diff options
Diffstat (limited to 'data/en_us/ram')
| -rw-r--r-- | data/en_us/ram/2015-05-01/api-docs.php | 10331 |
1 files changed, 5255 insertions, 5076 deletions
diff --git a/data/en_us/ram/2015-05-01/api-docs.php b/data/en_us/ram/2015-05-01/api-docs.php index b6e01d6..c6fb45a 100644 --- a/data/en_us/ram/2015-05-01/api-docs.php +++ b/data/en_us/ram/2015-05-01/api-docs.php @@ -1,1034 +1,724 @@ <?php return [ 'version' => '1.0', - 'info' => [ - 'style' => 'RPC', - 'product' => 'Ram', - 'version' => '2015-05-01', - ], + 'info' => ['style' => 'RPC', 'product' => 'Ram', 'version' => '2015-05-01'], 'directories' => [ [ - 'id' => 67227, - 'title' => 'User management', - 'type' => 'directory', 'children' => [ [ - 'id' => 186630, - 'title' => 'RAM User', + 'children' => ['GetLoginProfile', 'UpdateLoginProfile', 'ChangePassword'], 'type' => 'directory', - 'children' => [ - 'CreateUser', - 'GetUser', - 'UpdateUser', - 'DeleteUser', - 'ListUsers', - ], + 'title' => 'Logon information', ], [ - 'id' => 186631, - 'title' => 'Login Profile', + 'children' => ['CreateAccessKey', 'ListAccessKeys', 'GetAccessKeyLastUsed'], 'type' => 'directory', - 'children' => [ - 'CreateLoginProfile', - 'GetLoginProfile', - 'UpdateLoginProfile', - 'DeleteLoginProfile', - 'ChangePassword', - ], - ], - [ - 'id' => 186632, - 'title' => 'AccessKey', - 'type' => 'directory', - 'children' => [ - 'CreateAccessKey', - 'UpdateAccessKey', - 'DeleteAccessKey', - 'ListAccessKeys', - 'GetAccessKeyLastUsed', - ], + 'title' => 'AccessKey pairs', ], [ - 'id' => 186633, - 'title' => 'MFA', + 'children' => ['GetUserMFAInfo', 'ListVirtualMFADevices', 'BindMFADevice', 'UnbindMFADevice'], 'type' => 'directory', - 'children' => [ - 'CreateVirtualMFADevice', - 'GetUserMFAInfo', - 'DeleteVirtualMFADevice', - 'ListVirtualMFADevices', - 'BindMFADevice', - 'UnbindMFADevice', - ], + 'title' => 'Multi-factor authentication', ], ], - ], - [ - 'id' => 67248, - 'title' => 'User group management', 'type' => 'directory', - 'children' => [ - 'CreateGroup', - 'GetGroup', - 'UpdateGroup', - 'DeleteGroup', - 'ListGroups', - 'ListGroupsForUser', - 'ListUsersForGroup', - 'AddUserToGroup', - 'RemoveUserFromGroup', - ], + 'title' => 'User management', ], [ - 'id' => 67221, - 'title' => 'Role management', + 'children' => ['AddUserToGroup', 'RemoveUserFromGroup'], 'type' => 'directory', - 'children' => [ - 'CreateRole', - 'DeleteRole', - 'UpdateRole', - 'GetRole', - 'ListRoles', - ], + 'title' => 'User group management', ], [ - 'id' => 67201, - 'title' => 'Permission management', - 'type' => 'directory', 'children' => [ [ - 'id' => 186634, - 'title' => 'Permission Policy Management', + 'children' => ['UpdatePolicyDescription', 'CreatePolicyVersion', 'GetPolicyVersion', 'DeletePolicyVersion', 'ListPolicyVersions', 'SetDefaultPolicyVersion'], 'type' => 'directory', - 'children' => [ - 'CreatePolicy', - 'GetPolicy', - 'UpdatePolicyDescription', - 'DeletePolicy', - 'ListPolicies', - 'CreatePolicyVersion', - 'GetPolicyVersion', - 'DeletePolicyVersion', - 'ListPolicyVersions', - 'SetDefaultPolicyVersion', - ], - ], - [ - 'id' => 186635, - 'title' => 'Authorization Management', + 'title' => 'Access policy management', + ], + [ + 'children' => ['AttachPolicyToUser', 'DetachPolicyFromUser', 'AttachPolicyToGroup', 'DetachPolicyFromGroup', 'AttachPolicyToRole', 'DetachPolicyFromRole', 'ListPoliciesForUser', 'ListPoliciesForGroup', 'ListPoliciesForRole', 'ListEntitiesForPolicy'], 'type' => 'directory', - 'children' => [ - 'AttachPolicyToUser', - 'DetachPolicyFromUser', - 'AttachPolicyToGroup', - 'DetachPolicyFromGroup', - 'AttachPolicyToRole', - 'DetachPolicyFromRole', - 'ListPoliciesForUser', - 'ListPoliciesForGroup', - 'ListPoliciesForRole', - 'ListEntitiesForPolicy', - ], + 'title' => 'Authorization management', ], ], + 'type' => 'directory', + 'title' => 'Permission management', ], [ - 'id' => 67192, - 'title' => 'Security management', + 'children' => ['SetAccountAlias', 'ClearAccountAlias', 'SetPasswordPolicy', 'GetPasswordPolicy', 'GetSecurityPreference'], 'type' => 'directory', - 'children' => [ - 'SetAccountAlias', - 'GetAccountAlias', - 'ClearAccountAlias', - 'SetPasswordPolicy', - 'GetPasswordPolicy', - 'SetSecurityPreference', - 'GetSecurityPreference', - ], + 'title' => 'Security settings', ], [ - 'id' => 183186, - 'title' => 'Permission analysis and diagnostics', + 'children' => ['DecodeDiagnosticMessage'], 'type' => 'directory', - 'children' => [ - 'DecodeDiagnosticMessage', - ], + 'title' => 'Permission analysis and diagnostics', ], [ - 'id' => 206934, - 'title' => 'Tag management', - 'type' => 'directory', 'children' => [ - 'TagResources', - 'UntagResources', - 'ListTagResources', + 'CreateGroup', 'CreateLoginProfile', 'CreatePolicy', 'CreateRole', 'CreateUser', 'CreateVirtualMFADevice', 'DeleteAccessKey', 'DeleteGroup', 'DeleteLoginProfile', 'DeletePolicy', 'DeleteRole', 'DeleteUser', 'DeleteVirtualMFADevice', 'GetAccountAlias', 'GetGroup', 'GetPolicy', 'GetRole', 'GetUser', 'ListGroups', 'ListGroupsForUser', + 'ListPolicies', 'ListRoles', 'ListTagResources', 'ListUsers', 'ListUsersForGroup', 'SetSecurityPreference', 'TagResources', 'UntagResources', 'UpdateAccessKey', 'UpdateGroup', 'UpdateRole', 'UpdateUser', ], + 'title' => 'Others', + 'type' => 'directory', ], ], 'components' => [ 'schemas' => [], ], 'apis' => [ - 'CreateUser' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], + 'AddUserToGroup' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'create', - ], + 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n" - ."\n" - .'The name must be 1 to 64 characters in length, and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'alice', - ], + 'schema' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], ], [ - 'name' => 'DisplayName', + 'name' => 'GroupName', 'in' => 'query', + 'schema' => ['description' => 'The name of the RAM user group.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Dev-Team', 'title' => ''], + ], + ], + 'responses' => [ + 200 => [ 'schema' => [ - 'description' => 'The display name of the RAM user.'."\n" - ."\n" - .'The name must be 1 to 128 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'alice', + 'description' => 'The response parameters.', + 'type' => 'object', + 'properties' => [ + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '1B968853-B423-63A6-FE1F-45E81BC2AD61', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], ], + ], + 'title' => 'AddUserToGroup', + 'summary' => 'Adds a Resource Access Management (RAM) user to a RAM user group.', + 'requestParamsDescription' => ' ', + 'responseParamsDescription' => ' ', + 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddUserToGroup'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:AddUserToGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1B968853-B423-63A6-FE1F-45E81BC2AD61\\"\\n}","type":"json"}]', + ], + 'AttachPolicyToGroup' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], + 'security' => [ [ - 'name' => 'MobilePhone', + 'AK' => [], + ], + ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free'], + 'parameters' => [ + [ + 'name' => 'PolicyType', 'in' => 'query', - 'schema' => [ - 'description' => 'The mobile phone number of the RAM user.'."\n" - ."\n" - .'Format: \\<Country code>-\\<Mobile phone number>.'."\n" - ."\n" - .'> This parameter applies only to the China site (aliyun.com).'."\n", - 'type' => 'string', - 'required' => false, - 'example' => '86-1868888****', - ], + 'schema' => ['description' => 'The policy type. Valid values: `System` and `Custom`.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Custom', 'title' => ''], ], [ - 'name' => 'Email', + 'name' => 'PolicyName', 'in' => 'query', - 'schema' => [ - 'description' => 'The email address of the RAM user.'."\n" - ."\n" - .'> This parameter applies only to the China site (aliyun.com).'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'alice@example.com', - ], + 'schema' => ['description' => 'The policy name.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], ], [ - 'name' => 'Comments', + 'name' => 'GroupName', 'in' => 'query', - 'schema' => [ - 'description' => 'The description of the RAM user.'."\n" - ."\n" - .'The description must be 1 to 128 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'This is a cloud computing engineer.', - ], + 'schema' => ['description' => 'The user group name.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'dev', 'title' => ''], + ], + [ + 'name' => 'ResourceGroupId', + 'in' => 'query', + 'schema' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'User' => [ - 'description' => 'The information about the RAM user.'."\n", - 'type' => 'object', - 'properties' => [ - 'DisplayName' => [ - 'description' => 'The display name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'alice', - ], - 'Email' => [ - 'description' => 'The email address of the RAM user.'."\n" - ."\n" - .'> This parameter applies only to the China site (aliyun.com).'."\n", - 'type' => 'string', - 'example' => 'alice@example.com', - ], - 'MobilePhone' => [ - 'description' => 'The mobile phone number of the RAM user.'."\n" - ."\n" - .'> This parameter applies only to the China site (aliyun.com).'."\n", - 'type' => 'string', - 'example' => '86-1868888****', - ], - 'UserId' => [ - 'description' => 'The ID of the RAM user.'."\n", - 'type' => 'string', - 'example' => '122748924538****', - ], - 'Comments' => [ - 'description' => 'The description of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'This is a cloud computing engineer.', - ], - 'CreateDate' => [ - 'description' => 'The point in time when the RAM user was created. The time is displayed in UTC.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'UserName' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'alice', - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The unique identifier for the request.', 'type' => 'string', 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', 'title' => ''], ], + 'description' => 'The response parameters.', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"User\\": {\\n \\"DisplayName\\": \\"alice\\",\\n \\"Email\\": \\"alice@example.com\\",\\n \\"MobilePhone\\": \\"86-1868888****\\",\\n \\"UserId\\": \\"122748924538****\\",\\n \\"Comments\\": \\"This is a cloud computing engineer.\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"alice\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":""},{"type":"xml","example":"<CreateUserResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <User>\\n <UserId>122748924538****</UserId>\\n <UserName>alice</UserName>\\n <DisplayName>alice</DisplayName>\\n <MobilePhone>86-1868888****</MobilePhone>\\n <Email>alice@example.com</Email>\\n <Comments>This is a cloud computing engineer.</Comments>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n </User>\\n</CreateUserResponse>","errorExample":""}]', - 'title' => 'CreateUser', - 'summary' => 'Creates a Resource Access Management (RAM) user.', - 'description' => 'This topic provides an example on how to create a RAM user named `alice`.'."\n", - 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).'."\n", + 'title' => 'AttachPolicyToGroup', + 'summary' => 'Attaches a policy to a user group.', + 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', - ], - 'GetUser' => [ - 'summary' => 'Queries information about a Resource Access Management (RAM) user.', - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', + 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AttachPolicyToGroup'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:AttachPolicyToGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","type":"json"}]', + ], + 'AttachPolicyToRole' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - 'riskType' => 'none', - 'chargeType' => 'free', - ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ - 'name' => 'UserName', + 'name' => 'PolicyType', 'in' => 'query', - 'schema' => [ - 'description' => 'The username of the RAM user.'."\n" - ."\n" - .'The username must be 1 to 64 characters in length, and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'alice', - ], + 'schema' => ['description' => 'The policy type. Valid values are `System` and `Custom`.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Custom', 'title' => ''], + ], + [ + 'name' => 'PolicyName', + 'in' => 'query', + 'schema' => ['description' => 'The policy name.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], + ], + [ + 'name' => 'RoleName', + 'in' => 'query', + 'schema' => ['description' => 'The role name.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSSAdminRole', 'title' => ''], + ], + [ + 'name' => 'ResourceGroupId', + 'in' => 'query', + 'schema' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'User' => [ - 'description' => 'The information about the RAM user.'."\n", - 'type' => 'object', - 'properties' => [ - 'DisplayName' => [ - 'description' => 'The display name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'alice', - ], - 'Email' => [ - 'description' => 'The email address of the RAM user.'."\n" - ."\n" - .'> This parameter can be returned only on the China site (aliyun.com).'."\n", - 'type' => 'string', - 'example' => 'alice@example.com', - ], - 'UpdateDate' => [ - 'description' => 'The point in time when the information about the RAM user was last modified. The time is displayed in UTC.'."\n", - 'type' => 'string', - 'example' => '2015-02-11T03:15:21Z', - ], - 'MobilePhone' => [ - 'description' => 'The mobile phone number of the RAM user.'."\n" - ."\n" - .'> This parameter can be returned only on the China site (aliyun.com).'."\n", - 'type' => 'string', - 'example' => '86-1860000****', - ], - 'UserId' => [ - 'description' => 'The ID of the RAM user.'."\n", - 'type' => 'string', - 'example' => '222748924538****', - ], - 'Comments' => [ - 'description' => 'The description of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'Cloud computing engineer', - ], - 'LastLoginDate' => [ - 'description' => 'The point in time when the RAM user last logged on to the Alibaba Cloud Management Console by using the password. The time is displayed in UTC.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'CreateDate' => [ - 'description' => 'The point in time when the RAM user was created. The time is displayed in UTC.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'UserName' => [ - 'description' => 'The username of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'alice', - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '2D69A58F-345C-4FDE-88E4-BF5189484043', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', 'title' => ''], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"User\\": {\\n \\"DisplayName\\": \\"alice\\",\\n \\"Email\\": \\"alice@example.com\\",\\n \\"UpdateDate\\": \\"2015-02-11T03:15:21Z\\",\\n \\"MobilePhone\\": \\"86-1860000****\\",\\n \\"UserId\\": \\"222748924538****\\",\\n \\"Comments\\": \\"这是一位云计算工程师\\",\\n \\"LastLoginDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"alice\\"\\n },\\n \\"RequestId\\": \\"2D69A58F-345C-4FDE-88E4-BF5189484043\\"\\n}","errorExample":""},{"type":"xml","example":"<GetUserResponse>\\n <RequestId>2D69A58F-345C-4FDE-88E4-BF5189484043</RequestId>\\n <User>\\n <UserId>222748924538****</UserId>\\n <UserName>alice</UserName>\\n <DisplayName>alice</DisplayName>\\n <MobilePhone>86-1860000****</MobilePhone>\\n <Email>alice@example.com</Email>\\n <Comments>This is a cloud computing engineer.