IAM / Client / enable_outbound_web_identity_federation

enable_outbound_web_identity_federation

IAM.Client.enable_outbound_web_identity_federation()

Enables the outbound identity federation feature for your Amazon Web Services account. When enabled, IAM principals in your account can use the GetWebIdentityToken API to obtain JSON Web Tokens (JWTs) for secure authentication with external services. This operation also generates a unique issuer URL for your Amazon Web Services account.

See also: AWS API Documentation

Request Syntax

response = client.enable_outbound_web_identity_federation()
Return type:

dict

Returns:

Response Syntax

{
    'IssuerIdentifier': 'string'
}

Response Structure

  • (dict) –

    • IssuerIdentifier (string) –

      A unique issuer URL for your Amazon Web Services account that hosts the OpenID Connect (OIDC) discovery endpoints at /.well-known/openid-configuration and /.well-known/jwks.json. The OpenID Connect (OIDC) discovery endpoints contain verification keys and metadata necessary for token verification.

Exceptions