Enum rusoto_sts::AssumeRoleWithWebIdentityError

pub enum AssumeRoleWithWebIdentityError {
    ExpiredToken(String),
    IDPCommunicationError(String),
    IDPRejectedClaim(String),
    InvalidIdentityToken(String),
    MalformedPolicyDocument(String),
    PackedPolicyTooLarge(String),
    RegionDisabled(String),
}

Errors returned by AssumeRoleWithWebIdentity

Variants

ExpiredToken(String)

The web identity token that was passed is expired or is not valid. Get a new identity token from the identity provider and then retry the request.

IDPCommunicationError(String)

The request could not be fulfilled because the identity provider (IDP) that was asked to verify the incoming identity token could not be reached. This is often a transient error caused by network conditions. Retry the request a limited number of times so that you don't exceed the request rate. If the error persists, the identity provider might be down or not responding.

IDPRejectedClaim(String)

The identity provider (IdP) reported that authentication failed. This might be because the claim is invalid.

If this error is returned for the AssumeRoleWithWebIdentity operation, it can also mean that the claim has expired or has been explicitly revoked.

InvalidIdentityToken(String)

The web identity token that was passed could not be validated by AWS. Get a new identity token from the identity provider and then retry the request.

MalformedPolicyDocument(String)

The request was rejected because the policy document was malformed. The error message describes the specific error.

PackedPolicyTooLarge(String)

The request was rejected because the total packed size of the session policies and session tags combined was too large. An AWS conversion compresses the session policy document, session policy ARNs, and session tags into a packed binary format that has a separate limit. The error message indicates by percentage how close the policies and tags are to the upper size limit. For more information, see Passing Session Tags in STS in the IAM User Guide.

You could receive this error even though you meet other defined session policy and session tag limits. For more information, see IAM and STS Entity Character Limits in the IAM User Guide.

RegionDisabled(String)

STS is not activated in the requested region for the account that is being asked to generate credentials. The account administrator must use the IAM console to activate STS in that region. For more information, see Activating and Deactivating AWS STS in an AWS Region in the IAM User Guide.

Implementations

impl AssumeRoleWithWebIdentityError

pub fn from_response(
    res: BufferedHttpResponse
) -> RusotoError<AssumeRoleWithWebIdentityError>

Trait Implementations

impl Debug for AssumeRoleWithWebIdentityError

pub fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Display for AssumeRoleWithWebIdentityError

pub fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter.

impl Error for AssumeRoleWithWebIdentityError

pub fn source(&self) -> Option<&(dyn Error + 'static)>

The lower-level source of this error, if any.

pub fn backtrace(&self) -> Option<&Backtrace>

🔬 This is a nightly-only experimental API. (backtrace)

Returns a stack backtrace, if available, of where this error occurred.

pub fn description(&self) -> &str

👎 Deprecated since 1.42.0:

use the Display impl or to_string()

pub fn cause(&self) -> Option<&dyn Error>

👎 Deprecated since 1.33.0:

replaced by Error::source, which can support downcasting

impl PartialEq<AssumeRoleWithWebIdentityError> for AssumeRoleWithWebIdentityError

pub fn eq(&self, other: &AssumeRoleWithWebIdentityError) -> bool

This method tests for self and other values to be equal, and is used by ==.

pub fn ne(&self, other: &AssumeRoleWithWebIdentityError) -> bool

This method tests for !=.

impl StructuralPartialEq for AssumeRoleWithWebIdentityError