Struct aws_sdk_iam::Client

pub struct Client { /* private fields */ }

Client for AWS Identity and Access Management

Client for invoking operations on AWS Identity and Access Management. Each operation on AWS Identity and Access Management is a method on this this struct. .send() MUST be invoked on the generated operations to dispatch the request to the service.

Examples

Constructing a client and invoking an operation

    // create a shared configuration. This can be used & shared between multiple service clients.
    let shared_config = aws_config::load_from_env().await;
    let client = aws_sdk_iam::Client::new(&shared_config);
    // invoke an operation
    /* let rsp = client
        .<operation_name>().
        .<param>("some value")
        .send().await; */

Constructing a client with custom configuration

use aws_config::RetryConfig;
let shared_config = aws_config::load_from_env().await;
let config = aws_sdk_iam::config::Builder::from(&shared_config)
  .retry_config(RetryConfig::disabled())
  .build();
let client = aws_sdk_iam::Client::from_conf(config);

Implementations

impl Client

pub fn with_config(
    client: Client<DynConnector, DynMiddleware<DynConnector>>,
    conf: Config
) -> Self

Creates a client with the given service configuration.

pub fn conf(&self) -> &Config

Returns the client’s configuration.

impl Client

pub fn add_client_id_to_open_id_connect_provider(
    &self
) -> AddClientIDToOpenIDConnectProvider

Constructs a fluent builder for the AddClientIDToOpenIDConnectProvider operation.

• The fluent builder is configurable:
  • open_id_connect_provider_arn(impl Into<String>) / set_open_id_connect_provider_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM OpenID Connect (OIDC) provider resource to add the client ID to. You can get a list of OIDC provider ARNs by using the ListOpenIDConnectProviders operation.

  • client_id(impl Into<String>) / set_client_id(Option<String>):

    The client ID (also known as audience) to add to the IAM OpenID Connect provider resource.

• On success, responds with AddClientIdToOpenIdConnectProviderOutput
• On failure, responds with SdkError<AddClientIDToOpenIDConnectProviderError>

pub fn add_role_to_instance_profile(&self) -> AddRoleToInstanceProfile

Constructs a fluent builder for the AddRoleToInstanceProfile operation.

• The fluent builder is configurable:
  • instance_profile_name(impl Into<String>) / set_instance_profile_name(Option<String>):

    The name of the instance profile to update.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the role to add.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with AddRoleToInstanceProfileOutput
• On failure, responds with SdkError<AddRoleToInstanceProfileError>

pub fn add_user_to_group(&self) -> AddUserToGroup

Constructs a fluent builder for the AddUserToGroup operation.

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name of the group to update.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user to add.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with AddUserToGroupOutput
• On failure, responds with SdkError<AddUserToGroupError>

pub fn attach_group_policy(&self) -> AttachGroupPolicy

Constructs a fluent builder for the AttachGroupPolicy operation.

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name (friendly name, not ARN) of the group to attach the policy to.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy you want to attach.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

• On success, responds with AttachGroupPolicyOutput
• On failure, responds with SdkError<AttachGroupPolicyError>

pub fn attach_role_policy(&self) -> AttachRolePolicy

Constructs a fluent builder for the AttachRolePolicy operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name (friendly name, not ARN) of the role to attach the policy to.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy you want to attach.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

• On success, responds with AttachRolePolicyOutput
• On failure, responds with SdkError<AttachRolePolicyError>

pub fn attach_user_policy(&self) -> AttachUserPolicy

Constructs a fluent builder for the AttachUserPolicy operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name (friendly name, not ARN) of the IAM user to attach the policy to.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy you want to attach.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

• On success, responds with AttachUserPolicyOutput
• On failure, responds with SdkError<AttachUserPolicyError>

pub fn change_password(&self) -> ChangePassword

Constructs a fluent builder for the ChangePassword operation.

• The fluent builder is configurable:
  • old_password(impl Into<String>) / set_old_password(Option<String>):

    The IAM user’s current password.

  • new_password(impl Into<String>) / set_new_password(Option<String>):

    The new password. The new password must conform to the Amazon Web Services account’s password policy, if one exists.

    The regex pattern that is used to validate this parameter is a string of characters. That string can include almost any printable ASCII character from the space (\u0020) through the end of the ASCII character range (\u00FF). You can also include the tab (\u0009), line feed (\u000A), and carriage return (\u000D) characters. Any of these characters are valid in a password. However, many tools, such as the Amazon Web Services Management Console, might restrict the ability to type certain characters because they have special meaning within that tool.

• On success, responds with ChangePasswordOutput
• On failure, responds with SdkError<ChangePasswordError>

pub fn create_access_key(&self) -> CreateAccessKey

Constructs a fluent builder for the CreateAccessKey operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user that the new key will belong to.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with CreateAccessKeyOutput with field(s):
  • access_key(Option<AccessKey>):

    A structure with details about the access key.

• On failure, responds with SdkError<CreateAccessKeyError>

pub fn create_account_alias(&self) -> CreateAccountAlias

Constructs a fluent builder for the CreateAccountAlias operation.

• The fluent builder is configurable:
  • account_alias(impl Into<String>) / set_account_alias(Option<String>):

    The account alias to create.

    This parameter allows (through its regex pattern) a string of characters consisting of lowercase letters, digits, and dashes. You cannot start or finish with a dash, nor can you have two dashes in a row.

• On success, responds with CreateAccountAliasOutput
• On failure, responds with SdkError<CreateAccountAliasError>

pub fn create_group(&self) -> CreateGroup

Constructs a fluent builder for the CreateGroup operation.

• The fluent builder is configurable:
  • path(impl Into<String>) / set_path(Option<String>):

    The path to the group. For more information about paths, see IAM identifiers in the IAM User Guide.

    This parameter is optional. If it is not included, it defaults to a slash (/).

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name of the group to create. Do not include the path in this value.

    IAM user, group, role, and policy names must be unique within the account. Names are not distinguished by case. For example, you cannot create resources named both “MyResource” and “myresource”.

• On success, responds with CreateGroupOutput with field(s):
  • group(Option<Group>):

    A structure containing details about the new group.

• On failure, responds with SdkError<CreateGroupError>

pub fn create_instance_profile(&self) -> CreateInstanceProfile

Constructs a fluent builder for the CreateInstanceProfile operation.

• The fluent builder is configurable:
  • instance_profile_name(impl Into<String>) / set_instance_profile_name(Option<String>):

    The name of the instance profile to create.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • path(impl Into<String>) / set_path(Option<String>):

    The path to the instance profile. For more information about paths, see IAM Identifiers in the IAM User Guide.

    This parameter is optional. If it is not included, it defaults to a slash (/).

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    A list of tags that you want to attach to the newly created IAM instance profile. Each tag consists of a key name and an associated value. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

    If any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request fails and the resource is not created.

• On success, responds with CreateInstanceProfileOutput with field(s):
  • instance_profile(Option<InstanceProfile>):

    A structure containing details about the new instance profile.

• On failure, responds with SdkError<CreateInstanceProfileError>

pub fn create_login_profile(&self) -> CreateLoginProfile

Constructs a fluent builder for the CreateLoginProfile operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user to create a password for. The user must already exist.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • password(impl Into<String>) / set_password(Option<String>):

    The new password for the user.

    The regex pattern that is used to validate this parameter is a string of characters. That string can include almost any printable ASCII character from the space (\u0020) through the end of the ASCII character range (\u00FF). You can also include the tab (\u0009), line feed (\u000A), and carriage return (\u000D) characters. Any of these characters are valid in a password. However, many tools, such as the Amazon Web Services Management Console, might restrict the ability to type certain characters because they have special meaning within that tool.

  • password_reset_required(bool) / set_password_reset_required(bool):

    Specifies whether the user is required to set a new password on next sign-in.

• On success, responds with CreateLoginProfileOutput with field(s):
  • login_profile(Option<LoginProfile>):

    A structure containing the user name and password create date.

• On failure, responds with SdkError<CreateLoginProfileError>

pub fn create_open_id_connect_provider(&self) -> CreateOpenIDConnectProvider

Constructs a fluent builder for the CreateOpenIDConnectProvider operation.

• The fluent builder is configurable:
  • url(impl Into<String>) / set_url(Option<String>):

    The URL of the identity provider. The URL must begin with https:// and should correspond to the iss claim in the provider’s OpenID Connect ID tokens. Per the OIDC standard, path components are allowed but query parameters are not. Typically the URL consists of only a hostname, like https://server.example.org or https://example.com. The URL should not contain a port number.

    You cannot register the same provider multiple times in a single Amazon Web Services account. If you try to submit a URL that has already been used for an OpenID Connect provider in the Amazon Web Services account, you will get an error.

  • client_id_list(Vec<String>) / set_client_id_list(Option<Vec<String>>):

    Provides a list of client IDs, also known as audiences. When a mobile or web app registers with an OpenID Connect provider, they establish a value that identifies the application. This is the value that’s sent as the client_id parameter on OAuth requests.

    You can register multiple client IDs with the same provider. For example, you might have multiple applications that use the same OIDC provider. You cannot register more than 100 client IDs with a single IAM OIDC provider.

    There is no defined format for a client ID. The CreateOpenIDConnectProviderRequest operation accepts client IDs up to 255 characters long.

  • thumbprint_list(Vec<String>) / set_thumbprint_list(Option<Vec<String>>):

    A list of server certificate thumbprints for the OpenID Connect (OIDC) identity provider’s server certificates. Typically this list includes only one entry. However, IAM lets you have up to five thumbprints for an OIDC provider. This lets you maintain multiple thumbprints if the identity provider is rotating certificates.

    The server certificate thumbprint is the hex-encoded SHA-1 hash value of the X.509 certificate used by the domain where the OpenID Connect provider makes its keys available. It is always a 40-character string.

    You must provide at least one thumbprint when creating an IAM OIDC provider. For example, assume that the OIDC provider is server.example.com and the provider stores its keys at https://keys.server.example.com/openid-connect. In that case, the thumbprint string would be the hex-encoded SHA-1 hash value of the certificate used by https://keys.server.example.com.

    For more information about obtaining the OIDC provider thumbprint, see Obtaining the thumbprint for an OpenID Connect provider in the IAM User Guide.

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    A list of tags that you want to attach to the new IAM OpenID Connect (OIDC) provider. Each tag consists of a key name and an associated value. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

    If any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request fails and the resource is not created.

• On success, responds with CreateOpenIdConnectProviderOutput with field(s):
  • open_id_connect_provider_arn(Option<String>):

    The Amazon Resource Name (ARN) of the new IAM OpenID Connect provider that is created. For more information, see OpenIDConnectProviderListEntry.

  • tags(Option<Vec<Tag>>):

    A list of tags that are attached to the new IAM OIDC provider. The returned list of tags is sorted by tag key. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

• On failure, responds with SdkError<CreateOpenIDConnectProviderError>

pub fn create_policy(&self) -> CreatePolicy

Constructs a fluent builder for the CreatePolicy operation.

• The fluent builder is configurable:
  • policy_name(impl Into<String>) / set_policy_name(Option<String>):

    The friendly name of the policy.

    IAM user, group, role, and policy names must be unique within the account. Names are not distinguished by case. For example, you cannot create resources named both “MyResource” and “myresource”.

  • path(impl Into<String>) / set_path(Option<String>):

    The path for the policy.

    For more information about paths, see IAM identifiers in the IAM User Guide.

    This parameter is optional. If it is not included, it defaults to a slash (/).

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

    You cannot use an asterisk (*) in the path name.

  • policy_document(impl Into<String>) / set_policy_document(Option<String>):

    The JSON policy document that you want to use as the content for the new policy.

    You must provide policies in JSON format in IAM. However, for CloudFormation templates formatted in YAML, you can provide the policy in JSON or YAML format. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.

    The maximum length of the policy document that you can pass in this operation, including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see IAM and STS character quotas.

    To learn more about JSON policy grammar, see Grammar of the IAM JSON policy language in the IAM User Guide.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

  • description(impl Into<String>) / set_description(Option<String>):

    A friendly description of the policy.

    Typically used to store information about the permissions defined in the policy. For example, “Grants access to production DynamoDB tables.”

    The policy description is immutable. After a value is assigned, it cannot be changed.

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    A list of tags that you want to attach to the new IAM customer managed policy. Each tag consists of a key name and an associated value. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

    If any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request fails and the resource is not created.

• On success, responds with CreatePolicyOutput with field(s):
  • policy(Option<Policy>):

    A structure containing details about the new policy.

• On failure, responds with SdkError<CreatePolicyError>

pub fn create_policy_version(&self) -> CreatePolicyVersion

Constructs a fluent builder for the CreatePolicyVersion operation.

• The fluent builder is configurable:
  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy to which you want to add a new version.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • policy_document(impl Into<String>) / set_policy_document(Option<String>):

    The JSON policy document that you want to use as the content for this new version of the policy.

    You must provide policies in JSON format in IAM. However, for CloudFormation templates formatted in YAML, you can provide the policy in JSON or YAML format. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.

    The maximum length of the policy document that you can pass in this operation, including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see IAM and STS character quotas.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

  • set_as_default(bool) / set_set_as_default(bool):

    Specifies whether to set this version as the policy’s default version.

    When this parameter is true, the new policy version becomes the operative version. That is, it becomes the version that is in effect for the IAM users, groups, and roles that the policy is attached to.

    For more information about managed policy versions, see Versioning for managed policies in the IAM User Guide.

• On success, responds with CreatePolicyVersionOutput with field(s):
  • policy_version(Option<PolicyVersion>):

    A structure containing details about the new policy version.

• On failure, responds with SdkError<CreatePolicyVersionError>

pub fn create_role(&self) -> CreateRole

Constructs a fluent builder for the CreateRole operation.

• The fluent builder is configurable:
  • path(impl Into<String>) / set_path(Option<String>):

    The path to the role. For more information about paths, see IAM Identifiers in the IAM User Guide.

    This parameter is optional. If it is not included, it defaults to a slash (/).

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the role to create.

    IAM user, group, role, and policy names must be unique within the account. Names are not distinguished by case. For example, you cannot create resources named both “MyResource” and “myresource”.

  • assume_role_policy_document(impl Into<String>) / set_assume_role_policy_document(Option<String>):

    The trust relationship policy document that grants an entity permission to assume the role.

    In IAM, you must provide a JSON policy that has been converted to a string. However, for CloudFormation templates formatted in YAML, you can provide the policy in JSON or YAML format. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

    Upon success, the response includes the same trust policy in JSON format.

  • description(impl Into<String>) / set_description(Option<String>):

    A description of the role.

  • max_session_duration(i32) / set_max_session_duration(Option<i32>):

    The maximum session duration (in seconds) that you want to set for the specified role. If you do not specify a value for this setting, the default maximum of one hour is applied. This setting can have a value from 1 hour to 12 hours.

    Anyone who assumes the role from the or API can use the DurationSeconds API parameter or the duration-seconds CLI parameter to request a longer session. The MaxSessionDuration setting determines the maximum duration that can be requested using the DurationSeconds parameter. If users don’t specify a value for the DurationSeconds parameter, their security credentials are valid for one hour by default. This applies when you use the AssumeRole* API operations or the assume-role* CLI operations but does not apply when you use those operations to create a console URL. For more information, see Using IAM roles in the IAM User Guide.

