Blame: python/example_code/iam/user_wrapper.py - awsdocs/aws-doc-sdk-examples

awsdocs / aws-doc-sdk-examples UNCLAIMED

Welcome to the AWS Code Examples Repository. This repo contains code examples used in the AWS documentation, AWS SDK Developer Guides, and more. For more information, see the Readme.md file below.

0 0 19 Java

Normal View History Raw

Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`# Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.`
			`# SPDX-License-Identifier: Apache-2.0`

			`"""`
			`Purpose`

			`Shows how to use AWS Identity and Access Management (IAM) users.`
			`"""`

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-start:[python.example_code.iam.user_wrapper.imports]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`import logging`
			`import time`

			`import boto3`
			`from botocore.exceptions import ClientError`

			`import access_key_wrapper`
			`import policy_wrapper`

			`logger = logging.getLogger(__name__)`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`iam = boto3.resource("iam")`
Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-end:[python.example_code.iam.user_wrapper.imports]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-start:[python.example_code.iam.CreateUser]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`def create_user(user_name):`
			`"""`
			`Creates a user. By default, a user has no permissions or access keys.`

			`:param user_name: The name of the user.`
			`:return: The newly created user.`
			`"""`
			`try:`
			`user = iam.create_user(UserName=user_name)`
			`logger.info("Created user %s.", user.name)`
			`except ClientError:`
			`logger.exception("Couldn't create user %s.", user_name)`
			`raise`
			`else:`
			`return user`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-end:[python.example_code.iam.CreateUser]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-start:[python.example_code.iam.DeleteUser]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`def delete_user(user_name):`
			`"""`
Incorporated edits. 2020-06-04 16:47:33 -07:00			`Deletes a user. Before a user can be deleted, all associated resources,`
			`such as access keys and policies, must be deleted or detached.`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00
			`:param user_name: The name of the user.`
			`"""`
			`try:`
			`iam.User(user_name).delete()`
			`logger.info("Deleted user %s.", user_name)`
			`except ClientError:`
			`logger.exception("Couldn't delete user %s.", user_name)`
			`raise`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-end:[python.example_code.iam.DeleteUser]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-start:[python.example_code.iam.ListUsers]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`def list_users():`
			`"""`
			`Lists the users in the current account.`

			`:return: The list of users.`
			`"""`
			`try:`
			`users = list(iam.users.all())`
			`logger.info("Got %s users.", len(users))`
			`except ClientError:`
			`logger.exception("Couldn't get users.")`
			`raise`
			`else:`
			`return users`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-end:[python.example_code.iam.ListUsers]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-start:[python.example_code.iam.UpdateUser]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`def update_user(user_name, new_user_name):`
			`"""`
			`Updates a user's name.`

			`:param user_name: The current name of the user to update.`
			`:param new_user_name: The new name to assign to the user.`
			`:return: The updated user.`
			`"""`
			`try:`
			`user = iam.User(user_name)`
			`user.update(NewUserName=new_user_name)`
			`logger.info("Renamed %s to %s.", user_name, new_user_name)`
			`except ClientError:`
			`logger.exception("Couldn't update name for user %s.", user_name)`
			`raise`
			`return user`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-end:[python.example_code.iam.UpdateUser]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-start:[python.example_code.iam.AttachUserPolicy]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`def attach_policy(user_name, policy_arn):`
			`"""`
			`Attaches a policy to a user.`

			`:param user_name: The name of the user.`
			`:param policy_arn: The Amazon Resource Name (ARN) of the policy.`
			`"""`
			`try:`
			`iam.User(user_name).attach_policy(PolicyArn=policy_arn)`
			`logger.info("Attached policy %s to user %s.", policy_arn, user_name)`
			`except ClientError:`
			`logger.exception("Couldn't attach policy %s to user %s.", policy_arn, user_name)`
			`raise`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-end:[python.example_code.iam.AttachUserPolicy]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-start:[python.example_code.iam.DetachUserPolicy]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`def detach_policy(user_name, policy_arn):`
			`"""`
			`Detaches a policy from a user.`

