BedrockAgentCoreControl / Client / create_oauth2_credential_provider
create_oauth2_credential_provider¶
- BedrockAgentCoreControl.Client.create_oauth2_credential_provider(**kwargs)¶
Creates a new OAuth2 credential provider.
See also: AWS API Documentation
Request Syntax
response = client.create_oauth2_credential_provider( name='string', credentialProviderVendor='GoogleOauth2'|'GithubOauth2'|'SlackOauth2'|'SalesforceOauth2'|'MicrosoftOauth2'|'CustomOauth2'|'AtlassianOauth2'|'LinkedinOauth2'|'XOauth2'|'OktaOauth2'|'OneLoginOauth2'|'PingOneOauth2'|'FacebookOauth2'|'YandexOauth2'|'RedditOauth2'|'ZoomOauth2'|'TwitchOauth2'|'SpotifyOauth2'|'DropboxOauth2'|'NotionOauth2'|'HubspotOauth2'|'CyberArkOauth2'|'FusionAuthOauth2'|'Auth0Oauth2'|'CognitoOauth2', oauth2ProviderConfigInput={ 'customOauth2ProviderConfig': { 'oauthDiscovery': { 'discoveryUrl': 'string', 'authorizationServerMetadata': { 'issuer': 'string', 'authorizationEndpoint': 'string', 'tokenEndpoint': 'string', 'responseTypes': [ 'string', ], 'tokenEndpointAuthMethods': [ 'string', ] } }, 'clientId': 'string', 'clientSecret': 'string' }, 'googleOauth2ProviderConfig': { 'clientId': 'string', 'clientSecret': 'string' }, 'githubOauth2ProviderConfig': { 'clientId': 'string', 'clientSecret': 'string' }, 'slackOauth2ProviderConfig': { 'clientId': 'string', 'clientSecret': 'string' }, 'salesforceOauth2ProviderConfig': { 'clientId': 'string', 'clientSecret': 'string' }, 'microsoftOauth2ProviderConfig': { 'clientId': 'string', 'clientSecret': 'string', 'tenantId': 'string' }, 'atlassianOauth2ProviderConfig': { 'clientId': 'string', 'clientSecret': 'string' }, 'linkedinOauth2ProviderConfig': { 'clientId': 'string', 'clientSecret': 'string' }, 'includedOauth2ProviderConfig': { 'clientId': 'string', 'clientSecret': 'string', 'issuer': 'string', 'authorizationEndpoint': 'string', 'tokenEndpoint': 'string' } }, tags={ 'string': 'string' } )
- Parameters:
name (string) –
[REQUIRED]
The name of the OAuth2 credential provider. The name must be unique within your account.
credentialProviderVendor (string) –
[REQUIRED]
The vendor of the OAuth2 credential provider. This specifies which OAuth2 implementation to use.
oauth2ProviderConfigInput (dict) –
[REQUIRED]
The configuration settings for the OAuth2 provider, including client ID, client secret, and other vendor-specific settings.
Note
This is a Tagged Union structure. Only one of the following top level keys can be set:
customOauth2ProviderConfig,googleOauth2ProviderConfig,githubOauth2ProviderConfig,slackOauth2ProviderConfig,salesforceOauth2ProviderConfig,microsoftOauth2ProviderConfig,atlassianOauth2ProviderConfig,linkedinOauth2ProviderConfig,includedOauth2ProviderConfig.customOauth2ProviderConfig (dict) –
The configuration for a custom OAuth2 provider.
oauthDiscovery (dict) – [REQUIRED]
The OAuth2 discovery information for the custom provider.
Note
This is a Tagged Union structure. Only one of the following top level keys can be set:
discoveryUrl,authorizationServerMetadata.discoveryUrl (string) –
The discovery URL for the OAuth2 provider.
authorizationServerMetadata (dict) –
The authorization server metadata for the OAuth2 provider.
issuer (string) – [REQUIRED]
The issuer URL for the OAuth2 authorization server.
authorizationEndpoint (string) – [REQUIRED]
The authorization endpoint URL for the OAuth2 authorization server.
tokenEndpoint (string) – [REQUIRED]
The token endpoint URL for the OAuth2 authorization server.
responseTypes (list) –
The supported response types for the OAuth2 authorization server.
(string) –
tokenEndpointAuthMethods (list) –
The authentication methods supported by the token endpoint. This specifies how clients can authenticate when requesting tokens from the authorization server.