  • permissions_boundary(impl Into<String>) / set_permissions_boundary(Option<String>):

    The ARN of the policy that is used to set the permissions boundary for the role.

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    A list of tags that you want to attach to the new role. Each tag consists of a key name and an associated value. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

    If any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request fails and the resource is not created.

• On success, responds with CreateRoleOutput with field(s):
  • role(Option<Role>):

    A structure containing details about the new role.

• On failure, responds with SdkError<CreateRoleError>

pub fn create_saml_provider(&self) -> CreateSAMLProvider

Constructs a fluent builder for the CreateSAMLProvider operation.

• The fluent builder is configurable:
  • saml_metadata_document(impl Into<String>) / set_saml_metadata_document(Option<String>):

    An XML document generated by an identity provider (IdP) that supports SAML 2.0. The document includes the issuer’s name, expiration information, and keys that can be used to validate the SAML authentication response (assertions) that are received from the IdP. You must generate the metadata document using the identity management software that is used as your organization’s IdP.

    For more information, see About SAML 2.0-based federation in the IAM User Guide

  • name(impl Into<String>) / set_name(Option<String>):

    The name of the provider to create.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    A list of tags that you want to attach to the new IAM SAML provider. Each tag consists of a key name and an associated value. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

    If any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request fails and the resource is not created.

• On success, responds with CreateSamlProviderOutput with field(s):
  • saml_provider_arn(Option<String>):

    The Amazon Resource Name (ARN) of the new SAML provider resource in IAM.

  • tags(Option<Vec<Tag>>):

    A list of tags that are attached to the new IAM SAML provider. The returned list of tags is sorted by tag key. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

• On failure, responds with SdkError<CreateSAMLProviderError>

pub fn create_service_linked_role(&self) -> CreateServiceLinkedRole

Constructs a fluent builder for the CreateServiceLinkedRole operation.

• The fluent builder is configurable:
  • aws_service_name(impl Into<String>) / set_aws_service_name(Option<String>):

    The service principal for the Amazon Web Services service to which this role is attached. You use a string similar to a URL but without the http:// in front. For example: elasticbeanstalk.amazonaws.com.

    Service principals are unique and case-sensitive. To find the exact service principal for your service-linked role, see Amazon Web Services services that work with IAM in the IAM User Guide. Look for the services that have Yes in the Service-Linked Role column. Choose the Yes link to view the service-linked role documentation for that service.

  • description(impl Into<String>) / set_description(Option<String>):

    The description of the role.

  • custom_suffix(impl Into<String>) / set_custom_suffix(Option<String>):

    A string that you provide, which is combined with the service-provided prefix to form the complete role name. If you make multiple requests for the same service, then you must supply a different CustomSuffix for each request. Otherwise the request fails with a duplicate role name error. For example, you could add -1 or -debug to the suffix.

    Some services do not support the CustomSuffix parameter. If you provide an optional suffix and the operation fails, try the operation again without the suffix.

• On success, responds with CreateServiceLinkedRoleOutput with field(s):
  • role(Option<Role>):

    A Role object that contains details about the newly created role.

• On failure, responds with SdkError<CreateServiceLinkedRoleError>

pub fn create_service_specific_credential(
    &self
) -> CreateServiceSpecificCredential

Constructs a fluent builder for the CreateServiceSpecificCredential operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user that is to be associated with the credentials. The new service-specific credentials have the same permissions as the associated user except that they can be used only to access the specified service.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • service_name(impl Into<String>) / set_service_name(Option<String>):

    The name of the Amazon Web Services service that is to be associated with the credentials. The service you specify here is the only service that can be accessed using these credentials.

• On success, responds with CreateServiceSpecificCredentialOutput with field(s):
  • service_specific_credential(Option<ServiceSpecificCredential>):

    A structure that contains information about the newly created service-specific credential.

    This is the only time that the password for this credential set is available. It cannot be recovered later. Instead, you must reset the password with ResetServiceSpecificCredential.

• On failure, responds with SdkError<CreateServiceSpecificCredentialError>

pub fn create_user(&self) -> CreateUser

Constructs a fluent builder for the CreateUser operation.

• The fluent builder is configurable:
  • path(impl Into<String>) / set_path(Option<String>):

    The path for the user name. For more information about paths, see IAM identifiers in the IAM User Guide.

    This parameter is optional. If it is not included, it defaults to a slash (/).

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user to create.

    IAM user, group, role, and policy names must be unique within the account. Names are not distinguished by case. For example, you cannot create resources named both “MyResource” and “myresource”.

  • permissions_boundary(impl Into<String>) / set_permissions_boundary(Option<String>):

    The ARN of the policy that is used to set the permissions boundary for the user.

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    A list of tags that you want to attach to the new user. Each tag consists of a key name and an associated value. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

    If any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request fails and the resource is not created.

• On success, responds with CreateUserOutput with field(s):
  • user(Option<User>):

    A structure with details about the new IAM user.

• On failure, responds with SdkError<CreateUserError>

pub fn create_virtual_mfa_device(&self) -> CreateVirtualMFADevice

Constructs a fluent builder for the CreateVirtualMFADevice operation.

• The fluent builder is configurable:
  • path(impl Into<String>) / set_path(Option<String>):

    The path for the virtual MFA device. For more information about paths, see IAM identifiers in the IAM User Guide.

    This parameter is optional. If it is not included, it defaults to a slash (/).

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • virtual_mfa_device_name(impl Into<String>) / set_virtual_mfa_device_name(Option<String>):

    The name of the virtual MFA device. Use with path to uniquely identify a virtual MFA device.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    A list of tags that you want to attach to the new IAM virtual MFA device. Each tag consists of a key name and an associated value. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

    If any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request fails and the resource is not created.

• On success, responds with CreateVirtualMfaDeviceOutput with field(s):
  • virtual_mfa_device(Option<VirtualMfaDevice>):

    A structure containing details about the new virtual MFA device.

• On failure, responds with SdkError<CreateVirtualMFADeviceError>

pub fn deactivate_mfa_device(&self) -> DeactivateMFADevice

Constructs a fluent builder for the DeactivateMFADevice operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user whose MFA device you want to deactivate.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • serial_number(impl Into<String>) / set_serial_number(Option<String>):

    The serial number that uniquely identifies the MFA device. For virtual MFA devices, the serial number is the device ARN.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: =,.@:/-

• On success, responds with DeactivateMfaDeviceOutput
• On failure, responds with SdkError<DeactivateMFADeviceError>

pub fn delete_access_key(&self) -> DeleteAccessKey

Constructs a fluent builder for the DeleteAccessKey operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user whose access key pair you want to delete.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • access_key_id(impl Into<String>) / set_access_key_id(Option<String>):

    The access key ID for the access key ID and secret access key you want to delete.

    This parameter allows (through its regex pattern) a string of characters that can consist of any upper or lowercased letter or digit.

• On success, responds with DeleteAccessKeyOutput
• On failure, responds with SdkError<DeleteAccessKeyError>

pub fn delete_account_alias(&self) -> DeleteAccountAlias

Constructs a fluent builder for the DeleteAccountAlias operation.

• The fluent builder is configurable:
  • account_alias(impl Into<String>) / set_account_alias(Option<String>):

    The name of the account alias to delete.

    This parameter allows (through its regex pattern) a string of characters consisting of lowercase letters, digits, and dashes. You cannot start or finish with a dash, nor can you have two dashes in a row.

• On success, responds with DeleteAccountAliasOutput
• On failure, responds with SdkError<DeleteAccountAliasError>

pub fn delete_account_password_policy(&self) -> DeleteAccountPasswordPolicy

Constructs a fluent builder for the DeleteAccountPasswordPolicy operation.

• The fluent builder takes no input, just send it.
• On success, responds with DeleteAccountPasswordPolicyOutput
• On failure, responds with SdkError<DeleteAccountPasswordPolicyError>

pub fn delete_group(&self) -> DeleteGroup

Constructs a fluent builder for the DeleteGroup operation.

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name of the IAM group to delete.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with DeleteGroupOutput
• On failure, responds with SdkError<DeleteGroupError>

pub fn delete_group_policy(&self) -> DeleteGroupPolicy

Constructs a fluent builder for the DeleteGroupPolicy operation.

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name (friendly name, not ARN) identifying the group that the policy is embedded in.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_name(impl Into<String>) / set_policy_name(Option<String>):

    The name identifying the policy document to delete.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with DeleteGroupPolicyOutput
• On failure, responds with SdkError<DeleteGroupPolicyError>

pub fn delete_instance_profile(&self) -> DeleteInstanceProfile

Constructs a fluent builder for the DeleteInstanceProfile operation.

• The fluent builder is configurable:
  • instance_profile_name(impl Into<String>) / set_instance_profile_name(Option<String>):

    The name of the instance profile to delete.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with DeleteInstanceProfileOutput
• On failure, responds with SdkError<DeleteInstanceProfileError>

pub fn delete_login_profile(&self) -> DeleteLoginProfile

Constructs a fluent builder for the DeleteLoginProfile operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user whose password you want to delete.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with DeleteLoginProfileOutput
• On failure, responds with SdkError<DeleteLoginProfileError>

pub fn delete_open_id_connect_provider(&self) -> DeleteOpenIDConnectProvider

Constructs a fluent builder for the DeleteOpenIDConnectProvider operation.

• The fluent builder is configurable:
  • open_id_connect_provider_arn(impl Into<String>) / set_open_id_connect_provider_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM OpenID Connect provider resource object to delete. You can get a list of OpenID Connect provider resource ARNs by using the ListOpenIDConnectProviders operation.

• On success, responds with DeleteOpenIdConnectProviderOutput
• On failure, responds with SdkError<DeleteOpenIDConnectProviderError>

pub fn delete_policy(&self) -> DeletePolicy

Constructs a fluent builder for the DeletePolicy operation.

• The fluent builder is configurable:
  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy you want to delete.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

• On success, responds with DeletePolicyOutput
• On failure, responds with SdkError<DeletePolicyError>

pub fn delete_policy_version(&self) -> DeletePolicyVersion

Constructs a fluent builder for the DeletePolicyVersion operation.

• The fluent builder is configurable:
  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy from which you want to delete a version.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • version_id(impl Into<String>) / set_version_id(Option<String>):

    The policy version to delete.

    This parameter allows (through its regex pattern) a string of characters that consists of the lowercase letter ‘v’ followed by one or two digits, and optionally followed by a period ‘.’ and a string of letters and digits.

    For more information about managed policy versions, see Versioning for managed policies in the IAM User Guide.

• On success, responds with DeletePolicyVersionOutput
• On failure, responds with SdkError<DeletePolicyVersionError>

pub fn delete_role(&self) -> DeleteRole

Constructs a fluent builder for the DeleteRole operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the role to delete.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with DeleteRoleOutput
• On failure, responds with SdkError<DeleteRoleError>

pub fn delete_role_permissions_boundary(&self) -> DeleteRolePermissionsBoundary

Constructs a fluent builder for the DeleteRolePermissionsBoundary operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name (friendly name, not ARN) of the IAM role from which you want to remove the permissions boundary.

• On success, responds with DeleteRolePermissionsBoundaryOutput
• On failure, responds with SdkError<DeleteRolePermissionsBoundaryError>

pub fn delete_role_policy(&self) -> DeleteRolePolicy

Constructs a fluent builder for the DeleteRolePolicy operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name (friendly name, not ARN) identifying the role that the policy is embedded in.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_name(impl Into<String>) / set_policy_name(Option<String>):

    The name of the inline policy to delete from the specified IAM role.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with DeleteRolePolicyOutput
• On failure, responds with SdkError<DeleteRolePolicyError>

pub fn delete_saml_provider(&self) -> DeleteSAMLProvider

Constructs a fluent builder for the DeleteSAMLProvider operation.

• The fluent builder is configurable:
  • saml_provider_arn(impl Into<String>) / set_saml_provider_arn(Option<String>):

    The Amazon Resource Name (ARN) of the SAML provider to delete.

• On success, responds with DeleteSamlProviderOutput
• On failure, responds with SdkError<DeleteSAMLProviderError>

pub fn delete_server_certificate(&self) -> DeleteServerCertificate

Constructs a fluent builder for the DeleteServerCertificate operation.

• The fluent builder is configurable:
  • server_certificate_name(impl Into<String>) / set_server_certificate_name(Option<String>):

    The name of the server certificate you want to delete.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with DeleteServerCertificateOutput
• On failure, responds with SdkError<DeleteServerCertificateError>

pub fn delete_service_linked_role(&self) -> DeleteServiceLinkedRole

Constructs a fluent builder for the DeleteServiceLinkedRole operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the service-linked role to be deleted.

• On success, responds with DeleteServiceLinkedRoleOutput with field(s):
  • deletion_task_id(Option<String>):

    The deletion task identifier that you can use to check the status of the deletion. This identifier is returned in the format task/aws-service-role/ / / .

• On failure, responds with SdkError<DeleteServiceLinkedRoleError>

pub fn delete_service_specific_credential(
    &self
) -> DeleteServiceSpecificCredential

Constructs a fluent builder for the DeleteServiceSpecificCredential operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user associated with the service-specific credential. If this value is not specified, then the operation assumes the user whose credentials are used to call the operation.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • service_specific_credential_id(impl Into<String>) / set_service_specific_credential_id(Option<String>):

    The unique identifier of the service-specific credential. You can get this value by calling ListServiceSpecificCredentials.

    This parameter allows (through its regex pattern) a string of characters that can consist of any upper or lowercased letter or digit.

• On success, responds with DeleteServiceSpecificCredentialOutput
• On failure, responds with SdkError<DeleteServiceSpecificCredentialError>

pub fn delete_signing_certificate(&self) -> DeleteSigningCertificate

Constructs a fluent builder for the DeleteSigningCertificate operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user the signing certificate belongs to.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • certificate_id(impl Into<String>) / set_certificate_id(Option<String>):

    The ID of the signing certificate to delete.

    The format of this parameter, as described by its regex pattern, is a string of characters that can be upper- or lower-cased letters or digits.

• On success, responds with DeleteSigningCertificateOutput
• On failure, responds with SdkError<DeleteSigningCertificateError>

pub fn delete_ssh_public_key(&self) -> DeleteSSHPublicKey

Constructs a fluent builder for the DeleteSSHPublicKey operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user associated with the SSH public key.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • ssh_public_key_id(impl Into<String>) / set_ssh_public_key_id(Option<String>):

    The unique identifier for the SSH public key.

    This parameter allows (through its regex pattern) a string of characters that can consist of any upper or lowercased letter or digit.

• On success, responds with DeleteSshPublicKeyOutput
• On failure, responds with SdkError<DeleteSSHPublicKeyError>

pub fn delete_user(&self) -> DeleteUser

Constructs a fluent builder for the DeleteUser operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user to delete.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with DeleteUserOutput
• On failure, responds with SdkError<DeleteUserError>

pub fn delete_user_permissions_boundary(&self) -> DeleteUserPermissionsBoundary

Constructs a fluent builder for the DeleteUserPermissionsBoundary operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name (friendly name, not ARN) of the IAM user from which you want to remove the permissions boundary.

