com.amazonaws.services.identitymanagement.AmazonIdentityManagementClientBuilder Java Examples
The following examples show how to use
com.amazonaws.services.identitymanagement.AmazonIdentityManagementClientBuilder.
You can vote up the ones you like or vote down the ones you don't like,
and go to the original project or source file by following the links above each example. You may check out the related API usage on the sidebar.
Example #1
| Source File: CreateAccessKey.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply an IAM user\n" +
"Ex: CreateAccessKey <user>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String user = args[0];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
CreateAccessKeyRequest request = new CreateAccessKeyRequest()
.withUserName(user);
CreateAccessKeyResult response = iam.createAccessKey(request);
System.out.println("Created access key: " + response.getAccessKey());
}
Example #2
| Source File: DeleteServerCertificate.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply a certificate name\n" +
"Ex: DeleteServerCertificate <certificate-name>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String cert_name = args[0];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
DeleteServerCertificateRequest request =
new DeleteServerCertificateRequest()
.withServerCertificateName(cert_name);
DeleteServerCertificateResult response =
iam.deleteServerCertificate(request);
System.out.println("Successfully deleted server certificate " +
cert_name);
}
Example #3
| Source File: DetachRolePolicy.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply a role name and policy arn\n" +
"Ex: DetachRolePolicy <role-name> <policy-arn>>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String role_name = args[0];
String policy_arn = args[1];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
DetachRolePolicyRequest request = new DetachRolePolicyRequest()
.withRoleName(role_name)
.withPolicyArn(policy_arn);
DetachRolePolicyResult response = iam.detachRolePolicy(request);
System.out.println("Successfully detached policy " + policy_arn +
" from role " + role_name);
}
Example #4
| Source File: GetPolicy.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply a policy arn\n" +
"Ex: GetPolicy <policy-arn>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String policy_arn = args[0];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
GetPolicyRequest request = new GetPolicyRequest()
.withPolicyArn(policy_arn);
GetPolicyResult response = iam.getPolicy(request);
System.out.format("Successfully retrieved policy %s",
response.getPolicy().getPolicyName());
}
Example #5
| Source File: GetServerCertificate.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply a certificate name\n" +
"Ex: GetServerCertificate <certificate-name>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String cert_name = args[0];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
GetServerCertificateRequest request = new GetServerCertificateRequest()
.withServerCertificateName(cert_name);
GetServerCertificateResult response = iam.getServerCertificate(request);
System.out.format("Successfully retrieved certificate with body %s",
response.getServerCertificate().getCertificateBody());
}
Example #6
| Source File: CreateUser.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply a username\n" +
"Ex: CreateUser <username>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String username = args[0];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
CreateUserRequest request = new CreateUserRequest()
.withUserName(username);
CreateUserResult response = iam.createUser(request);
System.out.println("Successfully created user: " +
response.getUser().getUserName());
}
Example #7
| Source File: DeleteAccountAlias.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply an account alias\n" +
"Ex: DeleteAccountAlias <account-alias>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String alias = args[0];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
DeleteAccountAliasRequest request = new DeleteAccountAliasRequest()
.withAccountAlias(alias);
DeleteAccountAliasResult response = iam.deleteAccountAlias(request);
System.out.println("Successfully deleted account alias " + alias);
}
Example #8
| Source File: ListUsers.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
boolean done = false;
ListUsersRequest request = new ListUsersRequest();
while(!done) {
ListUsersResult response = iam.listUsers(request);
for(User user : response.getUsers()) {
System.out.format("Retrieved user %s", user.getUserName());
}
request.setMarker(response.getMarker());
if(!response.getIsTruncated()) {
done = true;
}
}
}
Example #9
| Source File: SetAccountAliasStep.java From pipeline-aws-plugin with Apache License 2.0 | 6 votes |
|
@Override
protected Void run() throws Exception {
TaskListener listener = this.getContext().get(TaskListener.class);
AmazonIdentityManagement iamClient = AWSClientFactory.create(AmazonIdentityManagementClientBuilder.standard(), Execution.this.getContext());
