UNPKG

@aws-sdk/client-sts

Version:

AWS SDK for JavaScript Sts Client for Node.js, Browser and React Native

github.com/aws/aws-sdk-js-v3/tree/main/clients/client-sts

aws/aws-sdk-js-v3

173 lines (172 loc) 7.79 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
import type { ExceptionOptionType as __ExceptionOptionType } from "@smithy/smithy-client"; import { STSServiceException as __BaseException } from "./STSServiceException"; /** * <p>The web identity token that was passed is expired or is not valid. Get a new identity * token from the identity provider and then retry the request.</p> * @public */ export declare class ExpiredTokenException extends __BaseException { readonly name: "ExpiredTokenException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<ExpiredTokenException, __BaseException>); } /** * <p>The request was rejected because the policy document was malformed. The error message * describes the specific error.</p> * @public */ export declare class MalformedPolicyDocumentException extends __BaseException { readonly name: "MalformedPolicyDocumentException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<MalformedPolicyDocumentException, __BaseException>); } /** * <p>The request was rejected because the total packed size of the session policies and * session tags combined was too large. An Amazon Web Services conversion compresses the session policy * document, session policy ARNs, and session tags into a packed binary format that has a * separate limit. The error message indicates by percentage how close the policies and * tags are to the upper size limit. For more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_session-tags.html">Passing Session Tags in STS</a> in * the <i>IAM User Guide</i>.</p> * <p>You could receive this error even though you meet other defined session policy and * session tag limits. For more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html#reference_iam-limits-entity-length">IAM and STS Entity Character Limits</a> in the <i>IAM User * Guide</i>.</p> * @public */ export declare class PackedPolicyTooLargeException extends __BaseException { readonly name: "PackedPolicyTooLargeException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<PackedPolicyTooLargeException, __BaseException>); } /** * <p>STS is not activated in the requested region for the account that is being asked to * generate credentials. The account administrator must use the IAM console to activate * STS in that region. For more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_enable-regions.html#sts-regions-activate-deactivate">Activating and Deactivating STS in an Amazon Web Services Region</a> in the <i>IAM * User Guide</i>.</p> * @public */ export declare class RegionDisabledException extends __BaseException { readonly name: "RegionDisabledException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<RegionDisabledException, __BaseException>); } /** * <p>The identity provider (IdP) reported that authentication failed. This might be because * the claim is invalid.</p> * <p>If this error is returned for the <code>AssumeRoleWithWebIdentity</code> operation, it * can also mean that the claim has expired or has been explicitly revoked. </p> * @public */ export declare class IDPRejectedClaimException extends __BaseException { readonly name: "IDPRejectedClaimException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<IDPRejectedClaimException, __BaseException>); } /** * <p>The web identity token that was passed could not be validated by Amazon Web Services. Get a new * identity token from the identity provider and then retry the request.</p> * @public */ export declare class InvalidIdentityTokenException extends __BaseException { readonly name: "InvalidIdentityTokenException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<InvalidIdentityTokenException, __BaseException>); } /** * <p>The request could not be fulfilled because the identity provider (IDP) that was asked * to verify the incoming identity token could not be reached. This is often a transient * error caused by network conditions. Retry the request a limited number of times so that * you don't exceed the request rate. If the error persists, the identity provider might be * down or not responding.</p> * @public */ export declare class IDPCommunicationErrorException extends __BaseException { readonly name: "IDPCommunicationErrorException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<IDPCommunicationErrorException, __BaseException>); } /** * <p>The error returned if the message passed to <code>DecodeAuthorizationMessage</code> * was invalid. This can happen if the token contains invalid characters, such as line * breaks, or if the message has expired.</p> * @public */ export declare class InvalidAuthorizationMessageException extends __BaseException { readonly name: "InvalidAuthorizationMessageException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<InvalidAuthorizationMessageException, __BaseException>); } /** * <p>The trade-in token provided in the request has expired and can no longer be exchanged * for credentials. Request a new token and retry the operation.</p> * @public */ export declare class ExpiredTradeInTokenException extends __BaseException { readonly name: "ExpiredTradeInTokenException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<ExpiredTradeInTokenException, __BaseException>); } /** * <p>The requested token payload size exceeds the maximum allowed size. Reduce the number of request tags included in the <code>GetWebIdentityToken</code> API call to reduce the token payload size.</p> * @public */ export declare class JWTPayloadSizeExceededException extends __BaseException { readonly name: "JWTPayloadSizeExceededException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<JWTPayloadSizeExceededException, __BaseException>); } /** * <p>The outbound web identity federation feature is not enabled for this account. To use * this feature, you must first enable it through the Amazon Web Services Management Console or API.</p> * @public */ export declare class OutboundWebIdentityFederationDisabledException extends __BaseException { readonly name: "OutboundWebIdentityFederationDisabledException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<OutboundWebIdentityFederationDisabledException, __BaseException>); } /** * <p>The requested token duration would extend the session beyond its original expiration time. * You cannot use this operation to extend the lifetime of a session beyond what was granted when the session was originally created.</p> * @public */ export declare class SessionDurationEscalationException extends __BaseException { readonly name: "SessionDurationEscalationException"; readonly $fault: "client"; /** * @internal */ constructor(opts: __ExceptionOptionType<SessionDurationEscalationException, __BaseException>); }