LicenseManager / Client / create_token
create_token#
- LicenseManager.Client.create_token(**kwargs)#
Creates a long-lived token.
A refresh token is a JWT token used to get an access token. With an access token, you can call AssumeRoleWithWebIdentity to get role credentials that you can use to call License Manager to manage the specified license.
See also: AWS API Documentation
Request Syntax
response = client.create_token( LicenseArn='string', RoleArns=[ 'string', ], ExpirationInDays=123, TokenProperties=[ 'string', ], ClientToken='string' )
- Parameters:
LicenseArn (string) –
[REQUIRED]
Amazon Resource Name (ARN) of the license. The ARN is mapped to the aud claim of the JWT token.
RoleArns (list) –
Amazon Resource Name (ARN) of the IAM roles to embed in the token. License Manager does not check whether the roles are in use.
(string) –
ExpirationInDays (integer) – Token expiration, in days, counted from token creation. The default is 365 days.
TokenProperties (list) –
Data specified by the caller to be included in the JWT token. The data is mapped to the amr claim of the JWT token.
(string) –
ClientToken (string) –
[REQUIRED]
Idempotency token, valid for 10 minutes.
- Return type:
dict
- Returns:
Response Syntax
{ 'TokenId': 'string', 'TokenType': 'REFRESH_TOKEN', 'Token': 'string' }
Response Structure
(dict) –
TokenId (string) –
Token ID.
TokenType (string) –
Token type.
Token (string) –
Refresh token, encoded as a JWT token.
Exceptions