• On success, responds with DeleteUserPermissionsBoundaryOutput
• On failure, responds with SdkError<DeleteUserPermissionsBoundaryError>

pub fn delete_user_policy(&self) -> DeleteUserPolicy

Constructs a fluent builder for the DeleteUserPolicy operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name (friendly name, not ARN) identifying the user that the policy is embedded in.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_name(impl Into<String>) / set_policy_name(Option<String>):

    The name identifying the policy document to delete.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with DeleteUserPolicyOutput
• On failure, responds with SdkError<DeleteUserPolicyError>

pub fn delete_virtual_mfa_device(&self) -> DeleteVirtualMFADevice

Constructs a fluent builder for the DeleteVirtualMFADevice operation.

• The fluent builder is configurable:
  • serial_number(impl Into<String>) / set_serial_number(Option<String>):

    The serial number that uniquely identifies the MFA device. For virtual MFA devices, the serial number is the same as the ARN.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: =,.@:/-

• On success, responds with DeleteVirtualMfaDeviceOutput
• On failure, responds with SdkError<DeleteVirtualMFADeviceError>

pub fn detach_group_policy(&self) -> DetachGroupPolicy

Constructs a fluent builder for the DetachGroupPolicy operation.

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name (friendly name, not ARN) of the IAM group to detach the policy from.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy you want to detach.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

• On success, responds with DetachGroupPolicyOutput
• On failure, responds with SdkError<DetachGroupPolicyError>

pub fn detach_role_policy(&self) -> DetachRolePolicy

Constructs a fluent builder for the DetachRolePolicy operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name (friendly name, not ARN) of the IAM role to detach the policy from.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy you want to detach.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

• On success, responds with DetachRolePolicyOutput
• On failure, responds with SdkError<DetachRolePolicyError>

pub fn detach_user_policy(&self) -> DetachUserPolicy

Constructs a fluent builder for the DetachUserPolicy operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name (friendly name, not ARN) of the IAM user to detach the policy from.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy you want to detach.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

• On success, responds with DetachUserPolicyOutput
• On failure, responds with SdkError<DetachUserPolicyError>

pub fn enable_mfa_device(&self) -> EnableMFADevice

Constructs a fluent builder for the EnableMFADevice operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user for whom you want to enable the MFA device.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • serial_number(impl Into<String>) / set_serial_number(Option<String>):

    The serial number that uniquely identifies the MFA device. For virtual MFA devices, the serial number is the device ARN.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: =,.@:/-

  • authentication_code1(impl Into<String>) / set_authentication_code1(Option<String>):

    An authentication code emitted by the device.

    The format for this parameter is a string of six digits.

    Submit your request immediately after generating the authentication codes. If you generate the codes and then wait too long to submit the request, the MFA device successfully associates with the user but the MFA device becomes out of sync. This happens because time-based one-time passwords (TOTP) expire after a short period of time. If this happens, you can resync the device.

  • authentication_code2(impl Into<String>) / set_authentication_code2(Option<String>):

    A subsequent authentication code emitted by the device.

    The format for this parameter is a string of six digits.

    Submit your request immediately after generating the authentication codes. If you generate the codes and then wait too long to submit the request, the MFA device successfully associates with the user but the MFA device becomes out of sync. This happens because time-based one-time passwords (TOTP) expire after a short period of time. If this happens, you can resync the device.

• On success, responds with EnableMfaDeviceOutput
• On failure, responds with SdkError<EnableMFADeviceError>

pub fn generate_credential_report(&self) -> GenerateCredentialReport

Constructs a fluent builder for the GenerateCredentialReport operation.

• The fluent builder takes no input, just send it.
• On success, responds with GenerateCredentialReportOutput with field(s):
  • state(Option<ReportStateType>):

    Information about the state of the credential report.

  • description(Option<String>):

    Information about the credential report.

• On failure, responds with SdkError<GenerateCredentialReportError>

pub fn generate_organizations_access_report(
    &self
) -> GenerateOrganizationsAccessReport

Constructs a fluent builder for the GenerateOrganizationsAccessReport operation.

• The fluent builder is configurable:
  • entity_path(impl Into<String>) / set_entity_path(Option<String>):

    The path of the Organizations entity (root, OU, or account). You can build an entity path using the known structure of your organization. For example, assume that your account ID is 123456789012 and its parent OU ID is ou-rge0-awsabcde. The organization root ID is r-f6g7h8i9j0example and your organization ID is o-a1b2c3d4e5. Your entity path is o-a1b2c3d4e5/r-f6g7h8i9j0example/ou-rge0-awsabcde/123456789012.

  • organizations_policy_id(impl Into<String>) / set_organizations_policy_id(Option<String>):

    The identifier of the Organizations service control policy (SCP). This parameter is optional.

    This ID is used to generate information about when an account principal that is limited by the SCP attempted to access an Amazon Web Services service.

• On success, responds with GenerateOrganizationsAccessReportOutput with field(s):
  • job_id(Option<String>):

    The job identifier that you can use in the GetOrganizationsAccessReport operation.

• On failure, responds with SdkError<GenerateOrganizationsAccessReportError>

pub fn generate_service_last_accessed_details(
    &self
) -> GenerateServiceLastAccessedDetails

Constructs a fluent builder for the GenerateServiceLastAccessedDetails operation.

• The fluent builder is configurable:
  • arn(impl Into<String>) / set_arn(Option<String>):

    The ARN of the IAM resource (user, group, role, or managed policy) used to generate information about when the resource was last used in an attempt to access an Amazon Web Services service.

  • granularity(AccessAdvisorUsageGranularityType) / set_granularity(Option<AccessAdvisorUsageGranularityType>):

    The level of detail that you want to generate. You can specify whether you want to generate information about the last attempt to access services or actions. If you specify service-level granularity, this operation generates only service data. If you specify action-level granularity, it generates service and action data. If you don’t include this optional parameter, the operation generates service data.

• On success, responds with GenerateServiceLastAccessedDetailsOutput with field(s):
  • job_id(Option<String>):

    The JobId that you can use in the GetServiceLastAccessedDetails or GetServiceLastAccessedDetailsWithEntities operations. The JobId returned by GenerateServiceLastAccessedDetail must be used by the same role within a session, or by the same user when used to call GetServiceLastAccessedDetail.

• On failure, responds with SdkError<GenerateServiceLastAccessedDetailsError>

pub fn get_access_key_last_used(&self) -> GetAccessKeyLastUsed

Constructs a fluent builder for the GetAccessKeyLastUsed operation.

• The fluent builder is configurable:
  • access_key_id(impl Into<String>) / set_access_key_id(Option<String>):

    The identifier of an access key.

    This parameter allows (through its regex pattern) a string of characters that can consist of any upper or lowercased letter or digit.

• On success, responds with GetAccessKeyLastUsedOutput with field(s):
  • user_name(Option<String>):

    The name of the IAM user that owns this access key.

  • access_key_last_used(Option<AccessKeyLastUsed>):

    Contains information about the last time the access key was used.

• On failure, responds with SdkError<GetAccessKeyLastUsedError>

pub fn get_account_authorization_details(
    &self
) -> GetAccountAuthorizationDetails

Constructs a fluent builder for the GetAccountAuthorizationDetails operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • filter(Vec<EntityType>) / set_filter(Option<Vec<EntityType>>):

    A list of entity types used to filter the results. Only the entities that match the types you specify are included in the output. Use the value LocalManagedPolicy to include customer managed policies.

    The format for this parameter is a comma-separated (if more than one) list of strings. Each string value in the list must be one of the valid values listed below.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

• On success, responds with GetAccountAuthorizationDetailsOutput with field(s):
  • user_detail_list(Option<Vec<UserDetail>>):

    A list containing information about IAM users.

  • group_detail_list(Option<Vec<GroupDetail>>):

    A list containing information about IAM groups.

  • role_detail_list(Option<Vec<RoleDetail>>):

    A list containing information about IAM roles.

  • policies(Option<Vec<ManagedPolicyDetail>>):

    A list containing information about managed policies.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<GetAccountAuthorizationDetailsError>

pub fn get_account_password_policy(&self) -> GetAccountPasswordPolicy

Constructs a fluent builder for the GetAccountPasswordPolicy operation.

• The fluent builder takes no input, just send it.
• On success, responds with GetAccountPasswordPolicyOutput with field(s):
  • password_policy(Option<PasswordPolicy>):

    A structure that contains details about the account’s password policy.

• On failure, responds with SdkError<GetAccountPasswordPolicyError>

pub fn get_account_summary(&self) -> GetAccountSummary

Constructs a fluent builder for the GetAccountSummary operation.

• The fluent builder takes no input, just send it.
• On success, responds with GetAccountSummaryOutput with field(s):
  • summary_map(Option<HashMap<SummaryKeyType, i32>>):

    A set of key–value pairs containing information about IAM entity usage and IAM quotas.

• On failure, responds with SdkError<GetAccountSummaryError>

pub fn get_context_keys_for_custom_policy(
    &self
) -> GetContextKeysForCustomPolicy

Constructs a fluent builder for the GetContextKeysForCustomPolicy operation.

• The fluent builder is configurable:
  • policy_input_list(Vec<String>) / set_policy_input_list(Option<Vec<String>>):

    A list of policies for which you want the list of context keys referenced in those policies. Each document is specified as a string containing the complete, valid JSON text of an IAM policy.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

• On success, responds with GetContextKeysForCustomPolicyOutput with field(s):
  • context_key_names(Option<Vec<String>>):

    The list of context keys that are referenced in the input policies.

• On failure, responds with SdkError<GetContextKeysForCustomPolicyError>

pub fn get_context_keys_for_principal_policy(
    &self
) -> GetContextKeysForPrincipalPolicy

Constructs a fluent builder for the GetContextKeysForPrincipalPolicy operation.

• The fluent builder is configurable:
  • policy_source_arn(impl Into<String>) / set_policy_source_arn(Option<String>):

    The ARN of a user, group, or role whose policies contain the context keys that you want listed. If you specify a user, the list includes context keys that are found in all policies that are attached to the user. The list also includes all groups that the user is a member of. If you pick a group or a role, then it includes only those context keys that are found in policies attached to that entity. Note that all parameters are shown in unencoded form here for clarity, but must be URL encoded to be included as a part of a real HTML request.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • policy_input_list(Vec<String>) / set_policy_input_list(Option<Vec<String>>):

    An optional list of additional policies for which you want the list of context keys that are referenced.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

• On success, responds with GetContextKeysForPrincipalPolicyOutput with field(s):
  • context_key_names(Option<Vec<String>>):

    The list of context keys that are referenced in the input policies.

• On failure, responds with SdkError<GetContextKeysForPrincipalPolicyError>

pub fn get_credential_report(&self) -> GetCredentialReport

Constructs a fluent builder for the GetCredentialReport operation.

• The fluent builder takes no input, just send it.
• On success, responds with GetCredentialReportOutput with field(s):
  • content(Option<Blob>):

    Contains the credential report. The report is Base64-encoded.

  • report_format(Option<ReportFormatType>):

    The format (MIME type) of the credential report.

  • generated_time(Option<DateTime>):

    The date and time when the credential report was created, in ISO 8601 date-time format.

• On failure, responds with SdkError<GetCredentialReportError>

pub fn get_group(&self) -> GetGroup

Constructs a fluent builder for the GetGroup operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name of the group.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with GetGroupOutput with field(s):
  • group(Option<Group>):

    A structure that contains details about the group.

  • users(Option<Vec<User>>):

    A list of users in the group.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<GetGroupError>

pub fn get_group_policy(&self) -> GetGroupPolicy

Constructs a fluent builder for the GetGroupPolicy operation.

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name of the group the policy is associated with.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_name(impl Into<String>) / set_policy_name(Option<String>):

    The name of the policy document to get.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with GetGroupPolicyOutput with field(s):
  • group_name(Option<String>):

    The group the policy is associated with.

  • policy_name(Option<String>):

    The name of the policy.

  • policy_document(Option<String>):

    The policy document.

    IAM stores policies in JSON format. However, resources that were created using CloudFormation templates can be formatted in YAML. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.

• On failure, responds with SdkError<GetGroupPolicyError>

pub fn get_instance_profile(&self) -> GetInstanceProfile

Constructs a fluent builder for the GetInstanceProfile operation.

• The fluent builder is configurable:
  • instance_profile_name(impl Into<String>) / set_instance_profile_name(Option<String>):

    The name of the instance profile to get information about.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with GetInstanceProfileOutput with field(s):
  • instance_profile(Option<InstanceProfile>):

    A structure containing details about the instance profile.

• On failure, responds with SdkError<GetInstanceProfileError>

pub fn get_login_profile(&self) -> GetLoginProfile

Constructs a fluent builder for the GetLoginProfile operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user whose login profile you want to retrieve.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with GetLoginProfileOutput with field(s):
  • login_profile(Option<LoginProfile>):

    A structure containing the user name and the profile creation date for the user.

• On failure, responds with SdkError<GetLoginProfileError>

pub fn get_open_id_connect_provider(&self) -> GetOpenIDConnectProvider

Constructs a fluent builder for the GetOpenIDConnectProvider operation.

• The fluent builder is configurable:
  • open_id_connect_provider_arn(impl Into<String>) / set_open_id_connect_provider_arn(Option<String>):

    The Amazon Resource Name (ARN) of the OIDC provider resource object in IAM to get information for. You can get a list of OIDC provider resource ARNs by using the ListOpenIDConnectProviders operation.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

• On success, responds with GetOpenIdConnectProviderOutput with field(s):
  • url(Option<String>):

    The URL that the IAM OIDC provider resource object is associated with. For more information, see CreateOpenIDConnectProvider.

  • client_id_list(Option<Vec<String>>):

    A list of client IDs (also known as audiences) that are associated with the specified IAM OIDC provider resource object. For more information, see CreateOpenIDConnectProvider.

  • thumbprint_list(Option<Vec<String>>):

    A list of certificate thumbprints that are associated with the specified IAM OIDC provider resource object. For more information, see CreateOpenIDConnectProvider.

  • create_date(Option<DateTime>):

    The date and time when the IAM OIDC provider resource object was created in the Amazon Web Services account.

  • tags(Option<Vec<Tag>>):

    A list of tags that are attached to the specified IAM OIDC provider. The returned list of tags is sorted by tag key. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

• On failure, responds with SdkError<GetOpenIDConnectProviderError>

pub fn get_organizations_access_report(&self) -> GetOrganizationsAccessReport

Constructs a fluent builder for the GetOrganizationsAccessReport operation.

• The fluent builder is configurable:
  • job_id(impl Into<String>) / set_job_id(Option<String>):

    The identifier of the request generated by the GenerateOrganizationsAccessReport operation.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • sort_key(SortKeyType) / set_sort_key(Option<SortKeyType>):

    The key that is used to sort the results. If you choose the namespace key, the results are returned in alphabetical order. If you choose the time key, the results are sorted numerically by the date and time.