(string) –
clientId (string) – [REQUIRED]
The client ID for the custom OAuth2 provider.
clientSecret (string) – [REQUIRED]
The client secret for the custom OAuth2 provider.
googleOauth2ProviderConfig (dict) –
The configuration for a Google OAuth2 provider.
clientId (string) – [REQUIRED]
The client ID for the Google OAuth2 provider.
clientSecret (string) – [REQUIRED]
The client secret for the Google OAuth2 provider.
githubOauth2ProviderConfig (dict) –
The configuration for a GitHub OAuth2 provider.
clientId (string) – [REQUIRED]
The client ID for the GitHub OAuth2 provider.
clientSecret (string) – [REQUIRED]
The client secret for the GitHub OAuth2 provider.
slackOauth2ProviderConfig (dict) –
The configuration for a Slack OAuth2 provider.
clientId (string) – [REQUIRED]
The client ID for the Slack OAuth2 provider.
clientSecret (string) – [REQUIRED]
The client secret for the Slack OAuth2 provider.
salesforceOauth2ProviderConfig (dict) –
The configuration for a Salesforce OAuth2 provider.
clientId (string) – [REQUIRED]
The client ID for the Salesforce OAuth2 provider.
clientSecret (string) – [REQUIRED]
The client secret for the Salesforce OAuth2 provider.
microsoftOauth2ProviderConfig (dict) –
The configuration for a Microsoft OAuth2 provider.
clientId (string) – [REQUIRED]
The client ID for the Microsoft OAuth2 provider.
clientSecret (string) – [REQUIRED]
The client secret for the Microsoft OAuth2 provider.
tenantId (string) –
The Microsoft Entra ID (formerly Azure AD) tenant ID for your organization. This identifies the specific tenant within Microsoft’s identity platform where your application is registered.
atlassianOauth2ProviderConfig (dict) –
Configuration settings for Atlassian OAuth2 provider integration.
clientId (string) – [REQUIRED]
The client ID for the Atlassian OAuth2 provider. This identifier is assigned by Atlassian when you register your application.
clientSecret (string) – [REQUIRED]
The client secret for the Atlassian OAuth2 provider. This secret is assigned by Atlassian and used along with the client ID to authenticate your application.
linkedinOauth2ProviderConfig (dict) –
Configuration settings for LinkedIn OAuth2 provider integration.
clientId (string) – [REQUIRED]
The client ID for the LinkedIn OAuth2 provider. This identifier is assigned by LinkedIn when you register your application.
clientSecret (string) – [REQUIRED]
The client secret for the LinkedIn OAuth2 provider. This secret is assigned by LinkedIn and used along with the client ID to authenticate your application.
includedOauth2ProviderConfig (dict) –
The configuration for a non-custom OAuth2 provider. This includes settings for supported OAuth2 providers that have built-in integration support.
clientId (string) – [REQUIRED]
The client ID for the supported OAuth2 provider. This identifier is assigned by the OAuth2 provider when you register your application.
clientSecret (string) – [REQUIRED]
The client secret for the supported OAuth2 provider. This secret is assigned by the OAuth2 provider and used along with the client ID to authenticate your application.
issuer (string) –
Token issuer of your isolated OAuth2 application tenant. This URL identifies the authorization server that issues tokens for this provider.
authorizationEndpoint (string) –
OAuth2 authorization endpoint for your isolated OAuth2 application tenant. This is where users are redirected to authenticate and authorize access to their resources.
tokenEndpoint (string) –
OAuth2 token endpoint for your isolated OAuth2 application tenant. This is where authorization codes are exchanged for access tokens.
tags (dict) –
A map of tag keys and values to assign to the OAuth2 credential provider. Tags enable you to categorize your resources in different ways, for example, by purpose, owner, or environment.
