Sample code for 30+ languages & platforms
Lianja

AWS Security Token Service (STS) GetSessionToken

See more AWS Security Token Service Examples

Returns a set of temporary credentials for an AWS account or IAM user.

Chilkat Lianja Downloads

Lianja
llSuccess = .F.

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

loRest = createobject("CkRest")

// Connect to the Amazon AWS REST server.
// such as https://sts.us-west-2.amazonaws.com/
llBTls = .T.
lnPort = 443
llBAutoReconnect = .T.
llSuccess = loRest.Connect("sts.us-west-2.amazonaws.com",lnPort,llBTls,llBAutoReconnect)

// Provide AWS credentials for the REST call.
loAuthAws = createobject("CkAuthAws")
loAuthAws.AccessKey = "AWS_ACCESS_KEY"
loAuthAws.SecretKey = "AWS_SECRET_KEY"
// the region should match our URL above..
// See https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_enable-regions.html
loAuthAws.Region = "us-west-2"
loAuthAws.ServiceName = "sts"

loRest.SetAuthAws(loAuthAws)

loRest.AddQueryParam("Version","2011-06-15")
loRest.AddQueryParam("Action","GetSessionToken")
loRest.AddQueryParam("DurationSeconds","3600")

lcResponseXml = loRest.FullRequestNoBody("GET","/")
if (loRest.LastMethodSuccess <> .T.) then
    ? loRest.LastErrorText
    release loRest
    release loAuthAws
    return
endif

// A successful response will have a status code equal to 200.
if (loRest.ResponseStatusCode <> 200) then
    ? "response status code = " + str(loRest.ResponseStatusCode)
    ? "response status text = " + loRest.ResponseStatusText
    ? "response header: " + loRest.ResponseHeader
    ? "response body: " + lcResponseXml
    release loRest
    release loAuthAws
    return
endif

// Examine the successful XML response (shown below)
loXml = createobject("CkXml")
loXml.LoadXml(lcResponseXml)
? loXml.GetXml()

// Sample response:

// <?xml version="1.0" encoding="utf-8"?>
// <GetSessionTokenResponse xmlns="https://sts.amazonaws.com/doc/2011-06-15/">
//     <GetSessionTokenResult>
//         <Credentials>
//             <AccessKeyId>AS........T4N</AccessKeyId>
//             <SecretAccessKey>05W........ARPMr</SecretAccessKey>
//             <SessionToken>IQoJb3J........llpIMI=</SessionToken>
//             <Expiration>2022-09-07T00:22:51Z</Expiration>
//         </Credentials>
//     </GetSessionTokenResult>
//     <ResponseMetadata>
//         <RequestId>8bad22cc-1c55-4265-a010-45d139359404</RequestId>
//     </ResponseMetadata>
// </GetSessionTokenResponse>

// Sample parse code:
lcGetSessionTokenResponse_xmlns = loXml.GetAttrValue("xmlns")
lcAccessKeyId = loXml.GetChildContent("GetSessionTokenResult|Credentials|AccessKeyId")
lcSecretAccessKey = loXml.GetChildContent("GetSessionTokenResult|Credentials|SecretAccessKey")
lcSessionToken = loXml.GetChildContent("GetSessionTokenResult|Credentials|SessionToken")
lcExpiration = loXml.GetChildContent("GetSessionTokenResult|Credentials|Expiration")
lcRequestId = loXml.GetChildContent("ResponseMetadata|RequestId")

// Save the session token XML to a file for use by another Chilkat example..
llSuccess = loXml.SaveXml("qa_data/tokens/aws_session_token.xml")


release loRest
release loAuthAws
release loXml