</Comments>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-02-11T03:15:21Z</UpdateDate>\\n <LastLoginDate>2015-01-23T12:33:18Z</LastLoginDate>\\n </User>\\n</GetUserResponse>","errorExample":""}]', - 'title' => 'GetUser', - 'description' => 'This topic provides an example on how to query information about the RAM user `alice`.'."\n", - 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).'."\n", + 'title' => 'AttachPolicyToRole', + 'summary' => 'Attaches a policy to a role.', + 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'UpdateUser' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AttachPolicyToRole'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:AttachPolicyToRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:TrustedPrincipalTypes', 'validationType' => 'always'], + ['conditionKey' => 'ram:ServiceNames', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","type":"json"}]', + ], + 'AttachPolicyToUser' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], + 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ - 'name' => 'UserName', + 'name' => 'PolicyType', 'in' => 'query', - 'schema' => [ - 'description' => 'The username of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', - ], + 'schema' => ['description' => 'The type of the permission policy. Valid values are `System` and `Custom`.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Custom', 'title' => ''], ], [ - 'name' => 'NewUserName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The new username of the RAM user.'."\n" - ."\n" - .'The username must be 1 to 64 characters in length, and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'xiaoq****', - ], - ], - [ - 'name' => 'NewDisplayName', + 'name' => 'PolicyName', 'in' => 'query', - 'schema' => [ - 'description' => 'The new display name of the RAM user.'."\n" - ."\n" - .'The name must be 1 to 128 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'xiaoq****', - ], + 'schema' => ['description' => 'The name of the permission policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], ], [ - 'name' => 'NewMobilePhone', - 'in' => 'query', - 'schema' => [ - 'description' => 'The new mobile phone number of the RAM user.'."\n" - ."\n" - .'Format: \\<Country code>-\\<Mobile phone number>.'."\n" - ."\n" - .'> This parameter applies only to the China site (aliyun.com).'."\n", - 'type' => 'string', - 'required' => false, - 'example' => '86-1860000****', - ], - ], - [ - 'name' => 'NewEmail', + 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The new email address of the RAM user.'."\n" - ."\n" - .'> This parameter applies only to the China site (aliyun.com).'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'xiaoq****@example.com', - ], + 'schema' => ['description' => 'The user name.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], ], [ - 'name' => 'NewComments', + 'name' => 'ResourceGroupId', 'in' => 'query', - 'schema' => [ - 'description' => 'The new description of the RAM user.'."\n" - ."\n" - .'The description must be 1 to 128 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'This is a cloud computing engineer.', - ], + 'schema' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response data.', 'type' => 'object', 'properties' => [ - 'User' => [ - 'description' => 'The information about the RAM user.'."\n", - 'type' => 'object', - 'properties' => [ - 'DisplayName' => [ - 'description' => 'The display name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'xiaoq****', - ], - 'Email' => [ - 'description' => 'The email address of the RAM user.'."\n" - ."\n" - .'> This parameter can be returned only on the China site (aliyun.com).'."\n", - 'type' => 'string', - 'example' => 'xiaoq****@example.com', - ], - 'UpdateDate' => [ - 'description' => 'The point in time when the information about the RAM user was last modified. The time is displayed in UTC.'."\n", - 'type' => 'string', - 'example' => '2015-02-11T03:15:21Z', - ], - 'MobilePhone' => [ - 'description' => 'The mobile phone number of the RAM user.'."\n" - ."\n" - .'> This parameter can be returned only on the China site (aliyun.com).'."\n", - 'type' => 'string', - 'example' => '86-1860000****', - ], - 'UserId' => [ - 'description' => 'The ID of the RAM user.'."\n", - 'type' => 'string', - 'example' => '122748924538****', - ], - 'Comments' => [ - 'description' => 'The description of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'This is a cloud computing engineer.', - ], - 'CreateDate' => [ - 'description' => 'The point in time when the RAM user was created. The time is displayed in UTC.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'UserName' => [ - 'description' => 'The username of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'xiaoq****', - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"User\\": {\\n \\"DisplayName\\": \\"xiaoq****\\",\\n \\"Email\\": \\"xiaoq****@example.com\\",\\n \\"UpdateDate\\": \\"2015-02-11T03:15:21Z\\",\\n \\"MobilePhone\\": \\"86-1860000****\\",\\n \\"UserId\\": \\"122748924538****\\",\\n \\"Comments\\": \\"This is a cloud computing engineer.\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"xiaoq****\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":""},{"type":"xml","example":"<UpdateUserResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <User>\\n <UserId>122748924538****</UserId>\\n <UserName>xiaoq****</UserName>\\n <DisplayName>xiaoq*****</DisplayName>\\n <MobilePhone>86-1860000****</MobilePhone>\\n <Email>xiaoq****@example.com</Email>\\n <Comments>This is a cloud computing engineer.</Comments>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-02-11T03:15:21Z</UpdateDate>\\n </User>\\n</UpdateUserResponse>","errorExample":""}]', - 'title' => 'UpdateUser', - 'summary' => 'Modifies information about a Resource Access Management (RAM) user.', - 'description' => 'This topic provides an example on how to change the name of a RAM user from `zhangq****` to `xiaoq****`.'."\n", - 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).'."\n", + 'title' => 'AttachPolicyToUser', + 'summary' => 'Attaches a permission policy to a specified user.', + 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'DeleteUser' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AttachPolicyToUser'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:AttachPolicyToUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","type":"json"}]', + ], + 'BindMFADevice' => [ + 'summary' => 'Binds a multi-factor authentication (MFA) device to a Resource Access Management (RAM) user.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'delete', - ], + 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'autoTest' => false, 'notSupportAutoTestReason' => 'MFA相关API依赖设备返回的随机验证码,自动化测试中取不到'], 'parameters' => [ [ + 'name' => 'SerialNumber', + 'in' => 'query', + 'schema' => ['description' => 'The serial number of the MFA device.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'acs:ram::123456789012****:mfa/device002', 'title' => ''], + ], + [ 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n" - ."\n" - .'The name must be 1 to 64 characters in length, and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', - ], + 'schema' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], + ], + [ + 'name' => 'AuthenticationCode1', + 'in' => 'query', + 'schema' => ['description' => 'The first authentication code.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => '11****', 'title' => ''], + ], + [ + 'name' => 'AuthenticationCode2', + 'in' => 'query', + 'schema' => ['description' => 'The second authentication code.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => '33****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '1C488B66-B819-4D14-8711-C4EAAA13AC01', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"1C488B66-B819-4D14-8711-C4EAAA13AC01\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"1C488B66-B819-4D14-8711-C4EAAA13AC01\\"\\n}"},{"type":"xml","example":"<RequestId>1C488B66-B819-4D14-8711-C4EAAA13AC01</RequestId>","errorExample":"<DeleteUserResponse>\\n <RequestId>1C488B66-B819-4D14-8711-C4EAAA13AC01</RequestId>\\n</DeleteUserResponse>"}]', - 'title' => 'DeleteUser', - 'summary' => 'Deletes a Resource Access Management (RAM) user.', - 'description' => 'Before you delete a RAM user, make sure that no policies are attached to the RAM user and that the RAM user does not belong to any groups.'."\n", + 'title' => 'BindMFADevice', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'ListUsers' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BindMFADevice'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => '', + 'ramAction' => [ + 'action' => 'ram:BindMFADevice', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + ], + 'ChangePassword' => [ + 'summary' => 'Changes the password that is used to log on to the console for a Resource Access Management (RAM) user.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'read', + 'operationType' => 'write', 'systemTags' => [ - 'operationType' => 'get', + 'operationType' => 'update', + 'riskType' => 'none', + 'chargeType' => 'free', + 'abilityTreeCode' => '7517', + 'abilityTreeNodes' => ['FEATUREram8R8C7X'], + 'tenantRelevance' => 'publicInformation', ], 'parameters' => [ [ - 'name' => 'Marker', + 'name' => 'OldPassword', 'in' => 'query', - 'schema' => [ - 'description' => 'The `marker`. If part of a previous response is truncated, you can use this parameter to obtain the truncated part.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'EXAMPLE', - ], + 'schema' => ['description' => 'The old password that is used to log on to the console.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => '12****', 'title' => ''], ], [ - 'name' => 'MaxItems', + 'name' => 'NewPassword', 'in' => 'query', - 'schema' => [ - 'description' => 'The number of entries per page. If a response is truncated because it reaches the value of MaxItems, the value of `IsTruncatedg` will be `true`.'."\n" - ."\n" - .'Valid values: 1 to 1000. Default value: 100.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'required' => false, - 'example' => '100', - ], + 'schema' => ['description' => 'The new password that is used to log on to the console.'."\n" + ."\n" + .'The password must meet the complexity requirements. For more information, see [SetPasswordPolicy](~~28739~~).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'aw$2****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '4B450CA1-36E8-4AA2-8461-86B42BF4CC4E', - ], - 'IsTruncated' => [ - 'description' => 'Indicates whether the response is truncated.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'Marker' => [ - 'description' => 'The marker. This parameter is returned only if the value of `IsTruncated` is `true`. If the parameter is returned, you can call this operation again and set `Marker` to obtain the truncated part.``'."\n", - 'type' => 'string', - 'example' => 'EXAMPLE', - ], - 'Users' => [ - 'type' => 'object', - 'itemNode' => true, - 'properties' => [ - 'User' => [ - 'description' => 'The RAM users.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The list of RAM users.', - 'type' => 'object', - 'properties' => [ - 'DisplayName' => [ - 'description' => 'The display name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'Zhangq****', - ], - 'Email' => [ - 'description' => 'The email address of the RAM user.'."\n" - ."\n" - .'> This parameter is unavailable.'."\n", - 'type' => 'string', - 'example' => 'zhangq****@example.com', - ], - 'UpdateDate' => [ - 'description' => 'The point in time when the information about the RAM user was last modified. The time is displayed in UTC.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'MobilePhone' => [ - 'description' => 'The mobile phone number of the RAM user.'."\n" - ."\n" - .'> This parameter is unavailable.'."\n", - 'type' => 'string', - 'example' => '86-1860000****', - ], - 'UserId' => [ - 'description' => 'The ID of the RAM user.'."\n", - 'type' => 'string', - 'example' => '122748924538****', - ], - 'Comments' => [ - 'description' => 'The description.'."\n", - 'type' => 'string', - 'example' => 'Cloud computing engineer', - ], - 'CreateDate' => [ - 'description' => 'The time when the RAM user was created. The time is displayed in UTC.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'UserName' => [ - 'description' => 'The logon name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'zhangq****', - ], - ], - ], - ], - ], - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"4B450CA1-36E8-4AA2-8461-86B42BF4CC4E\\",\\n \\"IsTruncated\\": true,\\n \\"Marker\\": \\"EXAMPLE\\",\\n \\"Users\\": {\\n \\"User\\": [\\n {\\n \\"DisplayName\\": \\"张*\\",\\n \\"Email\\": \\"zhangq****@example.com\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"MobilePhone\\": \\"86-1860000****\\",\\n \\"UserId\\": \\"20732900249392****\\",\\n \\"Comments\\": \\"这是一位云计算工程师\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"zhangq****\\"\\n }\\n ]\\n }\\n}","errorExample":"{\\n \\"RequestId\\" : \\"4B450CA1-36E8-4AA2-8461-86B42BF4CC4E\\",\\n \\"IsTruncated\\": true,\\n \\"Marker\\": \\"EXAMPLE\\",\\n \\"Users\\" : {\\n \\"User\\" : [\\n {\\n \\"UserId\\" : \\"1227489245380721\\",\\n \\"UserName\\" : \\"zhangqiang\\",\\n \\"DisplayName\\": \\"张强\\",\\n \\"MobilePhone\\": \\"86-18600008888\\",\\n \\"Email\\": \\"zhangqiang@example.com\\",\\n \\"Comments\\": \\"这是一位云计算工程师\\",\\n \\"CreateDate\\" : \\"2015-01-23T12:33:18Z\\",\\n \\"UpdateDate\\" : \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"UserId\\" : \\"1406498224724456\\",\\n \\"UserName\\" : \\"lili\\",\\n \\"DisplayName\\": \\"李丽\\",\\n \\"MobilePhone\\": \\"86-18600009999\\",\\n \\"Email\\": \\"lili@example.com\\",\\n \\"Comments\\": \\"权限管理员\\",\\n \\"CreateDate\\" : \\"2015-02-18T17:22:08Z\\",\\n \\"UpdateDate\\" : \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\r\\n<ListUsersResponse>\\r\\n\\t<RequestId>4B450CA1-36E8-4AA2-8461-86B42BF4CC4E</RequestId>\\r\\n\\t<IsTruncated>true</IsTruncated>\\r\\n\\t<Marker>EXAMPLE</Marker>\\r\\n\\t<Users>\\r\\n\\t\\t<User>\\r\\n\\t\\t\\t<UserId>122748924538****</UserId>\\r\\n\\t\\t\\t<UserName>zhangq****</UserName>\\r\\n\\t\\t\\t<DisplayName>张*</DisplayName>\\r\\n\\t\\t\\t<Comments>这是一位云计算工程师</Comments>\\r\\n\\t\\t\\t<CreateDate>2015-01-23T12:33:18Z</CreateDate>\\r\\n\\t\\t\\t<UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\r\\n\\t\\t</User>\\r\\n\\t\\t<User>\\r\\n\\t\\t\\t<UserId>140649822472****</UserId>\\r\\n\\t\\t\\t<UserName>li****</UserName>\\r\\n\\t\\t\\t<DisplayName>李*</DisplayName>\\r\\n\\t\\t\\t<Comments>权限管理员</Comments>\\r\\n\\t\\t\\t<CreateDate>2015-02-18T17:22:08Z</CreateDate>\\r\\n\\t\\t\\t<UpdateDate>2015-02-18T17:22:08Z</UpdateDate>\\r\\n\\t\\t</User>\\r\\n\\t</Users>\\r\\n</ListUsersResponse>\\t\\r\\n","errorExample":"<ListUsersResponse>\\n <RequestId>4B450CA1-36E8-4AA2-8461-86B42BF4CC4E</RequestId>\\n <Users>\\n <User>\\n <UserId>1227489245380721</UserId>\\n <UserName>zhangqiang</UserName>\\n <DisplayName>张强</DisplayName>\\n <MobilePhone>86-18600008888</MobilePhone>\\n <Email>zhangqiang@example.com</Email>\\n <Comments>这是一位云计算工程师</Comments>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n </User>\\n <User>\\n <UserId>1406498224724456</UserId>\\n <UserName>lili</UserName>\\n <DisplayName>李丽</DisplayName>\\n <MobilePhone>86-18600009999</MobilePhone>\\n <Email>lili@example.com</Email>\\n <Comments>权限管理员</Comments>\\n <CreateDate>2015-02-18T17:22:08Z</CreateDate>\\n <UpdateDate>2015-02-18T17:22:08Z</UpdateDate>\\n </User>\\n </Users>\\n <IsTruncated>true</IsTruncated>\\n <Marker>EXAMPLE</Marker>\\n</ListUsersResponse>"}]', - 'title' => 'ListUsers', - 'summary' => 'Queries the information about all RAM users.', - 'requestParamsDescription' => ' ', + 'title' => 'ChangePassword', + 'description' => '> This operation is available only for RAM users. Before you call this operation, make sure that `AllowUserToChangePassword` in [SetSecurityPreference](~~43765~~) is set to `True`. The value True indicates that RAM users can manage their passwords.', + 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'CreateLoginProfile' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangePassword'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:ChangePassword', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + ], + 'ClearAccountAlias' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'create', - ], - 'parameters' => [ - [ - 'name' => 'UserName', - 'in' => 'query', + 'systemTags' => ['operationType' => 'update', 'tenantRelevance' => 'publicInformation'], + 'parameters' => [], + 'responses' => [ + 200 => [ 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', + 'type' => 'object', + 'properties' => [ + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], + ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], + ], + 'title' => 'ClearAccountAlias', + 'summary' => 'Deletes the alias of an Alibaba Cloud account.', + 'requestParamsDescription' => ' ', + 'responseParamsDescription' => ' ', + 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ClearAccountAlias'], + ], + ], + 'ramActions' => [ [ - 'name' => 'Password', - 'in' => 'query', - 'schema' => [ - 'description' => 'The logon password of the RAM user. The password must meet the password strength requirements. For more information, see [GetPasswordPolicy](~~2337691~~).