(string) –
(string) –
- Return type:
dict
- Returns:
Response Syntax
{ 'clientSecretArn': { 'secretArn': 'string' }, 'name': 'string', 'credentialProviderArn': 'string', 'callbackUrl': 'string', 'oauth2ProviderConfigOutput': { 'customOauth2ProviderConfig': { 'oauthDiscovery': { 'discoveryUrl': 'string', 'authorizationServerMetadata': { 'issuer': 'string', 'authorizationEndpoint': 'string', 'tokenEndpoint': 'string', 'responseTypes': [ 'string', ], 'tokenEndpointAuthMethods': [ 'string', ] } }, 'clientId': 'string' }, 'googleOauth2ProviderConfig': { 'oauthDiscovery': { 'discoveryUrl': 'string', 'authorizationServerMetadata': { 'issuer': 'string', 'authorizationEndpoint': 'string', 'tokenEndpoint': 'string', 'responseTypes': [ 'string', ], 'tokenEndpointAuthMethods': [ 'string', ] } }, 'clientId': 'string' }, 'githubOauth2ProviderConfig': { 'oauthDiscovery': { 'discoveryUrl': 'string', 'authorizationServerMetadata': { 'issuer': 'string', 'authorizationEndpoint': 'string', 'tokenEndpoint': 'string', 'responseTypes': [ 'string', ], 'tokenEndpointAuthMethods': [ 'string', ] } }, 'clientId': 'string' }, 'slackOauth2ProviderConfig': { 'oauthDiscovery': { 'discoveryUrl': 'string', 'authorizationServerMetadata': { 'issuer': 'string', 'authorizationEndpoint': 'string', 'tokenEndpoint': 'string', 'responseTypes': [ 'string', ], 'tokenEndpointAuthMethods': [ 'string', ] } }, 'clientId': 'string' }, 'salesforceOauth2ProviderConfig': { 'oauthDiscovery': { 'discoveryUrl': 'string', 'authorizationServerMetadata': { 'issuer': 'string', 'authorizationEndpoint': 'string', 'tokenEndpoint': 'string', 'responseTypes': [ 'string', ], 'tokenEndpointAuthMethods': [ 'string', ] } }, 'clientId': 'string' }, 'microsoftOauth2ProviderConfig': { 'oauthDiscovery': { 'discoveryUrl': 'string', 'authorizationServerMetadata': { 'issuer': 'string', 'authorizationEndpoint': 'string', 'tokenEndpoint': 'string', 'responseTypes': [ 'string', ], 'tokenEndpointAuthMethods': [ 'string', ] } }, 'clientId': 'string' }, 'atlassianOauth2ProviderConfig': { 'oauthDiscovery': { 'discoveryUrl': 'string', 'authorizationServerMetadata': { 'issuer': 'string', 'authorizationEndpoint': 'string', 'tokenEndpoint': 'string', 'responseTypes': [ 'string', ], 'tokenEndpointAuthMethods': [ 'string', ] } }, 'clientId': 'string' }, 'linkedinOauth2ProviderConfig': { 'oauthDiscovery': { 'discoveryUrl': 'string', 'authorizationServerMetadata': { 'issuer': 'string', 'authorizationEndpoint': 'string', 'tokenEndpoint': 'string', 'responseTypes': [ 'string', ], 'tokenEndpointAuthMethods': [ 'string', ] } }, 'clientId': 'string' }, 'includedOauth2ProviderConfig': { 'oauthDiscovery': { 'discoveryUrl': 'string', 'authorizationServerMetadata': { 'issuer': 'string', 'authorizationEndpoint': 'string', 'tokenEndpoint': 'string', 'responseTypes': [ 'string', ], 'tokenEndpointAuthMethods': [ 'string', ] } }, 'clientId': 'string' } } }
Response Structure
(dict) –
clientSecretArn (dict) –
The Amazon Resource Name (ARN) of the client secret in AWS Secrets Manager.
secretArn (string) –
The Amazon Resource Name (ARN) of the secret in AWS Secrets Manager.
name (string) –
The name of the OAuth2 credential provider.
credentialProviderArn (string) –
The Amazon Resource Name (ARN) of the OAuth2 credential provider.
callbackUrl (string) –
Callback URL to register on the OAuth2 credential provider as an allowed callback URL. This URL is where the OAuth2 authorization server redirects users after they complete the authorization flow.
oauth2ProviderConfigOutput (dict) –
Contains the output configuration for an OAuth2 provider.
Note
This is a Tagged Union structure. Only one of the following top level keys will be set:
customOauth2ProviderConfig,googleOauth2ProviderConfig,githubOauth2ProviderConfig,slackOauth2ProviderConfig,salesforceOauth2ProviderConfig,microsoftOauth2ProviderConfig,atlassianOauth2ProviderConfig,linkedinOauth2ProviderConfig,includedOauth2ProviderConfig. If a client receives an unknown member it will setSDK_UNKNOWN_MEMBERas the top level key, which maps to the name or tag of the unknown member. The structure ofSDK_UNKNOWN_MEMBERis as follows:'SDK_UNKNOWN_MEMBER': {'name': 'UnknownMemberName'}
customOauth2ProviderConfig (dict) –
The output configuration for a custom OAuth2 provider.
oauthDiscovery (dict) –
The OAuth2 discovery information for the custom provider.
Note
This is a Tagged Union structure. Only one of the following top level keys will be set:
discoveryUrl,authorizationServerMetadata. If a client receives an unknown member it will setSDK_UNKNOWN_MEMBERas the top level key, which maps to the name or tag of the unknown member. The structure ofSDK_UNKNOWN_MEMBERis as follows:'SDK_UNKNOWN_MEMBER': {'name': 'UnknownMemberName'}
discoveryUrl (string) –
The discovery URL for the OAuth2 provider.
authorizationServerMetadata (dict) –
The authorization server metadata for the OAuth2 provider.
issuer (string) –
The issuer URL for the OAuth2 authorization server.
authorizationEndpoint (string) –
The authorization endpoint URL for the OAuth2 authorization server.
tokenEndpoint (string) –
The token endpoint URL for the OAuth2 authorization server.
responseTypes (list) –
The supported response types for the OAuth2 authorization server.
(string) –
tokenEndpointAuthMethods (list) –
The authentication methods supported by the token endpoint. This specifies how clients can authenticate when requesting tokens from the authorization server.
(string) –
clientId (string) –
The client ID for the custom OAuth2 provider.
googleOauth2ProviderConfig (dict) –
The output configuration for a Google OAuth2 provider.
oauthDiscovery (dict) –
The OAuth2 discovery information for the Google provider.
Note
This is a Tagged Union structure. Only one of the following top level keys will be set:
discoveryUrl,authorizationServerMetadata. If a client receives an unknown member it will setSDK_UNKNOWN_MEMBERas the top level key, which maps to the name or tag of the unknown member. The structure ofSDK_UNKNOWN_MEMBERis as follows:'SDK_UNKNOWN_MEMBER': {'name': 'UnknownMemberName'}
discoveryUrl (string) –
The discovery URL for the OAuth2 provider.
authorizationServerMetadata (dict) –
The authorization server metadata for the OAuth2 provider.
issuer (string) –
The issuer URL for the OAuth2 authorization server.
authorizationEndpoint (string) –
The authorization endpoint URL for the OAuth2 authorization server.
tokenEndpoint (string) –
The token endpoint URL for the OAuth2 authorization server.
responseTypes (list) –
The supported response types for the OAuth2 authorization server.
(string) –
tokenEndpointAuthMethods (list) –
The authentication methods supported by the token endpoint. This specifies how clients can authenticate when requesting tokens from the authorization server.
(string) –
clientId (string) –
The client ID for the Google OAuth2 provider.
githubOauth2ProviderConfig (dict) –
The output configuration for a GitHub OAuth2 provider.
oauthDiscovery (dict) –
The OAuth2 discovery information for the GitHub provider.
Note
This is a Tagged Union structure. Only one of the following top level keys will be set:
discoveryUrl,authorizationServerMetadata. If a client receives an unknown member it will setSDK_UNKNOWN_MEMBERas the top level key, which maps to the name or tag of the unknown member. The structure ofSDK_UNKNOWN_MEMBERis as follows:'SDK_UNKNOWN_MEMBER': {'name': 'UnknownMemberName'}
discoveryUrl (string) –
The discovery URL for the OAuth2 provider.
authorizationServerMetadata (dict) –
The authorization server metadata for the OAuth2 provider.
issuer (string) –
The issuer URL for the OAuth2 authorization server.
authorizationEndpoint (string) –
The authorization endpoint URL for the OAuth2 authorization server.
tokenEndpoint (string) –
The token endpoint URL for the OAuth2 authorization server.
responseTypes (list) –
The supported response types for the OAuth2 authorization server.
(string) –
tokenEndpointAuthMethods (list) –
The authentication methods supported by the token endpoint. This specifies how clients can authenticate when requesting tokens from the authorization server.
(string) –
clientId (string) –
The client ID for the GitHub OAuth2 provider.
slackOauth2ProviderConfig (dict) –
The output configuration for a Slack OAuth2 provider.
oauthDiscovery (dict) –
The OAuth2 discovery information for the Slack provider.
