations for Using This Guide Before you begin using this guide, we 16 // recommend that you first review the following important information about how 17 // the IAM Identity Center OIDC service works. 18 // 19 // * The IAM Identity Center OIDC 20 // service currently implements only the portions of the OAuth 2.0 Device 21 // Authorization Grant standard (https://tools.ietf.org/html/rfc8628 22 // (https://tools.ietf.org/html/rfc8628)) that are necessary to enable single 23 // sign-on authentication with the AWS CLI. Support for other OIDC flows frequently 24 // needed for native applications, such as Authorization Code Flow (+ PKCE), will 25 // be addressed in future releases. 26 // 27 // * The service emits only OIDC access tokens, 28 // such that obtaining a new token (For example, token refresh) requires explicit 29 // user re-authentication. 30 // 31 // * The access tokens provided by this service grant 32 // access to all AWS account entitlements assigned to an IAM Identity Center user, 33 // not just a particular application. 34 // 35 // * The documentation in this guide does not 36 // describe the mechanism to convert the access token into AWS Auth (“sigv4”) 37 // credentials for use with IAM-protected AWS service endpoints. For more 38 // information, see GetRoleCredentials 39 // (https://docs.aws.amazon.com/singlesignon/latest/PortalAPIReference/API_GetRoleCredentials.html) 40 // in the IAM Identity Center Portal API Reference Guide. 41 // 42 // For general information 43 // about IAM Identity Center, see What is IAM Identity Center? 44 // (https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html) in the 45 // IAM Identity Center User Guide. 46 package ssooidc