Amazon AWS SDK Guide d'installation Page 135
- Page / 151
- Table des matières
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
AWS STS has five operations that return temporary credentials: AssumeRole, AssumeRoleWithWebIdentity,
AssumeRoleWithSAML, GetFederationToken, and GetSessionToken. Using the GetSessionToken
operation is trivial, so let's use that one as an example.
$result = $client->getSessionToken();
The result for GetSessionToken and the other AWS STS operations always contains a 'Credentials' value.
If you print the result (e.g., print_r($result)), it looks like the following:
Array
(
...
[Credentials] => Array
(
[SessionToken] => '<base64 encoded session token value>'
[SecretAccessKey] => '<temporary secret access key value>'
[Expiration] => 2013-11-01T01:57:52Z
[AccessKeyId] => '<temporary access key value>'
)
...
)
Using Temporary Credentials
You can use temporary credentials with another AWS client by instantiating the client and passing in the values
received from AWS STS directly.
use Aws\S3\S3Client;
$result = $client->getSessionToken();
$s3 = S3Client::factory(array(
'key' => $result['Credentials']['AccessKeyId'],
'secret' => $result['Credentials']['SecretAccessKey'],
'token' => $result['Credentials']['SessionToken'],
));
You can also construct a Credentials object and use that when instantiating the client.
use Aws\Common\Credentials\Credentials;
use Aws\S3\S3Client;
$result = $client->getSessionToken();
$credentials = new Credentials(
$result['Credentials']['AccessKeyId'],
$result['Credentials']['SecretAccessKey'],
$result['Credentials']['SessionToken']
);
$s3 = S3Client::factory(array('credentials' => $credentials));
However, the best way to provide temporary credentials is to use the createCredentials() helper method
included with StsClient. This method extracts the data from an AWS STS result and creates the Credentials
object for you.
$result = $sts->getSessionToken();
$credentials = $sts->createCredentials($result);
$s3 = S3Client::factory(array('credentials' => $credentials));
You can also use the same technique when setting credentials on an existing client object.
AWS Security Token Service
123
- AWS SDK for PHP 1
- Contents 3
- Requirements 14
- Installation 14
- Installing via Phar 15
- Getting Started Guide 16
- Creating a client object 17
- Performing service operations 18
- Detecting and handling errors 19
- Migration Guide 20
- What's Different? 21
- Required Regions 22
- Client Factories 22
- Service Operations 22
- Responses 23
- Exceptions 23
- Iterators 24
- From Version 2 of the SDK 25
- From Version 1 of the SDK 25
- Side-by-side Guide 27
- Without Composer 28
- Complete Examples 29
- Final Notes 31
- Introduction 31
- Caching IAM role credentials 32
- Getting temporary credentials 36
- Configuring the SDK 37
- Client configuration options 39
- Specifying a region 40
- Setting a custom endpoint 40
- Command Objects 41
- Using command objects 42
- Using requests and responses 43
- Basic Configuration 44
- Waiter Objects 45
- Waiter Events 45
- Custom Waiters 45
- Waiter Definitions 46
- Iterator Objects 48
- Iterator Events 48
- Modeled Responses 49
- Using data in the model 50
- Static Client Facades 51
- Why Use Client Facades? 52
- Performance Guide 54
- Installing on Amazon Linux 55
- Modifying APC settings 55
- From the PHP documentation 56
- Uninstall Xdebug 56
- Install PECL uri_template 56
- Turn off parameter validation 56
- Comparing SDK1 and SDK2 58
- How do I disable SSL? 59
- Auto Scaling 61
- AWS CloudFormation 63
- Amazon CloudFront 64
- Amazon CloudSearch 70
- AWS CloudTrail 71
- Amazon CloudWatch 72
- AWS Data Pipeline 74
- AWS Direct Connect 75
- Amazon DynamoDB 76
- Creating tables 77
- Updating a table 78
- Describing a table 78
- Listing tables 78
- Query and scan 80
- Deleting a table 82
- Local secondary indexes 82
- Using the WriteRequestBatch 84
- Amazon DynamoDB (2011-12-05) 85
- Amazon Elastic Compute Cloud 91
- Amazon ElastiCache 94
- AWS Elastic Beanstalk 96
- Elastic Load Balancing 97
- Amazon Elastic Transcoder 98
- Amazon Elastic MapReduce 100
- Amazon Glacier 101
- This guide is incomplete 102
- API Reference 102
- Creating a client 102
- AWS Import/Export 104
- Amazon Kinesis 105
- Creating a stream 106
- AWS OpsWorks 107
- Amazon Redshift 110
- Creating a cluster 111
- Creating snapshots 111
- Amazon Route 53 112
- Amazon Simple Storage Service 114
- Uploading objects 115
- Listing your buckets 116
- Downloading objects 117
- Saving objects to a file 118
- Creating a pre-signed URL 119
- Amazon S3 stream wrapper 121
- Syncing data with Amazon S3 121
- Customizing the download sync 122
- Cleaning up 123
- Amazon Simple Email Service 124
- Amazon SimpleDB 125
- Creating domains 126
- List all domains 126
- Retrieving a domain 126
- Adding items 126
- Retrieving items 127
- Deleting items 128
- Deleting domains 128
- Amazon Simple Queue Service 130
- Sending messages 131
- Receiving messages 131
- AWS Storage Gateway 132
- AWS Security Token Service 134
- Using Temporary Credentials 135
- AWS Support 136
- DynamoDB Session Handler 139
- Configuration 140
- Session Locking 142
- Garbage Collection 142
- Amazon S3 Stream Wrapper 143
- Uploading data 144
- Other object functions 145
- Working with buckets 146
- Getting Started 147
- In-Depth Guides 147
- Service-Specific Guides 148
- Articles from the Blog 150
- Presentations 151
Produits connexes et manuels pour Logiciel Amazon AWS SDK
Logiciel Amazon Redshift Guide de l'utilisateur
(255 pages)
(255 pages)
Logiciel Amazon AWS SDK Guide de l'utilisateur
(155 pages)
(155 pages)
© 2020, manymanuals.fr. Tous droits réservés | 0.099 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels