CodeArtifact / Client / get_authorization_token
get_authorization_token#
- CodeArtifact.Client.get_authorization_token(**kwargs)#
Generates a temporary authorization token for accessing repositories in the domain. This API requires the
codeartifact:GetAuthorizationToken
andsts:GetServiceBearerToken
permissions. For more information about authorization tokens, see CodeArtifact authentication and tokens.Note
CodeArtifact authorization tokens are valid for a period of 12 hours when created with the
login
command. You can calllogin
periodically to refresh the token. When you create an authorization token with theGetAuthorizationToken
API, you can set a custom authorization period, up to a maximum of 12 hours, with thedurationSeconds
parameter.The authorization period begins after
login
orGetAuthorizationToken
is called. Iflogin
orGetAuthorizationToken
is called while assuming a role, the token lifetime is independent of the maximum session duration of the role. For example, if you callsts assume-role
and specify a session duration of 15 minutes, then generate a CodeArtifact authorization token, the token will be valid for the full authorization period even though this is longer than the 15-minute session duration.See Using IAM Roles for more information on controlling session duration.
See also: AWS API Documentation
Request Syntax
response = client.get_authorization_token( domain='string', domainOwner='string', durationSeconds=123 )
- Parameters:
domain (string) –
[REQUIRED]
The name of the domain that is in scope for the generated authorization token.
domainOwner (string) – The 12-digit account number of the Amazon Web Services account that owns the domain. It does not include dashes or spaces.
durationSeconds (integer) – The time, in seconds, that the generated authorization token is valid. Valid values are
0
and any number between900
(15 minutes) and43200
(12 hours). A value of0
will set the expiration of the authorization token to the same expiration of the user’s role’s temporary credentials.
- Return type:
dict
- Returns:
Response Syntax
{ 'authorizationToken': 'string', 'expiration': datetime(2015, 1, 1) }
Response Structure
(dict) –
authorizationToken (string) –
The returned authentication token.
expiration (datetime) –
A timestamp that specifies the date and time the authorization token expires.
Exceptions