-
Notifications
You must be signed in to change notification settings - Fork 862
/
AssumeRoleAWSCredentialsOptions.cs
89 lines (81 loc) · 3.03 KB
/
AssumeRoleAWSCredentialsOptions.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
/*
* Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
*
* Licensed under the Apache License, Version 2.0 (the "License").
* You may not use this file except in compliance with the License.
* A copy of the License is located at
*
* http://aws.amazon.com/apache2.0
*
* or in the "license" file accompanying this file. This file is distributed
* on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
* express or implied. See the License for the specific language governing
* permissions and limitations under the License.
*/
using Amazon.Runtime.Internal;
using Amazon.Runtime.Internal.Util;
using Amazon.Runtime.SharedInterfaces;
using System;
using System.Globalization;
using System.Net;
namespace Amazon.Runtime
{
public class AssumeRoleAWSCredentialsOptions
{
/// <summary>
/// A unique identifier that is used by third parties when assuming roles in their customers' accounts.
/// </summary>
public string ExternalId { get; set; }
/// <summary>
/// An IAM policy in JSON format.
/// </summary>
public string Policy { get; set; }
/// <summary>
/// The length of time in seconds before the credentials will expire.
/// </summary>
public int? DurationSeconds { get; set; }
/// <summary>
/// The proxy settings to use when calling AssumeRole.
/// </summary>
#if BCL
public WebProxy ProxySettings { get; set; }
#elif NETSTANDARD
public IWebProxy ProxySettings { get; set; }
#endif
/// <summary>
/// The identification number of the MFA device that is associated with the user who is making the assume-role call.
/// </summary>
public string MfaSerialNumber { get; set; }
/// <summary>
/// The value provided by the MFA device, if the trust policy of the role being assumed requires MFA.
/// </summary>
public string MfaTokenCode
{
get
{
if (String.IsNullOrEmpty(MfaSerialNumber))
{
return null;
}
else if (MfaTokenCodeCallback == null)
{
throw new InvalidOperationException("The MfaSerialNumber has been set but the MfaTokenCodeCallback hasn't. " +
"MfaTokenCodeCallback is required in order to determine the MfaTokenCode when MfaSerialNumber is set.");
}
else
{
return MfaTokenCodeCallback();
}
}
}
/// <summary>
/// A callback that's used to obtain the MFA token code when the AssumeRoleAWSCredentials are refreshed.
/// </summary>
public Func<string> MfaTokenCodeCallback { get; set; }
/// <summary>
/// The source identity specified by the principal that is calling the <code>AssumeRole</code>
/// operation.
/// </summary>
public string SourceIdentity { get; set; }
}
}