• On success, responds with GetOrganizationsAccessReportOutput with field(s):
  • job_status(Option<JobStatusType>):

    The status of the job.

  • job_creation_date(Option<DateTime>):

    The date and time, in ISO 8601 date-time format, when the report job was created.

  • job_completion_date(Option<DateTime>):

    The date and time, in ISO 8601 date-time format, when the generated report job was completed or failed.

    This field is null if the job is still in progress, as indicated by a job status value of IN_PROGRESS.

  • number_of_services_accessible(Option<i32>):

    The number of services that the applicable SCPs allow account principals to access.

  • number_of_services_not_accessed(Option<i32>):

    The number of services that account principals are allowed but did not attempt to access.

  • access_details(Option<Vec<AccessDetail>>):

    An object that contains details about the most recent attempt to access the service.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

  • error_details(Option<ErrorDetails>):

    Contains information about the reason that the operation failed.

    This data type is used as a response element in the GetOrganizationsAccessReport, GetServiceLastAccessedDetails, and GetServiceLastAccessedDetailsWithEntities operations.

• On failure, responds with SdkError<GetOrganizationsAccessReportError>

pub fn get_policy(&self) -> GetPolicy

Constructs a fluent builder for the GetPolicy operation.

• The fluent builder is configurable:
  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the managed policy that you want information about.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

• On success, responds with GetPolicyOutput with field(s):
  • policy(Option<Policy>):

    A structure containing details about the policy.

• On failure, responds with SdkError<GetPolicyError>

pub fn get_policy_version(&self) -> GetPolicyVersion

Constructs a fluent builder for the GetPolicyVersion operation.

• The fluent builder is configurable:
  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the managed policy that you want information about.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • version_id(impl Into<String>) / set_version_id(Option<String>):

    Identifies the policy version to retrieve.

    This parameter allows (through its regex pattern) a string of characters that consists of the lowercase letter ‘v’ followed by one or two digits, and optionally followed by a period ‘.’ and a string of letters and digits.

• On success, responds with GetPolicyVersionOutput with field(s):
  • policy_version(Option<PolicyVersion>):

    A structure containing details about the policy version.

• On failure, responds with SdkError<GetPolicyVersionError>

pub fn get_role(&self) -> GetRole

Constructs a fluent builder for the GetRole operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the IAM role to get information about.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with GetRoleOutput with field(s):
  • role(Option<Role>):

    A structure containing details about the IAM role.

• On failure, responds with SdkError<GetRoleError>

pub fn get_role_policy(&self) -> GetRolePolicy

Constructs a fluent builder for the GetRolePolicy operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the role associated with the policy.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_name(impl Into<String>) / set_policy_name(Option<String>):

    The name of the policy document to get.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with GetRolePolicyOutput with field(s):
  • role_name(Option<String>):

    The role the policy is associated with.

  • policy_name(Option<String>):

    The name of the policy.

  • policy_document(Option<String>):

    The policy document.

    IAM stores policies in JSON format. However, resources that were created using CloudFormation templates can be formatted in YAML. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.

• On failure, responds with SdkError<GetRolePolicyError>

pub fn get_saml_provider(&self) -> GetSAMLProvider

Constructs a fluent builder for the GetSAMLProvider operation.

• The fluent builder is configurable:
  • saml_provider_arn(impl Into<String>) / set_saml_provider_arn(Option<String>):

    The Amazon Resource Name (ARN) of the SAML provider resource object in IAM to get information about.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

• On success, responds with GetSamlProviderOutput with field(s):
  • saml_metadata_document(Option<String>):

    The XML metadata document that includes information about an identity provider.

  • create_date(Option<DateTime>):

    The date and time when the SAML provider was created.

  • valid_until(Option<DateTime>):

    The expiration date and time for the SAML provider.

  • tags(Option<Vec<Tag>>):

    A list of tags that are attached to the specified IAM SAML provider. The returned list of tags is sorted by tag key. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

• On failure, responds with SdkError<GetSAMLProviderError>

pub fn get_server_certificate(&self) -> GetServerCertificate

Constructs a fluent builder for the GetServerCertificate operation.

• The fluent builder is configurable:
  • server_certificate_name(impl Into<String>) / set_server_certificate_name(Option<String>):

    The name of the server certificate you want to retrieve information about.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with GetServerCertificateOutput with field(s):
  • server_certificate(Option<ServerCertificate>):

    A structure containing details about the server certificate.

• On failure, responds with SdkError<GetServerCertificateError>

pub fn get_service_last_accessed_details(&self) -> GetServiceLastAccessedDetails

Constructs a fluent builder for the GetServiceLastAccessedDetails operation.

• The fluent builder is configurable:
  • job_id(impl Into<String>) / set_job_id(Option<String>):

    The ID of the request generated by the GenerateServiceLastAccessedDetails operation. The JobId returned by GenerateServiceLastAccessedDetail must be used by the same role within a session, or by the same user when used to call GetServiceLastAccessedDetail.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

• On success, responds with GetServiceLastAccessedDetailsOutput with field(s):
  • job_status(Option<JobStatusType>):

    The status of the job.

  • job_type(Option<AccessAdvisorUsageGranularityType>):

    The type of job. Service jobs return information about when each service was last accessed. Action jobs also include information about when tracked actions within the service were last accessed.

  • job_creation_date(Option<DateTime>):

    The date and time, in ISO 8601 date-time format, when the report job was created.

  • services_last_accessed(Option<Vec<ServiceLastAccessed>>):

    A ServiceLastAccessed object that contains details about the most recent attempt to access the service.

  • job_completion_date(Option<DateTime>):

    The date and time, in ISO 8601 date-time format, when the generated report job was completed or failed.

    This field is null if the job is still in progress, as indicated by a job status value of IN_PROGRESS.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

  • error(Option<ErrorDetails>):

    An object that contains details about the reason the operation failed.

• On failure, responds with SdkError<GetServiceLastAccessedDetailsError>

pub fn get_service_last_accessed_details_with_entities(
    &self
) -> GetServiceLastAccessedDetailsWithEntities

Constructs a fluent builder for the GetServiceLastAccessedDetailsWithEntities operation.

• The fluent builder is configurable:
  • job_id(impl Into<String>) / set_job_id(Option<String>):

    The ID of the request generated by the GenerateServiceLastAccessedDetails operation.

  • service_namespace(impl Into<String>) / set_service_namespace(Option<String>):

    The service namespace for an Amazon Web Services service. Provide the service namespace to learn when the IAM entity last attempted to access the specified service.

    To learn the service namespace for a service, see Actions, resources, and condition keys for Amazon Web Services services in the IAM User Guide. Choose the name of the service to view details for that service. In the first paragraph, find the service prefix. For example, (service prefix: a4b). For more information about service namespaces, see Amazon Web Services service namespaces in the Amazon Web Services General Reference.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

• On success, responds with GetServiceLastAccessedDetailsWithEntitiesOutput with field(s):
  • job_status(Option<JobStatusType>):

    The status of the job.

  • job_creation_date(Option<DateTime>):

    The date and time, in ISO 8601 date-time format, when the report job was created.

  • job_completion_date(Option<DateTime>):

    The date and time, in ISO 8601 date-time format, when the generated report job was completed or failed.

    This field is null if the job is still in progress, as indicated by a job status value of IN_PROGRESS.

  • entity_details_list(Option<Vec<EntityDetails>>):

    An EntityDetailsList object that contains details about when an IAM entity (user or role) used group or policy permissions in an attempt to access the specified Amazon Web Services service.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

  • error(Option<ErrorDetails>):

    An object that contains details about the reason the operation failed.

• On failure, responds with SdkError<GetServiceLastAccessedDetailsWithEntitiesError>

pub fn get_service_linked_role_deletion_status(
    &self
) -> GetServiceLinkedRoleDeletionStatus

Constructs a fluent builder for the GetServiceLinkedRoleDeletionStatus operation.

• The fluent builder is configurable:
  • deletion_task_id(impl Into<String>) / set_deletion_task_id(Option<String>):

    The deletion task identifier. This identifier is returned by the DeleteServiceLinkedRole operation in the format task/aws-service-role/ / / .

• On success, responds with GetServiceLinkedRoleDeletionStatusOutput with field(s):
  • status(Option<DeletionTaskStatusType>):

    The status of the deletion.

  • reason(Option<DeletionTaskFailureReasonType>):

    An object that contains details about the reason the deletion failed.

• On failure, responds with SdkError<GetServiceLinkedRoleDeletionStatusError>

pub fn get_ssh_public_key(&self) -> GetSSHPublicKey

Constructs a fluent builder for the GetSSHPublicKey operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user associated with the SSH public key.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • ssh_public_key_id(impl Into<String>) / set_ssh_public_key_id(Option<String>):

    The unique identifier for the SSH public key.

    This parameter allows (through its regex pattern) a string of characters that can consist of any upper or lowercased letter or digit.

  • encoding(EncodingType) / set_encoding(Option<EncodingType>):

    Specifies the public key encoding format to use in the response. To retrieve the public key in ssh-rsa format, use SSH. To retrieve the public key in PEM format, use PEM.

• On success, responds with GetSshPublicKeyOutput with field(s):
  • ssh_public_key(Option<SshPublicKey>):

    A structure containing details about the SSH public key.

• On failure, responds with SdkError<GetSSHPublicKeyError>

pub fn get_user(&self) -> GetUser

Constructs a fluent builder for the GetUser operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user to get information about.

    This parameter is optional. If it is not included, it defaults to the user making the request. This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with GetUserOutput with field(s):
  • user(Option<User>):

    A structure containing details about the IAM user.

    Due to a service issue, password last used data does not include password use from May 3, 2018 22:50 PDT to May 23, 2018 14:08 PDT. This affects last sign-in dates shown in the IAM console and password last used dates in the IAM credential report, and returned by this operation. If users signed in during the affected time, the password last used date that is returned is the date the user last signed in before May 3, 2018. For users that signed in after May 23, 2018 14:08 PDT, the returned password last used date is accurate.

    You can use password last used information to identify unused credentials for deletion. For example, you might delete users who did not sign in to Amazon Web Services in the last 90 days. In cases like this, we recommend that you adjust your evaluation window to include dates after May 23, 2018. Alternatively, if your users use access keys to access Amazon Web Services programmatically you can refer to access key last used information because it is accurate for all dates.

• On failure, responds with SdkError<GetUserError>

pub fn get_user_policy(&self) -> GetUserPolicy

Constructs a fluent builder for the GetUserPolicy operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user who the policy is associated with.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_name(impl Into<String>) / set_policy_name(Option<String>):

    The name of the policy document to get.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with GetUserPolicyOutput with field(s):
  • user_name(Option<String>):

    The user the policy is associated with.

  • policy_name(Option<String>):

    The name of the policy.

  • policy_document(Option<String>):

    The policy document.

    IAM stores policies in JSON format. However, resources that were created using CloudFormation templates can be formatted in YAML. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.

• On failure, responds with SdkError<GetUserPolicyError>

pub fn list_access_keys(&self) -> ListAccessKeys

Constructs a fluent builder for the ListAccessKeys operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListAccessKeysOutput with field(s):
  • access_key_metadata(Option<Vec<AccessKeyMetadata>>):

    A list of objects containing metadata about the access keys.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListAccessKeysError>

pub fn list_account_aliases(&self) -> ListAccountAliases

Constructs a fluent builder for the ListAccountAliases operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListAccountAliasesOutput with field(s):
  • account_aliases(Option<Vec<String>>):

    A list of aliases associated with the account. Amazon Web Services supports only one alias per account.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListAccountAliasesError>

pub fn list_attached_group_policies(&self) -> ListAttachedGroupPolicies

Constructs a fluent builder for the ListAttachedGroupPolicies operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name (friendly name, not ARN) of the group to list attached policies for.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • path_prefix(impl Into<String>) / set_path_prefix(Option<String>):

    The path prefix for filtering the results. This parameter is optional. If it is not included, it defaults to a slash (/), listing all policies.

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListAttachedGroupPoliciesOutput with field(s):
  • attached_policies(Option<Vec<AttachedPolicy>>):

    A list of the attached policies.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListAttachedGroupPoliciesError>

pub fn list_attached_role_policies(&self) -> ListAttachedRolePolicies

Constructs a fluent builder for the ListAttachedRolePolicies operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name (friendly name, not ARN) of the role to list attached policies for.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • path_prefix(impl Into<String>) / set_path_prefix(Option<String>):

    The path prefix for filtering the results. This parameter is optional. If it is not included, it defaults to a slash (/), listing all policies.

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListAttachedRolePoliciesOutput with field(s):
  • attached_policies(Option<Vec<AttachedPolicy>>):

    A list of the attached policies.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListAttachedRolePoliciesError>

pub fn list_attached_user_policies(&self) -> ListAttachedUserPolicies

Constructs a fluent builder for the ListAttachedUserPolicies operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name (friendly name, not ARN) of the user to list attached policies for.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • path_prefix(impl Into<String>) / set_path_prefix(Option<String>):

    The path prefix for filtering the results. This parameter is optional. If it is not included, it defaults to a slash (/), listing all policies.

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListAttachedUserPoliciesOutput with field(s):
  • attached_policies(Option<Vec<AttachedPolicy>>):

    A list of the attached policies.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListAttachedUserPoliciesError>

pub fn list_entities_for_policy(&self) -> ListEntitiesForPolicy

Constructs a fluent builder for the ListEntitiesForPolicy operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy for which you want the versions.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • entity_filter(EntityType) / set_entity_filter(Option<EntityType>):

    The entity type to use for filtering the results.

    For example, when EntityFilter is Role, only the roles that are attached to the specified policy are returned. This parameter is optional. If it is not included, all attached entities (users, groups, and roles) are returned. The argument for this parameter must be one of the valid values listed below.

  • path_prefix(impl Into<String>) / set_path_prefix(Option<String>):

    The path prefix for filtering the results. This parameter is optional. If it is not included, it defaults to a slash (/), listing all entities.

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • policy_usage_filter(PolicyUsageType) / set_policy_usage_filter(Option<PolicyUsageType>):

    The policy usage method to use for filtering the results.

    To list only permissions policies, set PolicyUsageFilter to PermissionsPolicy. To list only the policies used to set permissions boundaries, set the value to PermissionsBoundary.

    This parameter is optional. If it is not included, all policies are returned.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListEntitiesForPolicyOutput with field(s):
  • policy_groups(Option<Vec<PolicyGroup>>):

    A list of IAM groups that the policy is attached to.

  • policy_users(Option<Vec<PolicyUser>>):

    A list of IAM users that the policy is attached to.

  • policy_roles(Option<Vec<PolicyRole>>):

    A list of IAM roles that the policy is attached to.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListEntitiesForPolicyError>

pub fn list_group_policies(&self) -> ListGroupPolicies

Constructs a fluent builder for the ListGroupPolicies operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name of the group to list policies for.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListGroupPoliciesOutput with field(s):
  • policy_names(Option<Vec<String>>):

    A list of policy names.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListGroupPoliciesError>

pub fn list_groups(&self) -> ListGroups

Constructs a fluent builder for the ListGroups operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • path_prefix(impl Into<String>) / set_path_prefix(Option<String>):

    The path prefix for filtering the results. For example, the prefix /division_abc/subdivision_xyz/ gets all groups whose path starts with /division_abc/subdivision_xyz/.

