IAM Roles Anywhere Update: IAM RolesAnywhere now supports custom role session name on the CreateSession. This release adds the acceptRoleSessionName option to a profile to control whether a role session name will be accepted in a session request with a given profile.

AWS · AWS · commit 82d5d45645d7 · 2024-07-30T18:11:55.000Z
diff --git a/.changes/next-release/feature-IAMRolesAnywhere-2eb8076.json b/.changes/next-release/feature-IAMRolesAnywhere-2eb8076.json
@@ -0,0 +1,6 @@
+{
+    "type": "feature",
+    "category": "IAM Roles Anywhere",
+    "contributor": "",
+    "description": "IAM RolesAnywhere now supports custom role session name on the CreateSession. This release adds the acceptRoleSessionName option to a profile to control whether a role session name will be accepted in a session request with a given profile."
+}
diff --git a/services/rolesanywhere/src/main/resources/codegen-resources/service-2.json b/services/rolesanywhere/src/main/resources/codegen-resources/service-2.json
@@ -5,11 +5,13 @@
     "endpointPrefix":"rolesanywhere",
     "jsonVersion":"1.1",
     "protocol":"rest-json",
+    "protocols":["rest-json"],
     "serviceFullName":"IAM Roles Anywhere",
     "serviceId":"RolesAnywhere",
     "signatureVersion":"v4",
     "signingName":"rolesanywhere",
-    "uid":"rolesanywhere-2018-05-10"
+    "uid":"rolesanywhere-2018-05-10",
+    "auth":["aws.auth#sigv4"]
   },
   "operations":{
     "CreateProfile":{
@@ -537,6 +539,10 @@
         "roleArns"
       ],
       "members":{
+        "acceptRoleSessionName":{
+          "shape":"Boolean",
+          "documentation":"<p>Used to determine if a custom role session name will be accepted in a temporary credential request.</p>"
+        },
         "durationSeconds":{
           "shape":"CreateProfileRequestDurationSecondsInteger",
           "documentation":"<p> Used to determine how long sessions vended using this profile are valid for. See the <code>Expiration</code> section of the <a href=\"https://docs.aws.amazon.com/rolesanywhere/latest/userguide/authentication-create-session.html#credentials-object\">CreateSession API documentation</a> page for more details. In requests, if this value is not provided, the default value will be 3600. </p>"
@@ -1059,6 +1065,10 @@
     "ProfileDetail":{
       "type":"structure",
       "members":{
+        "acceptRoleSessionName":{
+          "shape":"Boolean",
+          "documentation":"<p>Used to determine if a custom role session name will be accepted in a temporary credential request.</p>"
+        },
         "attributeMappings":{
           "shape":"AttributeMappings",
           "documentation":"<p>A mapping applied to the authenticating end-entity certificate.</p>"
@@ -1614,6 +1624,10 @@
       "type":"structure",
       "required":["profileId"],
       "members":{
+        "acceptRoleSessionName":{
+          "shape":"Boolean",
+          "documentation":"<p>Used to determine if a custom role session name will be accepted in a temporary credential request.</p>"
+        },
         "durationSeconds":{
           "shape":"UpdateProfileRequestDurationSecondsInteger",
           "documentation":"<p> Used to determine how long sessions vended using this profile are valid for. See the <code>Expiration</code> section of the <a href=\"https://docs.aws.amazon.com/rolesanywhere/latest/userguide/authentication-create-session.html#credentials-object\">CreateSession API documentation</a> page for more details. In requests, if this value is not provided, the default value will be 3600. </p>"