Note
This is a Tagged Union structure. Only one of the following top level keys will be set:
discoveryUrl,authorizationServerMetadata. If a client receives an unknown member it will setSDK_UNKNOWN_MEMBERas the top level key, which maps to the name or tag of the unknown member. The structure ofSDK_UNKNOWN_MEMBERis as follows:'SDK_UNKNOWN_MEMBER': {'name': 'UnknownMemberName'}
discoveryUrl (string) –
The discovery URL for the OAuth2 provider.
authorizationServerMetadata (dict) –
The authorization server metadata for the OAuth2 provider.
issuer (string) –
The issuer URL for the OAuth2 authorization server.
authorizationEndpoint (string) –
The authorization endpoint URL for the OAuth2 authorization server.
tokenEndpoint (string) –
The token endpoint URL for the OAuth2 authorization server.
responseTypes (list) –
The supported response types for the OAuth2 authorization server.
(string) –
tokenEndpointAuthMethods (list) –
The authentication methods supported by the token endpoint. This specifies how clients can authenticate when requesting tokens from the authorization server.
(string) –
clientId (string) –
The client ID for the Slack OAuth2 provider.
salesforceOauth2ProviderConfig (dict) –
The output configuration for a Salesforce OAuth2 provider.
oauthDiscovery (dict) –
The OAuth2 discovery information for the Salesforce provider.
Note
This is a Tagged Union structure. Only one of the following top level keys will be set:
discoveryUrl,authorizationServerMetadata. If a client receives an unknown member it will setSDK_UNKNOWN_MEMBERas the top level key, which maps to the name or tag of the unknown member. The structure ofSDK_UNKNOWN_MEMBERis as follows:'SDK_UNKNOWN_MEMBER': {'name': 'UnknownMemberName'}
discoveryUrl (string) –
The discovery URL for the OAuth2 provider.
authorizationServerMetadata (dict) –
The authorization server metadata for the OAuth2 provider.
issuer (string) –
The issuer URL for the OAuth2 authorization server.
authorizationEndpoint (string) –
The authorization endpoint URL for the OAuth2 authorization server.
tokenEndpoint (string) –
The token endpoint URL for the OAuth2 authorization server.
responseTypes (list) –
The supported response types for the OAuth2 authorization server.
(string) –
tokenEndpointAuthMethods (list) –
The authentication methods supported by the token endpoint. This specifies how clients can authenticate when requesting tokens from the authorization server.
(string) –
clientId (string) –
The client ID for the Salesforce OAuth2 provider.
microsoftOauth2ProviderConfig (dict) –
The output configuration for a Microsoft OAuth2 provider.
oauthDiscovery (dict) –
The OAuth2 discovery information for the Microsoft provider.
Note
This is a Tagged Union structure. Only one of the following top level keys will be set:
discoveryUrl,authorizationServerMetadata. If a client receives an unknown member it will setSDK_UNKNOWN_MEMBERas the top level key, which maps to the name or tag of the unknown member. The structure ofSDK_UNKNOWN_MEMBERis as follows:'SDK_UNKNOWN_MEMBER': {'name': 'UnknownMemberName'}
discoveryUrl (string) –
The discovery URL for the OAuth2 provider.
authorizationServerMetadata (dict) –
The authorization server metadata for the OAuth2 provider.
issuer (string) –
The issuer URL for the OAuth2 authorization server.
authorizationEndpoint (string) –
The authorization endpoint URL for the OAuth2 authorization server.
tokenEndpoint (string) –
The token endpoint URL for the OAuth2 authorization server.
responseTypes (list) –
The supported response types for the OAuth2 authorization server.
(string) –
tokenEndpointAuthMethods (list) –
The authentication methods supported by the token endpoint. This specifies how clients can authenticate when requesting tokens from the authorization server.
(string) –
clientId (string) –
The client ID for the Microsoft OAuth2 provider.
atlassianOauth2ProviderConfig (dict) –
The configuration details for the Atlassian OAuth2 provider.
oauthDiscovery (dict) –
Contains the discovery information for an OAuth2 provider.