listener.getLogger().format("Checking for account alias %s %n", this.name);
ListAccountAliasesResult listResult = iamClient.listAccountAliases();
// no or different alias set
if (listResult.getAccountAliases() == null || listResult.getAccountAliases().isEmpty() || !listResult.getAccountAliases().contains(this.name)) {
// Update alias
iamClient.createAccountAlias(new CreateAccountAliasRequest().withAccountAlias(this.name));
listener.getLogger().format("Created account alias %s %n", this.name);
} else {
// Nothing to do
listener.getLogger().format("Account alias already set %s %n", this.name);
}
return null;
}
Example #10
| Source File: UpdateTrustPolicy.java From pipeline-aws-plugin with Apache License 2.0 | 6 votes |
|
@Override
protected Void run() throws Exception {
final String roleName = this.step.getRoleName();
final String policyFile = this.step.getPolicyFile();
Preconditions.checkArgument(roleName != null && !roleName.isEmpty(), "roleName must not be null or empty");
Preconditions.checkArgument(policyFile != null && !policyFile.isEmpty(), "policyFile must not be null or empty");
AmazonIdentityManagement iamClient = AWSClientFactory.create(AmazonIdentityManagementClientBuilder.standard(), Execution.this.getContext());
UpdateAssumeRolePolicyRequest request = new UpdateAssumeRolePolicyRequest();
request.withRoleName(roleName);
request.withPolicyDocument(Execution.this.getContext().get(FilePath.class).child(policyFile).readToString());
iamClient.updateAssumeRolePolicy(request);
Execution.this.getContext().get(TaskListener.class).getLogger().format("Updated trust policy of role %s %n", roleName);
return null;
}
Example #11
| Source File: AccessKeyLastUsed.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply an access key id\n" +
"Ex: AccessKeyLastUsed <access-key-id>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String access_id = args[0];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
GetAccessKeyLastUsedRequest request = new GetAccessKeyLastUsedRequest()
.withAccessKeyId(access_id);
GetAccessKeyLastUsedResult response = iam.getAccessKeyLastUsed(request);
System.out.println("Access key was last used at: " +
response.getAccessKeyLastUsed().getLastUsedDate());
}
Example #12
| Source File: CreatePolicy.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply a policy name\n" +
"Ex: CreatePolicy <policy-name>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String policy_name = args[0];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
CreatePolicyRequest request = new CreatePolicyRequest()
.withPolicyName(policy_name)
.withPolicyDocument(POLICY_DOCUMENT);
CreatePolicyResult response = iam.createPolicy(request);
System.out.println("Successfully created policy: " +
response.getPolicy().getPolicyName());
}
Example #13
| Source File: InventoryUtilTest.java From pacbot with Apache License 2.0 | 6 votes |
|
/**
* Fetch IAM roles test.
*
* @throws Exception the exception
*/
@SuppressWarnings("static-access")
@Test
public void fetchIAMRolesTest() throws Exception {
mockStatic(AmazonIdentityManagementClientBuilder.class);
AmazonIdentityManagement iamClient = PowerMockito.mock(AmazonIdentityManagement.class);
AmazonIdentityManagementClientBuilder amazonIdentityManagementClientBuilder = PowerMockito.mock(AmazonIdentityManagementClientBuilder.class);
AWSStaticCredentialsProvider awsStaticCredentialsProvider = PowerMockito.mock(AWSStaticCredentialsProvider.class);
PowerMockito.whenNew(AWSStaticCredentialsProvider.class).withAnyArguments().thenReturn(awsStaticCredentialsProvider);
when(amazonIdentityManagementClientBuilder.standard()).thenReturn(amazonIdentityManagementClientBuilder);
when(amazonIdentityManagementClientBuilder.withCredentials(anyObject())).thenReturn(amazonIdentityManagementClientBuilder);
when(amazonIdentityManagementClientBuilder.withRegion(anyString())).thenReturn(amazonIdentityManagementClientBuilder);
when(amazonIdentityManagementClientBuilder.build()).thenReturn(iamClient);
ListRolesResult listRolesResult = new ListRolesResult();
List<Role> roles = new ArrayList<>();
roles.add(new Role());
listRolesResult.setRoles(roles);
when(iamClient.listRoles(anyObject())).thenReturn(listRolesResult);
assertThat(inventoryUtil.fetchIAMRoles(new BasicSessionCredentials("awsAccessKey", "awsSecretKey", "sessionToken"),"account","accountName").size(), is(1));
}
Example #14
| Source File: DeleteAccessKey.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply a username and access key id\n" +
"Ex: DeleteAccessKey <username> <access-key-id>\n";
if (args.length != 2) {
System.out.println(USAGE);
System.exit(1);
}
String username = args[0];
String access_key = args[1];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
DeleteAccessKeyRequest request = new DeleteAccessKeyRequest()
.withAccessKeyId(access_key)
.withUserName(username);
DeleteAccessKeyResult response = iam.deleteAccessKey(request);
System.out.println("Successfully deleted access key " + access_key +
" from user " + username);
}
Example #15
| Source File: InventoryUtil.java From pacbot with Apache License 2.0 | 6 votes |
|
/**
* Fetch IAM roles.