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'mypassword', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:ClearAccountAlias', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], ], ], + ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + ], + 'CreateAccessKey' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], + 'security' => [ [ - 'name' => 'PasswordResetRequired', - 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether the RAM user has to change the password upon logon. Default value: `false`.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'false', - ], + 'AK' => [], ], + ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'create'], + 'parameters' => [ [ - 'name' => 'MFABindRequired', + 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether the RAM user must bind a multi-factor authentication (MFA) device upon the next logon. Default value: `false`.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'false', - ], + 'schema' => ['description' => 'The name of the RAM user. If a RAM user calls this operation and does not specify this parameter, an AccessKey pair is created for the RAM user.', 'type' => 'string', 'required' => false, 'example' => 'zhangq****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], - 'LoginProfile' => [ - 'description' => 'The logon configurations of the RAM user.'."\n", + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], + 'AccessKey' => [ + 'description' => 'The information about the AccessKey pair.', 'type' => 'object', 'properties' => [ - 'PasswordResetRequired' => [ - 'description' => 'Indicates whether the RAM user must change the password upon logon.'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], - 'CreateDate' => [ - 'description' => 'The creation time.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'UserName' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'zhangq****', - ], - 'MFABindRequired' => [ - 'description' => 'Indicates whether an MFA device must be bound to the RAM user.'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], + 'Status' => ['description' => 'The status of the AccessKey pair. Valid values: Active and Inactive.', 'type' => 'string', 'example' => 'Active', 'title' => ''], + 'AccessKeySecret' => ['description' => 'The AccessKey secret.', 'type' => 'string', 'example' => 'PupkTg8jdmau1cXxYacgE736PJ****', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the AccessKey pair was created.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'AccessKeyId' => ['description' => 'The AccessKey ID.', 'type' => 'string', 'example' => '0wNEpMMlzy7s****', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"LoginProfile\\": {\\n \\"PasswordResetRequired\\": false,\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"zhangq****\\",\\n \\"MFABindRequired\\": false\\n }\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"LoginProfile\\": {\\n \\"UserName\\": \\"zhangqiang\\",\\n \\"PasswordResetRequired\\": true,\\n \\"MFABindRequired\\": true,\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n<LoginProfile>\\n <UserName>zhangq****</UserName>\\n <PasswordResetRequired>true</PasswordResetRequired>\\n <MFABindRequired>true</MFABindRequired>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n</LoginProfile>","errorExample":"<CreateLoginProfile>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <LoginProfile>\\n <UserName>zhangqiang</UserName>\\n <PasswordResetRequired>true</PasswordResetRequired>\\n <MFABindRequired>true</MFABindRequired>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n </LoginProfile>\\n</CreateLoginProfile>"}]', - 'title' => 'CreateLoginProfile', - 'summary' => 'Enables console logon for a Resource Access Management (RAM) user.', + 'title' => 'CreateAccessKey', + 'summary' => 'Creates an AccessKey pair for a Resource Access Management (RAM) user.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'GetLoginProfile' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAccessKey'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateAccessKey', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"AccessKey\\": {\\n \\"Status\\": \\"Active\\",\\n \\"AccessKeySecret\\": \\"PupkTg8jdmau1cXxYacgE736PJ****\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"AccessKeyId\\": \\"0wNEpMMlzy7s****\\"\\n }\\n}","type":"json"}]', + ], + 'CreateGroup' => [ + 'summary' => 'Creates a RAM user group.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ - 'name' => 'UserName', + 'name' => 'GroupName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', - ], + 'schema' => ['description' => 'The name of the user group.'."\n" + ."\n" + .'The name must be 1 to 64 characters in length and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Dev-Team', 'title' => ''], + ], + [ + 'name' => 'Comments', + 'in' => 'query', + 'schema' => ['description' => 'The description.'."\n" + ."\n" + .'The value can be up to 128 characters in length.', 'type' => 'string', 'example' => 'Development team', 'required' => false, 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], - 'LoginProfile' => [ - 'description' => 'The logon configurations of the RAM user.'."\n", + 'Group' => [ + 'description' => 'The information about the group.', 'type' => 'object', 'properties' => [ - 'PasswordResetRequired' => [ - 'description' => 'Indicates whether the RAM user must change the password upon logon.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'CreateDate' => [ - 'description' => 'The creation time.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'UserName' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'zhangq****', - ], - 'MFABindRequired' => [ - 'description' => 'Indicates whether a multi-factor authentication (MFA) device must be bound to the RAM user.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], + 'GroupId' => ['description' => 'The ID of the user group.', 'type' => 'string', 'example' => 'g-FpMEHiMysofp****', 'title' => ''], + 'GroupName' => ['description' => 'The name of the user group.', 'type' => 'string', 'example' => 'Dev-Team', 'title' => ''], + 'Comments' => ['description' => 'The description.', 'type' => 'string', 'example' => 'Development team', 'title' => ''], + 'CreateDate' => ['description' => 'The creation time.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], ], + 'title' => '', + 'example' => '', ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'D3F0679E-9757-95DB-AF2D-04D5188C69C5', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"LoginProfile\\": {\\n \\"PasswordResetRequired\\": true,\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"zhangq****\\",\\n \\"MFABindRequired\\": true\\n }\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"LoginProfile\\": {\\n \\"UserName\\": \\"zhangqiang\\",\\n \\"PasswordResetRequired\\": true,\\n \\"MFABindRequired\\": true,\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n<LoginProfile>\\n <UserName>zhangq****</UserName>\\n <PasswordResetRequired>true</PasswordResetRequired>\\n <MFABindRequired>true</MFABindRequired>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n</LoginProfile>","errorExample":"<GetLoginProfile>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <LoginProfile>\\n <UserName>zhangqiang</UserName>\\n <PasswordResetRequired>true</PasswordResetRequired>\\n <MFABindRequired>true</MFABindRequired>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n </LoginProfile>\\n</GetLoginProfile>"}]', - 'title' => 'GetLoginProfile', - 'summary' => 'Queries the logon configurations of a Resource Access Management (RAM) user.', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Group\\": {\\n \\"GroupId\\": \\"g-FpMEHiMysofp****\\",\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"Development team\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n \\"RequestId\\": \\"D3F0679E-9757-95DB-AF2D-04D5188C69C5\\"\\n}","type":"json"}]', + 'title' => 'CreateGroup', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'UpdateLoginProfile' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateGroup'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/*'], + ], + ], + ], ], + 'translator' => 'manual', + ], + 'CreateLoginProfile' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], + 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', - ], + 'schema' => ['description' => 'The name of the RAM user.'."\n", 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], ], [ 'name' => 'Password', 'in' => 'query', - 'schema' => [ - 'description' => 'The logon password of the RAM user. The password must meet the password strength requirements.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'mypassword', - ], + 'schema' => ['description' => 'The logon password of the RAM user. The password must meet the password strength requirements. For more information, see [GetPasswordPolicy](~~2337691~~).'."\n", 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'mypassword', 'title' => ''], ], [ 'name' => 'PasswordResetRequired', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether the RAM user has to change the password upon logon.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'true', - ], + 'schema' => ['description' => 'Specifies whether the RAM user has to change the password upon logon. Default value: `false`.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'MFABindRequired', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether a multi-factor authentication (MFA) device must be bound to the RAM user upon logon.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'true', - ], + 'schema' => ['description' => 'Specifies whether the RAM user must bind a multi-factor authentication (MFA) device upon the next logon. Default value: `false`.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], ], 'responses' => [ @@ -1037,332 +727,627 @@ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', + 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], + 'LoginProfile' => [ + 'description' => 'The logon configurations of the RAM user.'."\n", + 'type' => 'object', + 'properties' => [ + 'PasswordResetRequired' => ['description' => 'Indicates whether the RAM user must change the password upon logon.'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], + 'CreateDate' => ['description' => 'The creation time.'."\n", 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'UserName' => ['description' => 'The name of the RAM user.'."\n", 'type' => 'string', 'example' => 'zhangq****', 'title' => ''], + 'MFABindRequired' => ['description' => 'Indicates whether an MFA device must be bound to the RAM user.'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>","errorExample":"<UpdateLoginProfile>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</UpdateLoginProfile>"}]', - 'title' => 'UpdateLoginProfile', - 'summary' => 'Modifies the logon configurations of a Resource Access Management (RAM) user.', + 'title' => 'CreateLoginProfile', + 'summary' => 'Enables console logon for a Resource Access Management (RAM) user.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'DeleteLoginProfile' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateLoginProfile'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateLoginProfile', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], ], + 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"LoginProfile\\": {\\n \\"PasswordResetRequired\\": false,\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"zhangq****\\",\\n \\"MFABindRequired\\": false\\n }\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"LoginProfile\\": {\\n \\"UserName\\": \\"zhangqiang\\",\\n \\"PasswordResetRequired\\": true,\\n \\"MFABindRequired\\": true,\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n<LoginProfile>\\n <UserName>zhangq****</UserName>\\n <PasswordResetRequired>true</PasswordResetRequired>\\n <MFABindRequired>true</MFABindRequired>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n</LoginProfile>","errorExample":"<CreateLoginProfile>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <LoginProfile>\\n <UserName>zhangqiang</UserName>\\n <PasswordResetRequired>true</PasswordResetRequired>\\n <MFABindRequired>true</MFABindRequired>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n </LoginProfile>\\n</CreateLoginProfile>"}]', + ], + 'CreatePolicy' => [ + 'summary' => 'Creates a custom policy.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'delete', - ], + 'systemTags' => ['operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ - 'name' => 'UserName', + 'name' => 'PolicyName', 'in' => 'query', + 'schema' => ['description' => 'The name of the policy.'."\n" + ."\n" + .'The name must be 1 to 128 characters in length and can contain letters, digits, and hyphens (-).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'View-ECS-instances-in-a-specific-region', 'title' => ''], + ], + [ + 'name' => 'Description', + 'in' => 'query', + 'schema' => ['description' => 'The description of the policy.'."\n" + ."\n" + .'The description must be 1 to 1,024 characters in length.', 'type' => 'string', 'example' => 'View ECS instances in a specified region', 'required' => false, 'title' => ''], + ], + [ + 'name' => 'PolicyDocument', + 'in' => 'query', + 'schema' => ['description' => 'The document of the policy.'