AWS Identity and Access Management
amazonaws · Cloud
Identity and Access Management Identity and Access Management (IAM) is a web service for securely controlling access to Amazon Web Services services. With IAM, you can centrally manage users, security credentials such as access keys, and permissions that control which Amazon Web Services resources users and applications can access. For more information about IAM, see Identity and Access Management (IAM) and the <a href="https://doc
Authentication
Sample Requests
Adds a new client ID (also known as audience) to the list of client IDs already registered for the specified IAM OpenID Connect (OIDC) provider resource. This operation is idempotent; it does not fail or return an error if you add an existing client ID to the provider.
Hover any highlighted part to learn what it does
curl -X GET "https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddClientIDToOpenIDConnectProvider?Action=AddClientIDToOpenIDConnectProvider&Version=2010-05-08&ClientID=example&OpenIDConnectProviderArn=example"
import requests
params = {
"Action": "AddClientIDToOpenIDConnectProvider",
"Version": "2010-05-08",
"ClientID": "example",
"OpenIDConnectProviderArn": "example"
}
response = requests.get(
"https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddClientIDToOpenIDConnectProvider",
params=params,
)
print(response.json())const url = new URL('https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddClientIDToOpenIDConnectProvider');
url.searchParams.set('Action', 'AddClientIDToOpenIDConnectProvider');
url.searchParams.set('Version', '2010-05-08');
url.searchParams.set('ClientID', 'example');
url.searchParams.set('OpenIDConnectProviderArn', 'example');
const response = await fetch(url);
const data = await response.json();
console.log(data);package main
import (
"fmt"
"io"
"net/http"
"net/url"
)
func main() {
baseURL, _ := url.Parse("https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddClientIDToOpenIDConnectProvider")
q := baseURL.Query()
q.Set("Action", "AddClientIDToOpenIDConnectProvider")
q.Set("Version", "2010-05-08")
q.Set("ClientID", "example")
q.Set("OpenIDConnectProviderArn", "example")
baseURL.RawQuery = q.Encode()
targetURL := baseURL.String()
req, _ := http.NewRequest("GET", targetURL, nil)
client := &http.Client{}
resp, _ := client.Do(req)
defer resp.Body.Close()
body, _ := io.ReadAll(resp.Body)
fmt.Println(string(body))
}require "net/http"
require "json"
uri = URI("https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddClientIDToOpenIDConnectProvider")
uri.query = URI.encode_www_form({
"Action" => "AddClientIDToOpenIDConnectProvider",
"Version" => "2010-05-08",
"ClientID" => "example",
"OpenIDConnectProviderArn" => "example"
})
http = Net::HTTP.new(uri.host, uri.port)
http.use_ssl = uri.scheme == "https"
req = Net::HTTP::Get.new(uri)
res = http.request(req)
puts JSON.parse(res.body)<?php
$url = "https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddClientIDToOpenIDConnectProvider?" . http_build_query([
"Action" => "AddClientIDToOpenIDConnectProvider",
"Version" => "2010-05-08",
"ClientID" => "example",
"OpenIDConnectProviderArn" => "example"
]);
$opts = ["http" => [
"method" => "GET",
]];
$ctx = stream_context_create($opts);
$res = file_get_contents($url, false, $ctx);
print_r(json_decode($res, true));Adds the specified IAM role to the specified instance profile. An instance profile can contain only one role, and this quota cannot be increased. You can remove the existing role and then add a different role to an instance profile. You must then wait for the change to appear across all of Amazon
Hover any highlighted part to learn what it does
curl -X GET "https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddRoleToInstanceProfile?Action=AddRoleToInstanceProfile&Version=2010-05-08&RoleName=example&InstanceProfileName=example"
import requests
params = {
"Action": "AddRoleToInstanceProfile",
"Version": "2010-05-08",
"RoleName": "example",
"InstanceProfileName": "example"
}
response = requests.get(
"https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddRoleToInstanceProfile",
params=params,
)
print(response.json())const url = new URL('https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddRoleToInstanceProfile');
url.searchParams.set('Action', 'AddRoleToInstanceProfile');
url.searchParams.set('Version', '2010-05-08');
url.searchParams.set('RoleName', 'example');
url.searchParams.set('InstanceProfileName', 'example');
const response = await fetch(url);