*
* @param temporaryCredentials the temporary credentials
* @param accountId the accountId
* @param accountName the account name
* @return the map
*/
public static Map<String,List<Role>> fetchIAMRoles(BasicSessionCredentials temporaryCredentials,String accountId,String accountName) {
AmazonIdentityManagement iamClient = AmazonIdentityManagementClientBuilder.standard().withCredentials(new AWSStaticCredentialsProvider(temporaryCredentials)).withRegion(InventoryConstants.REGION_US_WEST_2).build();
List<Role> roles = new ArrayList<>();
ListRolesResult rslt;
String marker = null;
do{
rslt = iamClient.listRoles(new ListRolesRequest().withMarker(marker));
roles.addAll(rslt.getRoles());
marker = rslt.getMarker();
}while(marker!=null);
log.debug(InventoryConstants.ACCOUNT + accountId +" Type : IAM Roles >> "+roles.size());
Map<String,List<Role>> iamRoles = new HashMap<>();
iamRoles.put(accountId+delimiter+accountName, roles);
return iamRoles;
}
Example #16
| Source File: CreateAccountAlias.java From aws-doc-sdk-examples with Apache License 2.0 | 6 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply an alias\n" +
"Ex: CreateAccountAlias <alias>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String alias = args[0];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
CreateAccountAliasRequest request = new CreateAccountAliasRequest()
.withAccountAlias(alias);
CreateAccountAliasResult response = iam.createAccountAlias(request);
System.out.println("Successfully created account alias: " + alias);
}
Example #17
| Source File: DeleteUser.java From aws-doc-sdk-examples with Apache License 2.0 | 5 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply a username\n" +
"Ex: DeleteUser <username>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String username = args[0];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
DeleteUserRequest request = new DeleteUserRequest()
.withUserName(username);
try {
iam.deleteUser(request);
} catch (DeleteConflictException e) {
System.out.println("Unable to delete user. Verify user is not" +
" associated with any resources");
throw e;
}
System.out.println("Successfully deleted IAM user " + username);
}
Example #18
| Source File: ListServerCertificates.java From aws-doc-sdk-examples with Apache License 2.0 | 5 votes |
|
public static void main(String[] args) {
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
boolean done = false;
ListServerCertificatesRequest request =
new ListServerCertificatesRequest();
while(!done) {
ListServerCertificatesResult response =
iam.listServerCertificates(request);
for(ServerCertificateMetadata metadata :
response.getServerCertificateMetadataList()) {
System.out.printf("Retrieved server certificate %s",
metadata.getServerCertificateName());
}
request.setMarker(response.getMarker());
if(!response.getIsTruncated()) {
done = true;
}
}
}
Example #19
| Source File: UpdateServerCertificate.java From aws-doc-sdk-examples with Apache License 2.0 | 5 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply the current certificate name and\n" +
"a new name. Ex:\n\n" +
"UpdateServerCertificate <current-name> <new-name>\n";
if (args.length != 2) {
System.out.println(USAGE);
System.exit(1);
}
String cur_name = args[0];
String new_name = args[1];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
UpdateServerCertificateRequest request =
new UpdateServerCertificateRequest()
.withServerCertificateName(cur_name)
.withNewServerCertificateName(new_name);
UpdateServerCertificateResult response =
iam.updateServerCertificate(request);
System.out.printf("Successfully updated server certificate to name %s",
new_name);
}
Example #20
| Source File: UpdateUser.java From aws-doc-sdk-examples with Apache License 2.0 | 5 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply the current username and a new\n" +
"username. Ex:\n\n" +
"UpdateUser <current-name> <new-name>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String cur_name = args[0];
String new_name = args[1];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
UpdateUserRequest request = new UpdateUserRequest()
.withUserName(cur_name)
.withNewUserName(new_name);
UpdateUserResult response = iam.updateUser(request);
System.out.printf("Successfully updated user to username %s",
new_name);
}
Example #21