."\n" + ."\n" + .'The document must be 1 to 6,144 characters in length.'."\n" + ."\n" + .'For more information about policy elements and sample policies, see [Policy elements](~~93738~~) and [Overview of sample policies](~~210969~~).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => '{"Statement": [{"Effect": "Allow","Action": "ecs:Describe*","Resource": "acs:ecs:cn-qingdao:*:instance/*"}],"Version": "1"}', 'title' => ''], + ], + [ + 'name' => 'Tag', + 'in' => 'query', + 'style' => 'json', 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', + 'description' => 'The tags.', + 'type' => 'array', + 'items' => [ + 'description' => 'The tag.', + 'type' => 'object', + 'properties' => [ + 'Key' => ['description' => 'The key of the tag.', 'type' => 'string', 'docRequired' => false, 'required' => false, 'example' => 'owner', 'title' => ''], + 'Value' => ['description' => 'The value of the tag.', 'type' => 'string', 'docRequired' => false, 'required' => false, 'example' => 'alice', 'title' => ''], + ], + 'required' => false, + 'docRequired' => false, + 'title' => '', + 'example' => '', + ], 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', + 'docRequired' => false, + 'title' => '', + 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '1C488B66-B819-4D14-8711-C4EAAA13AC01', + 'Policy' => [ + 'description' => 'The information about the policy.', + 'type' => 'object', + 'properties' => [ + 'DefaultVersion' => ['description' => 'The version of the policy. Default value: v1.', 'type' => 'string', 'example' => 'v1', 'title' => ''], + 'Description' => ['description' => 'The description of the policy.', 'type' => 'string', 'example' => 'View ECS instances in a specified region', 'title' => ''], + 'PolicyName' => ['description' => 'The name of the policy.', 'type' => 'string', 'example' => 'View-ECS-instances-in-a-specific-region', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the policy was created.', 'type' => 'string', 'example' => '2021-10-13T02:46:57Z', 'title' => ''], + 'PolicyType' => ['description' => 'The type of the policy. Valid values:'."\n" + ."\n" + .'- Custom'."\n" + ."\n" + .'- System', 'type' => 'string', 'example' => 'Custom', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'BA34C54A-C2B1-5A65-B6B0-B5842C1DB4DA', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"1C488B66-B819-4D14-8711-C4EAAA13AC01\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"1C488B66-B819-4D14-8711-C4EAAA13AC01\\"\\n}"},{"type":"xml","example":"<RequestId>1C488B66-B819-4D14-8711-C4EAAA13AC01</RequestId>","errorExample":"<DeleteLoginProfileResponse>\\n <RequestId>1C488B66-B819-4D14-8711-C4EAAA13AC01</RequestId>\\n</DeleteLoginProfileResponse>"}]', - 'title' => 'DeleteLoginProfile', - 'summary' => 'Disables console logon for a Resource Access Management (RAM) user.', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Policy\\": {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"Description\\": \\"View ECS instances in a specified region\\",\\n \\"PolicyName\\": \\"View-ECS-instances-in-a-specific-region\\",\\n \\"CreateDate\\": \\"2021-10-13T02:46:57Z\\",\\n \\"PolicyType\\": \\"Custom\\"\\n },\\n \\"RequestId\\": \\"BA34C54A-C2B1-5A65-B6B0-B5842C1DB4DA\\"\\n}","type":"json"}]', + 'title' => 'CreatePolicy', + 'description' => 'For more information about policies, see [Policy overview](~~93732~~).'."\n" + ."\n" + .'This topic provides an example on how to create a custom policy to query Elastic Compute Service (ECS) instances in a specific region.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'ChangePassword' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreatePolicy'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreatePolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], ], + 'translator' => 'manual', + ], + 'CreatePolicyVersion' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - 'abilityTreeCode' => '7517', - 'abilityTreeNodes' => [ - 'FEATUREram8R8C7X', - ], - ], + 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ - 'name' => 'OldPassword', + 'name' => 'PolicyName', 'in' => 'query', - 'schema' => [ - 'description' => 'The old password that is used to log on to the console.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => '12****', - ], + 'schema' => ['description' => 'The name of the policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], ], [ - 'name' => 'NewPassword', + 'name' => 'PolicyDocument', 'in' => 'query', - 'schema' => [ - 'description' => 'The new password that is used to log on to the console.'."\n" - ."\n" - .'The password must meet the complexity requirements. For more information, see [SetPasswordPolicy](~~28739~~).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'aw$2****', - ], + 'schema' => ['description' => 'The document of the policy. The document can be up to 6,144 bytes in length.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => '{"Statement":[{"Action":["oss:*"],"Effect":"Allow","Resource":["acs:oss:*:*:*"]}],"Version":"1"}', 'title' => ''], + ], + [ + 'name' => 'SetAsDefault', + 'in' => 'query', + 'schema' => ['description' => 'Specifies whether to set this policy as the default policy. Default value: `false`.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], + ], + [ + 'name' => 'RotateStrategy', + 'in' => 'query', + 'schema' => ['description' => 'The rotation strategy of the policy. The rotation strategy can be used to delete an early policy version.'."\n" + ."\n" + .'Valid values:'."\n" + ."\n" + .'- `None`: disables the rotation strategy.'."\n" + ."\n" + .'- `DeleteOldestNonDefaultVersionWhenLimitExceeded`: deletes the earliest non-active version if the number of versions exceeds the limit.'."\n" + ."\n" + .'Default value: `None`.', 'type' => 'string', 'required' => false, 'example' => 'None', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', + 'PolicyVersion' => [ + 'description' => 'The information about the policy version.', + 'type' => 'object', + 'properties' => [ + 'IsDefaultVersion' => ['description' => 'Indicates whether the policy version is the default version.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], + 'PolicyDocument' => ['description' => 'The document of the policy.', 'type' => 'string', 'example' => '{ "Statement": [{ "Action": ["oss:*"], "Effect": "Allow", "Resource": ["acs:oss:*:*:*"]}], "Version": "1"}', 'title' => ''], + 'VersionId' => ['description' => 'The ID of the policy version.', 'type' => 'string', 'example' => 'v3', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the policy version was created.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '9B34724D-54B0-4A51-B34D-4512372FE1BE', 'title' => ''], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}"},{"type":"xml","example":"<ChangePassword>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</ChangePassword>","errorExample":"<ChangePassword>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</ChangePassword>"}]', - 'title' => 'ChangePassword', - 'summary' => 'Changes the password that is used to log on to the console for a Resource Access Management (RAM) user.', - 'description' => '> This operation is available only for RAM users. Before you call this operation, make sure that `AllowUserToChangePassword` in [SetSecurityPreference](~~43765~~) is set to `True`. The value True indicates that RAM users can manage their passwords.'."\n", - 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).'."\n", + 'title' => 'CreatePolicyVersion', + 'summary' => 'Creates a version for a policy.', + 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'CreateAccessKey' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreatePolicyVersion'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreatePolicyVersion', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"PolicyVersion\\": {\\n \\"IsDefaultVersion\\": false,\\n \\"PolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [{ \\\\\\"Action\\\\\\": [\\\\\\"oss:*\\\\\\"], \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Resource\\\\\\": [\\\\\\"acs:oss:*:*:*\\\\\\"]}], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\"}\\",\\n \\"VersionId\\": \\"v3\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\"\\n}","type":"json"}]', + ], + 'CreateRole' => [ + 'summary' => 'Use the CreateRole operation to create a RAM role.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'create', - ], + 'systemTags' => ['operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ - 'name' => 'UserName', + 'name' => 'RoleName', + 'in' => 'query', + 'schema' => ['description' => 'The name of the RAM role.'."\n" + ."\n" + .'The name must be 1 to 64 characters in length, and can contain letters, digits, periods (.), and hyphens (-).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'ECSAdmin', 'title' => ''], + ], + [ + 'name' => 'Description', + 'in' => 'query', + 'schema' => ['description' => 'The description of the RAM role.'."\n" + ."\n" + .'The description must be 1 to 1,024 characters in length.', 'type' => 'string', 'example' => 'ECS management role', 'required' => false, 'title' => ''], + ], + [ + 'name' => 'AssumeRolePolicyDocument', 'in' => 'query', + 'schema' => ['description' => 'The trust policy that specifies one or more trusted entities allowed to assume the RAM role. Trusted entities can be Alibaba Cloud accounts, Alibaba Cloud services, or identity providers (IdPs). '."\n" + ."\n" + .'> RAM users cannot assume RAM roles whose trusted entity is an Alibaba Cloud service.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => '{"Statement":[{"Action":"sts:AssumeRole","Effect":"Allow","Principal":{"RAM":"acs:ram::123456789012****:root"}}],"Version":"1"}', 'title' => ''], + ], + [ + 'name' => 'MaxSessionDuration', + 'in' => 'query', + 'schema' => ['description' => 'The maximum session duration of the RAM role. Valid values: 3600 to 43200.'."\n" + ."\n" + .'Unit: seconds.'."\n" + ."\n" + .'Default value: 3600.'."\n" + ."\n" + .'If this parameter is not specified or is left empty, the default value is used.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '3600', 'title' => ''], + ], + [ + 'name' => 'Tag', + 'in' => 'query', + 'style' => 'json', 'schema' => [ - 'description' => 'The name of the RAM user. If a RAM user calls this operation and does not specify this parameter, an AccessKey pair is created for the RAM user.'."\n", - 'type' => 'string', + 'description' => 'The tags.', + 'type' => 'array', + 'items' => [ + 'description' => 'The tags.', + 'type' => 'object', + 'properties' => [ + 'Key' => ['description' => 'The key of the tag.', 'type' => 'string', 'docRequired' => false, 'required' => false, 'example' => 'k1', 'title' => ''], + 'Value' => ['description' => 'The value of the tag.', 'type' => 'string', 'docRequired' => false, 'required' => false, 'example' => 'v1', 'title' => ''], + ], + 'required' => false, + 'docRequired' => false, + 'title' => '', + 'example' => '', + ], 'required' => false, - 'example' => 'zhangq****', + 'docRequired' => false, + 'title' => '', + 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'Response', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], - 'AccessKey' => [ - 'description' => 'The information about the AccessKey pair.'."\n", + 'Role' => [ + 'description' => 'Information about the RAM role.', 'type' => 'object', 'properties' => [ - 'Status' => [ - 'description' => 'The status of the AccessKey pair. Valid values: Active and Inactive.'."\n", - 'type' => 'string', - 'example' => 'Active', - ], - 'AccessKeySecret' => [ - 'description' => 'The AccessKey secret.'."\n", - 'type' => 'string', - 'example' => 'PupkTg8jdmau1cXxYacgE736PJ****', - ], - 'CreateDate' => [ - 'description' => 'The time when the AccessKey pair was created.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'AccessKeyId' => [ - 'description' => 'The AccessKey ID.'."\n", - 'type' => 'string', - 'example' => '0wNEpMMlzy7s****', - ], + 'AssumeRolePolicyDocument' => ['description' => 'The trust policy of the RAM role.', 'type' => 'string', 'example' => '{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::123456789012****:root" } } ], "Version": "1" }', 'title' => ''], + 'Description' => ['description' => 'The description of the RAM role.', 'type' => 'string', 'example' => 'ECS management role', 'title' => ''], + 'MaxSessionDuration' => ['description' => 'The maximum session duration of the RAM role.', 'type' => 'integer', 'format' => 'int64', 'example' => '3600', 'title' => ''], + 'RoleName' => ['description' => 'The name of the RAM role.', 'type' => 'string', 'example' => 'ECSAdmin', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the RAM role was created.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'RoleId' => ['description' => 'The ID of the RAM role.', 'type' => 'string', 'example' => '901234567890****', 'title' => ''], + 'Arn' => ['description' => 'The Alibaba Cloud Resource Name (ARN) of the RAM role.', 'type' => 'string', 'example' => 'acs:ram::123456789012****:role/ECSAdmin', 'title' => ''], ], + 'title' => '', + 'example' => '', ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"AccessKey\\": {\\n \\"Status\\": \\"Active\\",\\n \\"AccessKeySecret\\": \\"PupkTg8jdmau1cXxYacgE736PJ****\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"AccessKeyId\\": \\"0wNEpMMlzy7s****\\"\\n }\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"AccessKey\\": {\\n \\"AccessKeyId\\": \\"0wNEpMMlzy7szvai\\",\\n \\"AccessKeySecret\\": \\"PupkTg8jdmau1cXxYacgE736PJj4cA\\",\\n \\"Status\\": \\"Active\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n<AccessKey>\\n <AccessKeyId>0wNEpMMlzy7s****</AccessKeyId>\\n <AccessKeySecret>PupkTg8jdmau1cXxYacgE736PJ****</AccessKeySecret>\\n <Status>Active</Status>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n</AccessKey>","errorExample":"<CreateAccessKeyResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <AccessKey>\\n <AccessKeyId>0wNEpMMlzy7szvai</AccessKeyId>\\n <AccessKeySecret>PupkTg8jdmau1cXxYacgE736PJj4cA</AccessKeySecret>\\n <Status>Active</Status>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n </AccessKey>\\n</CreateAccessKeyResponse>"}]', - 'title' => 'CreateAccessKey', - 'summary' => 'Creates an AccessKey pair for a Resource Access Management (RAM) user.', - 'requestParamsDescription' => ' ', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Role\\": {\\n \\"AssumeRolePolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [ { \\\\\\"Action\\\\\\": \\\\\\"sts:AssumeRole\\\\\\", \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Principal\\\\\\": { \\\\\\"RAM\\\\\\": \\\\\\"acs:ram::123456789012****:root\\\\\\" } } ], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\" }\\",\\n \\"Description\\": \\"ECS management role\\",\\n \\"MaxSessionDuration\\": 3600,\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"RoleId\\": \\"901234567890****\\",\\n \\"Arn\\": \\"acs:ram::123456789012****:role/ECSAdmin\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + 'title' => '**CreateRole**', + 'description' => '### Usage notes'."\n" + ."\n" + .'For more information about RAM roles, see [](t23744.xdita#).', + 'requestParamsDescription' => '**Sample values for AssumeRolePolicyDocument**'."\n" + ."\n" + .'- The following policy allows the RAM role to be assumed by all RAM users of the Alibaba Cloud account whose ID is `123456789012****`.'