    This parameter is optional. If it is not included, it defaults to a slash (/), listing all groups. This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListGroupsOutput with field(s):
  • groups(Option<Vec<Group>>):

    A list of groups.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListGroupsError>

pub fn list_groups_for_user(&self) -> ListGroupsForUser

Constructs a fluent builder for the ListGroupsForUser operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user to list groups for.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListGroupsForUserOutput with field(s):
  • groups(Option<Vec<Group>>):

    A list of groups.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListGroupsForUserError>

pub fn list_instance_profiles(&self) -> ListInstanceProfiles

Constructs a fluent builder for the ListInstanceProfiles operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • path_prefix(impl Into<String>) / set_path_prefix(Option<String>):

    The path prefix for filtering the results. For example, the prefix /application_abc/component_xyz/ gets all instance profiles whose path starts with /application_abc/component_xyz/.

    This parameter is optional. If it is not included, it defaults to a slash (/), listing all instance profiles. This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListInstanceProfilesOutput with field(s):
  • instance_profiles(Option<Vec<InstanceProfile>>):

    A list of instance profiles.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListInstanceProfilesError>

pub fn list_instance_profiles_for_role(&self) -> ListInstanceProfilesForRole

Constructs a fluent builder for the ListInstanceProfilesForRole operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the role to list instance profiles for.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListInstanceProfilesForRoleOutput with field(s):
  • instance_profiles(Option<Vec<InstanceProfile>>):

    A list of instance profiles.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListInstanceProfilesForRoleError>

pub fn list_instance_profile_tags(&self) -> ListInstanceProfileTags

Constructs a fluent builder for the ListInstanceProfileTags operation.

• The fluent builder is configurable:
  • instance_profile_name(impl Into<String>) / set_instance_profile_name(Option<String>):

    The name of the IAM instance profile whose tags you want to see.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListInstanceProfileTagsOutput with field(s):
  • tags(Option<Vec<Tag>>):

    The list of tags that are currently attached to the IAM instance profile. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListInstanceProfileTagsError>

pub fn list_mfa_devices(&self) -> ListMFADevices

Constructs a fluent builder for the ListMFADevices operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user whose MFA devices you want to list.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListMfaDevicesOutput with field(s):
  • mfa_devices(Option<Vec<MfaDevice>>):

    A list of MFA devices.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListMFADevicesError>

pub fn list_mfa_device_tags(&self) -> ListMFADeviceTags

Constructs a fluent builder for the ListMFADeviceTags operation.

• The fluent builder is configurable:
  • serial_number(impl Into<String>) / set_serial_number(Option<String>):

    The unique identifier for the IAM virtual MFA device whose tags you want to see. For virtual MFA devices, the serial number is the same as the ARN.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListMfaDeviceTagsOutput with field(s):
  • tags(Option<Vec<Tag>>):

    The list of tags that are currently attached to the virtual MFA device. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListMFADeviceTagsError>

pub fn list_open_id_connect_providers(&self) -> ListOpenIDConnectProviders

Constructs a fluent builder for the ListOpenIDConnectProviders operation.

• The fluent builder takes no input, just send it.
• On success, responds with ListOpenIdConnectProvidersOutput with field(s):
  • open_id_connect_provider_list(Option<Vec<OpenIdConnectProviderListEntry>>):

    The list of IAM OIDC provider resource objects defined in the Amazon Web Services account.

• On failure, responds with SdkError<ListOpenIDConnectProvidersError>

pub fn list_open_id_connect_provider_tags(
    &self
) -> ListOpenIDConnectProviderTags

Constructs a fluent builder for the ListOpenIDConnectProviderTags operation.

• The fluent builder is configurable:
  • open_id_connect_provider_arn(impl Into<String>) / set_open_id_connect_provider_arn(Option<String>):

    The ARN of the OpenID Connect (OIDC) identity provider whose tags you want to see.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListOpenIdConnectProviderTagsOutput with field(s):
  • tags(Option<Vec<Tag>>):

    The list of tags that are currently attached to the OpenID Connect (OIDC) identity provider. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListOpenIDConnectProviderTagsError>

pub fn list_policies(&self) -> ListPolicies

Constructs a fluent builder for the ListPolicies operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • scope(PolicyScopeType) / set_scope(Option<PolicyScopeType>):

    The scope to use for filtering the results.

    To list only Amazon Web Services managed policies, set Scope to AWS. To list only the customer managed policies in your Amazon Web Services account, set Scope to Local.

    This parameter is optional. If it is not included, or if it is set to All, all policies are returned.

  • only_attached(bool) / set_only_attached(bool):

    A flag to filter the results to only the attached policies.

    When OnlyAttached is true, the returned list contains only the policies that are attached to an IAM user, group, or role. When OnlyAttached is false, or when the parameter is not included, all policies are returned.

  • path_prefix(impl Into<String>) / set_path_prefix(Option<String>):

    The path prefix for filtering the results. This parameter is optional. If it is not included, it defaults to a slash (/), listing all policies. This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • policy_usage_filter(PolicyUsageType) / set_policy_usage_filter(Option<PolicyUsageType>):

    The policy usage method to use for filtering the results.

    To list only permissions policies, set PolicyUsageFilter to PermissionsPolicy. To list only the policies used to set permissions boundaries, set the value to PermissionsBoundary.

    This parameter is optional. If it is not included, all policies are returned.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListPoliciesOutput with field(s):
  • policies(Option<Vec<Policy>>):

    A list of policies.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListPoliciesError>

pub fn list_policies_granting_service_access(
    &self
) -> ListPoliciesGrantingServiceAccess

Constructs a fluent builder for the ListPoliciesGrantingServiceAccess operation.

• The fluent builder is configurable:
  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • arn(impl Into<String>) / set_arn(Option<String>):

    The ARN of the IAM identity (user, group, or role) whose policies you want to list.

  • service_namespaces(Vec<String>) / set_service_namespaces(Option<Vec<String>>):

    The service namespace for the Amazon Web Services services whose policies you want to list.

    To learn the service namespace for a service, see Actions, resources, and condition keys for Amazon Web Services services in the IAM User Guide. Choose the name of the service to view details for that service. In the first paragraph, find the service prefix. For example, (service prefix: a4b). For more information about service namespaces, see Amazon Web Services service namespaces in the Amazon Web Services General Reference.

• On success, responds with ListPoliciesGrantingServiceAccessOutput with field(s):
  • policies_granting_service_access(Option<Vec<ListPoliciesGrantingServiceAccessEntry>>):

    A ListPoliciesGrantingServiceAccess object that contains details about the permissions policies attached to the specified identity (user, group, or role).

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListPoliciesGrantingServiceAccessError>

pub fn list_policy_tags(&self) -> ListPolicyTags

Constructs a fluent builder for the ListPolicyTags operation.

• The fluent builder is configurable:
  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The ARN of the IAM customer managed policy whose tags you want to see.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListPolicyTagsOutput with field(s):
  • tags(Option<Vec<Tag>>):

    The list of tags that are currently attached to the IAM customer managed policy. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListPolicyTagsError>

pub fn list_policy_versions(&self) -> ListPolicyVersions

Constructs a fluent builder for the ListPolicyVersions operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy for which you want the versions.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListPolicyVersionsOutput with field(s):
  • versions(Option<Vec<PolicyVersion>>):

    A list of policy versions.

    For more information about managed policy versions, see Versioning for managed policies in the IAM User Guide.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListPolicyVersionsError>

pub fn list_role_policies(&self) -> ListRolePolicies

Constructs a fluent builder for the ListRolePolicies operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the role to list policies for.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListRolePoliciesOutput with field(s):
  • policy_names(Option<Vec<String>>):

    A list of policy names.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListRolePoliciesError>

pub fn list_roles(&self) -> ListRoles

Constructs a fluent builder for the ListRoles operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • path_prefix(impl Into<String>) / set_path_prefix(Option<String>):

    The path prefix for filtering the results. For example, the prefix /application_abc/component_xyz/ gets all roles whose path starts with /application_abc/component_xyz/.

    This parameter is optional. If it is not included, it defaults to a slash (/), listing all roles. This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListRolesOutput with field(s):
  • roles(Option<Vec<Role>>):

    A list of roles.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListRolesError>

pub fn list_role_tags(&self) -> ListRoleTags

Constructs a fluent builder for the ListRoleTags operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the IAM role for which you want to see the list of tags.

    This parameter accepts (through its regex pattern) a string of characters that consist of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListRoleTagsOutput with field(s):
  • tags(Option<Vec<Tag>>):

    The list of tags that are currently attached to the role. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListRoleTagsError>

pub fn list_saml_providers(&self) -> ListSAMLProviders

Constructs a fluent builder for the ListSAMLProviders operation.

• The fluent builder takes no input, just send it.
• On success, responds with ListSamlProvidersOutput with field(s):
  • saml_provider_list(Option<Vec<SamlProviderListEntry>>):

    The list of SAML provider resource objects defined in IAM for this Amazon Web Services account.

• On failure, responds with SdkError<ListSAMLProvidersError>

pub fn list_saml_provider_tags(&self) -> ListSAMLProviderTags

Constructs a fluent builder for the ListSAMLProviderTags operation.

• The fluent builder is configurable:
  • saml_provider_arn(impl Into<String>) / set_saml_provider_arn(Option<String>):

    The ARN of the Security Assertion Markup Language (SAML) identity provider whose tags you want to see.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListSamlProviderTagsOutput with field(s):
  • tags(Option<Vec<Tag>>):

    The list of tags that are currently attached to the Security Assertion Markup Language (SAML) identity provider. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListSAMLProviderTagsError>

pub fn list_server_certificates(&self) -> ListServerCertificates

Constructs a fluent builder for the ListServerCertificates operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • path_prefix(impl Into<String>) / set_path_prefix(Option<String>):

    The path prefix for filtering the results. For example: /company/servercerts would get all server certificates for which the path starts with /company/servercerts.

    This parameter is optional. If it is not included, it defaults to a slash (/), listing all server certificates. This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListServerCertificatesOutput with field(s):
  • server_certificate_metadata_list(Option<Vec<ServerCertificateMetadata>>):

    A list of server certificates.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListServerCertificatesError>

pub fn list_server_certificate_tags(&self) -> ListServerCertificateTags

Constructs a fluent builder for the ListServerCertificateTags operation.

• The fluent builder is configurable:
  • server_certificate_name(impl Into<String>) / set_server_certificate_name(Option<String>):

    The name of the IAM server certificate whose tags you want to see.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListServerCertificateTagsOutput with field(s):
  • tags(Option<Vec<Tag>>):

    The list of tags that are currently attached to the IAM server certificate. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListServerCertificateTagsError>

pub fn list_service_specific_credentials(
    &self
) -> ListServiceSpecificCredentials

Constructs a fluent builder for the ListServiceSpecificCredentials operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user whose service-specific credentials you want information about. If this value is not specified, then the operation assumes the user whose credentials are used to call the operation.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • service_name(impl Into<String>) / set_service_name(Option<String>):

    Filters the returned results to only those for the specified Amazon Web Services service. If not specified, then Amazon Web Services returns service-specific credentials for all services.

• On success, responds with ListServiceSpecificCredentialsOutput with field(s):
  • service_specific_credentials(Option<Vec<ServiceSpecificCredentialMetadata>>):

    A list of structures that each contain details about a service-specific credential.

• On failure, responds with SdkError<ListServiceSpecificCredentialsError>

pub fn list_signing_certificates(&self) -> ListSigningCertificates

Constructs a fluent builder for the ListSigningCertificates operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user whose signing certificates you want to examine.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListSigningCertificatesOutput with field(s):
  • certificates(Option<Vec<SigningCertificate>>):

    A list of the user’s signing certificate information.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListSigningCertificatesError>

pub fn list_ssh_public_keys(&self) -> ListSSHPublicKeys

Constructs a fluent builder for the ListSSHPublicKeys operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user to list SSH public keys for. If none is specified, the UserName field is determined implicitly based on the Amazon Web Services access key used to sign the request.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListSshPublicKeysOutput with field(s):
  • ssh_public_keys(Option<Vec<SshPublicKeyMetadata>>):

    A list of the SSH public keys assigned to IAM user.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListSSHPublicKeysError>

pub fn list_user_policies(&self) -> ListUserPolicies

Constructs a fluent builder for the ListUserPolicies operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user to list policies for.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListUserPoliciesOutput with field(s):
  • policy_names(Option<Vec<String>>):

    A list of policy names.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListUserPoliciesError>

pub fn list_users(&self) -> ListUsers

Constructs a fluent builder for the ListUsers operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • path_prefix(impl Into<String>) / set_path_prefix(Option<String>):

    The path prefix for filtering the results. For example: /division_abc/subdivision_xyz/, which would get all user names whose path starts with /division_abc/subdivision_xyz/.

    This parameter is optional. If it is not included, it defaults to a slash (/), listing all user names. This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListUsersOutput with field(s):
  • users(Option<Vec<User>>):

    A list of users.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListUsersError>

pub fn list_user_tags(&self) -> ListUserTags

Constructs a fluent builder for the ListUserTags operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user whose tags you want to see.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListUserTagsOutput with field(s):
  • tags(Option<Vec<Tag>>):

    The list of tags that are currently attached to the user. Each tag consists of a key name and an associated value. If no tags are attached to the specified resource, the response contains an empty list.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListUserTagsError>

pub fn list_virtual_mfa_devices(&self) -> ListVirtualMFADevices

Constructs a fluent builder for the ListVirtualMFADevices operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • assignment_status(AssignmentStatusType) / set_assignment_status(Option<AssignmentStatusType>):

    The status (Unassigned or Assigned) of the devices to list. If you do not specify an AssignmentStatus, the operation defaults to Any, which lists both assigned and unassigned virtual MFA devices.,

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

• On success, responds with ListVirtualMfaDevicesOutput with field(s):
  • virtual_mfa_devices(Option<Vec<VirtualMfaDevice>>):

    The list of virtual MFA devices in the current account that match the AssignmentStatus value that was passed in the request.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<ListVirtualMFADevicesError>

pub fn put_group_policy(&self) -> PutGroupPolicy

Constructs a fluent builder for the PutGroupPolicy operation.

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name of the group to associate the policy with.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-.

  • policy_name(impl Into<String>) / set_policy_name(Option<String>):

    The name of the policy document.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_document(impl Into<String>) / set_policy_document(Option<String>):

    The policy document.

    You must provide policies in JSON format in IAM. However, for CloudFormation templates formatted in YAML, you can provide the policy in JSON or YAML format. CloudFormation always converts a YAML policy to JSON format before submitting it to = IAM.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

• On success, responds with PutGroupPolicyOutput
• On failure, responds with SdkError<PutGroupPolicyError>

pub fn put_role_permissions_boundary(&self) -> PutRolePermissionsBoundary

Constructs a fluent builder for the PutRolePermissionsBoundary operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name (friendly name, not ARN) of the IAM role for which you want to set the permissions boundary.