| Source File: ListAccountAliases.java From aws-doc-sdk-examples with Apache License 2.0 | 5 votes |
|
public static void main(String[] args) {
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
ListAccountAliasesResult response = iam.listAccountAliases();
for (String alias : response.getAccountAliases()) {
System.out.printf("Retrieved account alias %s", alias);
}
}
Example #22
| Source File: UpdateAccessKey.java From aws-doc-sdk-examples with Apache License 2.0 | 5 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply a username, access key id and status\n" +
"Ex: UpdateAccessKey <username> <access-key-id> <Activate|Inactive>\n";
if (args.length != 3) {
System.out.println(USAGE);
System.exit(1);
}
String username = args[0];
String access_id = args[1];
String status = args[2];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
UpdateAccessKeyRequest request = new UpdateAccessKeyRequest()
.withAccessKeyId(access_id)
.withUserName(username)
.withStatus(status);
UpdateAccessKeyResult response = iam.updateAccessKey(request);
System.out.printf(
"Successfully updated status of access key %s to" +
"status %s for user %s", access_id, status, username);
}
Example #23
| Source File: ListAccessKeys.java From aws-doc-sdk-examples with Apache License 2.0 | 5 votes |
|
public static void main(String[] args) {
final String USAGE =
"To run this example, supply an IAM username\n" +
"Ex: ListAccessKeys <username>\n";
if (args.length != 1) {
System.out.println(USAGE);
System.exit(1);
}
String username = args[0];
final AmazonIdentityManagement iam =
AmazonIdentityManagementClientBuilder.defaultClient();
boolean done = false;
ListAccessKeysRequest request = new ListAccessKeysRequest()
.withUserName(username);
while (!done) {
ListAccessKeysResult response = iam.listAccessKeys(request);
for (AccessKeyMetadata metadata :
response.getAccessKeyMetadata()) {
System.out.format("Retrieved access key %s",
metadata.getAccessKeyId());
}
request.setMarker(response.getMarker());
if (!response.getIsTruncated()) {
done = true;
}
}
}
Example #24
| Source File: AAWSTest.java From aws-ec2-ssh with MIT License | 5 votes |
|
public AAWSTest() {
super();
if (Config.has(Config.Key.IAM_ROLE_ARN)) {
final AWSSecurityTokenService sts = AWSSecurityTokenServiceClientBuilder.standard().withCredentials(new DefaultAWSCredentialsProviderChain()).build();
this.credentialsProvider = new STSAssumeRoleSessionCredentialsProvider.Builder(Config.get(Config.Key.IAM_ROLE_ARN), IAM_SESSION_NAME).withStsClient(sts).build();
} else {
this.credentialsProvider = new DefaultAWSCredentialsProviderChain();
}
this.ec2 = AmazonEC2ClientBuilder.standard().withCredentials(this.credentialsProvider).build();
this.iam = AmazonIdentityManagementClientBuilder.standard().withCredentials(this.credentialsProvider).build();
}
Example #25
| Source File: IntegrationTestHelper.java From strongbox with Apache License 2.0 | 5 votes |
|
private static void cleanUpIAM(Regions testRegion, String testResourcePrefix, Date createdBeforeThreshold,
AWSCredentialsProvider awsCredentials) {
AmazonIdentityManagement iamClient = AmazonIdentityManagementClientBuilder.standard()
.withCredentials(awsCredentials)
.withRegion(testRegion)
.build();
IAMPolicyManager iamPolicyManager = IAMPolicyManager.fromCredentials(awsCredentials, new ClientConfiguration());
LOG.info("Cleaning IAM policies...");
ListPoliciesRequest listPoliciesRequest = new ListPoliciesRequest().withPathPrefix(IAMPolicyManager.PATH_PREFIX);
List<Policy> policies = iamClient.listPolicies(listPoliciesRequest).getPolicies();
for (Policy policy: policies) {
if (policy.getPolicyName().startsWith(testResourcePrefix) &&
policy.getCreateDate().before(createdBeforeThreshold)) {
LOG.info("Cleaning up policy: " + policy.getPolicyName());
IAMPolicyName iamPolicyName = IAMPolicyName.fromString(policy.getPolicyName());
iamPolicyManager.detachAllPrincipals(iamPolicyName.group);
DeletePolicyRequest deletePolicyRequest = new DeletePolicyRequest().withPolicyArn(policy.getArn());
iamClient.deletePolicy(deletePolicyRequest);
}
}
LOG.info("Cleaning IAM roles created for the assume role tests...");
ListRolesRequest listRolesRequest = new ListRolesRequest().withPathPrefix(IAMHelper.PATH);
List<Role> roles = iamClient.listRoles(listRolesRequest).getRoles();
for (Role role: roles) {
if (role.getRoleName().startsWith(AssumedRoleTestContext.ROLE_PREFIX) &&
