/ open-webui.git / app / env / lib / python3.11 / site-packages / moto / iam / responses.py

from xml.sax.saxutils import escape from moto.core.responses import BaseResponse from .models import IAMBackend, User, iam_backends class IamResponse(BaseResponse): def __init__(self) -> None: super().__init__(service_name="iam") @property def backend(self) -> IAMBackend: return iam_backends[self.current_account][self.partition] def attach_role_policy(self) -> str: policy_arn = self._get_param("PolicyArn") role_name = self._get_param("RoleName") self.backend.attach_role_policy(policy_arn, role_name) template = self.response_template(ATTACH_ROLE_POLICY_TEMPLATE) return template.render() def detach_role_policy(self) -> str: role_name = self._get_param("RoleName") policy_arn = self._get_param("PolicyArn") self.backend.detach_role_policy(policy_arn, role_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DetachRolePolicy") def attach_group_policy(self) -> str: policy_arn = self._get_param("PolicyArn") group_name = self._get_param("GroupName") self.backend.attach_group_policy(policy_arn, group_name) template = self.response_template(ATTACH_GROUP_POLICY_TEMPLATE) return template.render() def detach_group_policy(self) -> str: policy_arn = self._get_param("PolicyArn") group_name = self._get_param("GroupName") self.backend.detach_group_policy(policy_arn, group_name) template = self.response_template(DETACH_GROUP_POLICY_TEMPLATE) return template.render() def attach_user_policy(self) -> str: policy_arn = self._get_param("PolicyArn") user_name = self._get_param("UserName") self.backend.attach_user_policy(policy_arn, user_name) template = self.response_template(ATTACH_USER_POLICY_TEMPLATE) return template.render() def detach_user_policy(self) -> str: policy_arn = self._get_param("PolicyArn") user_name = self._get_param("UserName") self.backend.detach_user_policy(policy_arn, user_name) template = self.response_template(DETACH_USER_POLICY_TEMPLATE) return template.render() def create_policy(self) -> str: description = self._get_param("Description") path = self._get_param("Path") policy_document = self._get_param("PolicyDocument") policy_name = self._get_param("PolicyName") tags = self._get_multi_param("Tags.member") policy = self.backend.create_policy( description, path, policy_document, policy_name, tags ) template = self.response_template(CREATE_POLICY_TEMPLATE) return template.render(policy=policy) def get_policy(self) -> str: policy_arn = self._get_param("PolicyArn") policy = self.backend.get_policy(policy_arn) template = self.response_template(GET_POLICY_TEMPLATE) return template.render(policy=policy) def list_attached_role_policies(self) -> str: marker = self._get_param("Marker") max_items = self._get_int_param("MaxItems", 100) path_prefix = self._get_param("PathPrefix", "/") role_name = self._get_param("RoleName") policies, marker = self.backend.list_attached_role_policies( role_name, marker=marker, max_items=max_items, path_prefix=path_prefix ) template = self.response_template(LIST_ATTACHED_ROLE_POLICIES_TEMPLATE) return template.render(policies=policies, marker=marker) def list_attached_group_policies(self) -> str: marker = self._get_param("Marker") max_items = self._get_int_param("MaxItems", 100) path_prefix = self._get_param("PathPrefix", "/") group_name = self._get_param("GroupName") policies, marker = self.backend.list_attached_group_policies( group_name, marker=marker, max_items=max_items, path_prefix=path_prefix ) template = self.response_template(LIST_ATTACHED_GROUP_POLICIES_TEMPLATE) return template.render(policies=policies, marker=marker) def list_attached_user_policies(self) -> str: marker = self._get_param("Marker") max_items = self._get_int_param("MaxItems", 100) path_prefix = self._get_param("PathPrefix", "/") user_name = self._get_param("UserName") policies, marker = self.backend.list_attached_user_policies( user_name, marker=marker, max_items=max_items, path_prefix=path_prefix ) template = self.response_template(LIST_ATTACHED_USER_POLICIES_TEMPLATE) return template.render(policies=policies, marker=marker) def list_policies(self) -> str: marker = self._get_param("Marker") max_items = self._get_int_param("MaxItems", 100) only_attached = self._get_bool_param("OnlyAttached", False) path_prefix = self._get_param("PathPrefix", "/") scope = self._get_param("Scope", "All") policies, marker = self.backend.list_policies( marker, max_items, only_attached, path_prefix, scope ) template = self.response_template(LIST_POLICIES_TEMPLATE) return template.render(policies=policies, marker=marker) def list_entities_for_policy(self) -> str: policy_arn = self._get_param("PolicyArn") # Options 'User'|'Role'|'Group'|'LocalManagedPolicy'|'AWSManagedPolicy entity = self._get_param("EntityFilter") path_prefix = self._get_param("PathPrefix") # policy_usage_filter = self._get_param('PolicyUsageFilter') marker = self._get_param("Marker") max_items = self._get_param("MaxItems") entity_roles = [] entity_groups = [] entity_users = [] if not entity or entity == "User": users = self.backend.list_users(path_prefix, marker, max_items) if users: for user in users: for p in user.managed_policies: if p == policy_arn: entity_users.append({"name": user.name, "id": user.id}) if not entity or entity == "Role": roles, _ = self.backend.list_roles(path_prefix, marker, max_items) if roles: for role in roles: for p in role.managed_policies: if p == policy_arn: entity_roles.append({"name": role.name, "id": role.id}) if not entity or entity == "Group": groups = self.backend.list_groups() if groups: for group in groups: for p in group.managed_policies: if p == policy_arn: entity_groups.append({"name": group.name, "id": group.id}) if entity == "LocalManagedPolicy" or entity == "AWSManagedPolicy": users = self.backend.list_users(path_prefix, marker, max_items) if users: for user in users: for p in user.managed_policies: if p == policy_arn: entity_users.append({"name": user.name, "id": user.id}) roles, _ = self.backend.list_roles(path_prefix, marker, max_items) if roles: for role in roles: for p in role.managed_policies: if p == policy_arn: entity_roles.append({"name": role.name, "id": role.id}) groups = self.backend.list_groups() if groups: for group in groups: for p in group.managed_policies: if p == policy_arn: entity_groups.append({"name": group.name, "id": group.id}) template = self.response_template(LIST_ENTITIES_FOR_POLICY_TEMPLATE) return template.render( roles=entity_roles, users=entity_users, groups=entity_groups ) def set_default_policy_version(self) -> str: policy_arn = self._get_param("PolicyArn") version_id = self._get_param("VersionId") self.backend.set_default_policy_version(policy_arn, version_id) template = self.response_template(SET_DEFAULT_POLICY_VERSION_TEMPLATE) return template.render() def create_role(self) -> str: role_name = self._get_param("RoleName") path = self._get_param("Path") assume_role_policy_document = self._get_param("AssumeRolePolicyDocument") permissions_boundary = self._get_param("PermissionsBoundary") description = self._get_param("Description") tags = self._get_multi_param("Tags.member") max_session_duration = self._get_param("MaxSessionDuration", 3600) role = self.backend.create_role( role_name, assume_role_policy_document, path, permissions_boundary, description, tags, max_session_duration, ) template = self.response_template(CREATE_ROLE_TEMPLATE) return template.render(role=role) def get_role(self) -> str: role_name = self._get_param("RoleName") role = self.backend.get_role(role_name) template = self.response_template(GET_ROLE_TEMPLATE) return template.render(role=role) def delete_role(self) -> str: role_name = self._get_param("RoleName") self.backend.delete_role(role_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeleteRole") def list_role_policies(self) -> str: role_name = self._get_param("RoleName") role_policies_names = self.backend.list_role_policies(role_name) template = self.response_template(LIST_ROLE_POLICIES) return template.render(role_policies=role_policies_names) def put_role_policy(self) -> str: role_name = self._get_param("RoleName") policy_name = self._get_param("PolicyName") policy_document = self._get_param("PolicyDocument") self.backend.put_role_policy(role_name, policy_name, policy_document) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="PutRolePolicy") def delete_role_policy(self) -> str: role_name = self._get_param("RoleName") policy_name = self._get_param("PolicyName") self.backend.delete_role_policy(role_name, policy_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeleteRolePolicy") def get_role_policy(self) -> str: role_name = self._get_param("RoleName") policy_name = self._get_param("PolicyName") policy_name, policy_document = self.backend.get_role_policy( role_name, policy_name ) template = self.response_template(GET_ROLE_POLICY_TEMPLATE) return template.render( role_name=role_name, policy_name=policy_name, policy_document=policy_document, ) def update_assume_role_policy(self) -> str: role_name = self._get_param("RoleName") policy_document = self._get_param("PolicyDocument") self.backend.update_assume_role_policy(role_name, policy_document) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="UpdateAssumeRolePolicy") def update_role_description(self) -> str: role_name = self._get_param("RoleName") description = self._get_param("Description") role = self.backend.update_role_description(role_name, description) template = self.response_template(UPDATE_ROLE_DESCRIPTION_TEMPLATE) return template.render(role=role) def update_role(self) -> str: role_name = self._get_param("RoleName") description = self._get_param("Description") max_session_duration = self._get_param("MaxSessionDuration", 3600) role = self.backend.update_role(role_name, description, max_session_duration) template = self.response_template(UPDATE_ROLE_TEMPLATE) return template.render(role=role) def put_role_permissions_boundary(self) -> str: permissions_boundary = self._get_param("PermissionsBoundary") role_name = self._get_param("RoleName") self.backend.put_role_permissions_boundary(role_name, permissions_boundary) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="PutRolePermissionsBoundary") def delete_role_permissions_boundary(self) -> str: role_name = self._get_param("RoleName") self.backend.delete_role_permissions_boundary(role_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeleteRolePermissionsBoundary") def create_policy_version(self) -> str: policy_arn = self._get_param("PolicyArn") policy_document = self._get_param("PolicyDocument") set_as_default = self._get_param("SetAsDefault") policy_version = self.backend.create_policy_version( policy_arn, policy_document, set_as_default ) template = self.response_template(CREATE_POLICY_VERSION_TEMPLATE) return template.render(policy_version=policy_version) def get_policy_version(self) -> str: policy_arn = self._get_param("PolicyArn") version_id = self._get_param("VersionId") policy_version = self.backend.get_policy_version(policy_arn, version_id) template = self.response_template(GET_POLICY_VERSION_TEMPLATE) return template.render(policy_version=policy_version) def