AWS IAM

AWS Identity and Access Management (IAM) is a web service for securely controlling access to AWS services. With IAM, you can centrally manage users, security credentials such as access keys, and permissions that control which AWS resources users and applications can access.

Integration with LogicHub

Connecting with AWS IAM

To connect to AWS IAM following details are required:

  • Label: Connection name.
  • Reference Values: Define variables here to templatize integration connections and actions. For example, you can use https://www.{{hostname}}.com where, hostname is a variable defined in this input. For more information on how to add data, see 'Add Data' Input Type for Integrations.
  • Access Key: To access AWS API, provide a valid Access Key.
  • Secret Key: To access AWS API, provide a valid secret Key.
  • Region Name: To access AWS API, provide a valid Region name.

Actions with AWS IAM

Get Access Key Last Used

Retrieves information about when the specified access key was last used. The information includes the date and time of last use, along with the AWS service and Region that were specified in the last request made with that key.

Inputs to this Action

  • Connection: Choose a connection that you have created.
  • Jinja Template Access Key: Jinja-templated text containing the name of the access key. Example: {{aws_iam_column_name}}

Output of Action
JSON object containing following attributes:

  • has_error: True/False
  • error: message/null
  • result: Response from AWS IAM
{
   "result":{
      "UserName":"Logichub-User",
      "AccessKeyLastUsed":{
         "LastUsedDate":"2021-06-09T04:17:00+00:00",
         "ServiceName":"iam",
         "Region":"us-east-1"
      },
      "ResponseMetadata":{
         "RequestId":"df329b96-752d-4170-96fe-499f29f9a625",
         "HTTPStatusCode":200,
         "HTTPHeaders":{
            "x-amzn-requestid":"df329b96-752d-4170-96fe-499f29f9a625",
            "content-type":"text/xml",
            "content-length":"498",
            "date":"Wed, 09 Jun 2021 14:16:51 GMT"
         },
         "RetryAttempts":0
      }
   },
   "error":null,
   "has_error":false
}

Create Access Key

Creates a new AWS secret access key and corresponding AWS access key ID for the specified user. The default status for new keys is Active.

Inputs to this Action

  • Connection: Choose a connection that you have created.
  • Jinja Template Username: Jinja-templated text containing the username. Example: {{aws_username_column_name}}

Output of Action
JSON object containing following attributes:

  • has_error: True/False
  • error: message/null
  • result: Response from AWS IAM
{
   "result":{
      "AccessKey":{
         "UserName":"Logichub-User",
         "AccessKeyId":"AKxxxxxxxxxxxxxx",
         "Status":"Active",
         "SecretAccessKey":"f71xxxxxxxxxxxxxxxxxxxxxxx",
         "CreateDate":"2021-06-09T15:04:16+00:00"
      },
      "ResponseMetadata":{
         "RequestId":"0ea56b5b-757d-4f49-bb06-69da4df6b055",
         "HTTPStatusCode":200,
         "HTTPHeaders":{
            "x-amzn-requestid":"0ea56b5b-757d-4f49-bb06-69da4df6b055",
            "content-type":"text/xml",
            "content-length":"606",
            "date":"Wed, 09 Jun 2021 15:04:15 GMT"
         },
         "RetryAttempts":0
      }
   },
   "error":null,
   "has_error":false
}

Delete Access Key

Deletes the access key pair associated with the specified IAM user.

Inputs to this Action

  • Connection: Choose a connection that you have created.
  • Jinja Template Username: Jinja-templated text containing the username. Example: {{aws_username_column_name}}
  • Jinja Template Access Key: Jinja-templated text containing the name of the access key. Example: {{aws_iam_column_name}}

Output of Action
JSON object containing following attributes:

  • has_error: True/False
  • error: message/null
  • result: Response from AWS IAM
{
   "result":{
      "ResponseMetadata":{
         "RequestId":"eef000bd-b955-4950-bc3e-7b6ddfd514b5",
         "HTTPStatusCode":200,
         "HTTPHeaders":{
            "x-amzn-requestid":"eef000bd-b955-4950-bc3e-7b6ddfd514b5",
            "content-type":"text/xml",
            "content-length":"210",
            "date":"Wed, 09 Jun 2021 15:01:46 GMT"
         },
         "RetryAttempts":0
      }
   },
   "error":null,
   "has_error":false
}

List Access Keys

Returns information about the access key IDs associated with the specified IAM user. If there is none, the operation returns an empty list.

Inputs to this Action

  • Connection: Choose a connection that you have created.
  • Jinja Template Username: Jinja-templated text containing the username. Example: {{aws_username_column_name}}

Output of Action
Array of JSON object representing access key details in individual rows.

{
   "UserName":"Logichub-User",
   "has_error":false,
   "AccessKeyId":"AKIXXXXXXXXXXXXXXXXXXX",
   "CreateDate":"2021-06-09T04:10:12+00:00",
   "error":null,
   "Status":"Inactive"
}

Update Access Key

Changes the status of the specified access key from Active to Inactive, or vice versa. This operation can be used to disable a user's key as part of a key rotation workflow.

Inputs to this Action

  • Connection: Choose a connection that you have created.
  • Jinja Template Username: Jinja-templated text containing the username. Example: {{aws_username_column_name}}
  • Jinja Template Access Key: Jinja-templated text containing the name of the access key. Example: {{aws_iam_column_name}}
  • Status: Select new status of the access key. Possible values are (Active / Inactive)

Output of Action
JSON object containing following attributes:

  • has_error: True/False
  • error: message/null
  • result: Response from AWS IAM
{
   "result":{
      "ResponseMetadata":{
         "RequestId":"32e608e4-d3a8-4970-8e3a-479862a6a4c7",
         "HTTPStatusCode":200,
         "HTTPHeaders":{
            "x-amzn-requestid":"32e608e4-d3a8-4970-8e3a-479862a6a4c7",
            "content-type":"text/xml",
            "content-length":"210",
            "date":"Wed, 09 Jun 2021 14:47:41 GMT"
         },
         "RetryAttempts":0
      }
   },
   "error":null,
   "has_error":false
}

Did this page help you?