role.getCreateDate().before(createdBeforeThreshold)) {
LOG.info("Cleaning up role: " + role.getRoleName());
DeleteRoleRequest deleteRoleRequest = new DeleteRoleRequest().withRoleName(role.getRoleName());
iamClient.deleteRole(deleteRoleRequest);
}
}
}
Example #26
| Source File: AAWSTest.java From aws-cf-templates with Apache License 2.0 | 5 votes |
|
public AAWSTest() {
super();
if (Config.has(Config.Key.IAM_ROLE_ARN)) {
final AWSSecurityTokenService local = AWSSecurityTokenServiceClientBuilder.standard().withCredentials(new DefaultAWSCredentialsProviderChain()).build();
this.credentialsProvider = new STSAssumeRoleSessionCredentialsProvider.Builder(Config.get(Config.Key.IAM_ROLE_ARN), IAM_SESSION_NAME).withStsClient(local).build();
} else {
this.credentialsProvider = new DefaultAWSCredentialsProviderChain();
}
this.ec2 = AmazonEC2ClientBuilder.standard().withCredentials(this.credentialsProvider).build();
this.iam = AmazonIdentityManagementClientBuilder.standard().withCredentials(this.credentialsProvider).build();
this.s3 = AmazonS3ClientBuilder.standard().withCredentials(this.credentialsProvider).build();
this.sts = AWSSecurityTokenServiceClientBuilder.standard().withCredentials(this.credentialsProvider).build();
}
Example #27
| Source File: IAMPolicyManager.java From strongbox with Apache License 2.0 | 5 votes |
|
public static IAMPolicyManager fromCredentials(AWSCredentialsProvider awsCredentials, ClientConfiguration clientConfiguration) {
AmazonIdentityManagement client = AmazonIdentityManagementClientBuilder.standard()
.withCredentials(awsCredentials)
.withClientConfiguration(transformAndVerifyOrThrow(clientConfiguration))
.withRegion(RegionResolver.getRegion())
.build();
return new IAMPolicyManager(client, awsCredentials, clientConfiguration);
}
Example #28
| Source File: PrincipalAutoSuggestion.java From strongbox with Apache License 2.0 | 5 votes |
|
public static PrincipalAutoSuggestion fromCredentials(AWSCredentialsProvider awsCredentials, ClientConfiguration clientConfiguration) {
AmazonIdentityManagement client = AmazonIdentityManagementClientBuilder.standard()
.withCredentials(awsCredentials)
.withClientConfiguration(transformAndVerifyOrThrow(clientConfiguration))
.withRegion(RegionResolver.getRegion())
.build();
return new PrincipalAutoSuggestion(client);
}
Example #29
| Source File: AwsClient.java From cloudbreak with Apache License 2.0 | 5 votes |
|
public AmazonIdentityManagement createAmazonIdentityManagement(AwsCredentialView awsCredential) {
return AmazonIdentityManagementClientBuilder.standard()
.withRegion(awsDefaultZoneProvider.getDefaultZone(awsCredential))
.withClientConfiguration(getDefaultClientConfiguration())
.withCredentials(getCredentialProvider(awsCredential))
.build();
}
Example #30
| Source File: InventoryUtil.java From pacbot with Apache License 2.0 | 5 votes |
|
/**
* Fetch IAM group info.
*
* @param temporaryCredentials the temporary credentials
* @param account the account
* @return the map
*/
public static Map<String,List<GroupVH>> fetchIAMGroups(BasicSessionCredentials temporaryCredentials,String account, String accountName) {
log.info("Fetch IAMGroups info start");
AmazonIdentityManagement iamClient = AmazonIdentityManagementClientBuilder.standard().withCredentials(new AWSStaticCredentialsProvider(temporaryCredentials)).withRegion(InventoryConstants.REGION_US_WEST_2).build();
List<Group> groups = new ArrayList<>();
ListGroupsResult rslt;
String marker = null;
do{
rslt = iamClient.listGroups(new ListGroupsRequest().withMarker(marker));
groups.addAll(rslt.getGroups());
marker = rslt.getMarker();
}while(marker!=null);
List<GroupVH> groupList = new ArrayList<>();
Map<String,List<GroupVH>> iamGroups = new HashMap<>();
iamGroups.put(account+delimiter+accountName, groupList);
groups.parallelStream().forEach(group -> {
GroupVH groupTemp = new GroupVH(group);
String groupName = group.getGroupName();
List<AttachedPolicy> policies = iamClient.listAttachedGroupPolicies(new ListAttachedGroupPoliciesRequest().withGroupName(groupName)).getAttachedPolicies();
List<String> policyList = new ArrayList<>();
for(AttachedPolicy pol : policies){
policyList.add(pol.getPolicyName());
}
groupTemp.setPolicies(policyList);
synchronized (groupList) {
groupList.add(groupTemp);
}
});
return iamGroups;
}