."\n" + ."\n" + .'```'."\n" + .'{'."\n" + .' "Statement": [{'."\n" + .' "Action": "sts:AssumeRole",'."\n" + .' "Effect": "Allow",'."\n" + .' "Principal": {'."\n" + .' "RAM": ['."\n" + .' "acs:ram::123456789012****:root"'."\n" + .' ]'."\n" + .' }'."\n" + .' }],'."\n" + .' "Version": "1"'."\n" + .'}'."\n" + .'```'."\n" + ."\n" + .'- The following policy allows the RAM role to be assumed by the RAM user named `testuser` of the trusted Alibaba Cloud account whose ID is `123456789012****`.'."\n" + ."\n" + .'> Before you create the role, make sure that you have created a RAM user named `testuser` whose logon name is `testuser@123456789012****.onaliyun.com`.'."\n" + ."\n" + .'```'."\n" + .'{'."\n" + .' "Statement": [{'."\n" + .' "Action": "sts:AssumeRole",'."\n" + .' "Effect": "Allow",'."\n" + .' "Principal": {'."\n" + .' "RAM": ['."\n" + .' "acs:ram::123456789012****:user/testuser"'."\n" + .' ]'."\n" + .' }'."\n" + .' }],'."\n" + .' "Version": "1"'."\n" + .'}'."\n" + .'```'."\n" + ."\n" + .'- The following policy allows the RAM role to be assumed by the Elastic Compute Service (ECS) service of the current Alibaba Cloud account.'."\n" + ."\n" + .'```'."\n" + .'{'."\n" + .' "Statement": [{'."\n" + .' "Action": "sts:AssumeRole",'."\n" + .' "Effect": "Allow",'."\n" + .' "Principal": {'."\n" + .' "Service": ['."\n" + .' "ecs.aliyuncs.com"'."\n" + .' ]'."\n" + .' }'."\n" + .' }],'."\n" + .' "Version": "1"'."\n" + .'}'."\n" + .'```'."\n" + ."\n" + .'- The following policy allows the RAM role to be assumed by the Security Assertion Markup Language (SAML) IdP named `testprovider` of the current trusted Alibaba Cloud account whose ID is `123456789012****`.'."\n" + ."\n" + .'> Before you create the role, make sure that you have created a SAML IdP named `testprovider`.'."\n" + ."\n" + .'```'."\n" + .'{'."\n" + .' "Statement": [{'."\n" + .' "Action": "sts:AssumeRole",'."\n" + .' "Effect": "Allow",'."\n" + .' "Principal": {'."\n" + .' "Federated": ['."\n" + .' "acs:ram::123456789012****:saml-provider/testprovider"'."\n" + .' ]'."\n" + .' },'."\n" + .' "Condition": {'."\n" + .' "StringEquals": {'."\n" + .' "saml:recipient": "https://signin.aliyun.com/saml-role/sso"'."\n" + .' }'."\n" + .' }'."\n" + .' }],'."\n" + .' "Version": "1"'."\n" + .'}'."\n" + .'```'."\n" + ."\n" + .'- The following policy allows the RAM role to be assumed by the OpenID Connect (OIDC) IdP named `TestOIDCProvider` of the current trusted Alibaba Cloud account whose ID is `123456789012****`.'."\n" + ."\n" + .'> Before you create the role, make sure that you have created an OIDC IdP named `TestOIDCProvider`.'."\n" + ."\n" + .'```'."\n" + .'{'."\n" + .' "Statement": [{'."\n" + .' "Action": "sts:AssumeRole",'."\n" + .' "Effect": "Allow",'."\n" + .' "Principal": {'."\n" + .' "Federated": ['."\n" + .' "acs:ram::123456789012****:oidc-provider/TestOIDCProvider"'."\n" + .' ]'."\n" + .' },'."\n" + .' "Condition": {'."\n" + .' "StringEquals": {'."\n" + .' "oidc:aud": ['."\n" + .' "496271242565057****"'."\n" + .' ],'."\n" + .' "oidc:iss": "https://dev-xxxxxx.okta.com",'."\n" + .' "oidc:sub": "KryrkIdjylZb7agUgCEf****"'."\n" + .' }'."\n" + .' }'."\n" + .' }],'."\n" + .' "Version": "1"'."\n" + .'}'."\n" + .'```', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'UpdateAccessKey' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateRole'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:TrustedPrincipalTypes', 'validationType' => 'always'], + ['conditionKey' => 'ram:ServiceNames', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ], + ], + ], ], + 'translator' => 'manual', + ], + 'CreateUser' => [ + 'summary' => 'Creates a Resource Access Management (RAM) user.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], + 'systemTags' => ['operationType' => 'create', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'zhangq****', - ], + 'schema' => ['description' => 'The name of the RAM user.'."\n" + ."\n" + .'It must be 1 to 64 characters in length, and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'alice', 'title' => ''], ], [ - 'name' => 'UserAccessKeyId', + 'name' => 'DisplayName', 'in' => 'query', - 'schema' => [ - 'description' => 'The AccessKey ID in the AccessKey pair whose status you want to change.``'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => '0wNEpMMlzy7s****', - ], + 'schema' => ['description' => 'The display name of the RAM user.'."\n" + ."\n" + .'It must be 1 to 128 characters in length.', 'type' => 'string', 'required' => false, 'example' => 'alice', 'title' => ''], ], [ - 'name' => 'Status', + 'name' => 'MobilePhone', 'in' => 'query', - 'schema' => [ - 'description' => 'The status of the AccessKey pair. Valid values: `Active` and `Inactive`.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Inactive', - ], + 'schema' => ['description' => 'The mobile phone number of the RAM user.'."\n" + ."\n" + .'Format: \\<Country code>-\\<Phone number>.'."\n" + ."\n" + .'> This parameter applies only to the China site (aliyun.com).', 'type' => 'string', 'required' => false, 'example' => '86-1868888****', 'title' => ''], + ], + [ + 'name' => 'Email', + 'in' => 'query', + 'schema' => ['description' => 'The email address of the RAM user.'."\n" + ."\n" + .'> This parameter applies only to the China site (aliyun.com).', 'type' => 'string', 'required' => false, 'example' => 'alice@example.com', 'title' => ''], + ], + [ + 'name' => 'Comments', + 'in' => 'query', + 'schema' => ['description' => 'The description of the RAM user.'."\n" + ."\n" + .'It must be 1 to 128 characters in length.', 'type' => 'string', 'required' => false, 'example' => 'This is a cloud computing engineer.', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', + 'User' => [ + 'description' => 'The information about the RAM user.', + 'type' => 'object', + 'properties' => [ + 'DisplayName' => ['description' => 'The display name of the RAM user.', 'type' => 'string', 'example' => 'alice', 'title' => ''], + 'Email' => ['description' => 'The email address of the RAM user.'."\n" + ."\n" + .'> This parameter applies only to the China site (aliyun.com).', 'type' => 'string', 'example' => 'alice@example.com', 'title' => ''], + 'MobilePhone' => ['description' => 'The mobile phone number of the RAM user.'."\n" + ."\n" + .'> This parameter applies only to the China site (aliyun.com).', 'type' => 'string', 'example' => '86-1868888****', 'title' => ''], + 'UserId' => ['description' => 'The ID of the RAM user.', 'type' => 'string', 'example' => '122748924538****', 'title' => ''], + 'Comments' => ['description' => 'The description of the RAM user.', 'type' => 'string', 'example' => 'This is a cloud computing engineer.', 'title' => ''], + 'CreateDate' => ['description' => 'The point in time when the RAM user was created. It is displayed in UTC.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'UserName' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'example' => 'alice', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>","errorExample":"<UpdateAccessKeyResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</UpdateAccessKeyResponse>"}]', - 'title' => 'UpdateAccessKey', - 'summary' => 'Changes the status of an AccessKey pair that belongs to a Resource Access Management (RAM) user.', - 'requestParamsDescription' => ' ', + 'title' => 'CreateUser', + 'description' => 'This topic provides an example on how to create a RAM user named `alice`.', + 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).', 'responseParamsDescription' => ' ', - 'extraInfo' => ' ', - ], - 'DeleteAccessKey' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', + 'extraInfo' => "\n" + .' 成功创建RAM用户后,您可以进行以下的后续操作:'."\n" + ."\n" + .'- 调用CreateLoginProfile接口为RAM用户启用Web控制台登录,可以配置登录密码等信息。更多信息,请参见[CreateLoginProfile](~~28685~~)。'."\n" + .'- 调用CreateAccessKey接口为RAM用户创建访问密钥。更多信息,请参见[CreateAccessKey](~~28689~~)。'."\n" + ."\n\n", + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateUser'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/*'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"User\\": {\\n \\"DisplayName\\": \\"alice\\",\\n \\"Email\\": \\"alice@example.com\\",\\n \\"MobilePhone\\": \\"86-1868888****\\",\\n \\"UserId\\": \\"122748924538****\\",\\n \\"Comments\\": \\"This is a cloud computing engineer.\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"alice\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + ], + 'CreateVirtualMFADevice' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'delete', - ], + 'systemTags' => ['operationType' => 'create'], 'parameters' => [ [ - 'name' => 'UserName', + 'name' => 'VirtualMFADeviceName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'zhangq****', - ], - ], - [ - 'name' => 'UserAccessKeyId', - 'in' => 'query', - 'schema' => [ - 'description' => 'The AccessKey ID in the AccessKey pair that you want to delete.``'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => '0wNEpMMlzy7s****', - ], + 'schema' => ['description' => 'The name of the MFA device.'."\n" + ."\n" + .'The name must be 1 to 64 characters in length, and can contain letters, digits, periods (.), and hyphens (-).'."\n", 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'device001', 'title' => ''], ], ], 'responses' => [ @@ -1371,278 +1356,376 @@ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', + 'VirtualMFADevice' => [ + 'description' => 'The information about the MFA device.'."\n", + 'type' => 'object', + 'properties' => [ + 'SerialNumber' => ['description' => 'The serial number of the MFA device.'."\n", 'type' => 'string', 'example' => 'acs:ram::123456789012****:mfa/device001', 'title' => ''], + 'QRCodePNG' => ['description' => 'The Base64-encoded QR code, in the PNG format.'."\n", 'type' => 'string', 'example' => 'YXNkZmFzZDlmeW5hc2Q5OGZoODd4bXJmcThhaGU5aSBmYXNkZiBzYWRmIGFGIDRxd2VjIGEgdHEz****', 'title' => ''], + 'Base32StringSeed' => ['description' => 'The key of the MFA device.'."\n", 'type' => 'string', 'example' => 'DSF98HAD982KJA9SDFNAS9D8FU839B8ADHBGS****', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], + 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>","errorExample":"<DeleteAccessKeyResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</DeleteAccessKeyResponse>"}]', - 'title' => 'DeleteAccessKey', - 'summary' => 'Deletes an AccessKey pair of a Resource Access Management (RAM) user.', + 'title' => 'CreateVirtualMFADevice', + 'summary' => 'Creates a multi-factor authentication (MFA) device.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'ListAccessKeys' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateVirtualMFADevice'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateVirtualMFADevice', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'MFADevice', 'arn' => 'acs:ram:*:{#accountId}:mfa/*'], + ], + ], + ], ], + 'responseDemo' => '[{"type":"json","example":"{\\n \\"VirtualMFADevice\\": {\\n \\"SerialNumber\\": \\"acs:ram::123456789012****:mfa/device001\\",\\n \\"QRCodePNG\\": \\"YXNkZmFzZDlmeW5hc2Q5OGZoODd4bXJmcThhaGU5aSBmYXNkZiBzYWRmIGFGIDRxd2VjIGEgdHEz****\\",\\n \\"Base32StringSeed\\": \\"DSF98HAD982KJA9SDFNAS9D8FU839B8ADHBGS****\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"VirtualMFADevice\\": {\\n \\"SerialNumber\\": \\"acs:ram::1234567890123:mfa/device001\\",\\n \\"Base32StringSeed\\": \\"DSF98HAD982KJA9SDFNAS9D8FU839B8ADHBGSD7A8\\",\\n \\"QRCodePNG\\": \\"YXNkZmFzZDlmeW5hc2Q5OGZoODd4bXJmcThhaGU5aSBmYXNkZiBzYWRmIGFGIDRxd2VjIGEgdHEzdCAg\\"\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\n<CreateVirtualMFADeviceResponse>\\n\\t<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n\\t<VirtualMFADevice>\\n\\t\\t<SerialNumber>acs:ram::123456789012****:mfa/device001</SerialNumber>\\n\\t\\t<Base32StringSeed>DSF98HAD982KJA9SDFNAS9D8FU839B8ADHBGS****</Base32StringSeed>\\n\\t\\t<QRCodePNG>YXNkZmFzZDlmeW5hc2Q5OGZoODd4bXJmcThhaGU5aSBmYXNkZiBzYWRmIGFGIDRxd2VjIGEgdHEz****</QRCodePNG>\\n\\t</VirtualMFADevice>\\n</CreateVirtualMFADeviceResponse>","errorExample":"<CreateVirtualMFADeviceResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <VirtualMFADevice>\\n <SerialNumber>acs:ram::1234567890123:mfa/device001</VirtualMFASerialNumber>\\n <Base32StringSeed>DSF98HAD982KJA9SDFNAS9D8FU839B8ADHBGSD7A8</Base32StringSeed>\\n <QRCodePNG>YXNkZmFzZDlmeW5hc2Q5OGZoODd4bXJmcThhaGU5aSBmYXNkZiBzYWRmIGFGIDRxd2VjIGEgdHEzdCAg</QRCodePNG>\\n </VirtualMFADevice>\\n</CreateVirtualMFADeviceResponse>"}]', + ], + 'DecodeDiagnosticMessage' => [ + 'summary' => 'Decodes the permission diagnostic information from the response body of a request that was denied due to missing RAM permissions.', + 'methods' => ['get', 'post'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'deprecated' => false, + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ - 'name' => 'UserName', + 'name' => 'EncodedDiagnosticMessage', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user. If a RAM user calls this operation and does not specify this parameter, the AccessKey pairs of the RAM user are returned.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'zhangq****', - ], + 'schema' => ['description' => 'The encoded diagnostic message obtained from the `AccessDeniedDetail.EncodedDiagnosticMessage` field in the response body when an API request is denied due to insufficient permissions. Pass this parameter to decode the permission diagnostic information when calling this operation.', 'type' => 'string', 'required' => false, 'example' => 'AQEAAAAAZBgxr0U1MjA1NTM1LUM4BBktMzE5RS1CODgxLUU1QTI0RDNFQTM1****', 'title' => ''], ], ], 'responses' => [ 200 => [ + 'headers' => [], 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'title' => '', + 'description' => 'The response.', 'type' => 'object', 'properties' => [ - 'AccessKeys' => [ + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'title' => '', 'example' => 'D2331703-AADF-5564-BA9B-26CD51A33BA0'], + 'DecodedDiagnosticMessage' => [ + 'description' => 'The decoded diagnostic message.', 'type' => 'object', - 'itemNode' => true, 'properties' => [ - 'AccessKey' => [ - 'description' => 'The AccessKey pairs that belong to the RAM user.'."\n", + 'ExplicitDeny' => [ + 'description' => 'Indicates whether the denial is explicit.', + 'enumValueTitles' => ['true' => 'Shows deny', 'false' => 'Does not show deny'], + 'type' => 'boolean', + 'example' => 'true', + 'title' => '', + ], + 'NoPermissionPolicyType' => [ + 'description' => 'The policy type that caused the permission denial.', + 'enumValueTitles' => ['AssumeRolePolicy' => 'Role trust policy', 'ControlPolicy' => 'Control policies', 'AccountLevelIdentityBasedPolicy' => 'Identity-based policies (account level)', 'ResourceGroupLevelIdentityBasedPolicy' => 'Identity-based policies (resource group level)', 'SessionPolicy' => 'Session policies'], + 'type' => 'string', + 'example' => 'AccountLevelIdentityBasedPolicy', + 'title' => '', + ], + 'AuthAction' => ['description' => 'The action used for authentication in the user request.', 'type' => 'string', 'example' => 'ram:DecodeDiagnosticMessage', 'title' => ''], + 'AuthResource' => ['description' => 'The resource used for authentication in the user request.', 'type' => 'string', 'example' => '*', 'title' => ''], + 'AuthPrincipal' => [ + 'description' => 'The principal used for authentication in the user request.', + 'type' => 'object', + 'properties' => [ + 'AuthPrincipalType' => [ + 'description' => 'The identity type used for authentication in the user request.', + 'enumValueTitles' => ['SubUser' => 'RAM users', 'AssumedRoleUser' => 'RAM roles', 'Federated' => 'SSO federated identity'], + 'type' => 'string', + 'example' => 'SubUser', + 'title' => '', + ], + 'AuthPrincipalOwnerId' => ['description' => 'The Alibaba Cloud account UID of the identity used for authentication in the user request.', 'type' => 'string', 'example' => '196813200012****', 'title' => ''], + 'AuthPrincipalDisplayName' => ['description' => 'The identity identifier used for authentication in the user request, as follows:'."