ContextQMD
Back to Aws Doc Sdk Examples

IAM code examples for the SDK for Kotlin

kotlin/services/iam/README.md

latest5.0 KB
Original Source

IAM code examples for the SDK for Kotlin

Overview

Shows how to use the AWS SDK for Kotlin to work with AWS Identity and Access Management (IAM).

<!--custom.overview.start--> <!--custom.overview.end-->

IAM is a web service for securely controlling access to AWS services. With IAM, you can centrally manage permissions in your AWS account.

⚠ Important

  • Running this code might result in charges to your AWS account. For more details, see AWS Pricing and Free Tier.
  • Running the tests might result in charges to your AWS account.
  • We recommend that you grant your code least privilege. At most, grant only the minimum permissions required to perform the task. For more information, see Grant least privilege.
  • This code is not tested in every AWS Region. For more information, see AWS Regional Services.
<!--custom.important.start--> <!--custom.important.end-->

Code examples

Prerequisites

For prerequisites, see the README in the kotlin folder.

<!--custom.prerequisites.start--> <!--custom.prerequisites.end-->

Basics

Code examples that show you how to perform the essential operations within a service.

Single actions

Code excerpts that show you how to call individual service functions.

<!--custom.examples.start-->

Custom Examples

  • AccessKeyLastUsed - Demonstrates how to display the time that an access key was last used.
  • IAMScenario - Demonstrates how to perform various AWS IAM operations.
<!--custom.examples.end-->

Run the examples

Instructions

<!--custom.instructions.start-->

JSON File

To successfully run the IAMScenario, you need a JSON file that contains the information to create a role. Included in this file is the ARN of the IAM user for the trust relationship. The following JSON shows an example.

{
 "Version": "2012-10-17",
  "Statement": [
   {
   "Effect": "Allow",
   "Principal": {
     "AWS": "<Enter the IAM User ARN value>"
   },
   "Action": "sts:AssumeRole",
   "Condition": {}
  }
 ]
}

To run these examples, you can setup your development environment to use Gradle to configure and build AWS SDK for Kotlin projects. For more information, see Get started with the AWS SDK for Kotlin.

<!--custom.instructions.end-->

Learn the basics

This example shows you how to create a user and assume a role.

  • Create a user with no permissions.
  • Create a role that grants permission to list Amazon S3 buckets for the account.
  • Add a policy to let the user assume the role.
  • Assume the role and list S3 buckets using temporary credentials, then clean up resources.
<!--custom.basic_prereqs.iam_Scenario_CreateUserAssumeRole.start--> <!--custom.basic_prereqs.iam_Scenario_CreateUserAssumeRole.end--> <!--custom.basics.iam_Scenario_CreateUserAssumeRole.start--> <!--custom.basics.iam_Scenario_CreateUserAssumeRole.end-->

Tests

⚠ Running tests might result in charges to your AWS account.

To find instructions for running these tests, see the README in the kotlin folder.

<!--custom.tests.start--> <!--custom.tests.end-->

Additional resources

<!--custom.resources.start--> <!--custom.resources.end-->

Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.

SPDX-License-Identifier: Apache-2.0