Awso_sso_oidc_syncSourceval create_token :
?endpoint_url:string ->
?cfg:Awso.Cfg.t ->
Awso_sso_oidc.Values.CreateTokenRequest.t ->
(Awso_sso_oidc.Values.CreateTokenResponse.t,
Awso_sso_oidc.Values.CreateTokenResponse.error)
Result.tval create_token_with_i_a_m :
?endpoint_url:string ->
?cfg:Awso.Cfg.t ->
Awso_sso_oidc.Values.CreateTokenWithIAMRequest.t ->
(Awso_sso_oidc.Values.CreateTokenWithIAMResponse.t,
Awso_sso_oidc.Values.CreateTokenWithIAMResponse.error)
Result.tval register_client :
?endpoint_url:string ->
?cfg:Awso.Cfg.t ->
Awso_sso_oidc.Values.RegisterClientRequest.t ->
(Awso_sso_oidc.Values.RegisterClientResponse.t,
Awso_sso_oidc.Values.RegisterClientResponse.error)
Result.tval start_device_authorization :
?endpoint_url:string ->
?cfg:Awso.Cfg.t ->
Awso_sso_oidc.Values.StartDeviceAuthorizationRequest.t ->
(Awso_sso_oidc.Values.StartDeviceAuthorizationResponse.t,
Awso_sso_oidc.Values.StartDeviceAuthorizationResponse.error)
Result.tinclude module type of struct include Awso_sso_oidc.Values endval structure_to_value_aux :
('a * 'b option) list ->
f:(('a * 'b) list -> 'c) ->
[> `Structure of 'c ]val structure_to_wrapped_value :
wrapper:'a ->
response:'a ->
('b * 'c option) list ->
[> `Structure of ('a * [> `Structure of ('b * 'c) list ]) list ]Indicates that an error from the service occurred while trying to process a request.
Indicates that the clientId or clientSecret in the request is invalid. For example, this can occur when a client sends an incorrect clientId or an expired clientSecret.
Indicates that something is wrong with the input to the request. For example, a required parameter might be missing or out of range.
Indicates that the client is making the request too frequently and is more than the service can handle.
Indicates that the client is not currently authorized to make the request. This can happen when a clientId is not issued for a public client.
Indicates that the client information sent in the request during registration is invalid.
Indicates that one or more redirect URI in the request is not supported for this operation.
Indicates that the scope provided in the request is invalid.
Indicates that the grant type in the request is not supported by the service.
You do not have sufficient access to perform this action.
Indicates that a request to authorize a client with an access user session token is pending.
This structure contains Amazon Web Services-specific parameter extensions and the identity context.
Indicates that the token issued by the service is expired and is no longer valid.
Indicates that a request contains an invalid grant. This can occur if a client makes a CreateToken request with an invalid grant type.
Indicates that a token provided as input to the request was issued by and is only usable by calling IAM Identity Center endpoints in another region.
module StartDeviceAuthorizationResponse =
Awso_sso_oidc.Values.StartDeviceAuthorizationResponseInitiates device authorization by requesting a pair of verification codes from the authorization service.
Initiates device authorization by requesting a pair of verification codes from the authorization service.
Registers a public client with IAM Identity Center. This allows clients to perform authorization using the authorization code grant with Proof Key for Code Exchange (PKCE) or the device code grant.
Registers a public client with IAM Identity Center. This allows clients to perform authorization using the authorization code grant with Proof Key for Code Exchange (PKCE) or the device code grant.
Creates and returns access and refresh tokens for authorized client applications that are authenticated using any IAM entity, such as a service role or user. These tokens might contain defined scopes that specify permissions such as read:profile or write:data. Through downscoping, you can use the scopes parameter to request tokens with reduced permissions compared to the original client application's permissions or, if applicable, the refresh token's scopes. The access token can be used to fetch short-lived credentials for the assigned Amazon Web Services accounts or to access application APIs using bearer authentication. This API is used with Signature Version 4. For more information, see Amazon Web Services Signature Version 4 for API Requests.
Creates and returns access and refresh tokens for authorized client applications that are authenticated using any IAM entity, such as a service role or user. These tokens might contain defined scopes that specify permissions such as read:profile or write:data. Through downscoping, you can use the scopes parameter to request tokens with reduced permissions compared to the original client application's permissions or, if applicable, the refresh token's scopes. The access token can be used to fetch short-lived credentials for the assigned Amazon Web Services accounts or to access application APIs using bearer authentication. This API is used with Signature Version 4. For more information, see Amazon Web Services Signature Version 4 for API Requests.
Creates and returns access and refresh tokens for clients that are authenticated using client secrets. The access token can be used to fetch short-lived credentials for the assigned AWS accounts or to access application APIs using bearer authentication.
Creates and returns access and refresh tokens for clients that are authenticated using client secrets. The access token can be used to fetch short-lived credentials for the assigned AWS accounts or to access application APIs using bearer authentication.