src

Go monorepo.
git clone git://code.dwrz.net/src
Log | Files | Refs

doc.go (2556B)

      1 // Code generated by smithy-go-codegen DO NOT EDIT.
      2 
      3 // Package ssooidc provides the API client, operations, and parameter types for
      4 // AWS SSO OIDC.
      5 //
      6 // IAM Identity Center OpenID Connect (OIDC) is a web service that enables a
      7 // client (such as CLI or a native application) to register with IAM Identity
      8 // Center. The service also enables the client to fetch the user’s access token
      9 // upon successful authentication and authorization with IAM Identity Center. IAM
     10 // Identity Center uses the sso and identitystore API namespaces. Considerations
     11 // for Using This Guide Before you begin using this guide, we recommend that you
     12 // first review the following important information about how the IAM Identity
     13 // Center OIDC service works.
     14 //   - The IAM Identity Center OIDC service currently implements only the portions
     15 //     of the OAuth 2.0 Device Authorization Grant standard (
     16 //     https://tools.ietf.org/html/rfc8628 (https://tools.ietf.org/html/rfc8628) )
     17 //     that are necessary to enable single sign-on authentication with the CLI.
     18 //   - With older versions of the CLI, the service only emits OIDC access tokens,
     19 //     so to obtain a new token, users must explicitly re-authenticate. To access the
     20 //     OIDC flow that supports token refresh and doesn’t require re-authentication,
     21 //     update to the latest CLI version (1.27.10 for CLI V1 and 2.9.0 for CLI V2) with
     22 //     support for OIDC token refresh and configurable IAM Identity Center session
     23 //     durations. For more information, see Configure Amazon Web Services access
     24 //     portal session duration  (https://docs.aws.amazon.com/singlesignon/latest/userguide/configure-user-session.html)
     25 //     .
     26 //   - The access tokens provided by this service grant access to all Amazon Web
     27 //     Services account entitlements assigned to an IAM Identity Center user, not just
     28 //     a particular application.
     29 //   - The documentation in this guide does not describe the mechanism to convert
     30 //     the access token into Amazon Web Services Auth (“sigv4”) credentials for use
     31 //     with IAM-protected Amazon Web Services service endpoints. For more information,
     32 //     see GetRoleCredentials (https://docs.aws.amazon.com/singlesignon/latest/PortalAPIReference/API_GetRoleCredentials.html)
     33 //     in the IAM Identity Center Portal API Reference Guide.
     34 //
     35 // For general information about IAM Identity Center, see What is IAM Identity
     36 // Center? (https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html)
     37 // in the IAM Identity Center User Guide.
     38 package ssooidc