list_policy_versions(self) -> str: policy_arn = self._get_param("PolicyArn") policy_versions = self.backend.list_policy_versions(policy_arn) template = self.response_template(LIST_POLICY_VERSIONS_TEMPLATE) return template.render(policy_versions=policy_versions) def list_policy_tags(self) -> str: policy_arn = self._get_param("PolicyArn") marker = self._get_param("Marker") max_items = self._get_param("MaxItems", 100) tags, marker = self.backend.list_policy_tags(policy_arn, marker, max_items) template = self.response_template(LIST_POLICY_TAG_TEMPLATE) return template.render(tags=tags, marker=marker) def tag_policy(self) -> str: policy_arn = self._get_param("PolicyArn") tags = self._get_multi_param("Tags.member") self.backend.tag_policy(policy_arn, tags) template = self.response_template(TAG_POLICY_TEMPLATE) return template.render() def untag_policy(self) -> str: policy_arn = self._get_param("PolicyArn") tag_keys = self._get_multi_param("TagKeys.member") self.backend.untag_policy(policy_arn, tag_keys) template = self.response_template(UNTAG_POLICY_TEMPLATE) return template.render() def delete_policy_version(self) -> str: policy_arn = self._get_param("PolicyArn") version_id = self._get_param("VersionId") self.backend.delete_policy_version(policy_arn, version_id) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeletePolicyVersion") def create_instance_profile(self) -> str: profile_name = self._get_param("InstanceProfileName") path = self._get_param("Path", "/") tags = self._get_multi_param("Tags.member") profile = self.backend.create_instance_profile( profile_name, path, role_names=[], tags=tags ) template = self.response_template(CREATE_INSTANCE_PROFILE_TEMPLATE) return template.render(profile=profile) def delete_instance_profile(self) -> str: profile_name = self._get_param("InstanceProfileName") self.backend.delete_instance_profile(profile_name) template = self.response_template(DELETE_INSTANCE_PROFILE_TEMPLATE) return template.render() def get_instance_profile(self) -> str: profile_name = self._get_param("InstanceProfileName") profile = self.backend.get_instance_profile(profile_name) template = self.response_template(GET_INSTANCE_PROFILE_TEMPLATE) return template.render(profile=profile) def add_role_to_instance_profile(self) -> str: profile_name = self._get_param("InstanceProfileName") role_name = self._get_param("RoleName") self.backend.add_role_to_instance_profile(profile_name, role_name) template = self.response_template(ADD_ROLE_TO_INSTANCE_PROFILE_TEMPLATE) return template.render() def remove_role_from_instance_profile(self) -> str: profile_name = self._get_param("InstanceProfileName") role_name = self._get_param("RoleName") self.backend.remove_role_from_instance_profile(profile_name, role_name) template = self.response_template(REMOVE_ROLE_FROM_INSTANCE_PROFILE_TEMPLATE) return template.render() def list_roles(self) -> str: path_prefix = self._get_param("PathPrefix", "/") marker = self._get_param("Marker", "0") max_items = self._get_param("MaxItems", 100) roles, marker = self.backend.list_roles(path_prefix, marker, max_items) template = self.response_template(LIST_ROLES_TEMPLATE) return template.render(roles=roles, marker=marker) def list_instance_profiles(self) -> str: profiles = self.backend.get_instance_profiles() template = self.response_template(LIST_INSTANCE_PROFILES_TEMPLATE) return template.render(instance_profiles=profiles) def list_instance_profiles_for_role(self) -> str: role_name = self._get_param("RoleName") profiles = self.backend.get_instance_profiles_for_role(role_name=role_name) template = self.response_template(LIST_INSTANCE_PROFILES_FOR_ROLE_TEMPLATE) return template.render(instance_profiles=profiles) def upload_server_certificate(self) -> str: cert_name = self._get_param("ServerCertificateName") cert_body = self._get_param("CertificateBody") path = self._get_param("Path") private_key = self._get_param("PrivateKey") cert_chain = self._get_param("CertificateName") cert = self.backend.upload_server_certificate( cert_name, cert_body, private_key, cert_chain=cert_chain, path=path ) template = self.response_template(UPLOAD_CERT_TEMPLATE) return template.render(certificate=cert) def list_server_certificates(self) -> str: certs = self.backend.list_server_certificates() template = self.response_template(LIST_SERVER_CERTIFICATES_TEMPLATE) return template.render(server_certificates=certs) def get_server_certificate(self) -> str: cert_name = self._get_param("ServerCertificateName") cert = self.backend.get_server_certificate(cert_name) template = self.response_template(GET_SERVER_CERTIFICATE_TEMPLATE) return template.render(certificate=cert) def delete_server_certificate(self) -> str: cert_name = self._get_param("ServerCertificateName") self.backend.delete_server_certificate(cert_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeleteServerCertificate") def create_group(self) -> str: group_name = self._get_param("GroupName") path = self._get_param("Path", "/") group = self.backend.create_group(group_name, path) template = self.response_template(CREATE_GROUP_TEMPLATE) return template.render(group=group) def get_group(self) -> str: group_name = self._get_param("GroupName") group = self.backend.get_group(group_name) template = self.response_template(GET_GROUP_TEMPLATE) return template.render(group=group) def list_groups(self) -> str: groups = self.backend.list_groups() template = self.response_template(LIST_GROUPS_TEMPLATE) return template.render(groups=groups) def list_groups_for_user(self) -> str: user_name = self._get_param("UserName") groups = self.backend.get_groups_for_user(user_name) template = self.response_template(LIST_GROUPS_FOR_USER_TEMPLATE) return template.render(groups=groups) def put_group_policy(self) -> str: group_name = self._get_param("GroupName") policy_name = self._get_param("PolicyName") policy_document = self._get_param("PolicyDocument") self.backend.put_group_policy(group_name, policy_name, policy_document) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="PutGroupPolicy") def list_group_policies(self) -> str: group_name = self._get_param("GroupName") marker = self._get_param("Marker") policies = self.backend.list_group_policies(group_name) template = self.response_template(LIST_GROUP_POLICIES_TEMPLATE) return template.render( name="ListGroupPoliciesResponse", policies=policies, marker=marker ) def get_group_policy(self) -> str: group_name = self._get_param("GroupName") policy_name = self._get_param("PolicyName") policy_result = self.backend.get_group_policy(group_name, policy_name) template = self.response_template(GET_GROUP_POLICY_TEMPLATE) return template.render(name="GetGroupPolicyResponse", **policy_result) def delete_group_policy(self) -> str: group_name = self._get_param("GroupName") policy_name = self._get_param("PolicyName") self.backend.delete_group_policy(group_name, policy_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeleteGroupPolicy") def delete_group(self) -> str: group_name = self._get_param("GroupName") self.backend.delete_group(group_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeleteGroup") def update_group(self) -> str: group_name = self._get_param("GroupName") new_group_name = self._get_param("NewGroupName") new_path = self._get_param("NewPath") self.backend.update_group(group_name, new_group_name, new_path) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="UpdateGroup") def create_user(self) -> str: user_name = self._get_param("UserName") path = self._get_param("Path") tags = self._get_multi_param("Tags.member") user, user_tags = self.backend.create_user( self.region, user_name=user_name, path=path, tags=tags ) template = self.response_template(USER_TEMPLATE) return template.render(action="Create", user=user, tags=user_tags["Tags"]) def get_user(self) -> str: user_name = self._get_param("UserName") if not user_name: access_key_id = self.get_access_key() user = self.backend.get_user_from_access_key_id(access_key_id) if user is None: user = User( self.current_account, region_name=self.region, name="default_user" ) else: user = self.backend.get_user(user_name) tags = self.backend.tagger.list_tags_for_resource(user.arn).get("Tags", []) template = self.response_template(USER_TEMPLATE) return template.render(action="Get", user=user, tags=tags) def list_users(self) -> str: path_prefix = self._get_param("PathPrefix") marker = self._get_param("Marker") max_items = self._get_param("MaxItems") users = self.backend.list_users(path_prefix, marker, max_items) template = self.response_template(LIST_USERS_TEMPLATE) return template.render(action="List", users=users, isTruncated=False) def update_user(self) -> str: user_name = self._get_param("UserName") new_path = self._get_param("NewPath") new_user_name = self._get_param("NewUserName") self.backend.update_user(user_name, new_path, new_user_name) if new_user_name: user = self.backend.get_user(new_user_name) else: user = self.backend.get_user(user_name) template = self.response_template(USER_TEMPLATE) return template.render(action="Update", user=user) def create_login_profile(self) -> str: user_name = self._get_param("UserName") password = self._get_param("Password") user = self.backend.create_login_profile(user_name, password) template = self.response_template(CREATE_LOGIN_PROFILE_TEMPLATE) return template.render(user=user) def get_login_profile(self) -> str: user_name = self._get_param("UserName") user = self.backend.get_login_profile(user_name) template = self.response_template(GET_LOGIN_PROFILE_TEMPLATE) return template.render(user=user) def update_login_profile(self) -> str: user_name = self._get_param("UserName") password = self._get_param("Password") password_reset_required = self._get_param("PasswordResetRequired") user = self.backend.update_login_profile( user_name, password, password_reset_required ) template = self.response_template(UPDATE_LOGIN_PROFILE_TEMPLATE) return template.render(user=user) def add_user_to_group(self) -> str: group_name = self._get_param("GroupName") user_name = self._get_param("UserName") self.backend.add_user_to_group(group_name, user_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="AddUserToGroup") def remove_user_from_group(self) -> str: group_name = self._get_param("GroupName") user_name = self._get_param("UserName") self.backend.remove_user_from_group(group_name, user_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="RemoveUserFromGroup") def get_user_policy(self) -> str: user_name = self._get_param("UserName") policy_name = self._get_param("PolicyName") policy_document = self.backend.get_user_policy(user_name, policy_name) template = self.response_template(GET_USER_POLICY_TEMPLATE) return template.render( user_name=user_name, policy_name=policy_name, policy_document=policy_document.get("policy_document"), ) def list_user_policies(self) -> str: user_name = self._get_param("UserName") policies = self.backend.list_user_policies(user_name) template = self.response_template(LIST_USER_POLICIES_TEMPLATE) return template.render(policies=policies) def list_user_tags(self) -> str: user_name = self._get_param("UserName") tags = self.backend.list_user_tags(user_name) template = self.response_template(LIST_USER_TAGS_TEMPLATE) return template.render(user_tags=tags["Tags"]) def put_user_policy(self) -> str: user_name = self._get_param("UserName") policy_name = self._get_param("PolicyName") policy_document = self._get_param("PolicyDocument") self.backend.put_user_policy(user_name, policy_name, policy_document) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="PutUserPolicy") def delete_user_policy(self) -> str: user_name = self._get_param("UserName") policy_name = self._get_param("PolicyName") self.backend.delete_user_policy(user_name, policy_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeleteUserPolicy") def create_access_key(self) -> str: user_name = self._get_param("UserName") if not user_name: access_key_id = self.get_access_key() access_key = self.backend.get_access_key_last_used(access_key_id) user_name = access_key["user_name"] key = self.backend.create_access_key(user_name) template = self.response_template(CREATE_ACCESS_KEY_TEMPLATE) return template.render(key=key) def update_access_key(self) -> str: user_name = self._get_param("UserName") access_key_id = self._get_param("AccessKeyId") status = self._get_param("Status") if not user_name: access_key = self.backend.get_access_key_last_used(access_key_id) user_name = access_key["user_name"] self.backend.update_access_key(user_name, access_key_id, status) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="UpdateAccessKey") def get_access_key_last_used(self) -> str: access_key_id = self._get_param("AccessKeyId") last_used_response = self.backend.get_access_key_last_used(access_key_id) template = self.response_template(GET_ACCESS_KEY_LAST_USED_TEMPLATE) return template.render( user_name=last_used_response["user_name"], last_used=last_used_response["last_used"], ) def list_access_keys(self) -> str: user_name = self._get_param("UserName") if not user_name: access_key_id = self.get_access_key() access_key = self.backend.get_access_key_last_used(access_key_id) user_name = access_key["user_name"] keys = self.backend.list_access_keys(user_name) template = self.response_template(LIST_ACCESS_KEYS_TEMPLATE) return template.render(user_name=user_name, keys=keys) def delete_access_key(self) -> str: user_name = self._get_param("UserName") access_key_id = self._get_param("AccessKeyId") if not user_name: access_key = self.backend.get_access_key_last_used(access_key_id) user_name = access_key["user_name"] self.backend.delete_access_key(access_key_id, user_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeleteAccessKey") def upload_ssh_public_key(self) -> str: user_name = self._get_param("UserName") ssh_public_key_body = self._get_param("SSHPublicKeyBody") key = self.backend.upload_ssh_public_key(user_name, ssh_public_key_body) template = self.response_template(UPLOAD_SSH_PUBLIC_KEY_TEMPLATE) return template.render(key=key) def get_ssh_public_key(self) -> str: user_name = self._get_param("UserName") ssh_public_key_id = self._get_param("SSHPublicKeyId") key = self.backend.get_ssh_public_key(user_name, ssh_public_key_id) template = self.response_template(GET_SSH_PUBLIC_KEY_TEMPLATE) return template.render(key=key) def list_ssh_public_keys(self) -> str: user_name = self._get_param("UserName") keys = self.backend.get_all_ssh_public_keys(user_name) template = self.response_template(LIST_SSH_PUBLIC_KEYS_TEMPLATE) return template.render(keys=keys) def update_ssh_public_key(self) -> str: user_name = self._get_param("UserName") ssh_public_key_id = self._get_param("SSHPublicKeyId") status = self._get_param("Status") self.backend.update_ssh_public_key(user_name, ssh_public_key_id, status) template = self.response_template(UPDATE_SSH_PUBLIC_KEY_TEMPLATE) return template.render() def delete_ssh_public_key(self) -> str: user_name = self._get_param("UserName") ssh_public_key_id = self._get_param("SSHPublicKeyId") self.backend.delete_ssh_public_key(user_name, ssh_public_key_id) template = self.response_template(DELETE_SSH_PUBLIC_KEY_TEMPLATE) return template.render() def deactivate_mfa_device(self) -> str: user_name = self._get_param("UserName") serial_number = self._get_param("SerialNumber") self.backend.deactivate_mfa_device(user_name, serial_number) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeactivateMFADevice") def enable_mfa_device(self) -> str: user_name = self._get_param("UserName") serial_number = self._get_param("SerialNumber") authentication_code_1 = self._get_param("AuthenticationCode1") authentication_code_2 = self._get_param("AuthenticationCode2") self.backend.enable_mfa_device( user_name, serial_number, authentication_code_1, authentication_code_2 ) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="EnableMFADevice") def list_mfa_devices(self) -> str: user_name = self._get_param("UserName") devices = self.backend.list_mfa_devices(user_name) template = self.response_template(LIST_MFA_DEVICES_TEMPLATE) return template.render(user_name=user_name, devices=devices) def create_virtual_mfa_device(self) -> str: path = self._get_param("Path") virtual_mfa_device_name = self._get_param("VirtualMFADeviceName") virtual_mfa_device = self.backend.create_virtual_mfa_device( virtual_mfa_device_name, path ) template = self.response_template(CREATE_VIRTUAL_MFA_DEVICE_TEMPLATE) return template.render(device=virtual_mfa_device) def delete_virtual_mfa_device(self) -> str: serial_number = self._get_param("SerialNumber") self.backend.delete_virtual_mfa_device(serial_number) template = self.response_template(DELETE_VIRTUAL_MFA_DEVICE_TEMPLATE) return template.render() def list_virtual_mfa_devices(self) -> str: assignment_status = self._get_param("AssignmentStatus", "Any") marker = self._get_param("Marker") max_items = self._get_param("MaxItems", 100) devices, marker = self.backend.list_virtual_mfa_devices( assignment_status, marker, max_items ) template = self.response_template(LIST_VIRTUAL_MFA_DEVICES_TEMPLATE) return template.render(devices=devices, marker=marker) def delete_user(self) -> str: user_name = self._get_param("UserName") self.backend.delete_user(user_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeleteUser") def delete_policy(self) -> str: policy_arn = self._get_param("PolicyArn") self.backend.delete_policy(policy_arn) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeletePolicy") def delete_login_profile(self) -> str: user_name = self._get_param("UserName") self.backend.delete_login_profile(user_name) template = self.response_template(GENERIC_EMPTY_TEMPLATE) return template.render(name="DeleteLoginProfile") def generate_credential_report(self) -> str: if self.backend.report_generated(): template = self.response_template(CREDENTIAL_REPORT_GENERATED) else: template = self.response_template(CREDENTIAL_REPORT_GENERATING) self.backend.generate_report() return template.render() def get_credential_report(self) -> str: report = self.backend.get_credential_report() template = self.response_template(CREDENTIAL_REPORT) return template.render(report=report) def list_account_aliases(self) -> str: aliases = self.backend.list_account_aliases() template = self.response_template(LIST_ACCOUNT_ALIASES_TEMPLATE) return template.render(aliases=aliases) def create_account_alias(self) -> str: alias = self._get_param("AccountAlias") self.backend.create_account_alias(alias) template = self.response_template(CREATE_ACCOUNT_ALIAS_TEMPLATE) return template.render() def delete_account_alias(self) -> str: self.backend.delete_account_alias() template = self.response_template(DELETE_ACCOUNT_ALIAS_TEMPLATE) return template.render() def get_account_authorization_details(self) -> str: filter_param = self._get_multi_param("Filter.member") account_details = self.backend.get_account_authorization_details(filter_param) template = self.response_template(GET_ACCOUNT_AUTHORIZATION_DETAILS_TEMPLATE) return template.render( instance_profiles=account_details["instance_profiles"], policies=account_details["managed_policies"], users=account_details["users"], groups=account_details["groups"], roles=account_details["roles"], get_groups_for_user=self.backend.get_groups_for_user, list_tags_for_user=self.backend.list_user_tags, ) def create_saml_provider(self) -> str: saml_provider_name = self._get_param("Name") _saml_metadata_document = self._get_param("SAMLMetadataDocument") saml_metadata_document = escape( _saml_metadata_document, entities={"'": "&apos;", '"': "&quot;"} ) saml_provider = self.backend.create_saml_provider( saml_provider_name, saml_metadata_document ) template = self.response_template(CREATE_SAML_PROVIDER_TEMPLATE) return template.render(saml_provider=saml_provider) def update_saml_provider(self) -> str: saml_provider_arn = self._get_param("SAMLProviderArn") _saml_metadata_document = self._get_param("SAMLMetadataDocument") saml_metadata_document = escape( _saml_metadata_document, entities={"'": "&apos;", '"': "&quot;"} ) saml_provider = self.backend.update_saml_provider( saml_provider_arn, saml_metadata_document ) template = self.response_template(UPDATE_SAML_PROVIDER_TEMPLATE) return template.render(saml_provider=saml_provider) def delete_saml_provider(self) -> str: saml_provider_arn = self._get_param("SAMLProviderArn") self.backend.delete_saml_provider(saml_provider_arn) template = self.response_template(DELETE_SAML_PROVIDER_TEMPLATE) return template.render() def list_saml_providers(self) -> str: saml_providers = self.backend.list_saml_providers() template = self.response_template(LIST_SAML_PROVIDERS_TEMPLATE) return template.render(saml_providers=saml_providers) def get_saml_provider(self) -> str: saml_provider_arn = self._get_param("SAMLProviderArn") saml_provider = self.backend.get_saml_provider(saml_provider_arn) template = self.response_template(GET_SAML_PROVIDER_TEMPLATE) return template.render(saml_provider=saml_provider) def upload_signing_certificate(self) -> str: user_name = self._get_param("UserName") cert_body = self._get_param("CertificateBody") cert = self.backend.upload_signing_certificate(user_name, cert_body) template = self.response_template(UPLOAD_SIGNING_CERTIFICATE_TEMPLATE) return template.render(cert=cert) def update_signing_certificate(self) -> str: user_name = self._get_param("UserName") cert_id = self._get_param("CertificateId") status = self._get_param("Status") self.backend.update_signing_certificate(user_name, cert_id, status) template = self.response_template(UPDATE_SIGNING_CERTIFICATE_TEMPLATE) return template.render() def delete_signing_certificate(self) -> str: user_name = self._get_param("UserName") cert_id = self._get_param("CertificateId") self.backend.delete_signing_certificate(user_name, cert_id) template = self.response_template(DELETE_SIGNING_CERTIFICATE_TEMPLATE) return template.render() def list_signing_certificates(self) -> str: user_name = self._get_param("UserName") certs = self.backend.list_signing_certificates(user_name) template = self.response_template(LIST_SIGNING_CERTIFICATES_TEMPLATE) return template.render(user_name=user_name, certificates=certs) def list_role_tags(self) -> str: role_name = self._get_param("RoleName") marker = self._get_param("Marker") max_items = self._get_param("MaxItems", 100) tags, marker = self.backend.list_role_tags(role_name, marker, max_items) template = self.response_template(LIST_ROLE_TAG_TEMPLATE) return template.render(tags=tags, marker=marker) def tag_role(self) -> str: role_name = self._get_param("RoleName") tags = self._get_multi_param("Tags.member") self.backend.tag_role(role_name, tags) template = self.response_template(TAG_ROLE_TEMPLATE) return template.render() def untag_role(self) -> str: role_name = self._get_param("RoleName") tag_keys = self._get_multi_param("TagKeys.member") self.backend.untag_role(role_name, tag_keys) template = self.response_template(UNTAG_ROLE_TEMPLATE) return template.render() def create_open_id_connect_provider(self) -> str: open_id_provider_url = self._get_param("Url") thumbprint_list = self._get_multi_param("ThumbprintList.member") client_id_list = self._get_multi_param("ClientIDList.member") tags = self._get_multi_param("Tags.member") open_id_provider = self.backend.create_open_id_connect_provider( open_id_provider_url, thumbprint_list, client_id_list, tags ) template = self.response_template(CREATE_OPEN_ID_CONNECT_PROVIDER_TEMPLATE) return template.render(open_id_provider=open_id_provider) def update_open_id_connect_provider_thumbprint(self) -> str: open_id_provider_arn = self._get_param("OpenIDConnectProviderArn") thumbprint_list = self._get_multi_param("ThumbprintList.member") self.backend.update_open_id_connect_provider_thumbprint( open_id_provider_arn, thumbprint_list ) template = self.response_template(UPDATE_OPEN_ID_CONNECT_PROVIDER_THUMBPRINT) return template.render() def tag_open_id_connect_provider(self) -> str: open_id_provider_arn = self._get_param("OpenIDConnectProviderArn") tags = self._get_multi_param("Tags.member") self.backend.tag_open_id_connect_provider(open_id_provider_arn, tags) template = self.response_template(TAG_OPEN_ID_CONNECT_PROVIDER) return template.render() def untag_open_id_connect_provider(self) -> str: open_id_provider_arn = self._get_param("OpenIDConnectProviderArn") tag_keys = self._get_multi_param("TagKeys.member") self.backend.untag_open_id_connect_provider(open_id_provider_arn, tag_keys) template = self.response_template(UNTAG_OPEN_ID_CONNECT_PROVIDER) return template.render() def list_open_id_connect_provider_tags(self) -> str: open_id_provider_arn = self._get_param("OpenIDConnectProviderArn") marker = self._get_param("Marker") max_items = self._get_param("MaxItems", 100) tags, marker = self.backend.list_open_id_connect_provider_tags( open_id_provider_arn, marker, max_items ) template = self.response_template(LIST_OPEN_ID_CONNECT_PROVIDER_TAGS) return template.render(tags=tags, marker=marker) def delete_open_id_connect_provider(self) -> str: open_id_provider_arn = self._get_param("OpenIDConnectProviderArn") self.backend.delete_open_id_connect_provider(open_id_provider_arn) template = self.response_template(DELETE_OPEN_ID_CONNECT_PROVIDER_TEMPLATE) return template.render() def get_open_id_connect_provider(self) -> str: open_id_provider_arn = self._get_param("OpenIDConnectProviderArn") open_id_provider = self.backend.get_open_id_connect_provider( open_id_provider_arn ) template = self.response_template(GET_OPEN_ID_CONNECT_PROVIDER_TEMPLATE) return template.render(open_id_provider=open_id_provider) def list_open_id_connect_providers(self) -> str: open_id_provider_arns = self.backend.list_open_id_connect_providers() template = self.response_template(LIST_OPEN_ID_CONNECT_PROVIDERS_TEMPLATE) return template.render(open_id_provider_arns=open_id_provider_arns) def update_account_password_policy(self) -> str: allow_change_password = self._get_bool_param( "AllowUsersToChangePassword", False ) hard_expiry = self._get_bool_param("HardExpiry", False) max_password_age = self._get_int_param("MaxPasswordAge", 0) minimum_password_length = self._get_int_param("MinimumPasswordLength", 6) password_reuse_prevention = self._get_int_param("PasswordReusePrevention") require_lowercase_characters = self._get_bool_param( "RequireLowercaseCharacters", False ) require_numbers = self._get_bool_param("RequireNumbers", False) require_symbols = self._get_bool_param("RequireSymbols", False) require_uppercase_characters = self._get_bool_param( "RequireUppercaseCharacters", False ) self.backend.update_account_password_policy( allow_change_password, hard_expiry, max_password_age, minimum_password_length, password_reuse_prevention, require_lowercase_characters, require_numbers, require_symbols, require_uppercase_characters, ) template = self.response_template(UPDATE_ACCOUNT_PASSWORD_POLICY_TEMPLATE) return template.render() def get_account_password_policy(self) -> str: account_password_policy = self.backend.get_account_password_policy() template = self.response_template(GET_ACCOUNT_PASSWORD_POLICY_TEMPLATE) return template.render(password_policy=account_password_policy) def delete_account_password_policy(self) -> str: self.backend.delete_account_password_policy() template = self.response_template(DELETE_ACCOUNT_PASSWORD_POLICY_TEMPLATE) return template.render() def get_account_summary(self) -> str: account_summary = self.backend.get_account_summary() template = self.response_template(GET_ACCOUNT_SUMMARY_TEMPLATE) return template.render(summary_map=account_summary.summary_map) def tag_user(self) -> str: name = self._get_param("UserName") tags = self._get_multi_param("Tags.member") self.backend.tag_user(name, tags) template = self.response_template(TAG_USER_TEMPLATE) return template.render() def untag_user(self) -> str: name = self._get_param("UserName") tag_keys = self._get_multi_param("TagKeys.member") self.backend.untag_user(name, tag_keys) template = self.response_template(UNTAG_USER_TEMPLATE) return template.render() def create_service_linked_role(self) -> str: service_name = self._get_param("AWSServiceName") description = self._get_param("Description") suffix = self._get_param("CustomSuffix") role = self.backend.create_service_linked_role( service_name, description, suffix ) template = self.response_template(CREATE_SERVICE_LINKED_ROLE_TEMPLATE) return template.render(role=role) def delete_service_linked_role(self) -> str: role_name = self._get_param("RoleName") deletion_task_id = self.backend.delete_service_linked_role(role_name) template = self.response_template(DELETE_SERVICE_LINKED_ROLE_TEMPLATE) return template.render(deletion_task_id=deletion_task_id) def get_service_linked_role_deletion_status(self) -> str: self.backend.get_service_linked_role_deletion_status() template = self.response_template( GET_SERVICE_LINKED_ROLE_DELETION_STATUS_TEMPLATE ) return template.render() def tag_instance_profile(self) -> str: instance_profile_name = self._get_param("InstanceProfileName") tags = self._get_multi_param("Tags.member") self.backend.tag_instance_profile( instance_profile_name=instance_profile_name, tags=tags, ) template = self.response_template(TAG_INSTANCE_PROFILE_TEMPLATE) return template.render() def untag_instance_profile(self) -> str: instance_profile_name = self._get_param("InstanceProfileName") tags = self._get_multi_param("TagKeys.member") self.backend.untag_instance_profile( instance_profile_name=instance_profile_name, tagKeys=tags, ) template = self.response_template(UNTAG_INSTANCE_PROFILE_TEMPLATE) return template.render() LIST_ENTITIES_FOR_POLICY_TEMPLATE = """<ListEntitiesForPolicyResponse> <ListEntitiesForPolicyResult> <PolicyRoles> {% for role in roles %} <member> <RoleName>{{ role.name }}</RoleName> <RoleId>{{ role.id }}</RoleId> </member> {% endfor %} </PolicyRoles> <PolicyGroups> {% for group in groups %} <member> <GroupName>{{ group.name }}</GroupName> <GroupId>{{ group.id }}</GroupId> </member> {% endfor %} </PolicyGroups> <IsTruncated>false</IsTruncated> <PolicyUsers> {% for user in users %} <member> <UserName>{{ user.name }}</UserName> <UserId>{{ user.id }}</UserId> </member> {% endfor %} </PolicyUsers> </ListEntitiesForPolicyResult> <ResponseMetadata> <RequestId>eb358e22-9d1f-11e4-93eb-190ecEXAMPLE</RequestId> </ResponseMetadata> </ListEntitiesForPolicyResponse>""" SET_DEFAULT_POLICY_VERSION_TEMPLATE = """<SetDefaultPolicyVersionResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>35f241af-3ebc-11e4-9d0d-6f969EXAMPLE</RequestId> </ResponseMetadata> </SetDefaultPolicyVersionResponse>""" ATTACH_ROLE_POLICY_TEMPLATE = """<AttachRolePolicyResponse> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </AttachRolePolicyResponse>""" DETACH_ROLE_POLICY_TEMPLATE = """<DetachRolePolicyResponse> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </DetachRolePolicyResponse>""" ATTACH_USER_POLICY_TEMPLATE = """<AttachUserPolicyResponse> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </AttachUserPolicyResponse>""" DETACH_USER_POLICY_TEMPLATE = """<DetachUserPolicyResponse> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </DetachUserPolicyResponse>""" ATTACH_GROUP_POLICY_TEMPLATE = """<AttachGroupPolicyResponse> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </AttachGroupPolicyResponse>""" DETACH_GROUP_POLICY_TEMPLATE = """<DetachGroupPolicyResponse> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </DetachGroupPolicyResponse>""" CREATE_POLICY_TEMPLATE = """<CreatePolicyResponse> <CreatePolicyResult> <Policy> <Arn>{{ policy.arn }}</Arn> <AttachmentCount>{{ policy.attachment_count }}</AttachmentCount> <CreateDate>{{ policy.created_iso_8601 }}</CreateDate> <DefaultVersionId>{{ policy.default_version_id }}</DefaultVersionId> <Path>{{ policy.path }}</Path> <PolicyId>{{ policy.id }}</PolicyId> <PolicyName>{{ policy.name }}</PolicyName> <UpdateDate>{{ policy.updated_iso_8601 }}</UpdateDate> {% if policy.tags %} <Tags> {% for tag in policy.get_tags() %} <member> <Key>{{ tag['Key'] }}</Key> <Value>{{ tag['Value'] }}</Value> </member> {% endfor %} </Tags> {% endif %} </Policy> </CreatePolicyResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </CreatePolicyResponse>""" GET_POLICY_TEMPLATE = """<GetPolicyResponse> <GetPolicyResult> <Policy> <PolicyName>{{ policy.name }}</PolicyName> <Description>{{ policy.description }}</Description> <DefaultVersionId>{{ policy.default_version_id }}</DefaultVersionId> <PolicyId>{{ policy.id }}</PolicyId> <Path>{{ policy.path }}</Path> <Arn>{{ policy.arn }}</Arn> <AttachmentCount>{{ policy.attachment_count }}</AttachmentCount> <CreateDate>{{ policy.created_iso_8601 }}</CreateDate> <UpdateDate>{{ policy.updated_iso_8601 }}</UpdateDate> {% if policy.tags %} <Tags> {% for tag in policy.get_tags() %} <member> <Key>{{ tag['Key'] }}</Key> <Value>{{ tag['Value'] }}</Value> </member> {% endfor %} </Tags> {% endif %} </Policy> </GetPolicyResult> <ResponseMetadata> <RequestId>684f0917-3d22-11e4-a4a0-cffb9EXAMPLE</RequestId> </ResponseMetadata> </GetPolicyResponse>""" LIST_ATTACHED_ROLE_POLICIES_TEMPLATE = """<ListAttachedRolePoliciesResponse> <ListAttachedRolePoliciesResult> {% if marker is none %} <IsTruncated>false</IsTruncated> {% else %} <IsTruncated>true</IsTruncated> <Marker>{{ marker }}</Marker> {% endif %} <AttachedPolicies> {% for policy in policies %} <member> <PolicyName>{{ policy.name }}</PolicyName> <PolicyArn>{{ policy.arn }}</PolicyArn> </member> {% endfor %} </AttachedPolicies> </ListAttachedRolePoliciesResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListAttachedRolePoliciesResponse>""" LIST_ATTACHED_GROUP_POLICIES_TEMPLATE = """<ListAttachedGroupPoliciesResponse> <ListAttachedGroupPoliciesResult> {% if marker is none %} <IsTruncated>false</IsTruncated> {% else %} <IsTruncated>true</IsTruncated> <Marker>{{ marker }}</Marker> {% endif %} <AttachedPolicies> {% for policy in policies %} <member> <PolicyName>{{ policy.name }}</PolicyName> <PolicyArn>{{ policy.arn }}</PolicyArn> </member> {% endfor %} </AttachedPolicies> </ListAttachedGroupPoliciesResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListAttachedGroupPoliciesResponse>""" LIST_ATTACHED_USER_POLICIES_TEMPLATE = """<ListAttachedUserPoliciesResponse> <ListAttachedUserPoliciesResult> {% if marker is none %} <IsTruncated>false</IsTruncated> {% else %} <IsTruncated>true</IsTruncated> <Marker>{{ marker }}</Marker> {% endif %} <AttachedPolicies> {% for policy in policies %} <member> <PolicyName>{{ policy.name }}</PolicyName> <PolicyArn>{{ policy.arn }}</PolicyArn> </member> {% endfor %} </AttachedPolicies> </ListAttachedUserPoliciesResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListAttachedUserPoliciesResponse>""" LIST_POLICIES_TEMPLATE = """<ListPoliciesResponse> <ListPoliciesResult> {% if marker is none %} <IsTruncated>false</IsTruncated> {% else %} <IsTruncated>true</IsTruncated> <Marker>{{ marker }}</Marker> {% endif %} <Policies> {% for policy in policies %} <member> <Arn>{{ policy.arn }}</Arn> <AttachmentCount>{{ policy.attachment_count }}</AttachmentCount> <CreateDate>{{ policy.created_iso_8601 }}</CreateDate> <DefaultVersionId>{{ policy.default_version_id }}</DefaultVersionId> <Path>{{ policy.path }}</Path> <PolicyId>{{ policy.id }}</PolicyId> <PolicyName>{{ policy.name }}</PolicyName> <UpdateDate>{{ policy.updated_iso_8601 }}</UpdateDate> </member> {% endfor %} </Policies> </ListPoliciesResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListPoliciesResponse>""" GENERIC_EMPTY_TEMPLATE = """<{{ name }}Response> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </{{ name }}Response>""" CREATE_INSTANCE_PROFILE_TEMPLATE = """<CreateInstanceProfileResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <CreateInstanceProfileResult> <InstanceProfile> <InstanceProfileId>{{ profile.id }}</InstanceProfileId> <Roles> {% for role in profile.roles %} <member> <Path>{{ role.path }}</Path> <Arn>{{ role.arn }}</Arn> <RoleName>{{ role.name }}</RoleName> <AssumeRolePolicyDocument>{{ role.assume_role_policy_document | urlencode }}</AssumeRolePolicyDocument> <CreateDate>{{ role.created_iso_8601 }}</CreateDate> <RoleId>{{ role.id }}</RoleId> </member> {% endfor %} </Roles> <InstanceProfileName>{{ profile.name }}</InstanceProfileName> <Path>{{ profile.path }}</Path> <Arn>{{ profile.arn }}</Arn> <CreateDate>{{ profile.created_iso_8601 }}</CreateDate> <Tags> {% for tag_key, tag_value in profile.tags.items() %} <member> <Key>{{ tag_key }}</Key> <Value>{{ tag_value }}</Value> </member> {% endfor %} </Tags> </InstanceProfile> </CreateInstanceProfileResult> <ResponseMetadata> <RequestId>974142ee-99f1-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </CreateInstanceProfileResponse>""" DELETE_INSTANCE_PROFILE_TEMPLATE = """<DeleteInstanceProfileResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>786dff92-6cfd-4fa4-b1eb-27EXAMPLE804</RequestId> </ResponseMetadata> </DeleteInstanceProfileResponse>""" GET_INSTANCE_PROFILE_TEMPLATE = """<GetInstanceProfileResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <GetInstanceProfileResult> <InstanceProfile> <InstanceProfileId>{{ profile.id }}</InstanceProfileId> <Roles> {% for role in profile.roles %} <member> <Path>{{ role.path }}</Path> <Arn>{{ role.arn }}</Arn> <RoleName>{{ role.name }}</RoleName> <AssumeRolePolicyDocument>{{ role.assume_role_policy_document | urlencode }}</AssumeRolePolicyDocument> <CreateDate>{{ role.created_iso_8601 }}</CreateDate> <RoleId>{{ role.id }}</RoleId> </member> {% endfor %} </Roles> <InstanceProfileName>{{ profile.name }}</InstanceProfileName> <Path>{{ profile.path }}</Path> <Arn>{{ profile.arn }}</Arn> <CreateDate>{{ profile.created_iso_8601 }}</CreateDate> <Tags> {% for tag_key, tag_value in profile.tags.items() %} <member> <Key>{{ tag_key }}</Key> <Value>{{ tag_value }}</Value> </member> {% endfor %} </Tags> </InstanceProfile> </GetInstanceProfileResult> <ResponseMetadata> <RequestId>37289fda-99f2-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </GetInstanceProfileResponse>""" CREATE_ROLE_TEMPLATE = """<CreateRoleResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <CreateRoleResult> {{ role.to_xml() }} </CreateRoleResult> <ResponseMetadata> <RequestId>4a93ceee-9966-11e1-b624-b1aEXAMPLE7c</RequestId> </ResponseMetadata> </CreateRoleResponse>""" GET_ROLE_POLICY_TEMPLATE = """<GetRolePolicyResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <GetRolePolicyResult> <PolicyName>{{ policy_name }}</PolicyName> <RoleName>{{ role_name }}</RoleName> <PolicyDocument>{{ policy_document | urlencode }}</PolicyDocument> </GetRolePolicyResult> <ResponseMetadata> <RequestId>7e7cd8bc-99ef-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </GetRolePolicyResponse>""" CREATE_SERVICE_LINKED_ROLE_TEMPLATE = """<CreateServiceLinkedRoleResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <CreateServiceLinkedRoleResult> {{ role.to_xml() }} </CreateServiceLinkedRoleResult> <ResponseMetadata> <RequestId>4a93ceee-9966-11e1-b624-b1aEXAMPLE7c</RequestId> </ResponseMetadata> </CreateServiceLinkedRoleResponse>""" DELETE_SERVICE_LINKED_ROLE_TEMPLATE = """<DeleteServiceLinkedRoleResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <DeleteServiceLinkedRoleResult> <DeletionTaskId>{{ deletion_task_id }}</DeletionTaskId> </DeleteServiceLinkedRoleResult> <ResponseMetadata> <RequestId>4a93ceee-9966-11e1-b624-b1aEXAMPLE7c</RequestId> </ResponseMetadata> </DeleteServiceLinkedRoleResponse>""" GET_SERVICE_LINKED_ROLE_DELETION_STATUS_TEMPLATE = """<GetServiceLinkedRoleDeletionStatusResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <GetServiceLinkedRoleDeletionStatusResult> <Status>SUCCEEDED</Status> </GetServiceLinkedRoleDeletionStatusResult> <ResponseMetadata> <RequestId>4a93ceee-9966-11e1-b624-b1aEXAMPLE7c</RequestId> </ResponseMetadata> </GetServiceLinkedRoleDeletionStatusResponse>""" UPDATE_ROLE_TEMPLATE = """<UpdateRoleResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <UpdateRoleResult> </UpdateRoleResult> <ResponseMetadata> <RequestId>df37e965-9967-11e1-a4c3-270EXAMPLE04</RequestId> </ResponseMetadata> </UpdateRoleResponse>""" UPDATE_ROLE_DESCRIPTION_TEMPLATE = """<UpdateRoleDescriptionResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <UpdateRoleDescriptionResult> {{ role.to_xml() }} </UpdateRoleDescriptionResult> <ResponseMetadata> <RequestId>df37e965-9967-11e1-a4c3-270EXAMPLE04</RequestId> </ResponseMetadata> </UpdateRoleDescriptionResponse>""" GET_ROLE_TEMPLATE = """<GetRoleResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <GetRoleResult> {{ role.to_xml() }} </GetRoleResult> <ResponseMetadata> <RequestId>df37e965-9967-11e1-a4c3-270EXAMPLE04</RequestId> </ResponseMetadata> </GetRoleResponse>""" ADD_ROLE_TO_INSTANCE_PROFILE_TEMPLATE = """<AddRoleToInstanceProfileResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>12657608-99f2-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </AddRoleToInstanceProfileResponse>""" REMOVE_ROLE_FROM_INSTANCE_PROFILE_TEMPLATE = """<RemoveRoleFromInstanceProfileResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>12657608-99f2-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </RemoveRoleFromInstanceProfileResponse>""" LIST_ROLES_TEMPLATE = """<ListRolesResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ListRolesResult> <IsTruncated>{{ 'true' if marker else 'false' }}</IsTruncated> {% if marker %} <Marker>{{ marker }}</Marker> {% endif %} <Roles> {% for role in roles %} <member> <Path>{{ role.path }}</Path> <Arn>{{ role.arn }}</Arn> <RoleName>{{ role.name }}</RoleName> <AssumeRolePolicyDocument>{{ role.assume_role_policy_document | urlencode }}</AssumeRolePolicyDocument> <CreateDate>{{ role.created_iso_8601 }}</CreateDate> <RoleId>{{ role.id }}</RoleId> <MaxSessionDuration>{{ role.max_session_duration }}</MaxSessionDuration> {% if role.permissions_boundary %} <PermissionsBoundary> <PermissionsBoundaryType>PermissionsBoundaryPolicy</PermissionsBoundaryType> <PermissionsBoundaryArn>{{ role.permissions_boundary }}</PermissionsBoundaryArn> </PermissionsBoundary> {% endif %} {% if role.description is not none %} <Description>{{ role.description_escaped }}</Description> {% endif %} </member> {% endfor %} </Roles> </ListRolesResult> <ResponseMetadata> <RequestId>20f7279f-99ee-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </ListRolesResponse>""" LIST_ROLE_POLICIES = """<ListRolePoliciesResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ListRolePoliciesResult> <PolicyNames> {% for policy_name in role_policies %} <member>{{ policy_name }}</member> {% endfor %} </PolicyNames> <IsTruncated>false</IsTruncated> </ListRolePoliciesResult> <ResponseMetadata> <RequestId>8c7e1816-99f0-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </ListRolePoliciesResponse>""" CREATE_POLICY_VERSION_TEMPLATE = """<CreatePolicyVersionResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <CreatePolicyVersionResult> <PolicyVersion> <Document>{{ policy_version.document }}</Document> <VersionId>{{ policy_version.version_id }}</VersionId> <IsDefaultVersion>{{ policy_version.is_default | lower }}</IsDefaultVersion> <CreateDate>{{ policy_version.created_iso_8601 }}</CreateDate> </PolicyVersion> </CreatePolicyVersionResult> <ResponseMetadata> <RequestId>20f7279f-99ee-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </CreatePolicyVersionResponse>""" GET_POLICY_VERSION_TEMPLATE = """<GetPolicyVersionResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <GetPolicyVersionResult> <PolicyVersion> <Document>{{ policy_version.document }}</Document> <VersionId>{{ policy_version.version_id }}</VersionId> <IsDefaultVersion>{{ policy_version.is_default | lower }}</IsDefaultVersion> <CreateDate>{{ policy_version.created_iso_8601 }}</CreateDate> </PolicyVersion> </GetPolicyVersionResult> <ResponseMetadata> <RequestId>20f7279f-99ee-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </GetPolicyVersionResponse>""" LIST_POLICY_VERSIONS_TEMPLATE = """<ListPolicyVersionsResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ListPolicyVersionsResult> <IsTruncated>false</IsTruncated> <Versions> {% for policy_version in policy_versions %} <member> <Document>{{ policy_version.document }}</Document> <VersionId>{{ policy_version.version_id }}</VersionId> <IsDefaultVersion>{{ policy_version.is_default | lower }}</IsDefaultVersion> <CreateDate>{{ policy_version.created_iso_8601 }}</CreateDate> </member> {% endfor %} </Versions> </ListPolicyVersionsResult> <ResponseMetadata> <RequestId>20f7279f-99ee-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </ListPolicyVersionsResponse>""" LIST_INSTANCE_PROFILES_TEMPLATE = """<ListInstanceProfilesResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ListInstanceProfilesResult> <IsTruncated>false</IsTruncated> <InstanceProfiles> {% for instance in instance_profiles %} <member> <InstanceProfileId>{{ instance.id }}</InstanceProfileId> <Roles> {% for role in instance.roles %} <member> <Path>{{ role.path }}</Path> <Arn>{{ role.arn }}</Arn> <RoleName>{{ role.name }}</RoleName> <AssumeRolePolicyDocument>{{ role.assume_role_policy_document | urlencode }}</AssumeRolePolicyDocument> <CreateDate>{{ role.created_iso_8601 }}</CreateDate> <RoleId>{{ role.id }}</RoleId> </member> {% endfor %} </Roles> <InstanceProfileName>{{ instance.name }}</InstanceProfileName> <Path>{{ instance.path }}</Path> <Arn>{{ instance.arn }}</Arn> <CreateDate>{{ instance.created_iso_8601 }}</CreateDate> </member> {% endfor %} </InstanceProfiles> </ListInstanceProfilesResult> <ResponseMetadata> <RequestId>fd74fa8d-99f3-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </ListInstanceProfilesResponse>""" UPLOAD_CERT_TEMPLATE = """<UploadServerCertificateResponse> <UploadServerCertificateResult> <ServerCertificateMetadata> <ServerCertificateName>{{ certificate.cert_name }}</ServerCertificateName> {% if certificate.path %} <Path>{{ certificate.path }}</Path> {% endif %} <Arn>{{ certificate.arn }}</Arn> <UploadDate>2010-05-08T01:02:03.004Z</UploadDate> <ServerCertificateId>ASCACKCEVSQ6C2EXAMPLE</ServerCertificateId> <Expiration>2012-05-08T01:02:03.004Z</Expiration> </ServerCertificateMetadata> </UploadServerCertificateResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </UploadServerCertificateResponse>""" LIST_SERVER_CERTIFICATES_TEMPLATE = """<ListServerCertificatesResponse> <ListServerCertificatesResult> <IsTruncated>false</IsTruncated> <ServerCertificateMetadataList> {% for certificate in server_certificates %} <member> <ServerCertificateName>{{ certificate.cert_name }}</ServerCertificateName> {% if certificate.path %} <Path>{{ certificate.path }}</Path> {% endif %} <Arn>{{ certificate.arn }}</Arn> <UploadDate>2010-05-08T01:02:03.004Z</UploadDate> <ServerCertificateId>ASCACKCEVSQ6C2EXAMPLE</ServerCertificateId> <Expiration>2012-05-08T01:02:03.004Z</Expiration> </member> {% endfor %} </ServerCertificateMetadataList> </ListServerCertificatesResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListServerCertificatesResponse>""" GET_SERVER_CERTIFICATE_TEMPLATE = """<GetServerCertificateResponse> <GetServerCertificateResult> <ServerCertificate> <ServerCertificateMetadata> <ServerCertificateName>{{ certificate.cert_name }}</ServerCertificateName> {% if certificate.path %} <Path>{{ certificate.path }}</Path> {% endif %} <Arn>{{ certificate.arn }}</Arn> <UploadDate>2010-05-08T01:02:03.004Z</UploadDate> <ServerCertificateId>ASCACKCEVSQ6C2EXAMPLE</ServerCertificateId> <Expiration>2012-05-08T01:02:03.004Z</Expiration> </ServerCertificateMetadata> <CertificateBody>{{ certificate.cert_body }}</CertificateBody> </ServerCertificate> </GetServerCertificateResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </GetServerCertificateResponse>""" CREATE_GROUP_TEMPLATE = """<CreateGroupResponse> <CreateGroupResult> <Group> <Path>{{ group.path }}</Path> <GroupName>{{ group.name }}</GroupName> <GroupId>{{ group.id }}</GroupId> <Arn>{{ group.arn }}</Arn> <CreateDate>{{ group.created_iso_8601 }}</CreateDate> </Group> </CreateGroupResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </CreateGroupResponse>""" GET_GROUP_TEMPLATE = """<GetGroupResponse> <GetGroupResult> <Group> <Path>{{ group.path }}</Path> <GroupName>{{ group.name }}</GroupName> <GroupId>{{ group.id }}</GroupId> <Arn>{{ group.arn }}</Arn> <CreateDate>{{ group.created_iso_8601 }}</CreateDate> </Group> <Users> {% for user in group.users %} <member> <Path>{{ user.path }}</Path> <UserName>{{ user.name }}</UserName> <UserId>{{ user.id }}</UserId> <Arn>{{ user.arn }}</Arn> <CreateDate>{{ user.created_iso_8601 }}</CreateDate> {% if user.password_last_used_iso_8601 %} <PasswordLastUsed>{{ user.password_last_used_iso_8601 }}</PasswordLastUsed> {% endif %} </member> {% endfor %} </Users> <IsTruncated>false</IsTruncated> </GetGroupResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </GetGroupResponse>""" LIST_GROUPS_TEMPLATE = """<ListGroupsResponse> <ListGroupsResult> <Groups> {% for group in groups %} <member> <Path>{{ group.path }}</Path> <GroupName>{{ group.name }}</GroupName> <GroupId>{{ group.id }}</GroupId> <Arn>{{ group.arn }}</Arn> <CreateDate>{{ group.created_iso_8601 }}</CreateDate> </member> {% endfor %} </Groups> <IsTruncated>false</IsTruncated> </ListGroupsResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListGroupsResponse>""" LIST_GROUP_POLICIES_TEMPLATE = """<ListGroupPoliciesResponse> <ListGroupPoliciesResult> {% if marker is none %} <IsTruncated>false</IsTruncated> {% else %} <IsTruncated>true</IsTruncated> <Marker>{{ marker }}</Marker> {% endif %} <PolicyNames> {% for policy in policies %} <member>{{ policy }}</member> {% endfor %} </PolicyNames> </ListGroupPoliciesResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListGroupPoliciesResponse>""" GET_GROUP_POLICY_TEMPLATE = """<GetGroupPolicyResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <GetGroupPolicyResult> <PolicyName>{{ policy_name }}</PolicyName> <GroupName>{{ group_name }}</GroupName> <PolicyDocument>{{ policy_document | urlencode }}</PolicyDocument> </GetGroupPolicyResult> <ResponseMetadata> <RequestId>7e7cd8bc-99ef-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </GetGroupPolicyResponse>""" USER_TEMPLATE = """<{{ action }}UserResponse> <{{ action }}UserResult> <User> <Path>{{ user.path }}</Path> <UserName>{{ user.name }}</UserName> <UserId>{{ user.id }}</UserId> <CreateDate>{{ user.created_iso_8601 }}</CreateDate> <Arn>{{ user.arn }}</Arn> {% if user.password_last_used_iso_8601 %} <PasswordLastUsed>{{ user.password_last_used_iso_8601 }}</PasswordLastUsed> {% endif %} {% if tags %} <Tags> {% for tag in tags %} <member> <Key>{{ tag['Key'] }}</Key> <Value>{{ tag['Value'] }}</Value> </member> {% endfor %} </Tags> {% endif %} </User> </{{ action }}UserResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </{{ action }}UserResponse>""" LIST_USERS_TEMPLATE = """<{{ action }}UsersResponse> <{{ action }}UsersResult> <IsTruncated>{{ isTruncated }}</IsTruncated> <Users> {% for user in users %} <member> <UserId>{{ user.id }}</UserId> <Path>{{ user.path }}</Path> <UserName>{{ user.name }}</UserName> <CreateDate>{{ user.created_iso_8601 }}</CreateDate> <Arn>{{ user.arn }}</Arn> </member> {% endfor %} </Users> </{{ action }}UsersResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </{{ action }}UsersResponse>""" CREATE_LOGIN_PROFILE_TEMPLATE = """<CreateLoginProfileResponse> <CreateLoginProfileResult> <LoginProfile> <UserName>{{ user.name }}</UserName> <CreateDate>{{ user.created_iso_8601 }}</CreateDate> </LoginProfile> </CreateLoginProfileResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </CreateLoginProfileResponse> """ GET_LOGIN_PROFILE_TEMPLATE = """<GetLoginProfileResponse> <GetLoginProfileResult> <LoginProfile> <UserName>{{ user.name }}</UserName> <CreateDate>{{ user.created_iso_8601 }}</CreateDate> {% if user.password_reset_required %} <PasswordResetRequired>true</PasswordResetRequired> {% endif %} </LoginProfile> </GetLoginProfileResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </GetLoginProfileResponse> """ UPDATE_LOGIN_PROFILE_TEMPLATE = """<UpdateLoginProfileResponse> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </UpdateLoginProfileResponse> """ GET_USER_POLICY_TEMPLATE = """<GetUserPolicyResponse> <GetUserPolicyResult> <UserName>{{ user_name }}</UserName> <PolicyName>{{ policy_name }}</PolicyName> <PolicyDocument> {{ policy_document | urlencode }} </PolicyDocument> </GetUserPolicyResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </GetUserPolicyResponse>""" LIST_USER_POLICIES_TEMPLATE = """<ListUserPoliciesResponse> <ListUserPoliciesResult> <PolicyNames> {% for policy in policies %} <member>{{ policy }}</member> {% endfor %} </PolicyNames> <IsTruncated>false</IsTruncated> </ListUserPoliciesResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListUserPoliciesResponse>""" LIST_USER_TAGS_TEMPLATE = """<ListUserTagsResponse> <ListUserTagsResult> <Tags> {% for tag in user_tags %} <member> <Key>{{ tag.Key }}</Key> <Value>{{ tag.Value }}</Value> </member> {% endfor %} </Tags> <IsTruncated>false</IsTruncated> </ListUserTagsResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListUserTagsResponse>""" CREATE_ACCESS_KEY_TEMPLATE = """<CreateAccessKeyResponse> <CreateAccessKeyResult> <AccessKey> <UserName>{{ key.user_name }}</UserName> <AccessKeyId>{{ key.access_key_id }}</AccessKeyId> <Status>{{ key.status }}</Status> <SecretAccessKey>{{ key.secret_access_key }}</SecretAccessKey> <CreateDate>{{ key.created_iso_8601 }}</CreateDate> </AccessKey> </CreateAccessKeyResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </CreateAccessKeyResponse>""" LIST_ACCESS_KEYS_TEMPLATE = """<ListAccessKeysResponse> <ListAccessKeysResult> <UserName>{{ user_name }}</UserName> <AccessKeyMetadata> {% for key in keys %} <member> <UserName>{{ user_name }}</UserName> <AccessKeyId>{{ key.access_key_id }}</AccessKeyId> <Status>{{ key.status }}</Status> <CreateDate>{{ key.created_iso_8601 }}</CreateDate> </member> {% endfor %} </AccessKeyMetadata> <IsTruncated>false</IsTruncated> </ListAccessKeysResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListAccessKeysResponse>""" GET_ACCESS_KEY_LAST_USED_TEMPLATE = """ <GetAccessKeyLastUsedResponse> <GetAccessKeyLastUsedResult> <UserName>{{ user_name }}</UserName> <AccessKeyLastUsed> {% if last_used %} <LastUsedDate>{{ last_used.timestamp }}</LastUsedDate> <ServiceName>{{ last_used.service }}</ServiceName> <Region>{{ last_used.region }}</Region> {% else %} <ServiceName>N/A</ServiceName> <Region>N/A</Region> {% endif %} </AccessKeyLastUsed> </GetAccessKeyLastUsedResult> </GetAccessKeyLastUsedResponse> """ UPLOAD_SSH_PUBLIC_KEY_TEMPLATE = """<UploadSSHPublicKeyResponse> <UploadSSHPublicKeyResult> <SSHPublicKey> <UserName>{{ key.user_name }}</UserName> <SSHPublicKeyBody>{{ key.ssh_public_key_body }}</SSHPublicKeyBody> <SSHPublicKeyId>{{ key.ssh_public_key_id }}</SSHPublicKeyId> <Fingerprint>{{ key.fingerprint }}</Fingerprint> <Status>{{ key.status }}</Status> <UploadDate>{{ key.uploaded_iso_8601 }}</UploadDate> </SSHPublicKey> </UploadSSHPublicKeyResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </UploadSSHPublicKeyResponse>""" GET_SSH_PUBLIC_KEY_TEMPLATE = """<GetSSHPublicKeyResponse> <GetSSHPublicKeyResult> <SSHPublicKey> <UserName>{{ key.user_name }}</UserName> <SSHPublicKeyBody>{{ key.ssh_public_key_body }}</SSHPublicKeyBody> <SSHPublicKeyId>{{ key.ssh_public_key_id }}</SSHPublicKeyId> <Fingerprint>{{ key.fingerprint }}</Fingerprint> <Status>{{ key.status }}</Status> <UploadDate>{{ key.uploaded_iso_8601 }}</UploadDate> </SSHPublicKey> </GetSSHPublicKeyResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </GetSSHPublicKeyResponse>""" LIST_SSH_PUBLIC_KEYS_TEMPLATE = """<ListSSHPublicKeysResponse> <ListSSHPublicKeysResult> <SSHPublicKeys> {% for key in keys %} <member> <UserName>{{ key.user_name }}</UserName> <SSHPublicKeyId>{{ key.ssh_public_key_id }}</SSHPublicKeyId> <Status>{{ key.status }}</Status> <UploadDate>{{ key.uploaded_iso_8601 }}</UploadDate> </member> {% endfor %} </SSHPublicKeys> <IsTruncated>false</IsTruncated> </ListSSHPublicKeysResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListSSHPublicKeysResponse>""" UPDATE_SSH_PUBLIC_KEY_TEMPLATE = """<UpdateSSHPublicKeyResponse> <UpdateSSHPublicKeyResult> </UpdateSSHPublicKeyResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </UpdateSSHPublicKeyResponse>""" DELETE_SSH_PUBLIC_KEY_TEMPLATE = """<DeleteSSHPublicKeyResponse> <DeleteSSHPublicKeyResult> </DeleteSSHPublicKeyResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </DeleteSSHPublicKeyResponse>""" CREDENTIAL_REPORT_GENERATING = """ <GenerateCredentialReportResponse> <GenerateCredentialReportResult> <State>STARTED</State> <Description>No report exists. Starting a new report generation task</Description> </GenerateCredentialReportResult> <ResponseMetadata> <RequestId>fa788a82-aa8a-11e4-a278-1786c418872b"</RequestId> </ResponseMetadata> </GenerateCredentialReportResponse>""" CREDENTIAL_REPORT_GENERATED = """<GenerateCredentialReportResponse> <GenerateCredentialReportResult> <State>COMPLETE</State> </GenerateCredentialReportResult> <ResponseMetadata> <RequestId>fa788a82-aa8a-11e4-a278-1786c418872b"</RequestId> </ResponseMetadata> </GenerateCredentialReportResponse>""" CREDENTIAL_REPORT = """<GetCredentialReportResponse> <GetCredentialReportResult> <Content>{{ report }}</Content> <GeneratedTime>2015-02-02T20:02:02Z</GeneratedTime> <ReportFormat>text/csv</ReportFormat> </GetCredentialReportResult> <ResponseMetadata> <RequestId>fa788a82-aa8a-11e4-a278-1786c418872b"</RequestId> </ResponseMetadata> </GetCredentialReportResponse>""" LIST_INSTANCE_PROFILES_FOR_ROLE_TEMPLATE = """<ListInstanceProfilesForRoleResponse> <ListInstanceProfilesForRoleResult> <IsTruncated>false</IsTruncated> <InstanceProfiles> {% for profile in instance_profiles %} <member> <InstanceProfileId>{{ profile.id }}</InstanceProfileId> <Roles> {% for role in profile.roles %} <member> <Path>{{ role.path }}</Path> <Arn>{{ role.arn }}</Arn> <RoleName>{{ role.name }}</RoleName> <AssumeRolePolicyDocument>{{ role.assume_policy_document | urlencode }}</AssumeRolePolicyDocument> <CreateDate>{{ role.created_iso_8601 }}</CreateDate> <RoleId>{{ role.id }}</RoleId> </member> {% endfor %} </Roles> <InstanceProfileName>{{ profile.name }}</InstanceProfileName> <Path>{{ profile.path }}</Path> <Arn>{{ profile.arn }}</Arn> <CreateDate>{{ profile.created_iso_8601 }}</CreateDate> </member> {% endfor %} </InstanceProfiles> </ListInstanceProfilesForRoleResult> <ResponseMetadata> <RequestId>6a8c3992-99f4-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </ListInstanceProfilesForRoleResponse>""" LIST_MFA_DEVICES_TEMPLATE = """<ListMFADevicesResponse> <ListMFADevicesResult> <MFADevices> {% for device in devices %} <member> <UserName>{{ user_name }}</UserName> <SerialNumber>{{ device.serial_number }}</SerialNumber> {% if device.enable_date %} <EnableDate>{{ device.enabled_iso_8601 }}</EnableDate> {% endif %} </member> {% endfor %} </MFADevices> <IsTruncated>false</IsTruncated> </ListMFADevicesResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListMFADevicesResponse>""" CREATE_VIRTUAL_MFA_DEVICE_TEMPLATE = """<CreateVirtualMFADeviceResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <CreateVirtualMFADeviceResult> <VirtualMFADevice> <SerialNumber>{{ device.serial_number }}</SerialNumber> <Base32StringSeed>{{ device.base32_string_seed }}</Base32StringSeed> <QRCodePNG>{{ device.qr_code_png }}</QRCodePNG> </VirtualMFADevice> </CreateVirtualMFADeviceResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </CreateVirtualMFADeviceResponse>""" DELETE_VIRTUAL_MFA_DEVICE_TEMPLATE = """<DeleteVirtualMFADeviceResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </DeleteVirtualMFADeviceResponse>""" LIST_VIRTUAL_MFA_DEVICES_TEMPLATE = """<ListVirtualMFADevicesResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ListVirtualMFADevicesResult> {% if marker is none %} <IsTruncated>false</IsTruncated> {% else %} <IsTruncated>true</IsTruncated> <Marker>{{ marker }}</Marker> {% endif %} <VirtualMFADevices> {% for device in devices %} <member> <SerialNumber>{{ device.serial_number }}</SerialNumber> {% if device.enable_date %} <EnableDate>{{ device.enabled_iso_8601 }}</EnableDate> {% endif %} {% if device.user_attribute %} <User> <Path>{{ device.user_attribute.Path }}</Path> <UserName>{{ device.user_attribute.UserName }}</UserName> <UserId>{{ device.user_attribute.UserId }}</UserId> <CreateDate>{{ device.user_attribute.CreateDate }}</CreateDate> <Arn>{{ device.user_attribute.Arn }}</Arn> {% if device.user_attribute.Tags %} <Tags> {% for tag in device.user_attribute.Tags %} <member> <Key>{{ tag['Key'] }}</Key> <Value>{{ tag['Value'] }}</Value> </member> {% endfor %} </Tags> {% endif %} </User> {% endif %} </member> {% endfor %} </VirtualMFADevices> </ListVirtualMFADevicesResult> <ResponseMetadata> <RequestId>b61ce1b1-0401-11e1-b2f8-2dEXAMPLEbfc</RequestId> </ResponseMetadata> </ListVirtualMFADevicesResponse>""" LIST_ACCOUNT_ALIASES_TEMPLATE = """<ListAccountAliasesResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ListAccountAliasesResult> <IsTruncated>false</IsTruncated> <AccountAliases> {% for alias in aliases %} <member>{{ alias }}</member> {% endfor %} </AccountAliases> </ListAccountAliasesResult> <ResponseMetadata> <RequestId>c5a076e9-f1b0-11df-8fbe-45274EXAMPLE</RequestId> </ResponseMetadata> </ListAccountAliasesResponse>""" CREATE_ACCOUNT_ALIAS_TEMPLATE = """<CreateAccountAliasResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>36b5db08-f1b0-11df-8fbe-45274EXAMPLE</RequestId> </ResponseMetadata> </CreateAccountAliasResponse>""" DELETE_ACCOUNT_ALIAS_TEMPLATE = """<DeleteAccountAliasResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </DeleteAccountAliasResponse>""" LIST_GROUPS_FOR_USER_TEMPLATE = """<ListGroupsForUserResponse> <ListGroupsForUserResult> <Groups> {% for group in groups %} <member> <Path>{{ group.path }}</Path> <GroupName>{{ group.name }}</GroupName> <GroupId>{{ group.id }}</GroupId> <Arn>{{ group.arn }}</Arn> <CreateDate>{{ group.created_iso_8601 }}</CreateDate> </member> {% endfor %} </Groups> <IsTruncated>false</IsTruncated> </ListGroupsForUserResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListGroupsForUserResponse>""" GET_ACCOUNT_AUTHORIZATION_DETAILS_TEMPLATE = """<GetAccountAuthorizationDetailsResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <GetAccountAuthorizationDetailsResult> <IsTruncated>false</IsTruncated> <UserDetailList> {% for user in users %} <member> <GroupList> {% for group in get_groups_for_user(user.name) %} <member>{{ group.name }}</member> {% endfor %} </GroupList> <AttachedManagedPolicies> {% for policy in user.managed_policies %} <member> <PolicyName>{{ user.managed_policies[policy].name }}</PolicyName> <PolicyArn>{{ policy }}</PolicyArn> </member> {% endfor %} </AttachedManagedPolicies> <UserId>{{ user.id }}</UserId> <Path>{{ user.path }}</Path> <UserName>{{ user.name }}</UserName> <Arn>{{ user.arn }}</Arn> <CreateDate>{{ user.created_iso_8601 }}</CreateDate> {% if user.policies %} <UserPolicyList> {% for policy in user.policies %} <member> <PolicyName>{{ policy }}</PolicyName> <PolicyDocument>{{ user.policies[policy] | urlencode }}</PolicyDocument> </member> {% endfor %} </UserPolicyList> {% endif %} <Tags> {% for tag in list_tags_for_user(user.name).get("Tags", []) %} <member> <Key>{{ tag['Key'] }}</Key> <Value>{{ tag['Value'] }}</Value> </member> {% endfor %} </Tags> </member> {% endfor %} </UserDetailList> <GroupDetailList> {% for group in groups %} <member> <GroupId>{{ group.id }}</GroupId> <AttachedManagedPolicies> {% for policy_arn in group.managed_policies %} <member> <PolicyName>{{ group.managed_policies[policy_arn].name }}</PolicyName> <PolicyArn>{{ policy_arn }}</PolicyArn> </member> {% endfor %} </AttachedManagedPolicies> <GroupName>{{ group.name }}</GroupName> <Path>{{ group.path }}</Path> <Arn>{{ group.arn }}</Arn> <CreateDate>{{ group.created_iso_8601 }}</CreateDate> <GroupPolicyList> {% for policy in group.policies %} <member> <PolicyName>{{ policy }}</PolicyName> <PolicyDocument>{{ group.policies[policy] | urlencode }}</PolicyDocument> </member> {% endfor %} </GroupPolicyList> </member> {% endfor %} </GroupDetailList> <RoleDetailList> {% for role in roles %} <member> <RolePolicyList> {% for inline_policy in role.policies %} <member> <PolicyName>{{ inline_policy }}</PolicyName> <PolicyDocument>{{ role.policies[inline_policy] | urlencode }}</PolicyDocument> </member> {% endfor %} </RolePolicyList> <AttachedManagedPolicies> {% for policy_arn in role.managed_policies %} <member> <PolicyName>{{ role.managed_policies[policy_arn].name }}</PolicyName> <PolicyArn>{{ policy_arn }}</PolicyArn> </member> {% endfor %} </AttachedManagedPolicies> <Tags> {% for tag in role.get_tags() %} <member> <Key>{{ tag['Key'] }}</Key> <Value>{{ tag['Value'] }}</Value> </member> {% endfor %} </Tags> <InstanceProfileList> {% for profile in instance_profiles %} <member> <InstanceProfileId>{{ profile.id }}</InstanceProfileId> <Roles> {% for role in profile.roles %} <member> <Path>{{ role.path }}</Path> <Arn>{{ role.arn }}</Arn> <RoleName>{{ role.name }}</RoleName> <AssumeRolePolicyDocument>{{ role.assume_role_policy_document | urlencode }}</AssumeRolePolicyDocument> {% if role.description is not none %} <Description>{{ role.description_escaped }}</Description> {% endif %} <CreateDate>{{ role.created_iso_8601 }}</CreateDate> <RoleId>{{ role.id }}</RoleId> {% if role.permissions_boundary %} <PermissionsBoundary> <PermissionsBoundaryType>PermissionsBoundaryPolicy</PermissionsBoundaryType> <PermissionsBoundaryArn>{{ role.permissions_boundary }}</PermissionsBoundaryArn> </PermissionsBoundary> {% endif %} </member> {% endfor %} </Roles> <InstanceProfileName>{{ profile.name }}</InstanceProfileName> <Path>{{ profile.path }}</Path> <Arn>{{ profile.arn }}</Arn> <CreateDate>{{ profile.created_iso_8601 }}</CreateDate> </member> {% endfor %} </InstanceProfileList> <Path>{{ role.path }}</Path> <Arn>{{ role.arn }}</Arn> <RoleName>{{ role.name }}</RoleName> <AssumeRolePolicyDocument>{{ role.assume_role_policy_document | urlencode }}</AssumeRolePolicyDocument> <CreateDate>{{ role.created_iso_8601 }}</CreateDate> <RoleId>{{ role.id }}</RoleId> </member> {% endfor %} </RoleDetailList> <Policies> {% for policy in policies %} <member> <PolicyName>{{ policy.name }}</PolicyName> <DefaultVersionId>{{ policy.default_version_id }}</DefaultVersionId> <PolicyId>{{ policy.id }}</PolicyId> <Path>{{ policy.path }}</Path> <PolicyVersionList> {% for policy_version in policy.versions %} <member> <Document>{{ policy_version.document }}</Document> <IsDefaultVersion>{{ policy_version.is_default | lower }}</IsDefaultVersion> <VersionId>{{ policy_version.version_id }}</VersionId> <CreateDate>{{ policy_version.created_iso_8601 }}</CreateDate> </member> {% endfor %} </PolicyVersionList> <Arn>{{ policy.arn }}</Arn> <AttachmentCount>1</AttachmentCount> <CreateDate>{{ policy.created_iso_8601 }}</CreateDate> <IsAttachable>true</IsAttachable> <UpdateDate>{{ policy.updated_iso_8601 }}</UpdateDate> </member> {% endfor %} </Policies> </GetAccountAuthorizationDetailsResult> <ResponseMetadata> <RequestId>92e79ae7-7399-11e4-8c85-4b53eEXAMPLE</RequestId> </ResponseMetadata> </GetAccountAuthorizationDetailsResponse>""" CREATE_SAML_PROVIDER_TEMPLATE = """<CreateSAMLProviderResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <CreateSAMLProviderResult> <SAMLProviderArn>{{ saml_provider.arn }}</SAMLProviderArn> </CreateSAMLProviderResult> <ResponseMetadata> <RequestId>29f47818-99f5-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </CreateSAMLProviderResponse>""" LIST_SAML_PROVIDERS_TEMPLATE = """<ListSAMLProvidersResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ListSAMLProvidersResult> <SAMLProviderList> {% for saml_provider in saml_providers %} <member> <Arn>{{ saml_provider.arn }}</Arn> <ValidUntil>2032-05-09T16:27:11Z</ValidUntil> <CreateDate>2012-05-09T16:27:03Z</CreateDate> </member> {% endfor %} </SAMLProviderList> </ListSAMLProvidersResult> <ResponseMetadata> <RequestId>fd74fa8d-99f3-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </ListSAMLProvidersResponse>""" GET_SAML_PROVIDER_TEMPLATE = """<GetSAMLProviderResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <GetSAMLProviderResult> <CreateDate>{{ saml_provider.created_iso_8601 }}</CreateDate> <ValidUntil>2015-12-31T21:59:59Z</ValidUntil> <SAMLMetadataDocument>{{ saml_provider.saml_metadata_document }}</SAMLMetadataDocument> </GetSAMLProviderResult> <ResponseMetadata> <RequestId>29f47818-99f5-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </GetSAMLProviderResponse>""" DELETE_SAML_PROVIDER_TEMPLATE = """<DeleteSAMLProviderResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>c749ee7f-99ef-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </DeleteSAMLProviderResponse>""" UPDATE_SAML_PROVIDER_TEMPLATE = """<UpdateSAMLProviderResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <UpdateSAMLProviderResult> <SAMLProviderArn>{{ saml_provider.arn }}</SAMLProviderArn> </UpdateSAMLProviderResult> <ResponseMetadata> <RequestId>29f47818-99f5-11e1-a4c3-27EXAMPLE804</RequestId> </ResponseMetadata> </UpdateSAMLProviderResponse>""" UPLOAD_SIGNING_CERTIFICATE_TEMPLATE = """<UploadSigningCertificateResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <UploadSigningCertificateResult> <Certificate> <UserName>{{ cert.user_name }}</UserName> <CertificateId>{{ cert.id }}</CertificateId> <CertificateBody>{{ cert.body }}</CertificateBody> <Status>{{ cert.status }}</Status> </Certificate> </UploadSigningCertificateResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </UploadSigningCertificateResponse>""" UPDATE_SIGNING_CERTIFICATE_TEMPLATE = """<UpdateSigningCertificateResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </UpdateSigningCertificateResponse>""" DELETE_SIGNING_CERTIFICATE_TEMPLATE = """<DeleteSigningCertificateResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </DeleteSigningCertificateResponse>""" LIST_SIGNING_CERTIFICATES_TEMPLATE = """<ListSigningCertificatesResponse> <ListSigningCertificatesResult> <UserName>{{ user_name }}</UserName> <Certificates> {% for cert in certificates %} <member> <UserName>{{ user_name }}</UserName> <CertificateId>{{ cert.id }}</CertificateId> <CertificateBody>{{ cert.body }}</CertificateBody> <Status>{{ cert.status }}</Status> </member> {% endfor %} </Certificates> <IsTruncated>false</IsTruncated> </ListSigningCertificatesResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </ListSigningCertificatesResponse>""" TAG_ROLE_TEMPLATE = """<TagRoleResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </TagRoleResponse>""" LIST_ROLE_TAG_TEMPLATE = """<ListRoleTagsResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ListRoleTagsResult> <IsTruncated>{{ 'true' if marker else 'false' }}</IsTruncated> {% if marker %} <Marker>{{ marker }}</Marker> {% endif %} <Tags> {% for tag in tags %} <member> <Key>{{ tag['Key'] }}</Key> <Value>{{ tag['Value'] }}</Value> </member> {% endfor %} </Tags> </ListRoleTagsResult> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </ListRoleTagsResponse>""" UNTAG_ROLE_TEMPLATE = """<UntagRoleResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </UntagRoleResponse>""" TAG_POLICY_TEMPLATE = """<TagPolicyResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </TagPolicyResponse>""" LIST_POLICY_TAG_TEMPLATE = """<ListPolicyTagsResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ListPolicyTagsResult> <IsTruncated>{{ 'true' if marker else 'false' }}</IsTruncated> {% if marker %} <Marker>{{ marker }}</Marker> {% endif %} <Tags> {% for tag in tags %} <member> <Key>{{ tag['Key'] }}</Key> <Value>{{ tag['Value'] }}</Value> </member> {% endfor %} </Tags> </ListPolicyTagsResult> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </ListPolicyTagsResponse>""" UNTAG_POLICY_TEMPLATE = """<UntagPolicyResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </UntagPolicyResponse>""" LIST_OPEN_ID_CONNECT_PROVIDER_TAGS = """<ListOpenIDConnectProviderTagsResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ListOpenIDConnectProviderTagsResult> <IsTruncated>{{ 'true' if marker else 'false' }}</IsTruncated> {% if marker %} <Marker>{{ marker }}</Marker> {% endif %} <Tags> {% for tag in tags %} <member> <Key>{{ tag['Key'] }}</Key> <Value>{{ tag['Value'] }}</Value> </member> {% endfor %} </Tags> </ListOpenIDConnectProviderTagsResult> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </ListOpenIDConnectProviderTagsResponse> """ CREATE_OPEN_ID_CONNECT_PROVIDER_TEMPLATE = """<CreateOpenIDConnectProviderResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <CreateOpenIDConnectProviderResult> <OpenIDConnectProviderArn>{{ open_id_provider.arn }}</OpenIDConnectProviderArn> </CreateOpenIDConnectProviderResult> <ResponseMetadata> <RequestId>f248366a-4f64-11e4-aefa-bfd6aEXAMPLE</RequestId> </ResponseMetadata> </CreateOpenIDConnectProviderResponse>""" UPDATE_OPEN_ID_CONNECT_PROVIDER_THUMBPRINT = """<UpdateOpenIDConnectProviderThumbprintResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>29b6031c-4f66-11e4-aefa-bfd6aEXAMPLE</RequestId> </ResponseMetadata> </UpdateOpenIDConnectProviderThumbprintResponse> """ TAG_OPEN_ID_CONNECT_PROVIDER = """<TagOpenIDConnectProviderResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </TagOpenIDConnectProviderResponse> """ UNTAG_OPEN_ID_CONNECT_PROVIDER = """<UntagOpenIDConnectProviderResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </UntagOpenIDConnectProviderResponse> """ DELETE_OPEN_ID_CONNECT_PROVIDER_TEMPLATE = """<DeleteOpenIDConnectProviderResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>b5e49e29-4f64-11e4-aefa-bfd6aEXAMPLE</RequestId> </ResponseMetadata> </DeleteOpenIDConnectProviderResponse>""" GET_OPEN_ID_CONNECT_PROVIDER_TEMPLATE = """<GetOpenIDConnectProviderResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <GetOpenIDConnectProviderResult> <ThumbprintList> {% for thumbprint in open_id_provider.thumbprint_list %} <member>{{ thumbprint }}</member> {% endfor %} </ThumbprintList> <CreateDate>{{ open_id_provider.created_iso_8601 }}</CreateDate> <ClientIDList> {% for client_id in open_id_provider.client_id_list %} <member>{{ client_id }}</member> {% endfor %} </ClientIDList> <Url>{{ open_id_provider.url }}</Url> {% if open_id_provider.tags %} <Tags> {% for tag in open_id_provider.get_tags() %} <member> <Key>{{ tag['Key'] }}</Key> <Value>{{ tag['Value'] }}</Value> </member> {% endfor %} </Tags> {% endif %} </GetOpenIDConnectProviderResult> <ResponseMetadata> <RequestId>2c91531b-4f65-11e4-aefa-bfd6aEXAMPLE</RequestId> </ResponseMetadata> </GetOpenIDConnectProviderResponse>""" LIST_OPEN_ID_CONNECT_PROVIDERS_TEMPLATE = """<ListOpenIDConnectProvidersResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ListOpenIDConnectProvidersResult> <OpenIDConnectProviderList> {% for open_id_provider_arn in open_id_provider_arns %} <member> <Arn>{{ open_id_provider_arn }}</Arn> </member> {% endfor %} </OpenIDConnectProviderList> </ListOpenIDConnectProvidersResult> <ResponseMetadata> <RequestId>de2c0228-4f63-11e4-aefa-bfd6aEXAMPLE</RequestId> </ResponseMetadata> </ListOpenIDConnectProvidersResponse>""" UPDATE_ACCOUNT_PASSWORD_POLICY_TEMPLATE = """<UpdateAccountPasswordPolicyResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </UpdateAccountPasswordPolicyResponse>""" GET_ACCOUNT_PASSWORD_POLICY_TEMPLATE = """<GetAccountPasswordPolicyResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <GetAccountPasswordPolicyResult> <PasswordPolicy> <AllowUsersToChangePassword>{{ password_policy.allow_users_to_change_password | lower }}</AllowUsersToChangePassword> <ExpirePasswords>{{ password_policy.expire_passwords | lower }}</ExpirePasswords> <HardExpiry>{{ password_policy.hard_expiry | lower }}</HardExpiry> {% if password_policy.max_password_age %} <MaxPasswordAge>{{ password_policy.max_password_age }}</MaxPasswordAge> {% endif %} <MinimumPasswordLength>{{ password_policy.minimum_password_length }}</MinimumPasswordLength> {% if password_policy.password_reuse_prevention %} <PasswordReusePrevention>{{ password_policy.password_reuse_prevention }}</PasswordReusePrevention> {% endif %} <RequireLowercaseCharacters>{{ password_policy.require_lowercase_characters | lower }}</RequireLowercaseCharacters> <RequireNumbers>{{ password_policy.require_numbers | lower }}</RequireNumbers> <RequireSymbols>{{ password_policy.require_symbols | lower }}</RequireSymbols> <RequireUppercaseCharacters>{{ password_policy.require_uppercase_characters | lower }}</RequireUppercaseCharacters> </PasswordPolicy> </GetAccountPasswordPolicyResult> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </GetAccountPasswordPolicyResponse>""" DELETE_ACCOUNT_PASSWORD_POLICY_TEMPLATE = """<DeleteAccountPasswordPolicyResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>7a62c49f-347e-4fc4-9331-6e8eEXAMPLE</RequestId> </ResponseMetadata> </DeleteAccountPasswordPolicyResponse>""" GET_ACCOUNT_SUMMARY_TEMPLATE = """<GetAccountSummaryResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <GetAccountSummaryResult> <SummaryMap> {% for key, value in summary_map.items() %} <entry> <key>{{ key }}</key> <value>{{ value }}</value> </entry> {% endfor %} </SummaryMap> </GetAccountSummaryResult> <ResponseMetadata> <RequestId>85cb9b90-ac28-11e4-a88d-97964EXAMPLE</RequestId> </ResponseMetadata> </GetAccountSummaryResponse>""" TAG_USER_TEMPLATE = """<TagUserResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </TagUserResponse>""" UNTAG_USER_TEMPLATE = """<UntagUserResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </UntagUserResponse>""" TAG_INSTANCE_PROFILE_TEMPLATE = """<TagInstanceProfileResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </TagInstanceProfileResponse> """ UNTAG_INSTANCE_PROFILE_TEMPLATE = """<UntagInstanceProfileResponse xmlns="https://iam.amazonaws.com/doc/2010-05-08/"> <ResponseMetadata> <RequestId>EXAMPLE8-90ab-cdef-fedc-ba987EXAMPLE</RequestId> </ResponseMetadata> </UntagInstanceProfileResponse> """