const data = await response.json();
console.log(data);package main
import (
"fmt"
"io"
"net/http"
"net/url"
)
func main() {
baseURL, _ := url.Parse("https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddRoleToInstanceProfile")
q := baseURL.Query()
q.Set("Action", "AddRoleToInstanceProfile")
q.Set("Version", "2010-05-08")
q.Set("RoleName", "example")
q.Set("InstanceProfileName", "example")
baseURL.RawQuery = q.Encode()
targetURL := baseURL.String()
req, _ := http.NewRequest("GET", targetURL, nil)
client := &http.Client{}
resp, _ := client.Do(req)
defer resp.Body.Close()
body, _ := io.ReadAll(resp.Body)
fmt.Println(string(body))
}require "net/http"
require "json"
uri = URI("https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddRoleToInstanceProfile")
uri.query = URI.encode_www_form({
"Action" => "AddRoleToInstanceProfile",
"Version" => "2010-05-08",
"RoleName" => "example",
"InstanceProfileName" => "example"
})
http = Net::HTTP.new(uri.host, uri.port)
http.use_ssl = uri.scheme == "https"
req = Net::HTTP::Get.new(uri)
res = http.request(req)
puts JSON.parse(res.body)<?php
$url = "https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddRoleToInstanceProfile?" . http_build_query([
"Action" => "AddRoleToInstanceProfile",
"Version" => "2010-05-08",
"RoleName" => "example",
"InstanceProfileName" => "example"
]);
$opts = ["http" => [
"method" => "GET",
]];
$ctx = stream_context_create($opts);
$res = file_get_contents($url, false, $ctx);
print_r(json_decode($res, true));Adds the specified user to the specified group.
Hover any highlighted part to learn what it does
curl -X GET "https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddUserToGroup?Action=AddUserToGroup&Version=2010-05-08&UserName=testuser&GroupName=example"
import requests
params = {
"Action": "AddUserToGroup",
"Version": "2010-05-08",
"UserName": "testuser",
"GroupName": "example"
}
response = requests.get(
"https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddUserToGroup",
params=params,
)
print(response.json())const url = new URL('https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddUserToGroup');
url.searchParams.set('Action', 'AddUserToGroup');
url.searchParams.set('Version', '2010-05-08');
url.searchParams.set('UserName', 'testuser');
url.searchParams.set('GroupName', 'example');
const response = await fetch(url);
const data = await response.json();
console.log(data);package main
import (
"fmt"
"io"
"net/http"
"net/url"
)
func main() {
baseURL, _ := url.Parse("https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddUserToGroup")
q := baseURL.Query()
q.Set("Action", "AddUserToGroup")
q.Set("Version", "2010-05-08")
q.Set("UserName", "testuser")
q.Set("GroupName", "example")
baseURL.RawQuery = q.Encode()
targetURL := baseURL.String()
req, _ := http.NewRequest("GET", targetURL, nil)
client := &http.Client{}
resp, _ := client.Do(req)
defer resp.Body.Close()
body, _ := io.ReadAll(resp.Body)
fmt.Println(string(body))
}require "net/http"
require "json"
uri = URI("https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddUserToGroup")
uri.query = URI.encode_www_form({
"Action" => "AddUserToGroup",
"Version" => "2010-05-08",
"UserName" => "testuser",
"GroupName" => "example"
})
http = Net::HTTP.new(uri.host, uri.port)
http.use_ssl = uri.scheme == "https"
req = Net::HTTP::Get.new(uri)
res = http.request(req)
puts JSON.parse(res.body)<?php
$url = "https://api.apis.guru/v2/specs/amazonaws.com/iam/2010-05-08/#Action=AddUserToGroup?" . http_build_query([
"Action" => "AddUserToGroup",
"Version" => "2010-05-08",
"UserName" => "testuser",
"GroupName" => "example"
]);
$opts = ["http" => [
"method" => "GET",
]];
$ctx = stream_context_create($opts);
$res = file_get_contents($url, false, $ctx);
print_r(json_decode($res, true));Postman Setup Guide
- See official documentation for authentication and setup.
What can you build with AWS Identity and Access Management?
AWS Identity and Access Management is a Cloud API. Developers commonly use cloud APIs for:
- provisioning and managing cloud infrastructure
- automating deployments and container orchestration
- monitoring uptime and performance metrics
- managing storage buckets and databases
- setting up auto-scaling and load balancing
No authentication required. This API is open — no signup or key needed. Ideal for quick prototypes and public-facing features. AWS Identity and Access Management is free to use, making it a low-risk choice to experiment with.
New to APIs? Read our beginner's guide · Learn about API keys · What is REST?