  • permissions_boundary(impl Into<String>) / set_permissions_boundary(Option<String>):

    The ARN of the policy that is used to set the permissions boundary for the role.

• On success, responds with PutRolePermissionsBoundaryOutput
• On failure, responds with SdkError<PutRolePermissionsBoundaryError>

pub fn put_role_policy(&self) -> PutRolePolicy

Constructs a fluent builder for the PutRolePolicy operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the role to associate the policy with.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_name(impl Into<String>) / set_policy_name(Option<String>):

    The name of the policy document.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_document(impl Into<String>) / set_policy_document(Option<String>):

    The policy document.

    You must provide policies in JSON format in IAM. However, for CloudFormation templates formatted in YAML, you can provide the policy in JSON or YAML format. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

• On success, responds with PutRolePolicyOutput
• On failure, responds with SdkError<PutRolePolicyError>

pub fn put_user_permissions_boundary(&self) -> PutUserPermissionsBoundary

Constructs a fluent builder for the PutUserPermissionsBoundary operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name (friendly name, not ARN) of the IAM user for which you want to set the permissions boundary.

  • permissions_boundary(impl Into<String>) / set_permissions_boundary(Option<String>):

    The ARN of the policy that is used to set the permissions boundary for the user.

• On success, responds with PutUserPermissionsBoundaryOutput
• On failure, responds with SdkError<PutUserPermissionsBoundaryError>

pub fn put_user_policy(&self) -> PutUserPolicy

Constructs a fluent builder for the PutUserPolicy operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user to associate the policy with.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_name(impl Into<String>) / set_policy_name(Option<String>):

    The name of the policy document.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_document(impl Into<String>) / set_policy_document(Option<String>):

    The policy document.

    You must provide policies in JSON format in IAM. However, for CloudFormation templates formatted in YAML, you can provide the policy in JSON or YAML format. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

• On success, responds with PutUserPolicyOutput
• On failure, responds with SdkError<PutUserPolicyError>

pub fn remove_client_id_from_open_id_connect_provider(
    &self
) -> RemoveClientIDFromOpenIDConnectProvider

Constructs a fluent builder for the RemoveClientIDFromOpenIDConnectProvider operation.

• The fluent builder is configurable:
  • open_id_connect_provider_arn(impl Into<String>) / set_open_id_connect_provider_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM OIDC provider resource to remove the client ID from. You can get a list of OIDC provider ARNs by using the ListOpenIDConnectProviders operation.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • client_id(impl Into<String>) / set_client_id(Option<String>):

    The client ID (also known as audience) to remove from the IAM OIDC provider resource. For more information about client IDs, see CreateOpenIDConnectProvider.

• On success, responds with RemoveClientIdFromOpenIdConnectProviderOutput
• On failure, responds with SdkError<RemoveClientIDFromOpenIDConnectProviderError>

pub fn remove_role_from_instance_profile(&self) -> RemoveRoleFromInstanceProfile

Constructs a fluent builder for the RemoveRoleFromInstanceProfile operation.

• The fluent builder is configurable:
  • instance_profile_name(impl Into<String>) / set_instance_profile_name(Option<String>):

    The name of the instance profile to update.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the role to remove.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with RemoveRoleFromInstanceProfileOutput
• On failure, responds with SdkError<RemoveRoleFromInstanceProfileError>

pub fn remove_user_from_group(&self) -> RemoveUserFromGroup

Constructs a fluent builder for the RemoveUserFromGroup operation.

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    The name of the group to update.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user to remove.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with RemoveUserFromGroupOutput
• On failure, responds with SdkError<RemoveUserFromGroupError>

pub fn reset_service_specific_credential(
    &self
) -> ResetServiceSpecificCredential

Constructs a fluent builder for the ResetServiceSpecificCredential operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user associated with the service-specific credential. If this value is not specified, then the operation assumes the user whose credentials are used to call the operation.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • service_specific_credential_id(impl Into<String>) / set_service_specific_credential_id(Option<String>):

    The unique identifier of the service-specific credential.

    This parameter allows (through its regex pattern) a string of characters that can consist of any upper or lowercased letter or digit.

• On success, responds with ResetServiceSpecificCredentialOutput with field(s):
  • service_specific_credential(Option<ServiceSpecificCredential>):

    A structure with details about the updated service-specific credential, including the new password.

    This is the only time that you can access the password. You cannot recover the password later, but you can reset it again.

• On failure, responds with SdkError<ResetServiceSpecificCredentialError>

pub fn resync_mfa_device(&self) -> ResyncMFADevice

Constructs a fluent builder for the ResyncMFADevice operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user whose MFA device you want to resynchronize.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • serial_number(impl Into<String>) / set_serial_number(Option<String>):

    Serial number that uniquely identifies the MFA device.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • authentication_code1(impl Into<String>) / set_authentication_code1(Option<String>):

    An authentication code emitted by the device.

    The format for this parameter is a sequence of six digits.

  • authentication_code2(impl Into<String>) / set_authentication_code2(Option<String>):

    A subsequent authentication code emitted by the device.

    The format for this parameter is a sequence of six digits.

• On success, responds with ResyncMfaDeviceOutput
• On failure, responds with SdkError<ResyncMFADeviceError>

pub fn set_default_policy_version(&self) -> SetDefaultPolicyVersion

Constructs a fluent builder for the SetDefaultPolicyVersion operation.

• The fluent builder is configurable:
  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM policy whose default version you want to set.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • version_id(impl Into<String>) / set_version_id(Option<String>):

    The version of the policy to set as the default (operative) version.

    For more information about managed policy versions, see Versioning for managed policies in the IAM User Guide.

• On success, responds with SetDefaultPolicyVersionOutput
• On failure, responds with SdkError<SetDefaultPolicyVersionError>

pub fn set_security_token_service_preferences(
    &self
) -> SetSecurityTokenServicePreferences

Constructs a fluent builder for the SetSecurityTokenServicePreferences operation.

• The fluent builder is configurable:
  • global_endpoint_token_version(GlobalEndpointTokenVersion) / set_global_endpoint_token_version(Option<GlobalEndpointTokenVersion>):

    The version of the global endpoint token. Version 1 tokens are valid only in Amazon Web Services Regions that are available by default. These tokens do not work in manually enabled Regions, such as Asia Pacific (Hong Kong). Version 2 tokens are valid in all Regions. However, version 2 tokens are longer and might affect systems where you temporarily store tokens.

    For information, see Activating and deactivating STS in an Amazon Web Services Region in the IAM User Guide.

• On success, responds with SetSecurityTokenServicePreferencesOutput
• On failure, responds with SdkError<SetSecurityTokenServicePreferencesError>

pub fn simulate_custom_policy(&self) -> SimulateCustomPolicy

Constructs a fluent builder for the SimulateCustomPolicy operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • policy_input_list(Vec<String>) / set_policy_input_list(Option<Vec<String>>):

    A list of policy documents to include in the simulation. Each document is specified as a string containing the complete, valid JSON text of an IAM policy. Do not include any resource-based policies in this parameter. Any resource-based policy must be submitted with the ResourcePolicy parameter. The policies cannot be “scope-down” policies, such as you could include in a call to GetFederationToken or one of the AssumeRole API operations. In other words, do not use policies designed to restrict what a user can do while using the temporary credentials.

    The maximum length of the policy document that you can pass in this operation, including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see IAM and STS character quotas.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

  • permissions_boundary_policy_input_list(Vec<String>) / set_permissions_boundary_policy_input_list(Option<Vec<String>>):

    The IAM permissions boundary policy to simulate. The permissions boundary sets the maximum permissions that an IAM entity can have. You can input only one permissions boundary when you pass a policy to this operation. For more information about permissions boundaries, see Permissions boundaries for IAM entities in the IAM User Guide. The policy input is specified as a string that contains the complete, valid JSON text of a permissions boundary policy.

    The maximum length of the policy document that you can pass in this operation, including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see IAM and STS character quotas.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

  • action_names(Vec<String>) / set_action_names(Option<Vec<String>>):

    A list of names of API operations to evaluate in the simulation. Each operation is evaluated against each resource. Each operation must include the service identifier, such as iam:CreateUser. This operation does not support using wildcards (*) in an action name.

  • resource_arns(Vec<String>) / set_resource_arns(Option<Vec<String>>):

    A list of ARNs of Amazon Web Services resources to include in the simulation. If this parameter is not provided, then the value defaults to * (all resources). Each API in the ActionNames parameter is evaluated for each resource in this list. The simulation determines the access result (allowed or denied) of each combination and reports it in the response. You can simulate resources that don’t exist in your account.

    The simulation does not automatically retrieve policies for the specified resources. If you want to include a resource policy in the simulation, then you must include the policy as a string in the ResourcePolicy parameter.

    If you include a ResourcePolicy, then it must be applicable to all of the resources included in the simulation or you receive an invalid input error.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • resource_policy(impl Into<String>) / set_resource_policy(Option<String>):

    A resource-based policy to include in the simulation provided as a string. Each resource in the simulation is treated as if it had this policy attached. You can include only one resource-based policy in a simulation.

    The maximum length of the policy document that you can pass in this operation, including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see IAM and STS character quotas.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

  • resource_owner(impl Into<String>) / set_resource_owner(Option<String>):

    An ARN representing the Amazon Web Services account ID that specifies the owner of any simulated resource that does not identify its owner in the resource ARN. Examples of resource ARNs include an S3 bucket or object. If ResourceOwner is specified, it is also used as the account owner of any ResourcePolicy included in the simulation. If the ResourceOwner parameter is not specified, then the owner of the resources and the resource policy defaults to the account of the identity provided in CallerArn. This parameter is required only if you specify a resource-based policy and account that owns the resource is different from the account that owns the simulated calling user CallerArn.

    The ARN for an account uses the following syntax: arn:aws:iam::AWS-account-ID:root. For example, to represent the account with the 112233445566 ID, use the following ARN: arn:aws:iam::112233445566-ID:root.

  • caller_arn(impl Into<String>) / set_caller_arn(Option<String>):

    The ARN of the IAM user that you want to use as the simulated caller of the API operations. CallerArn is required if you include a ResourcePolicy so that the policy’s Principal element has a value to use in evaluating the policy.

    You can specify only the ARN of an IAM user. You cannot specify the ARN of an assumed role, federated user, or a service principal.

  • context_entries(Vec<ContextEntry>) / set_context_entries(Option<Vec<ContextEntry>>):

    A list of context keys and corresponding values for the simulation to use. Whenever a context key is evaluated in one of the simulated IAM permissions policies, the corresponding value is supplied.

  • resource_handling_option(impl Into<String>) / set_resource_handling_option(Option<String>):

    Specifies the type of simulation to run. Different API operations that support resource-based policies require different combinations of resources. By specifying the type of simulation to run, you enable the policy simulator to enforce the presence of the required resources to ensure reliable simulation results. If your simulation does not match one of the following scenarios, then you can omit this parameter. The following list shows each of the supported scenario values and the resources that you must define to run the simulation.

    Each of the EC2 scenarios requires that you specify instance, image, and security-group resources. If your scenario includes an EBS volume, then you must specify that volume as a resource. If the EC2 scenario includes VPC, then you must supply the network-interface resource. If it includes an IP subnet, then you must specify the subnet resource. For more information on the EC2 scenario options, see Supported platforms in the Amazon EC2 User Guide.

    • EC2-Classic-InstanceStore

      instance, image, security-group

    • EC2-Classic-EBS

      instance, image, security-group, volume

    • EC2-VPC-InstanceStore

      instance, image, security-group, network-interface

    • EC2-VPC-InstanceStore-Subnet

      instance, image, security-group, network-interface, subnet

    • EC2-VPC-EBS

      instance, image, security-group, network-interface, volume

    • EC2-VPC-EBS-Subnet

      instance, image, security-group, network-interface, subnet, volume

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

• On success, responds with SimulateCustomPolicyOutput with field(s):
  • evaluation_results(Option<Vec<EvaluationResult>>):

    The results of the simulation.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<SimulateCustomPolicyError>

pub fn simulate_principal_policy(&self) -> SimulatePrincipalPolicy

Constructs a fluent builder for the SimulatePrincipalPolicy operation. This operation supports pagination; See into_paginator().

• The fluent builder is configurable:
  • policy_source_arn(impl Into<String>) / set_policy_source_arn(Option<String>):

    The Amazon Resource Name (ARN) of a user, group, or role whose policies you want to include in the simulation. If you specify a user, group, or role, the simulation includes all policies that are associated with that entity. If you specify a user, the simulation also includes all policies that are attached to any groups the user belongs to.

    The maximum length of the policy document that you can pass in this operation, including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see IAM and STS character quotas.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • policy_input_list(Vec<String>) / set_policy_input_list(Option<Vec<String>>):

    An optional list of additional policy documents to include in the simulation. Each document is specified as a string containing the complete, valid JSON text of an IAM policy.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

  • permissions_boundary_policy_input_list(Vec<String>) / set_permissions_boundary_policy_input_list(Option<Vec<String>>):

    The IAM permissions boundary policy to simulate. The permissions boundary sets the maximum permissions that the entity can have. You can input only one permissions boundary when you pass a policy to this operation. An IAM entity can only have one permissions boundary in effect at a time. For example, if a permissions boundary is attached to an entity and you pass in a different permissions boundary policy using this parameter, then the new permissions boundary policy is used for the simulation. For more information about permissions boundaries, see Permissions boundaries for IAM entities in the IAM User Guide. The policy input is specified as a string containing the complete, valid JSON text of a permissions boundary policy.

    The maximum length of the policy document that you can pass in this operation, including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see IAM and STS character quotas.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

  • action_names(Vec<String>) / set_action_names(Option<Vec<String>>):

    A list of names of API operations to evaluate in the simulation. Each operation is evaluated for each resource. Each operation must include the service identifier, such as iam:CreateUser.

  • resource_arns(Vec<String>) / set_resource_arns(Option<Vec<String>>):

    A list of ARNs of Amazon Web Services resources to include in the simulation. If this parameter is not provided, then the value defaults to * (all resources). Each API in the ActionNames parameter is evaluated for each resource in this list. The simulation determines the access result (allowed or denied) of each combination and reports it in the response. You can simulate resources that don’t exist in your account.

    The simulation does not automatically retrieve policies for the specified resources. If you want to include a resource policy in the simulation, then you must include the policy as a string in the ResourcePolicy parameter.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • resource_policy(impl Into<String>) / set_resource_policy(Option<String>):

    A resource-based policy to include in the simulation provided as a string. Each resource in the simulation is treated as if it had this policy attached. You can include only one resource-based policy in a simulation.