			`:param user_name: The name of the user.`
			`:param policy_arn: The Amazon Resource Name (ARN) of the policy.`
			`"""`
			`try:`
			`iam.User(user_name).detach_policy(PolicyArn=policy_arn)`
			`logger.info("Detached policy %s from user %s.", policy_arn, user_name)`
			`except ClientError:`
			`logger.exception(`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`"Couldn't detach policy %s from user %s.", policy_arn, user_name`
			`)`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`raise`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-end:[python.example_code.iam.DetachUserPolicy]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-start:[python.example_code.iam.Scenario_UserPolicies]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`def usage_demo():`
			`"""`
			`Shows how to manage users, keys, and policies.`
Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00			`This demonstration creates two users: one user who can put and get objects in an`
Incorporated edits. 2020-06-04 16:47:33 -07:00			`Amazon S3 bucket, and another user who can only get objects from the bucket.`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`The demo then shows how the users can perform only the actions they are permitted`
			`to perform.`
			`"""`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`logging.basicConfig(level=logging.INFO, format="%(levelname)s: %(message)s")`
			`print("-" * 88)`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`print("Welcome to the AWS Identity and Account Management user demo.")`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`print("-" * 88)`
			`print(`
			`"Users can have policies and roles attached to grant them specific "`
			`"permissions."`
			`)`
			`s3 = boto3.resource("s3")`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`bucket = s3.create_bucket(`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`Bucket=f"demo-iam-bucket-{time.time_ns()}",`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`CreateBucketConfiguration={`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`"LocationConstraint": s3.meta.client.meta.region_name`
			`},`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`)`
			`print(f"Created an Amazon S3 bucket named {bucket.name}.")`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`user_read_writer = create_user("demo-iam-read-writer")`
			`user_reader = create_user("demo-iam-reader")`
Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00			`print(f"Created two IAM users: {user_read_writer.name} and {user_reader.name}")`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`update_user(user_read_writer.name, "demo-iam-creator")`
			`update_user(user_reader.name, "demo-iam-getter")`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`users = list_users()`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`user_read_writer = next(`
			`user for user in users if user.user_id == user_read_writer.user_id`
			`)`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`user_reader = next(user for user in users if user.user_id == user_reader.user_id)`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`print(`
			`f"Changed the names of the users to {user_read_writer.name} "`
			`f"and {user_reader.name}."`
			`)`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00
Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00			`read_write_policy = policy_wrapper.create_policy(`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`"demo-iam-read-write-policy",`
			`"Grants rights to create and get an object in the demo bucket.",`
			`["s3:PutObject", "s3:GetObject"],`
			`f"arn:aws:s3:::{bucket.name}/*",`
			`)`
			`print(`
			`f"Created policy {read_write_policy.policy_name} with ARN: {read_write_policy.arn}"`
			`)`
Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00			`print(read_write_policy.description)`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`read_policy = policy_wrapper.create_policy(`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`"demo-iam-read-policy",`
			`"Grants rights to get an object from the demo bucket.",`
			`"s3:GetObject",`
			`f"arn:aws:s3:::{bucket.name}/*",`
			`)`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`print(f"Created policy {read_policy.policy_name} with ARN: {read_policy.arn}")`
			`print(read_policy.description)`
Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00			`attach_policy(user_read_writer.name, read_write_policy.arn)`
			`print(f"Attached {read_write_policy.policy_name} to {user_read_writer.name}.")`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`attach_policy(user_reader.name, read_policy.arn)`
			`print(f"Attached {read_policy.policy_name} to {user_reader.name}.")`

Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00			`user_read_writer_key = access_key_wrapper.create_key(user_read_writer.name)`
			`print(f"Created access key pair for {user_read_writer.name}.")`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`user_reader_key = access_key_wrapper.create_key(user_reader.name)`
			`print(f"Created access key pair for {user_reader.name}.")`

Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00			`s3_read_writer_resource = boto3.resource(`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`"s3",`
Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00			`aws_access_key_id=user_read_writer_key.id,`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`aws_secret_access_key=user_read_writer_key.secret,`
			`)`
			`demo_object_key = f"object-{time.time_ns()}"`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`demo_object = None`
			`while demo_object is None:`
			`try:`
Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00			`demo_object = s3_read_writer_resource.Bucket(bucket.name).put_object(`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`Key=demo_object_key, Body=b"AWS IAM demo object content!"`
			`)`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`except ClientError as error:`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`if error.response["Error"]["Code"] == "InvalidAccessKeyId":`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`print("Access key not yet available. Waiting...")`
			`time.sleep(1)`
			`else:`
			`raise`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`print(`
			`f"Put {demo_object_key} into {bucket.name} using "`
			`f"{user_read_writer.name}'s credentials."`
			`)`
Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`read_writer_object = s3_read_writer_resource.Bucket(bucket.name).Object(`
			`demo_object_key`
			`)`
			`read_writer_content = read_writer_object.get()["Body"].read()`
Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00			`print(f"Got object {read_writer_object.key} using read-writer user's credentials.")`
			`print(f"Object content: {read_writer_content}")`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00
			`s3_reader_resource = boto3.resource(`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`"s3",`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`aws_access_key_id=user_reader_key.id,`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`aws_secret_access_key=user_reader_key.secret,`
			`)`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`demo_content = None`
			`while demo_content is None:`
			`try:`
			`demo_object = s3_reader_resource.Bucket(bucket.name).Object(demo_object_key)`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`demo_content = demo_object.get()["Body"].read()`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`print(f"Got object {demo_object.key} using reader user's credentials.")`
			`print(f"Object content: {demo_content}")`
			`except ClientError as error:`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`if error.response["Error"]["Code"] == "InvalidAccessKeyId":`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`print("Access key not yet available. Waiting...")`
			`time.sleep(1)`
			`else:`
			`raise`

			`try:`
			`demo_object.delete()`
			`except ClientError as error:`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`if error.response["Error"]["Code"] == "AccessDenied":`
			`print("-" * 88)`
			`print(`
			`"Tried to delete the object using the reader user's credentials. "`
			`"Got expected AccessDenied error because the reader is not "`
			`"allowed to delete objects."`
			`)`
			`print("-" * 88)`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00
			`access_key_wrapper.delete_key(user_reader.name, user_reader_key.id)`
			`detach_policy(user_reader.name, read_policy.arn)`
			`policy_wrapper.delete_policy(read_policy.arn)`
			`delete_user(user_reader.name)`
			`print(f"Deleted keys, detached and deleted policy, and deleted {user_reader.name}.")`

Update Python IAM user scenario to create read-write user instead of write-only user. (#2758) 2022-01-25 16:01:48 -08:00			`access_key_wrapper.delete_key(user_read_writer.name, user_read_writer_key.id)`
			`detach_policy(user_read_writer.name, read_write_policy.arn)`
			`policy_wrapper.delete_policy(read_write_policy.arn)`
			`delete_user(user_read_writer.name)`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`print(`
			`f"Deleted keys, detached and deleted policy, and deleted {user_read_writer.name}."`
			`)`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00
			`bucket.objects.delete()`
			`bucket.delete()`
			`print(f"Emptied and deleted {bucket.name}.")`
			`print("Thanks for watching!")`
Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00

Snippet tags, SOS data, and REDME for Python IAM examples (#2198) Co-authored-by: Irene Smith <73654695+irenepsmith@users.noreply.github.com> 2021-10-07 15:59:25 -07:00			`# snippet-end:[python.example_code.iam.Scenario_UserPolicies]`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00

Python: Format with black and switch superlint (#5513) 2023-10-18 10:35:05 -07:00			`if __name__ == "__main__":`
Cleaning up, updating, and rewriting IAM examples. Added unit tests, comments, README, and metadata. 2020-05-26 17:37:41 -07:00			`usage_demo()`