\n" + ."\n" + .'- RAM user: The UID of the RAM user.'."\n" + ."\n" + .'- RAM role: The role name and role session name (for example, RoleName:RoleSessionName).'."\n" + ."\n" + .'- SSO federated identity: The identity provider type and name (for example, saml-provider/AzureAD).', 'type' => 'string', 'example' => '28877424437521****', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'AuthConditions' => [ + 'description' => 'The list of conditions used for authentication in the user request.', 'type' => 'array', 'items' => [ - 'description' => 'The AccessKey pair that belongs to the RAM user.'."\n", + 'description' => 'An authentication condition.', 'type' => 'object', 'properties' => [ - 'Status' => [ - 'description' => 'The status of the AccessKey pair. Valid values: Active and Inactive.'."\n", + 'ConditionKey' => ['description' => 'The key of the authentication condition.', 'type' => 'string', 'example' => 'acs:SourceIp', 'title' => ''], + 'ConditionValues' => [ + 'description' => 'The list of values corresponding to the authentication condition key.', + 'type' => 'array', + 'items' => ['description' => 'A condition value corresponding to the authentication condition key.', 'type' => 'string', 'example' => '172.16.215.218', 'title' => ''], + 'title' => '', + 'example' => '', + ], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', + ], + 'MatchedPolicies' => [ + 'description' => 'The list of policies matched during authentication.', + 'type' => 'array', + 'items' => [ + 'description' => 'A policy matched during authentication.', + 'type' => 'object', + 'properties' => [ + 'Effect' => [ + 'description' => 'The policy effect.', + 'enumValueTitles' => ['Deny' => 'Deny', 'Allow' => 'Allow'], 'type' => 'string', - 'example' => 'Active', + 'example' => 'Deny', + 'title' => '', ], - 'AccessKeyId' => [ - 'description' => 'The AccessKey ID.'."\n", + 'PolicyIdentifier' => ['description' => 'The policy name, as follows:'."\n" + ."\n" + .'- Control policy: The control policy ID.'."\n" + ."\n" + .'- RAM access policy: The access policy name.', 'type' => 'string', 'example' => 'MyPolicyName', 'title' => ''], + 'PolicyType' => [ + 'description' => 'The policy type.', + 'enumValueTitles' => ['Custom' => 'Custom policies', 'System' => 'System policies'], 'type' => 'string', - 'example' => '0wNEpMMlzy7s****', + 'example' => 'Custom', + 'title' => '', ], - 'CreateDate' => [ - 'description' => 'The time when the AccessKey pair was created.'."\n", + 'PolicyVersion' => ['description' => 'The policy version number.'."\n" + ."\n" + .'> Only custom policies have version numbers.', 'type' => 'string', 'example' => 'v1', 'title' => ''], + 'AttachedEntityType' => [ + 'description' => 'The entity type to which the policy is attached.', + 'enumValueTitles' => ['RamUser' => 'RAM users', 'RamRole' => 'RAM roles', 'ResourceDirectoryTarget' => 'Resource directory entity', 'RamGroup' => 'RAM user groups'], + 'type' => 'string', + 'example' => 'RamUser', + 'title' => '', + ], + 'AttachedScope' => [ + 'description' => 'The scope to which the policy is attached.', + 'enumValueTitles' => ['Account' => 'Alibaba Cloud account', 'Folder' => 'Resource directory folders', 'ResourceGroup' => 'Resource groups'], 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', + 'example' => 'Account', + 'title' => '', ], ], + 'title' => '', + 'example' => '', ], + 'title' => '', + 'example' => '', ], ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '4B450CA1-36E8-4AA2-8461-86B42BF4CC4E', + 'title' => '', + 'example' => '', ], ], + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"AccessKeys\\": {\\n \\"AccessKey\\": [\\n {\\n \\"Status\\": \\"Active\\",\\n \\"AccessKeyId\\": \\"0wNEpMMlzy7s****\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"4B450CA1-36E8-4AA2-8461-86B42BF4CC4E\\"\\n}","errorExample":"{\\n \\"RequestId\\" : \\"4B450CA1-36E8-4AA2-8461-86B42BF4CC4E\\",\\n \\"AccessKeys\\":{\\n \\"AccessKey\\":[\\n {\\n \\"AccessKeyId\\": \\"0wNEpMMlzy7szvai\\",\\n \\"Status\\": \\"Active\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"AccessKeyId\\": \\"WnIWUruvfaDT37vQ\\",\\n \\"Status\\": \\"Inactive\\",\\n \\"CreateDate\\": \\"2015-03-24T21:12:21Z\\"\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<RequestId>4B450CA1-36E8-4AA2-8461-86B42BF4CC4E</RequestId>\\n<AccessKeys>\\n <AccessKey>\\n <AccessKeyId>0wNEpMMlzy7s****</AccessKeyId>\\n <Status>Active</Status>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n </AccessKey>\\n <AccessKey>\\n <AccessKeyId>WnIWUruvfaDT****</AccessKeyId>\\n <Status>Inactive</Status>\\n <CreateDate>2015-03-24T21:12:21Z</CreateDate>\\n </AccessKey>\\n</AccessKeys>","errorExample":"<ListAccessKeysResponse>\\n <RequestId>4B450CA1-36E8-4AA2-8461-86B42BF4CC4E</RequestId>\\n <AccessKeys>\\n <AccessKey>\\n <AccessKeyId>0wNEpMMlzy7szvai</AccessKeyId>\\n <Status>Active</Status>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n </AccessKey>\\n <AccessKey>\\n <AccessKeyId>WnIWUruvfaDT37vQ</AccessKeyId>\\n <Status>Inactive</Status>\\n <CreateDate>2015-03-24T21:12:21Z</CreateDate>\\n </AccessKey>\\n </AccessKeys>\\n</ListAccessKeysResponse>"}]', - 'title' => 'ListAccessKeys', - 'summary' => 'Queries all AccessKey pairs that belong to a Resource Access Management (RAM) user.', - 'requestParamsDescription' => ' ', - 'responseParamsDescription' => ' ', - 'extraInfo' => ' ', - ], - 'GetAccessKeyLastUsed' => [ - 'methods' => [ - 'post', - 'get', + 'errorCodes' => [ + 400 => [ + ['errorCode' => 'NotSupport', 'errorMessage' => 'This method can only be invoked by customer, sub user and assumed role user.', 'description' => ''], + ['errorCode' => 'EncodedMessageExpire', 'errorMessage' => 'The EncodedDiagnosticMessage is expired.', 'description' => ''], + ], + 403 => [ + ['errorCode' => 'NoPermission', 'errorMessage' => 'You do not have the required permissions.', 'description' => ''], + ], + [ + ['errorCode' => 'SearchInaccurate', 'errorMessage' => 'The search result is inaccurate, please retry later.', 'description' => ''], + ['errorCode' => 'EntityNotExist', 'errorMessage' => 'The specific DecodedDiagnosticMessage cannot be found.', 'description' => ''], + ], + 429 => [ + ['errorCode' => 'TooManyRequests', 'errorMessage' => 'Too many search requests at same time, please retry later.', 'description' => ''], + ], + ], + 'staticInfo' => ['returnType' => 'synchronous'], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D2331703-AADF-5564-BA9B-26CD51A33BA0\\",\\n \\"DecodedDiagnosticMessage\\": {\\n \\"ExplicitDeny\\": true,\\n \\"NoPermissionPolicyType\\": \\"AccountLevelIdentityBasedPolicy\\",\\n \\"AuthAction\\": \\"ram:DecodeDiagnosticMessage\\",\\n \\"AuthResource\\": \\"*\\",\\n \\"AuthPrincipal\\": {\\n \\"AuthPrincipalType\\": \\"SubUser\\",\\n \\"AuthPrincipalOwnerId\\": \\"196813200012****\\",\\n \\"AuthPrincipalDisplayName\\": \\"28877424437521****\\"\\n },\\n \\"AuthConditions\\": [\\n {\\n \\"ConditionKey\\": \\"acs:SourceIp\\",\\n \\"ConditionValues\\": [\\n \\"172.16.215.218\\"\\n ]\\n }\\n ],\\n \\"MatchedPolicies\\": [\\n {\\n \\"Effect\\": \\"Deny\\",\\n \\"PolicyIdentifier\\": \\"MyPolicyName\\",\\n \\"PolicyType\\": \\"Custom\\",\\n \\"PolicyVersion\\": \\"v1\\",\\n \\"AttachedEntityType\\": \\"RamUser\\",\\n \\"AttachedScope\\": \\"Account\\"\\n }\\n ]\\n }\\n}","type":"json"}]', + 'title' => 'DecodeDiagnosticMessage', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DecodeDiagnosticMessage'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:DecodeDiagnosticMessage', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], ], + ], + 'DeleteAccessKey' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => '', - 'type' => 'string', - 'required' => false, - 'example' => 'test', - ], + 'schema' => ['description' => 'The name of the RAM user.'."\n", 'type' => 'string', 'required' => false, 'example' => 'zhangq****', 'title' => ''], ], [ 'name' => 'UserAccessKeyId', 'in' => 'query', - 'schema' => [ - 'description' => '', - 'type' => 'string', - 'required' => false, - 'example' => 'LTAI4GFTgcR8m8cZQDTH****', - ], + 'schema' => ['description' => 'The AccessKey ID in the AccessKey pair that you want to delete.``'."\n", 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => '0wNEpMMlzy7s****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ + 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'AccessKeyLastUsed' => [ - 'description' => 'The details of the time when the AccessKey pair was used for the last time.'."\n", - 'type' => 'object', - 'properties' => [ - 'LastUsedDate' => [ - 'description' => 'The time when the AccessKey pair was used for the last time.'."\n", - 'type' => 'string', - 'example' => '2020-10-21T06:37:40Z', - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '5CCE804C-6450-49A7-B1DB-2460F7A97416', - ], + 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], - 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"AccessKeyLastUsed\\": {\\n \\"LastUsedDate\\": \\"2020-10-21T06:37:40Z\\"\\n },\\n \\"RequestId\\": \\"5CCE804C-6450-49A7-B1DB-2460F7A97416\\"\\n}","errorExample":""},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\r\\n<GetAccessKeyLastUsedResponse>\\r\\n\\t<AccessKeyLastUsed>\\r\\n\\t\\t<LastUsedDate>2020-10-21T06:37:40Z</LastUsedDate>\\r\\n\\t</AccessKeyLastUsed>\\r\\n\\t<RequestId>5CCE804C-6450-49A7-B1DB-2460F7A97416</RequestId>\\r\\n</GetAccessKeyLastUsedResponse>\\r\\n","errorExample":""}]', - 'title' => 'GetAccessKeyLastUsed', + 'title' => 'DeleteAccessKey', + 'summary' => 'Deletes an AccessKey pair of a Resource Access Management (RAM) user.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'CreateVirtualMFADevice' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteAccessKey'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteAccessKey', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], ], + 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}"},{"type":"xml","example":"<DeleteAccessKeyResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</DeleteAccessKeyResponse>","errorExample":"<DeleteAccessKeyResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</DeleteAccessKeyResponse>"}]', + ], + 'DeleteGroup' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'create', - ], + 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ - 'name' => 'VirtualMFADeviceName', + 'name' => 'GroupName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the MFA device.'."\n" - ."\n" - .'The name must be 1 to 64 characters in length, and can contain letters, digits, periods (.), and hyphens (-).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'device001', - ], + 'schema' => ['description' => 'The name of the RAM user group.'."\n" + ."\n" + .'If you want to query the name of a RAM user group, you can call the [ListGroups](~~28703~~) operation.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Dev-Team', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'VirtualMFADevice' => [ - 'description' => 'The information about the MFA device.'."\n", - 'type' => 'object', - 'properties' => [ - 'SerialNumber' => [ - 'description' => 'The serial number of the MFA device.'."\n", - 'type' => 'string', - 'example' => 'acs:ram::123456789012****:mfa/device001', - ], - 'QRCodePNG' => [ - 'description' => 'The Base64-encoded QR code, in the PNG format.'."\n", - 'type' => 'string', - 'example' => 'YXNkZmFzZDlmeW5hc2Q5OGZoODd4bXJmcThhaGU5aSBmYXNkZiBzYWRmIGFGIDRxd2VjIGEgdHEz****', - ], - 'Base32StringSeed' => [ - 'description' => 'The key of the MFA device.'."\n", - 'type' => 'string', - 'example' => 'DSF98HAD982KJA9SDFNAS9D8FU839B8ADHBGS****', - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'FCF40AB5-881C-A0F9-334C-B0AD423AA69D', 'title' => ''], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"VirtualMFADevice\\": {\\n \\"SerialNumber\\": \\"acs:ram::123456789012****:mfa/device001\\",\\n \\"QRCodePNG\\": \\"YXNkZmFzZDlmeW5hc2Q5OGZoODd4bXJmcThhaGU5aSBmYXNkZiBzYWRmIGFGIDRxd2VjIGEgdHEz****\\",\\n \\"Base32StringSeed\\": \\"DSF98HAD982KJA9SDFNAS9D8FU839B8ADHBGS****\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"VirtualMFADevice\\": {\\n \\"SerialNumber\\": \\"acs:ram::1234567890123:mfa/device001\\",\\n \\"Base32StringSeed\\": \\"DSF98HAD982KJA9SDFNAS9D8FU839B8ADHBGSD7A8\\",\\n \\"QRCodePNG\\": \\"YXNkZmFzZDlmeW5hc2Q5OGZoODd4bXJmcThhaGU5aSBmYXNkZiBzYWRmIGFGIDRxd2VjIGEgdHEzdCAg\\"\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\n<CreateVirtualMFADeviceResponse>\\n\\t<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n\\t<VirtualMFADevice>\\n\\t\\t<SerialNumber>acs:ram::123456789012****:mfa/device001</SerialNumber>\\n\\t\\t<Base32StringSeed>DSF98HAD982KJA9SDFNAS9D8FU839B8ADHBGS****</Base32StringSeed>\\n\\t\\t<QRCodePNG>YXNkZmFzZDlmeW5hc2Q5OGZoODd4bXJmcThhaGU5aSBmYXNkZiBzYWRmIGFGIDRxd2VjIGEgdHEz****</QRCodePNG>\\n\\t</VirtualMFADevice>\\n</CreateVirtualMFADeviceResponse>","errorExample":"<CreateVirtualMFADeviceResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <VirtualMFADevice>\\n <SerialNumber>acs:ram::1234567890123:mfa/device001</VirtualMFASerialNumber>\\n <Base32StringSeed>DSF98HAD982KJA9SDFNAS9D8FU839B8ADHBGSD7A8</Base32StringSeed>\\n <QRCodePNG>YXNkZmFzZDlmeW5hc2Q5OGZoODd4bXJmcThhaGU5aSBmYXNkZiBzYWRmIGFGIDRxd2VjIGEgdHEzdCAg</QRCodePNG>\\n </VirtualMFADevice>\\n</CreateVirtualMFADeviceResponse>"}]', - 'title' => 'CreateVirtualMFADevice', - 'summary' => 'Creates a multi-factor authentication (MFA) device.', + 'title' => 'DeleteGroup', + 'summary' => 'Deletes a Resource Access Management (RAM) user group.', + 'description' => 'Before you delete a RAM user group, make sure that no policies are attached to the group and no RAM users are included in the group.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'GetUserMFAInfo' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteGroup'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"FCF40AB5-881C-A0F9-334C-B0AD423AA69D\\"\\n}","type":"json"}]', + ], + 'DeleteLoginProfile' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'test', - ], + 'schema' => ['description' => 'The name of the RAM user.'."\n", 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], ], ], 'responses' => [ @@ -1651,239 +1734,180 @@ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'MFADevice' => [ - 'description' => 'The information about the MFA device that is bound to the RAM user.'."\n", - 'type' => 'object', - 'properties' => [ - 'SerialNumber' => [ - 'description' => 'The serial number of the MFA device.'."\n", - 'type' => 'string', - 'example' => 'acs:ram::177242285274****:mfa/test', - ], - 'Type' => [ - 'description' => 'The type of the MFA device. Valid values:'."\n" - ."\n" - .'* VMFA: virtual MFA device.'."