    The maximum length of the policy document that you can pass in this operation, including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see IAM and STS character quotas.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

  • resource_owner(impl Into<String>) / set_resource_owner(Option<String>):

    An Amazon Web Services account ID that specifies the owner of any simulated resource that does not identify its owner in the resource ARN. Examples of resource ARNs include an S3 bucket or object. If ResourceOwner is specified, it is also used as the account owner of any ResourcePolicy included in the simulation. If the ResourceOwner parameter is not specified, then the owner of the resources and the resource policy defaults to the account of the identity provided in CallerArn. This parameter is required only if you specify a resource-based policy and account that owns the resource is different from the account that owns the simulated calling user CallerArn.

  • caller_arn(impl Into<String>) / set_caller_arn(Option<String>):

    The ARN of the IAM user that you want to specify as the simulated caller of the API operations. If you do not specify a CallerArn, it defaults to the ARN of the user that you specify in PolicySourceArn, if you specified a user. If you include both a PolicySourceArn (for example, arn:aws:iam::123456789012:user/David) and a CallerArn (for example, arn:aws:iam::123456789012:user/Bob), the result is that you simulate calling the API operations as Bob, as if Bob had David’s policies.

    You can specify only the ARN of an IAM user. You cannot specify the ARN of an assumed role, federated user, or a service principal.

    CallerArn is required if you include a ResourcePolicy and the PolicySourceArn is not the ARN for an IAM user. This is required so that the resource-based policy’s Principal element has a value to use in evaluating the policy.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • context_entries(Vec<ContextEntry>) / set_context_entries(Option<Vec<ContextEntry>>):

    A list of context keys and corresponding values for the simulation to use. Whenever a context key is evaluated in one of the simulated IAM permissions policies, the corresponding value is supplied.

  • resource_handling_option(impl Into<String>) / set_resource_handling_option(Option<String>):

    Specifies the type of simulation to run. Different API operations that support resource-based policies require different combinations of resources. By specifying the type of simulation to run, you enable the policy simulator to enforce the presence of the required resources to ensure reliable simulation results. If your simulation does not match one of the following scenarios, then you can omit this parameter. The following list shows each of the supported scenario values and the resources that you must define to run the simulation.

    Each of the EC2 scenarios requires that you specify instance, image, and security group resources. If your scenario includes an EBS volume, then you must specify that volume as a resource. If the EC2 scenario includes VPC, then you must supply the network interface resource. If it includes an IP subnet, then you must specify the subnet resource. For more information on the EC2 scenario options, see Supported platforms in the Amazon EC2 User Guide.

    • EC2-Classic-InstanceStore

      instance, image, security group

    • EC2-Classic-EBS

      instance, image, security group, volume

    • EC2-VPC-InstanceStore

      instance, image, security group, network interface

    • EC2-VPC-InstanceStore-Subnet

      instance, image, security group, network interface, subnet

    • EC2-VPC-EBS

      instance, image, security group, network interface, volume

    • EC2-VPC-EBS-Subnet

      instance, image, security group, network interface, subnet, volume

  • max_items(i32) / set_max_items(Option<i32>):

    Use this only when paginating results to indicate the maximum number of items you want in the response. If additional items exist beyond the maximum you specify, the IsTruncated response element is true.

    If you do not include this parameter, the number of items defaults to 100. Note that IAM might return fewer results, even when there are more results available. In that case, the IsTruncated response element returns true, and Marker contains a value to include in the subsequent call that tells the service where to continue from.

  • marker(impl Into<String>) / set_marker(Option<String>):

    Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated. Set it to the value of the Marker element in the response that you received to indicate where the next call should start.

• On success, responds with SimulatePrincipalPolicyOutput with field(s):
  • evaluation_results(Option<Vec<EvaluationResult>>):

    The results of the simulation.

  • is_truncated(bool):

    A flag that indicates whether there are more items to return. If your results were truncated, you can make a subsequent pagination request using the Marker request parameter to retrieve more items. Note that IAM might return fewer than the MaxItems number of results even when there are more results available. We recommend that you check IsTruncated after every call to ensure that you receive all your results.

  • marker(Option<String>):

    When IsTruncated is true, this element is present and contains the value to use for the Marker parameter in a subsequent pagination request.

• On failure, responds with SdkError<SimulatePrincipalPolicyError>

pub fn tag_instance_profile(&self) -> TagInstanceProfile

Constructs a fluent builder for the TagInstanceProfile operation.

• The fluent builder is configurable:
  • instance_profile_name(impl Into<String>) / set_instance_profile_name(Option<String>):

    The name of the IAM instance profile to which you want to add tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    The list of tags that you want to attach to the IAM instance profile. Each tag consists of a key name and an associated value.

• On success, responds with TagInstanceProfileOutput
• On failure, responds with SdkError<TagInstanceProfileError>

pub fn tag_mfa_device(&self) -> TagMFADevice

Constructs a fluent builder for the TagMFADevice operation.

• The fluent builder is configurable:
  • serial_number(impl Into<String>) / set_serial_number(Option<String>):

    The unique identifier for the IAM virtual MFA device to which you want to add tags. For virtual MFA devices, the serial number is the same as the ARN.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    The list of tags that you want to attach to the IAM virtual MFA device. Each tag consists of a key name and an associated value.

• On success, responds with TagMfaDeviceOutput
• On failure, responds with SdkError<TagMFADeviceError>

pub fn tag_open_id_connect_provider(&self) -> TagOpenIDConnectProvider

Constructs a fluent builder for the TagOpenIDConnectProvider operation.

• The fluent builder is configurable:
  • open_id_connect_provider_arn(impl Into<String>) / set_open_id_connect_provider_arn(Option<String>):

    The ARN of the OIDC identity provider in IAM to which you want to add tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    The list of tags that you want to attach to the OIDC identity provider in IAM. Each tag consists of a key name and an associated value.

• On success, responds with TagOpenIdConnectProviderOutput
• On failure, responds with SdkError<TagOpenIDConnectProviderError>

pub fn tag_policy(&self) -> TagPolicy

Constructs a fluent builder for the TagPolicy operation.

• The fluent builder is configurable:
  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The ARN of the IAM customer managed policy to which you want to add tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    The list of tags that you want to attach to the IAM customer managed policy. Each tag consists of a key name and an associated value.

• On success, responds with TagPolicyOutput
• On failure, responds with SdkError<TagPolicyError>

pub fn tag_role(&self) -> TagRole

Constructs a fluent builder for the TagRole operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the IAM role to which you want to add tags.

    This parameter accepts (through its regex pattern) a string of characters that consist of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    The list of tags that you want to attach to the IAM role. Each tag consists of a key name and an associated value.

• On success, responds with TagRoleOutput
• On failure, responds with SdkError<TagRoleError>

pub fn tag_saml_provider(&self) -> TagSAMLProvider

Constructs a fluent builder for the TagSAMLProvider operation.

• The fluent builder is configurable:
  • saml_provider_arn(impl Into<String>) / set_saml_provider_arn(Option<String>):

    The ARN of the SAML identity provider in IAM to which you want to add tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    The list of tags that you want to attach to the SAML identity provider in IAM. Each tag consists of a key name and an associated value.

• On success, responds with TagSamlProviderOutput
• On failure, responds with SdkError<TagSAMLProviderError>

pub fn tag_server_certificate(&self) -> TagServerCertificate

Constructs a fluent builder for the TagServerCertificate operation.

• The fluent builder is configurable:
  • server_certificate_name(impl Into<String>) / set_server_certificate_name(Option<String>):

    The name of the IAM server certificate to which you want to add tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    The list of tags that you want to attach to the IAM server certificate. Each tag consists of a key name and an associated value.

• On success, responds with TagServerCertificateOutput
• On failure, responds with SdkError<TagServerCertificateError>

pub fn tag_user(&self) -> TagUser

Constructs a fluent builder for the TagUser operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user to which you want to add tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    The list of tags that you want to attach to the IAM user. Each tag consists of a key name and an associated value.

• On success, responds with TagUserOutput
• On failure, responds with SdkError<TagUserError>

pub fn untag_instance_profile(&self) -> UntagInstanceProfile

Constructs a fluent builder for the UntagInstanceProfile operation.

• The fluent builder is configurable:
  • instance_profile_name(impl Into<String>) / set_instance_profile_name(Option<String>):

    The name of the IAM instance profile from which you want to remove tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tag_keys(Vec<String>) / set_tag_keys(Option<Vec<String>>):

    A list of key names as a simple array of strings. The tags with matching keys are removed from the specified instance profile.

• On success, responds with UntagInstanceProfileOutput
• On failure, responds with SdkError<UntagInstanceProfileError>

pub fn untag_mfa_device(&self) -> UntagMFADevice

Constructs a fluent builder for the UntagMFADevice operation.

• The fluent builder is configurable:
  • serial_number(impl Into<String>) / set_serial_number(Option<String>):

    The unique identifier for the IAM virtual MFA device from which you want to remove tags. For virtual MFA devices, the serial number is the same as the ARN.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tag_keys(Vec<String>) / set_tag_keys(Option<Vec<String>>):

    A list of key names as a simple array of strings. The tags with matching keys are removed from the specified instance profile.

• On success, responds with UntagMfaDeviceOutput
• On failure, responds with SdkError<UntagMFADeviceError>

pub fn untag_open_id_connect_provider(&self) -> UntagOpenIDConnectProvider

Constructs a fluent builder for the UntagOpenIDConnectProvider operation.

• The fluent builder is configurable:
  • open_id_connect_provider_arn(impl Into<String>) / set_open_id_connect_provider_arn(Option<String>):

    The ARN of the OIDC provider in IAM from which you want to remove tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tag_keys(Vec<String>) / set_tag_keys(Option<Vec<String>>):

    A list of key names as a simple array of strings. The tags with matching keys are removed from the specified OIDC provider.

• On success, responds with UntagOpenIdConnectProviderOutput
• On failure, responds with SdkError<UntagOpenIDConnectProviderError>

pub fn untag_policy(&self) -> UntagPolicy

Constructs a fluent builder for the UntagPolicy operation.

• The fluent builder is configurable:
  • policy_arn(impl Into<String>) / set_policy_arn(Option<String>):

    The ARN of the IAM customer managed policy from which you want to remove tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tag_keys(Vec<String>) / set_tag_keys(Option<Vec<String>>):

    A list of key names as a simple array of strings. The tags with matching keys are removed from the specified policy.

• On success, responds with UntagPolicyOutput
• On failure, responds with SdkError<UntagPolicyError>

pub fn untag_role(&self) -> UntagRole

Constructs a fluent builder for the UntagRole operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the IAM role from which you want to remove tags.

    This parameter accepts (through its regex pattern) a string of characters that consist of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tag_keys(Vec<String>) / set_tag_keys(Option<Vec<String>>):

    A list of key names as a simple array of strings. The tags with matching keys are removed from the specified role.

• On success, responds with UntagRoleOutput
• On failure, responds with SdkError<UntagRoleError>

pub fn untag_saml_provider(&self) -> UntagSAMLProvider

Constructs a fluent builder for the UntagSAMLProvider operation.

• The fluent builder is configurable:
  • saml_provider_arn(impl Into<String>) / set_saml_provider_arn(Option<String>):

    The ARN of the SAML identity provider in IAM from which you want to remove tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tag_keys(Vec<String>) / set_tag_keys(Option<Vec<String>>):

    A list of key names as a simple array of strings. The tags with matching keys are removed from the specified SAML identity provider.

• On success, responds with UntagSamlProviderOutput
• On failure, responds with SdkError<UntagSAMLProviderError>

pub fn untag_server_certificate(&self) -> UntagServerCertificate

Constructs a fluent builder for the UntagServerCertificate operation.

• The fluent builder is configurable:
  • server_certificate_name(impl Into<String>) / set_server_certificate_name(Option<String>):

    The name of the IAM server certificate from which you want to remove tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tag_keys(Vec<String>) / set_tag_keys(Option<Vec<String>>):

    A list of key names as a simple array of strings. The tags with matching keys are removed from the specified IAM server certificate.

• On success, responds with UntagServerCertificateOutput
• On failure, responds with SdkError<UntagServerCertificateError>

pub fn untag_user(&self) -> UntagUser

Constructs a fluent builder for the UntagUser operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user from which you want to remove tags.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • tag_keys(Vec<String>) / set_tag_keys(Option<Vec<String>>):

    A list of key names as a simple array of strings. The tags with matching keys are removed from the specified user.

• On success, responds with UntagUserOutput
• On failure, responds with SdkError<UntagUserError>

pub fn update_access_key(&self) -> UpdateAccessKey

Constructs a fluent builder for the UpdateAccessKey operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user whose key you want to update.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • access_key_id(impl Into<String>) / set_access_key_id(Option<String>):

    The access key ID of the secret access key you want to update.

    This parameter allows (through its regex pattern) a string of characters that can consist of any upper or lowercased letter or digit.

  • status(StatusType) / set_status(Option<StatusType>):

    The status you want to assign to the secret access key. Active means that the key can be used for programmatic calls to Amazon Web Services, while Inactive means that the key cannot be used.

• On success, responds with UpdateAccessKeyOutput
• On failure, responds with SdkError<UpdateAccessKeyError>

pub fn update_account_password_policy(&self) -> UpdateAccountPasswordPolicy

Constructs a fluent builder for the UpdateAccountPasswordPolicy operation.

• The fluent builder is configurable:
  • minimum_password_length(i32) / set_minimum_password_length(Option<i32>):

    The minimum number of characters allowed in an IAM user password.

    If you do not specify a value for this parameter, then the operation uses the default value of 6.

  • require_symbols(bool) / set_require_symbols(bool):

    Specifies whether IAM user passwords must contain at least one of the following non-alphanumeric characters:

    ! @ # $ % ^ & * ( ) _ + - = [ ] { } | ’

    If you do not specify a value for this parameter, then the operation uses the default value of false. The result is that passwords do not require at least one symbol character.

  • require_numbers(bool) / set_require_numbers(bool):

    Specifies whether IAM user passwords must contain at least one numeric character (0 to 9).

    If you do not specify a value for this parameter, then the operation uses the default value of false. The result is that passwords do not require at least one numeric character.

  • require_uppercase_characters(bool) / set_require_uppercase_characters(bool):

    Specifies whether IAM user passwords must contain at least one uppercase character from the ISO basic Latin alphabet (A to Z).

    If you do not specify a value for this parameter, then the operation uses the default value of false. The result is that passwords do not require at least one uppercase character.

  • require_lowercase_characters(bool) / set_require_lowercase_characters(bool):

    Specifies whether IAM user passwords must contain at least one lowercase character from the ISO basic Latin alphabet (a to z).

    If you do not specify a value for this parameter, then the operation uses the default value of false. The result is that passwords do not require at least one lowercase character.

  • allow_users_to_change_password(bool) / set_allow_users_to_change_password(bool):

    Allows all IAM users in your account to use the Amazon Web Services Management Console to change their own passwords. For more information, see Permitting IAM users to change their own passwords in the IAM User Guide.

    If you do not specify a value for this parameter, then the operation uses the default value of false. The result is that IAM users in the account do not automatically have permissions to change their own password.

  • max_password_age(i32) / set_max_password_age(Option<i32>):

    The number of days that an IAM user password is valid.

    If you do not specify a value for this parameter, then the operation uses the default value of 0. The result is that IAM user passwords never expire.