Note
This is a Tagged Union structure. Only one of the following top level keys will be set:
discoveryUrl,authorizationServerMetadata. If a client receives an unknown member it will setSDK_UNKNOWN_MEMBERas the top level key, which maps to the name or tag of the unknown member. The structure ofSDK_UNKNOWN_MEMBERis as follows:'SDK_UNKNOWN_MEMBER': {'name': 'UnknownMemberName'}
discoveryUrl (string) –
The discovery URL for the OAuth2 provider.
authorizationServerMetadata (dict) –
The authorization server metadata for the OAuth2 provider.
issuer (string) –
The issuer URL for the OAuth2 authorization server.
authorizationEndpoint (string) –
The authorization endpoint URL for the OAuth2 authorization server.
tokenEndpoint (string) –
The token endpoint URL for the OAuth2 authorization server.
responseTypes (list) –
The supported response types for the OAuth2 authorization server.
(string) –
tokenEndpointAuthMethods (list) –
The authentication methods supported by the token endpoint. This specifies how clients can authenticate when requesting tokens from the authorization server.
(string) –
clientId (string) –
The client ID for the Atlassian OAuth2 provider.
linkedinOauth2ProviderConfig (dict) –
The configuration details for the LinkedIn OAuth2 provider.
oauthDiscovery (dict) –
Contains the discovery information for an OAuth2 provider.
Note
This is a Tagged Union structure. Only one of the following top level keys will be set:
discoveryUrl,authorizationServerMetadata. If a client receives an unknown member it will setSDK_UNKNOWN_MEMBERas the top level key, which maps to the name or tag of the unknown member. The structure ofSDK_UNKNOWN_MEMBERis as follows:'SDK_UNKNOWN_MEMBER': {'name': 'UnknownMemberName'}
discoveryUrl (string) –
The discovery URL for the OAuth2 provider.
authorizationServerMetadata (dict) –
The authorization server metadata for the OAuth2 provider.
issuer (string) –
The issuer URL for the OAuth2 authorization server.
authorizationEndpoint (string) –
The authorization endpoint URL for the OAuth2 authorization server.
tokenEndpoint (string) –
The token endpoint URL for the OAuth2 authorization server.
responseTypes (list) –
The supported response types for the OAuth2 authorization server.
(string) –
tokenEndpointAuthMethods (list) –
The authentication methods supported by the token endpoint. This specifies how clients can authenticate when requesting tokens from the authorization server.
(string) –
clientId (string) –
The client ID for the LinkedIn OAuth2 provider.
includedOauth2ProviderConfig (dict) –
The configuration for a non-custom OAuth2 provider. This includes the configuration details for supported OAuth2 providers that have built-in integration support.
oauthDiscovery (dict) –
Contains the discovery information for an OAuth2 provider.
Note
This is a Tagged Union structure. Only one of the following top level keys will be set:
discoveryUrl,authorizationServerMetadata. If a client receives an unknown member it will setSDK_UNKNOWN_MEMBERas the top level key, which maps to the name or tag of the unknown member. The structure ofSDK_UNKNOWN_MEMBERis as follows:'SDK_UNKNOWN_MEMBER': {'name': 'UnknownMemberName'}
discoveryUrl (string) –
The discovery URL for the OAuth2 provider.
authorizationServerMetadata (dict) –
The authorization server metadata for the OAuth2 provider.
issuer (string) –
The issuer URL for the OAuth2 authorization server.
authorizationEndpoint (string) –
The authorization endpoint URL for the OAuth2 authorization server.
tokenEndpoint (string) –
The token endpoint URL for the OAuth2 authorization server.
responseTypes (list) –
The supported response types for the OAuth2 authorization server.
(string) –
tokenEndpointAuthMethods (list) –
The authentication methods supported by the token endpoint. This specifies how clients can authenticate when requesting tokens from the authorization server.
(string) –
clientId (string) –
The client ID for the supported OAuth2 provider.
Exceptions
BedrockAgentCoreControl.Client.exceptions.ServiceQuotaExceededExceptionBedrockAgentCoreControl.Client.exceptions.UnauthorizedExceptionBedrockAgentCoreControl.Client.exceptions.ResourceLimitExceededExceptionBedrockAgentCoreControl.Client.exceptions.ValidationExceptionBedrockAgentCoreControl.Client.exceptions.AccessDeniedExceptionBedrockAgentCoreControl.Client.exceptions.ResourceNotFoundExceptionBedrockAgentCoreControl.Client.exceptions.ThrottlingExceptionBedrockAgentCoreControl.Client.exceptions.InternalServerException