Skip to content

API for AWS Identity and Access Management

ABAP Package /AWS1/API_IAM_IMPL
ABAP SDK "TLA" IAM
ABAP Interface /AWS1/IF_IAM

The "TLA" is a Three Letter Abbreviation that appears in ABAP class names, data dictionary objects and other ABAP objects throughout the AWS SDK for SAP ABAP. The TLA for AWS Identity and Access Management is IAM. This TLA helps squeeze ABAP objects into the 30-character length limit of the ABAP data dictionary.

Installation

To install the AWS SDK for SAP ABAP, import the Core transport, along with the transport for the IAM module and other API modules you are interested in. A few modules are included in the Core transport itself. For more information, see the Developer Guide guide.

About The Service

Identity and Access Management

Identity and Access Management (IAM) is a web service for securely controlling access to Amazon Web Services services. With IAM, you can centrally manage users, security credentials such as access keys, and permissions that control which Amazon Web Services resources users and applications can access. For more information about IAM, see Identity and Access Management (IAM) and the Identity and Access Management User Guide.

Using the SDK

In your code, create a client using the SDK module for AWS Identity and Access Management, which is created with factory method /AWS1/CL_IAM_FACTORY=>create(). In this example we will assume you have configured an SDK profile in transaction /AWS1/IMG called ZFINANCE.

DATA(go_session)   = /aws1/cl_rt_session_aws=>create( 'ZFINANCE' ).
DATA(go_iam)       = /aws1/cl_iam_factory=>create( go_session ).

Your variable go_iam is an instance of /AWS1/IF_IAM, and all of the operations in the AWS Identity and Access Management service are accessed by calling methods in /AWS1/IF_IAM.

API Operations

For an overview of ABAP method calls corresponding to API operations in AWS Identity and Access Management, see the Operation List.

Factory Method

/AWS1/CL_IAM_FACTORY=>create( )

Creates an object of type /AWS1/IF_IAM.

IMPORTING

Optional arguments:

IV_PROTOCOL TYPE /AWS1/RT_PROTOCOL /AWS1/RT_PROTOCOL

IO_SESSION TYPE REF TO /AWS1/CL_RT_SESSION_BASE /AWS1/CL_RT_SESSION_BASE

IV_REGION TYPE /AWS1/RT_REGION_ID /AWS1/RT_REGION_ID

IV_CUSTOM_ENDPOINT TYPE /AWS1/RT_ENDPOINT /AWS1/RT_ENDPOINT

RETURNING

OO_CLIENT TYPE REF TO /AWS1/IF_IAM /AWS1/IF_IAM

/AWS1/IF_IAM represents the ABAP client for the IAM service, representing each operation as a method call. For more information see the API Page page.

Configuring Programmatically

DATA(lo_config) = DATA(go_iam)->get_config( ).

lo_config is a variable of type /AWS1/CL_IAM_CONFIG. See the documentation for /AWS1/CL_IAM_CONFIG for details on the settings that can be configured.

Waiters

Waiters for Implementation can be accessed via get_waiter() method followed by the waiter method to be called.

Details about the waiter methods available for service Implementation can be found in interface /AWS1/IF_IAM_WAITER.

Paginators

Paginators for AWS Identity and Access Management can be created via get_paginator() which returns a paginator object of type /AWS1/IF_IAM_PAGINATOR. The operation method that is being paginated is called using the paginator object, which accepts any necessary parameters to provide to the underlying API operation. This returns an iterator object which can be used to iterate over paginated results using has_next() and get_next() methods.

Details about the paginator methods available for service AWS Identity and Access Management can be found in interface /AWS1/IF_IAM_PAGINATOR.