  • password_reuse_prevention(i32) / set_password_reuse_prevention(Option<i32>):

    Specifies the number of previous passwords that IAM users are prevented from reusing.

    If you do not specify a value for this parameter, then the operation uses the default value of 0. The result is that IAM users are not prevented from reusing previous passwords.

  • hard_expiry(bool) / set_hard_expiry(Option<bool>):

    Prevents IAM users who are accessing the account via the Amazon Web Services Management Console from setting a new console password after their password has expired. The IAM user cannot access the console until an administrator resets the password.

    If you do not specify a value for this parameter, then the operation uses the default value of false. The result is that IAM users can change their passwords after they expire and continue to sign in as the user.

    In the Amazon Web Services Management Console, the custom password policy option Allow users to change their own password gives IAM users permissions to iam:ChangePassword for only their user and to the iam:GetAccountPasswordPolicy action. This option does not attach a permissions policy to each user, rather the permissions are applied at the account-level for all users by IAM. IAM users with iam:ChangePassword permission and active access keys can reset their own expired console password using the CLI or API.

• On success, responds with UpdateAccountPasswordPolicyOutput
• On failure, responds with SdkError<UpdateAccountPasswordPolicyError>

pub fn update_assume_role_policy(&self) -> UpdateAssumeRolePolicy

Constructs a fluent builder for the UpdateAssumeRolePolicy operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the role to update with the new policy.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • policy_document(impl Into<String>) / set_policy_document(Option<String>):

    The policy that grants an entity permission to assume the role.

    You must provide policies in JSON format in IAM. However, for CloudFormation templates formatted in YAML, you can provide the policy in JSON or YAML format. CloudFormation always converts a YAML policy to JSON format before submitting it to IAM.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

• On success, responds with UpdateAssumeRolePolicyOutput
• On failure, responds with SdkError<UpdateAssumeRolePolicyError>

pub fn update_group(&self) -> UpdateGroup

Constructs a fluent builder for the UpdateGroup operation.

• The fluent builder is configurable:
  • group_name(impl Into<String>) / set_group_name(Option<String>):

    Name of the IAM group to update. If you’re changing the name of the group, this is the original name.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • new_path(impl Into<String>) / set_new_path(Option<String>):

    New path for the IAM group. Only include this if changing the group’s path.

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • new_group_name(impl Into<String>) / set_new_group_name(Option<String>):

    New name for the IAM group. Only include this if changing the group’s name.

    IAM user, group, role, and policy names must be unique within the account. Names are not distinguished by case. For example, you cannot create resources named both “MyResource” and “myresource”.

• On success, responds with UpdateGroupOutput
• On failure, responds with SdkError<UpdateGroupError>

pub fn update_login_profile(&self) -> UpdateLoginProfile

Constructs a fluent builder for the UpdateLoginProfile operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user whose password you want to update.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • password(impl Into<String>) / set_password(Option<String>):

    The new password for the specified IAM user.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

    However, the format can be further restricted by the account administrator by setting a password policy on the Amazon Web Services account. For more information, see UpdateAccountPasswordPolicy.

  • password_reset_required(bool) / set_password_reset_required(Option<bool>):

    Allows this new password to be used only once by requiring the specified IAM user to set a new password on next sign-in.

• On success, responds with UpdateLoginProfileOutput
• On failure, responds with SdkError<UpdateLoginProfileError>

pub fn update_open_id_connect_provider_thumbprint(
    &self
) -> UpdateOpenIDConnectProviderThumbprint

Constructs a fluent builder for the UpdateOpenIDConnectProviderThumbprint operation.

• The fluent builder is configurable:
  • open_id_connect_provider_arn(impl Into<String>) / set_open_id_connect_provider_arn(Option<String>):

    The Amazon Resource Name (ARN) of the IAM OIDC provider resource object for which you want to update the thumbprint. You can get a list of OIDC provider ARNs by using the ListOpenIDConnectProviders operation.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

  • thumbprint_list(Vec<String>) / set_thumbprint_list(Option<Vec<String>>):

    A list of certificate thumbprints that are associated with the specified IAM OpenID Connect provider. For more information, see CreateOpenIDConnectProvider.

• On success, responds with UpdateOpenIdConnectProviderThumbprintOutput
• On failure, responds with SdkError<UpdateOpenIDConnectProviderThumbprintError>

pub fn update_role(&self) -> UpdateRole

Constructs a fluent builder for the UpdateRole operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the role that you want to modify.

  • description(impl Into<String>) / set_description(Option<String>):

    The new description that you want to apply to the specified role.

  • max_session_duration(i32) / set_max_session_duration(Option<i32>):

    The maximum session duration (in seconds) that you want to set for the specified role. If you do not specify a value for this setting, the default maximum of one hour is applied. This setting can have a value from 1 hour to 12 hours.

    Anyone who assumes the role from the CLI or API can use the DurationSeconds API parameter or the duration-seconds CLI parameter to request a longer session. The MaxSessionDuration setting determines the maximum duration that can be requested using the DurationSeconds parameter. If users don’t specify a value for the DurationSeconds parameter, their security credentials are valid for one hour by default. This applies when you use the AssumeRole* API operations or the assume-role* CLI operations but does not apply when you use those operations to create a console URL. For more information, see Using IAM roles in the IAM User Guide.

• On success, responds with UpdateRoleOutput
• On failure, responds with SdkError<UpdateRoleError>

pub fn update_role_description(&self) -> UpdateRoleDescription

Constructs a fluent builder for the UpdateRoleDescription operation.

• The fluent builder is configurable:
  • role_name(impl Into<String>) / set_role_name(Option<String>):

    The name of the role that you want to modify.

  • description(impl Into<String>) / set_description(Option<String>):

    The new description that you want to apply to the specified role.

• On success, responds with UpdateRoleDescriptionOutput with field(s):
  • role(Option<Role>):

    A structure that contains details about the modified role.

• On failure, responds with SdkError<UpdateRoleDescriptionError>

pub fn update_saml_provider(&self) -> UpdateSAMLProvider

Constructs a fluent builder for the UpdateSAMLProvider operation.

• The fluent builder is configurable:
  • saml_metadata_document(impl Into<String>) / set_saml_metadata_document(Option<String>):

    An XML document generated by an identity provider (IdP) that supports SAML 2.0. The document includes the issuer’s name, expiration information, and keys that can be used to validate the SAML authentication response (assertions) that are received from the IdP. You must generate the metadata document using the identity management software that is used as your organization’s IdP.

  • saml_provider_arn(impl Into<String>) / set_saml_provider_arn(Option<String>):

    The Amazon Resource Name (ARN) of the SAML provider to update.

    For more information about ARNs, see Amazon Resource Names (ARNs) in the Amazon Web Services General Reference.

• On success, responds with UpdateSamlProviderOutput with field(s):
  • saml_provider_arn(Option<String>):

    The Amazon Resource Name (ARN) of the SAML provider that was updated.

• On failure, responds with SdkError<UpdateSAMLProviderError>

pub fn update_server_certificate(&self) -> UpdateServerCertificate

Constructs a fluent builder for the UpdateServerCertificate operation.

• The fluent builder is configurable:
  • server_certificate_name(impl Into<String>) / set_server_certificate_name(Option<String>):

    The name of the server certificate that you want to update.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • new_path(impl Into<String>) / set_new_path(Option<String>):

    The new path for the server certificate. Include this only if you are updating the server certificate’s path.

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • new_server_certificate_name(impl Into<String>) / set_new_server_certificate_name(Option<String>):

    The new name for the server certificate. Include this only if you are updating the server certificate’s name. The name of the certificate cannot contain any spaces.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

• On success, responds with UpdateServerCertificateOutput
• On failure, responds with SdkError<UpdateServerCertificateError>

pub fn update_service_specific_credential(
    &self
) -> UpdateServiceSpecificCredential

Constructs a fluent builder for the UpdateServiceSpecificCredential operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user associated with the service-specific credential. If you do not specify this value, then the operation assumes the user whose credentials are used to call the operation.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • service_specific_credential_id(impl Into<String>) / set_service_specific_credential_id(Option<String>):

    The unique identifier of the service-specific credential.

    This parameter allows (through its regex pattern) a string of characters that can consist of any upper or lowercased letter or digit.

  • status(StatusType) / set_status(Option<StatusType>):

    The status to be assigned to the service-specific credential.

• On success, responds with UpdateServiceSpecificCredentialOutput
• On failure, responds with SdkError<UpdateServiceSpecificCredentialError>

pub fn update_signing_certificate(&self) -> UpdateSigningCertificate

Constructs a fluent builder for the UpdateSigningCertificate operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user the signing certificate belongs to.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • certificate_id(impl Into<String>) / set_certificate_id(Option<String>):

    The ID of the signing certificate you want to update.

    This parameter allows (through its regex pattern) a string of characters that can consist of any upper or lowercased letter or digit.

  • status(StatusType) / set_status(Option<StatusType>):

    The status you want to assign to the certificate. Active means that the certificate can be used for programmatic calls to Amazon Web Services Inactive means that the certificate cannot be used.

• On success, responds with UpdateSigningCertificateOutput
• On failure, responds with SdkError<UpdateSigningCertificateError>

pub fn update_ssh_public_key(&self) -> UpdateSSHPublicKey

Constructs a fluent builder for the UpdateSSHPublicKey operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user associated with the SSH public key.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • ssh_public_key_id(impl Into<String>) / set_ssh_public_key_id(Option<String>):

    The unique identifier for the SSH public key.

    This parameter allows (through its regex pattern) a string of characters that can consist of any upper or lowercased letter or digit.

  • status(StatusType) / set_status(Option<StatusType>):

    The status to assign to the SSH public key. Active means that the key can be used for authentication with an CodeCommit repository. Inactive means that the key cannot be used.

• On success, responds with UpdateSshPublicKeyOutput
• On failure, responds with SdkError<UpdateSSHPublicKeyError>

pub fn update_user(&self) -> UpdateUser

Constructs a fluent builder for the UpdateUser operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    Name of the user to update. If you’re changing the name of the user, this is the original user name.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • new_path(impl Into<String>) / set_new_path(Option<String>):

    New path for the IAM user. Include this parameter only if you’re changing the user’s path.

    This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

  • new_user_name(impl Into<String>) / set_new_user_name(Option<String>):

    New name for the user. Include this parameter only if you’re changing the user’s name.

    IAM user, group, role, and policy names must be unique within the account. Names are not distinguished by case. For example, you cannot create resources named both “MyResource” and “myresource”.

• On success, responds with UpdateUserOutput
• On failure, responds with SdkError<UpdateUserError>

pub fn upload_server_certificate(&self) -> UploadServerCertificate

Constructs a fluent builder for the UploadServerCertificate operation.

• The fluent builder is configurable:
  • path(impl Into<String>) / set_path(Option<String>):

    The path for the server certificate. For more information about paths, see IAM identifiers in the IAM User Guide.

    This parameter is optional. If it is not included, it defaults to a slash (/). This parameter allows (through its regex pattern) a string of characters consisting of either a forward slash (/) by itself or a string that must begin and end with forward slashes. In addition, it can contain any ASCII character from the ! (\u0021) through the DEL character (\u007F), including most punctuation characters, digits, and upper and lowercased letters.

    If you are uploading a server certificate specifically for use with Amazon CloudFront distributions, you must specify a path using the path parameter. The path must begin with /cloudfront and must include a trailing slash (for example, /cloudfront/test/).

  • server_certificate_name(impl Into<String>) / set_server_certificate_name(Option<String>):

    The name for the server certificate. Do not include the path in this value. The name of the certificate cannot contain any spaces.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • certificate_body(impl Into<String>) / set_certificate_body(Option<String>):

    The contents of the public key certificate in PEM-encoded format.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

  • private_key(impl Into<String>) / set_private_key(Option<String>):

    The contents of the private key in PEM-encoded format.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

  • certificate_chain(impl Into<String>) / set_certificate_chain(Option<String>):

    The contents of the certificate chain. This is typically a concatenation of the PEM-encoded public key certificates of the chain.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

  • tags(Vec<Tag>) / set_tags(Option<Vec<Tag>>):

    A list of tags that you want to attach to the new IAM server certificate resource. Each tag consists of a key name and an associated value. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

    If any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request fails and the resource is not created.

• On success, responds with UploadServerCertificateOutput with field(s):
  • server_certificate_metadata(Option<ServerCertificateMetadata>):

    The meta information of the uploaded server certificate without its certificate body, certificate chain, and private key.

  • tags(Option<Vec<Tag>>):

    A list of tags that are attached to the new IAM server certificate. The returned list of tags is sorted by tag key. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

• On failure, responds with SdkError<UploadServerCertificateError>

pub fn upload_signing_certificate(&self) -> UploadSigningCertificate

Constructs a fluent builder for the UploadSigningCertificate operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the user the signing certificate is for.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • certificate_body(impl Into<String>) / set_certificate_body(Option<String>):

    The contents of the signing certificate.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

• On success, responds with UploadSigningCertificateOutput with field(s):
  • certificate(Option<SigningCertificate>):

    Information about the certificate.

• On failure, responds with SdkError<UploadSigningCertificateError>

pub fn upload_ssh_public_key(&self) -> UploadSSHPublicKey

Constructs a fluent builder for the UploadSSHPublicKey operation.

• The fluent builder is configurable:
  • user_name(impl Into<String>) / set_user_name(Option<String>):

    The name of the IAM user to associate the SSH public key with.

    This parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric characters with no spaces. You can also include any of the following characters: _+=,.@-

  • ssh_public_key_body(impl Into<String>) / set_ssh_public_key_body(Option<String>):

    The SSH public key. The public key must be encoded in ssh-rsa format or PEM format. The minimum bit-length of the public key is 2048 bits. For example, you can generate a 2048-bit key, and the resulting PEM file is 1679 bytes long.

    The regex pattern used to validate this parameter is a string of characters consisting of the following:

    • Any printable ASCII character ranging from the space character (\u0020) through the end of the ASCII character range

    • The printable characters in the Basic Latin and Latin-1 Supplement character set (through \u00FF)

    • The special characters tab (\u0009), line feed (\u000A), and carriage return (\u000D)

• On success, responds with UploadSshPublicKeyOutput with field(s):
  • ssh_public_key(Option<SshPublicKey>):

    Contains information about the SSH public key.

• On failure, responds with SdkError<UploadSSHPublicKeyError>

impl Client

pub fn from_conf_conn<C, E>(conf: Config, conn: C) -> Self where
    C: SmithyConnector<Error = E> + Send + 'static,
    E: Into<ConnectorError>, 

Creates a client with the given service config and connector override.

pub fn new(sdk_config: &SdkConfig) -> Self

Creates a new client from a shared config.

pub fn from_conf(conf: Config) -> Self

Creates a new client from the service Config.

Trait Implementations

impl Clone for Client

fn clone(&self) -> Self

Returns a copy of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Debug for Client

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl From<Client<DynConnector, DynMiddleware<DynConnector>, Standard>> for Client

fn from(client: Client<DynConnector, DynMiddleware<DynConnector>>) -> Self

Converts to this type from the input type.