class Aws::IAM::Types::RoleDetail

Contains information about an IAM role, including all of the role's policies.

This data type is used as a response element in the GetAccountAuthorizationDetails operation.

@!attribute [rw] path

The path to the role. For more information about paths, see [IAM
identifiers][1] in the *IAM User Guide*.

[1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html
@return [String]

@!attribute [rw] role_name

The friendly name that identifies the role.
@return [String]

@!attribute [rw] role_id

The stable and unique string identifying the role. For more
information about IDs, see [IAM identifiers][1] in the *IAM User
Guide*.

[1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html
@return [String]

@!attribute [rw] arn

The Amazon Resource Name (ARN). ARNs are unique identifiers for
Amazon Web Services resources.

For more information about ARNs, go to [Amazon Resource Names
(ARNs)][1] in the *Amazon Web Services General Reference*.

[1]: https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html
@return [String]

@!attribute [rw] create_date

The date and time, in [ISO 8601 date-time format][1], when the role
was created.

[1]: http://www.iso.org/iso/iso8601
@return [Time]

@!attribute [rw] assume_role_policy_document

The trust policy that grants permission to assume the role.
@return [String]

@!attribute [rw] instance_profile_list

A list of instance profiles that contain this role.
@return [Array<Types::InstanceProfile>]

@!attribute [rw] role_policy_list

A list of inline policies embedded in the role. These policies are
the role's access (permissions) policies.
@return [Array<Types::PolicyDetail>]

@!attribute [rw] attached_managed_policies

A list of managed policies attached to the role. These policies are
the role's access (permissions) policies.
@return [Array<Types::AttachedPolicy>]

@!attribute [rw] permissions_boundary

The ARN of the policy used to set the permissions boundary for the
role.

For more information about permissions boundaries, see [Permissions
boundaries for IAM identities ][1] in the *IAM User Guide*.

[1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html
@return [Types::AttachedPermissionsBoundary]

@!attribute [rw] tags

A list of tags that are attached to the role. For more information
about tagging, see [Tagging IAM resources][1] in the *IAM User
Guide*.

[1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html
@return [Array<Types::Tag>]

@!attribute [rw] role_last_used

Contains information about the last time that an IAM role was used.
This includes the date and time and the Region in which the role was
last used. Activity is only reported for the trailing 400 days. This
period can be shorter if your Region began supporting these features
within the last year. The role might have been used more than 400
days ago. For more information, see [Regions where data is
tracked][1] in the *IAM User Guide*.

[1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#access-advisor_tracking-period
@return [Types::RoleLastUsed]

@see docs.aws.amazon.com/goto/WebAPI/iam-2010-05-08/RoleDetail AWS API Documentation

Constants

SENSITIVE