\n" - .'* U2F: Universal 2nd Factor (U2F) security key.'."\n", - 'type' => 'string', - 'example' => 'VMFA', - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '1C488B66-B819-4D14-8711-C4EAAA13AC01', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"MFADevice\\": {\\n \\"SerialNumber\\": \\"acs:ram::177242285274****:mfa/test\\",\\n \\"Type\\": \\"VMFA\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"MFADevice\\": {\\n \\"SerialNumber\\":\\"Virtual-MFA-device002\\"\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\r\\n<GetUserMFAInfoResponse>\\r\\n\\t<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\r\\n\\t<MFADevice>\\r\\n\\t\\t<SerialNumber>acs:ram::177242285274****:mfa/test</SerialNumber>\\r\\n\\t\\t<Type>VMFA</Type>\\r\\n\\t</MFADevice>\\r\\n</GetUserMFAInfoResponse>\\t\\r\\n","errorExample":"<GetUserMFAInfoResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <MFADevice>\\n <SerialNumber>Virtual-MFA-device002</SerialNumber>\\n </MFADevice>\\n</GetUserMFAInfoResponse>"}]', - 'title' => 'GetUserMFAInfo', - 'summary' => 'Queries the multi-factor authentication (MFA) device that is bound to a Resource Access Management (RAM) user.', + 'title' => 'DeleteLoginProfile', + 'summary' => 'Disables console logon for a Resource Access Management (RAM) user.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'DeleteVirtualMFADevice' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteLoginProfile'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteLoginProfile', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], ], + 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"1C488B66-B819-4D14-8711-C4EAAA13AC01\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"1C488B66-B819-4D14-8711-C4EAAA13AC01\\"\\n}"},{"type":"xml","example":"<DeleteLoginProfileResponse>\\n <RequestId>1C488B66-B819-4D14-8711-C4EAAA13AC01</RequestId>\\n</DeleteLoginProfileResponse>","errorExample":"<DeleteLoginProfileResponse>\\n <RequestId>1C488B66-B819-4D14-8711-C4EAAA13AC01</RequestId>\\n</DeleteLoginProfileResponse>"}]', + ], + 'DeletePolicy' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'delete', - ], + 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ - 'name' => 'SerialNumber', + 'name' => 'PolicyName', 'in' => 'query', - 'schema' => [ - 'description' => 'The serial number of the MFA device.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'acs:ram::123456789012****:mfa/device002', - ], + 'schema' => ['description' => 'The name of the policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], + ], + [ + 'name' => 'CascadingDelete', + 'in' => 'query', + 'schema' => ['description' => 'Specifies whether to delete all versions of the policy. Valid values:'."\n" + ."\n" + .'- true: deletes all versions of the policy.'."\n" + ."\n" + .'- false: does not delete all versions of the policy. If you set the parameter to false, the non-default versions of the policy are not deleted. Before you delete the policy, you must manually delete all non-default versions of the policy.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '898FAB24-7509-43EE-A287-086FE4C44394', 'title' => ''], ], - 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>","errorExample":"<DeleteVirtualMFADeviceResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</DeleteVirtualMFADeviceResponse>"}]', - 'title' => 'DeleteVirtualMFADevice', - 'summary' => 'Deletes a multi-factor authentication (MFA) device.', + 'title' => 'DeletePolicy', + 'summary' => 'Deletes a policy.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'ListVirtualMFADevices' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeletePolicy'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeletePolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"898FAB24-7509-43EE-A287-086FE4C44394\\"\\n}","type":"json"}]', + ], + 'DeletePolicyVersion' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'delete'], + 'parameters' => [ + [ + 'name' => 'PolicyName', + 'in' => 'query', + 'schema' => ['description' => 'The name of the policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], + ], + [ + 'name' => 'VersionId', + 'in' => 'query', + 'schema' => ['description' => 'The ID of the policy version that you want to delete.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'v3', 'title' => ''], + ], ], - 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'VirtualMFADevices' => [ - 'type' => 'object', - 'itemNode' => true, - 'properties' => [ - 'VirtualMFADevice' => [ - 'description' => 'The information about the MFA devices.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The information about the MFA device.'."\n", - 'type' => 'object', - 'properties' => [ - 'SerialNumber' => [ - 'description' => 'The serial number of the MFA device.'."\n", - 'type' => 'string', - 'example' => 'acs:ram::123456789012****:mfa/device002', - ], - 'User' => [ - 'description' => 'The basic information about the Resource Access Management (RAM) user to which the MFA device is bound.'."\n", - 'type' => 'object', - 'properties' => [ - 'DisplayName' => [ - 'description' => 'The display name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'zhangq****', - ], - 'UserId' => [ - 'description' => 'The unique ID of the RAM user.'."\n", - 'type' => 'string', - 'example' => '122748924538****', - ], - 'UserName' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'zhangq****', - ], - ], - ], - 'ActivateDate' => [ - 'description' => 'The time when the MFA device was enabled.'."\n", - 'type' => 'string', - 'example' => '2015-02-18T17:22:08Z', - ], - ], - ], - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '9B34724D-54B0-4A51-B34D-4512372FE1BE', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"VirtualMFADevices\\": {\\n \\"VirtualMFADevice\\": [\\n {\\n \\"SerialNumber\\": \\"acs:ram::123456789012****:mfa/device002\\",\\n \\"User\\": {\\n \\"DisplayName\\": \\"张*\\",\\n \\"UserId\\": \\"122748924538****\\",\\n \\"UserName\\": \\"zhangq****\\"\\n },\\n \\"ActivateDate\\": \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"VirtualMFADevices\\": {\\n \\"VirtualMFADevice\\": [\\n {\\n \\"SerialNumber\\": \\"acs:ram::1234567890123:mfa/device001\\"\\n },\\n {\\n \\"SerialNumber\\": \\"acs:ram::1234567890123:mfa/device002\\",\\n \\"ActivateDate\\": \\"2015-02-18T17:22:08Z\\",\\n \\"User\\": {\\n \\"UserId\\": \\"1227489245380721\\",\\n \\"UserName\\": \\"zhangqiang\\",\\n \\"DisplayName\\": \\"张强\\"\\n }\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n<VirtualMFADevices>\\n <VirtualMFADevice>\\n <SerialNumber>acs:ram::123456789012****:mfa/device001</SerialNumber>\\n </VirtualMFADevice>\\n <VirtualMFADevice>\\n <SerialNumber>acs:ram::123456789012****:mfa/device002</SerialNumber>\\n <ActivateDate>2015-02-18T17:22:08Z</ActivateDate>\\n <User>\\n <UserId>122748924538****</UserId>\\n <UserName>zhangq****</UserName>\\n <DisplayName>张*</DisplayName>\\n </User>\\n </VirtualMFADevice>\\n</VirtualMFADevices>","errorExample":"<ListVirtualMFADevicesResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <VirtualMFADevices>\\n <VirtualMFADevice>\\n <SerialNumber>acs:ram::1234567890123:mfa/device001</SerialNumber>\\n </VirtualMFADevice>\\n <VirtualMFADevice>\\n <SerialNumber>acs:ram::1234567890123:mfa/device002</MFASerialNumber>\\n <ActivateDate>2015-02-18T17:22:08Z<Activate>\\n <User>\\n <UserId>1227489245380721</UserId>\\n <UserName>zhangqiang</UserName>\\n <DisplayName>张强</DisplayName>\\n </User>\\n </VirtualMFADevice>\\n <VirtualMFADevicess>\\n</ListVirtualMFADevicesResponse>"}]', - 'title' => 'ListVirtualMFADevices', - 'summary' => 'Queries multi-factor authentication (MFA) devices.', + 'title' => 'DeletePolicyVersion', + 'summary' => 'Deletes a policy version.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'BindMFADevice' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeletePolicyVersion'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeletePolicyVersion', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\"\\n}","type":"json"}]', + ], + 'DeleteRole' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [], + 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ - 'name' => 'SerialNumber', - 'in' => 'query', - 'schema' => [ - 'description' => 'The serial number of the MFA device.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'acs:ram::123456789012****:mfa/device002', - ], - ], - [ - 'name' => 'UserName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', - ], - ], - [ - 'name' => 'AuthenticationCode1', - 'in' => 'query', - 'schema' => [ - 'description' => 'The first authentication code.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => '11****', - ], - ], - [ - 'name' => 'AuthenticationCode2', + 'name' => 'RoleName', 'in' => 'query', - 'schema' => [ - 'description' => 'The second authentication code.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => '33****', - ], + 'schema' => ['description' => 'The name of the RAM role.'."\n", 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'ECSAdmin', 'title' => ''], ], ], 'responses' => [ @@ -1892,397 +1916,339 @@ 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '898FAB24-7509-43EE-A287-086FE4C44394', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>","errorExample":"<BindMFADeviceResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</BindMFADeviceResponse>"}]', - 'title' => 'BindMFADevice', - 'summary' => 'Binds a multi-factor authentication (MFA) device to a Resource Access Management (RAM) user.', + 'title' => 'DeleteRole', + 'summary' => 'Deletes a regular Resource Access Management (RAM) role.', + 'description' => 'Before you delete a regular RAM role, call the [DetachPolicyFromRole](~~2337680~~) operation to remove all policies from the RAM role.'."\n" + ."\n" + .'The DeleteRole operation cannot be used to delete service-linked roles and reserved roles for cloud services.'."\n", 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'UnbindMFADevice' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteRole'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:TrustedPrincipalTypes', 'validationType' => 'always'], + ['conditionKey' => 'ram:ServiceNames', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ], + ], + ], ], + 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"898FAB24-7509-43EE-A287-086FE4C44394\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"898FAB24-7509-43EE-A287-086FE4C44394\\"\\n}"},{"type":"xml","example":"<DeleteRoleResponse>\\n <RequestId>898FAB24-7509-43EE-A287-086FE4C44394</RequestId>\\n</DeleteRoleResponse>","errorExample":"<DeleteRoleResponse>\\n <RequestId>898FAB24-7509-43EE-A287-086FE4C44394</RequestId>\\n</DeleteRoleResponse>"}]', + ], + 'DeleteUser' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], + 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies the username.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', - ], + 'schema' => ['description' => 'The name of the RAM user.'."\n" + ."\n" + .'The name must be 1 to 64 characters in length, and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'MFADevice' => [ - 'description' => 'The information about the MFA device.'."\n", - 'type' => 'object', - 'properties' => [ - 'SerialNumber' => [ - 'description' => 'The serial number of the MFA device.'."\n", - 'type' => 'string', - 'example' => 'acs:ram::123456789012****:mfa/device002', - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '1C488B66-B819-4D14-8711-C4EAAA13AC01', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"MFADevice\\": {\\n \\"SerialNumber\\": \\"acs:ram::123456789012****:mfa/device002\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"MFADevice\\": {\\n \\"SerialNumber\\":\\"acs:ram::1234567890123:mfa/device002\\"\\n }\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n<MFADevice>\\n <SerialNumber>acs:ram::123456789012****:mfa/device002</SerialNumber>\\n</MFADevice>","errorExample":"<UnbindMFADeviceResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <MFADevice>\\n <SerialNumber>acs:ram::1234567890123:mfa/device002</SerialNumber>\\n </MFADevice>\\n</UnbindMFADeviceResponse>"}]', - 'title' => 'UnbindMFADevice', - 'summary' => 'Unbinds a multi-factor authentication (MFA) device from a Resource Access Management (RAM) user.', + 'title' => 'DeleteUser', + 'summary' => 'Deletes a Resource Access Management (RAM) user.', + 'description' => 'Before you delete a RAM user, make sure that no policies are attached to the RAM user and that the RAM user does not belong to any groups.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'CreateGroup' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteUser'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"1C488B66-B819-4D14-8711-C4EAAA13AC01\\"\\n}","type":"json"}]', + ], + 'DeleteVirtualMFADevice' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'create', - ], + 'systemTags' => ['operationType' => 'delete'], 'parameters' => [ [ - 'name' => 'GroupName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the user group.'."\n" - ."\n" - .'The name must be 1 to 64 characters in length and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Dev-Team', - ], - ], - [ - 'name' => 'Comments', + 'name' => 'SerialNumber', 'in' => 'query', - 'schema' => [ - 'description' => 'The description.'."\n" - ."\n" - .'The value can be up to 128 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'Dev-Team', - ], + 'schema' => ['description' => 'The serial number of the MFA device.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'acs:ram::123456789012****:mfa/device002', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'Group' => [ - 'description' => 'The information about the group.'."\n", - 'type' => 'object', - 'properties' => [ - 'GroupId' => [ - 'description' => 'The ID of the user group.'."\n", - 'type' => 'string', - 'example' => 'g-FpMEHiMysofp****', - ], - 'GroupName' => [ - 'description' => 'The name of the user group.'."\n", - 'type' => 'string', - 'example' => 'Dev-Team', - ], - 'Comments' => [ - 'description' => 'The description.'."\n", - 'type' => 'string', - 'example' => 'Dev-Team', - ], - 'CreateDate' => [ - 'description' => 'The creation time.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => 'D3F0679E-9757-95DB-AF2D-04D5188C69C5', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Group\\": {\\n \\"GroupId\\": \\"g-FpMEHiMysofp****\\",\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"开发团队\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n \\"RequestId\\": \\"D3F0679E-9757-95DB-AF2D-04D5188C69C5\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"D3F0679E-9757-95DB-AF2D-04D5188C69C5\\",\\n \\"Group\\": {\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"开发团队\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\n<CreateGroupResponse>\\n\\t<RequestId>D3F0679E-9757-95DB-AF2D-04D5188C69C5</RequestId>\\n\\t<Group>\\n\\t\\t<GroupName>Dev-Team</GroupName>\\n\\t\\t<Comments>开发团队</Comments>\\n\\t\\t<CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <GroupId>g-FpMEHiMysofp****</GroupId>\\n\\t</Group>\\n</CreateGroupResponse>","errorExample":"<CreateGroupResponse>\\n <RequestId>D3F0679E-9757-95DB-AF2D-04D5188C69C5</RequestId>\\n <Group>\\n <GroupName>Dev-Team</GroupName>\\n <Comments>开发团队</Comments>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n </Group>\\n</CreateGroupResponse>"}]', - 'title' => 'CreateGroup', - 'summary' => 'Creates a RAM user group.', + 'title' => 'DeleteVirtualMFADevice', + 'summary' => 'Deletes a multi-factor authentication (MFA) device.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'GetGroup' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteVirtualMFADevice'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteVirtualMFADevice', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'MFADevice', 'arn' => 'acs:ram:*:{#accountId}:mfa/{#SerialNumber}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + ], + 'DetachPolicyFromGroup' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ + 'name' => 'PolicyType', + 'in' => 'query', + 'schema' => ['description' => 'The type of the policy. Valid values: `System` and `Custom`.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Custom', 'title' => ''], + ], + [ + 'name' => 'PolicyName', + 'in' => 'query', + 'schema' => ['description' => 'The name of the policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], + ], + [ 'name' => 'GroupName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Dev-Team', - ], + 'schema' => ['description' => 'The name of the group.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'dev', 'title' => ''], + ], + [ + 'name' => 'ResourceGroupId', + 'in' => 'query', + 'schema' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'Group' => [ - 'description' => 'The information about the RAM user group.'."\n", - 'type' => 'object', - 'properties' => [ - 'GroupId' => [ - 'description' => 'The ID of the RAM user group.'."\n", - 'type' => 'string', - 'example' => 'g-FpMEHiMysofp****', - ], - 'UpdateDate' => [ - 'description' => 'The modification time.'."\n", - 'type' => 'string', - 'example' => '2015-02-11T03:15:21Z', - ], - 'GroupName' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'example' => 'Dev-Team', - ], - 'Comments' => [ - 'description' => 'The description of the RAM user group.'."\n", - 'type' => 'string', - 'example' => 'Dev-Team', - ], - 'CreateDate' => [ - 'description' => 'The time when the RAM user group was created.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => 'D4065824-E422-3ED6-68B1-1AF7D5C7804C', - ], + 'RequestId' => ['description' => 'A unique identifier for the request.', 'type' => 'string', 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', 'title' => ''], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Group\\": {\\n \\"GroupId\\": \\"g-FpMEHiMysofp****\\",\\n \\"UpdateDate\\": \\"2015-02-11T03:15:21Z\\",\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"开发团队\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n \\"RequestId\\": \\"D4065824-E422-3ED6-68B1-1AF7D5C7804C\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"D4065824-E422-3ED6-68B1-1AF7D5C7804C\\",\\n \\"Group\\": {\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"开发团队\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UpdateDate\\": \\"2015-02-11T03:15:21Z\\"\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\n<GetGroupResponse>\\n\\t<RequestId>D4065824-E422-3ED6-68B1-1AF7D5C7804C</RequestId>\\n\\t<Group>\\n\\t\\t<GroupName>Dev-Team</GroupName>\\n\\t\\t<Comments>开发团队</Comments>\\n\\t\\t<CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n\\t\\t<UpdateDate>2015-02-11T03:15:21Z</UpdateDate>\\n <GroupId>g-FpMEHiMysofp****</GroupId>\\n\\t</Group>\\n</GetGroupResponse>\\t\\n","errorExample":"<GetGroupResponse>\\n <RequestId>D4065824-E422-3ED6-68B1-1AF7D5C7804C</RequestId>\\n <Group>\\n <GroupName>Dev-Team</GroupName>\\n <Comments>开发团队</Comments>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-02-11T03:15:21Z</UpdateDate>\\n </Group>\\n</GetGroupResponse>"}]', - 'title' => 'GetGroup', - 'summary' => 'Queries information about a Resource Access Management (RAM) user group.', + 'title' => 'DetachPolicyFromGroup', + 'summary' => 'Detaches a policy from a group.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'UpdateGroup' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DetachPolicyFromGroup'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:DetachPolicyFromGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","type":"json"}]', + ], + 'DetachPolicyFromRole' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], + 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ - 'name' => 'GroupName', + 'name' => 'PolicyType', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Dev-Team', - ], + 'schema' => ['description' => 'The policy type. Valid values: `System` and `Custom`.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Custom', 'title' => ''], ], [ - 'name' => 'NewGroupName', + 'name' => 'PolicyName', 'in' => 'query', - 'schema' => [ - 'description' => 'The new name of the RAM user group.'."\n" - ."\n" - .'The name must be 1 to 64 characters in length and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'NewDev-Team', - ], + 'schema' => ['description' => 'The name of the policy to detach.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], ], [ - 'name' => 'NewComments', + 'name' => 'RoleName', 'in' => 'query', - 'schema' => [ - 'description' => 'The new description of the RAM user group.'."\n" - ."\n" - .'The new description must be 1 to 128 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'NewDev-Team', - ], + 'schema' => ['description' => 'The name of the role from which to detach the policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSSAdminRole', 'title' => ''], + ], + [ + 'name' => 'ResourceGroupId', + 'in' => 'query', + 'schema' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'Group' => [ - 'description' => 'The information about the RAM user group.'."\n", - 'type' => 'object', - 'properties' => [ - 'GroupId' => [ - 'description' => 'The ID of the RAM user group.'."\n", - 'type' => 'string', - 'example' => 'g-FpMEHiMysofp****', - ], - 'UpdateDate' => [ - 'description' => 'The modification time.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'GroupName' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'example' => 'NewDev-Team', - ], - 'Comments' => [ - 'description' => 'The description.'."\n", - 'type' => 'string', - 'example' => 'NewDev-Team', - ], - 'CreateDate' => [ - 'description' => 'The creation time.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => 'EC6647CC-0A36-EC7A-BA72-CC81BF3DE182', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', 'title' => ''], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Group\\": {\\n \\"GroupId\\": \\"g-FpMEHiMysofp****\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"GroupName\\": \\"NewDev-Team\\",\\n \\"Comments\\": \\"开发团队\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n \\"RequestId\\": \\"EC6647CC-0A36-EC7A-BA72-CC81BF3DE182\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"EC6647CC-0A36-EC7A-BA72-CC81BF3DE182\\",\\n \\"Group\\": {\\n \\"GroupName\\": \\"NewDev-Team\\",\\n \\"Comments\\": \\"开发团队\\",\\n \\"CreateDate\\" : \\"2015-01-23T12:33:18Z\\",\\n \\"UpdateDate\\" : \\"2015-01-23T12:33:18Z\\"\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\n<UpdateGroupResponse>\\n\\t<RequestId>EC6647CC-0A36-EC7A-BA72-CC81BF3DE182</RequestId>\\n\\t<Group>\\n\\t\\t<GroupName>NewDev-Team</GroupName>\\n\\t\\t<Comments>开发团队</Comments>\\n\\t\\t<CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n\\t\\t<UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n <GroupId>g-FpMEHiMysofp****</GroupId>\\n\\t</Group>\\n</UpdateGroupResponse>\\t\\n","errorExample":"<UpdateGroupResponse>\\n <RequestId>EC6647CC-0A36-EC7A-BA72-CC81BF3DE182</RequestId>\\n <Group>\\n <GroupName>NewDev-Team</GroupName>\\n <Comments>开发团队</Comments>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n </Group>\\n</UpdateGroupResponse>"}]', - 'title' => 'UpdateGroup', - 'summary' => 'Modifies a Resource Access Management (RAM) user group.', + 'title' => 'DetachPolicyFromRole', + 'summary' => 'Detaches a policy from a role.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'DeleteGroup' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DetachPolicyFromRole'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:DetachPolicyFromRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:TrustedPrincipalTypes', 'validationType' => 'always'], + ['conditionKey' => 'ram:ServiceNames', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","type":"json"}]', + ], + 'DetachPolicyFromUser' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'delete', - ], + 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ - 'name' => 'GroupName', + 'name' => 'PolicyType', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user group.'."\n" - ."\n" - .'If you want to query the name of a RAM user group, you can call the [ListGroups](~~28703~~) operation.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Dev-Team', - ], + 'schema' => ['description' => 'The policy type. Valid values are `System` and `Custom`.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Custom', 'title' => ''], + ], + [ + 'name' => 'PolicyName', + 'in' => 'query', + 'schema' => ['description' => 'The name of the policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], + ], + [ + 'name' => 'UserName', + 'in' => 'query', + 'schema' => ['description' => 'The name of the user.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], + ], + [ + 'name' => 'ResourceGroupId', + 'in' => 'query', + 'schema' => ['type' => 'string', 'description' => '', 'title' => '', 'example' => ''], ], ], 'responses' => [ @@ -2290,1778 +2256,1362 @@ 'schema' => [ 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => 'FCF40AB5-881C-A0F9-334C-B0AD423AA69D', - ], + 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', 'title' => ''], ], 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"FCF40AB5-881C-A0F9-334C-B0AD423AA69D\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"FCF40AB5-881C-A0F9-334C-B0AD423AA69D\\"\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\r\\n<DeleteGroupResponse>\\r\\n\\t<RequestId>FCF40AB5-881C-A0F9-334C-B0AD423AA69D</RequestId>\\r\\n</DeleteGroupResponse>","errorExample":"<DeleteGroupResponse>\\n <RequestId>FCF40AB5-881C-A0F9-334C-B0AD423AA69D</RequestId>\\n</DeleteGroupResponse>"}]', - 'title' => 'DeleteGroup', - 'summary' => 'Deletes a Resource Access Management (RAM) user group.', - 'description' => 'Before you delete a RAM user group, make sure that no policies are attached to the group and no RAM users are included in the group.'."\n", + 'title' => 'DetachPolicyFromUser', + 'summary' => 'Detaches a policy from a user.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'ListGroups' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DetachPolicyFromUser'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:DetachPolicyFromUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","type":"json"}]', + ], + 'GetAccessKeyLastUsed' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ - 'name' => 'Marker', + 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The pagination token that is used in the next request to retrieve a new page of results. You do not need to specify this parameter for the first request.``'."\n" - ."\n" - .'When you call the operation for the first time, if the total number of returned entries exceeds the value of `MaxItems`, the entries are truncated. The system returns entries based on the value of `MaxItems` and does not return the excess entries. In this case, the value of the response parameter `IsTruncated` is `true`, and `Marker` is returned. In the next call, you can use the value of `Marker` and maintain the settings of the other request parameters to query the excess entries. You can repeat the call until the value of `IsTruncated` becomes `false`. This way, all entries are returned.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'EXAMPLE', - ], + 'schema' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'required' => false, 'example' => 'test', 'title' => ''], ], [ - 'name' => 'MaxItems', + 'name' => 'UserAccessKeyId', 'in' => 'query', - 'schema' => [ - 'description' => 'The number of entries per page.'."\n" - ."\n" - .'Valid values: 1 to 100.'."\n" - ."\n" - .'Default value: 100.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'required' => false, - 'example' => '100', - ], + 'schema' => ['description' => 'The ID of the AccessKey pair.', 'type' => 'string', 'required' => false, 'example' => 'LTAI4GFTgcR8m8cZQDTH****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The ID of the request.'."\n", - 'type' => 'string', - 'example' => '065527AA-2F2E-AD7C-7484-F2626CFE4934', - ], - 'Groups' => [ + 'AccessKeyLastUsed' => [ + 'description' => 'Information about the last time the AccessKey pair was used.', 'type' => 'object', - 'itemNode' => true, 'properties' => [ - 'Group' => [ - 'description' => 'The information about the RAM user groups.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The information about the RAM user group.'."\n", - 'type' => 'object', - 'properties' => [ - 'GroupId' => [ - 'description' => 'The ID of the RAM user group.'."\n", - 'type' => 'string', - 'example' => 'g-FpMEHiMysofp****', - ], - 'UpdateDate' => [ - 'description' => 'The update time.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'GroupName' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'example' => 'Dev-Team', - ], - 'Comments' => [ - 'description' => 'The description.'."\n", - 'type' => 'string', - 'example' => 'Dev-Team', - ], - 'CreateDate' => [ - 'description' => 'The creation time.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - ], - ], - ], + 'LastUsedDate' => ['description' => 'The last time the AccessKey pair was used.', 'type' => 'string', 'example' => '2020-10-21T06:37:40Z', 'title' => ''], ], + 'title' => '', + 'example' => '', ], - 'IsTruncated' => [ - 'description' => 'Indicates whether the response is truncated. Valid values:'."\n" - ."\n" - .'* true'."\n" - .'* false'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'Marker' => [ - 'description' => 'The pagination token that is used in the next request to retrieve a new page of results.'."\n" - ."\n" - .'> This parameter is returned only when `IsTruncated` is `true`.'."\n", - 'type' => 'string', - 'example' => 'EXAMPLE', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '5CCE804C-6450-49A7-B1DB-2460F7A97416', 'title' => ''], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"065527AA-2F2E-AD7C-7484-F2626CFE4934\\",\\n \\"Groups\\": {\\n \\"Group\\": [\\n {\\n \\"GroupId\\": \\"g-FpMEHiMysofp****\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"开发团队\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n ]\\n },\\n \\"IsTruncated\\": true,\\n \\"Marker\\": \\"EXAMPLE\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"065527AA-2F2E-AD7C-7484-F2626CFE4934\\",\\n \\"IsTruncated\\": true,\\n \\"Marker\\": \\"EXAMPLE\\",\\n \\"Groups\\": {\\n \\"Group\\": [\\n {\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"开发团队\\",\\n \\"CreateDate\\" : \\"2015-01-23T12:33:18Z\\",\\n \\"UpdateDate\\" : \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"GroupName\\": \\"QA-Team\\",\\n \\"Comments\\": \\"测试团队\\",\\n \\"CreateDate\\" : \\"2015-02-18T17:22:08Z\\",\\n \\"UpdateDate\\" : \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\r\\n<ListGroupsResponse>\\r\\n\\t<RequestId>065527AA-2F2E-AD7C-7484-F2626CFE4934</RequestId>\\r\\n\\t<IsTruncated>true</IsTruncated>\\r\\n\\t<Marker>EXAMPLE</Marker>\\r\\n\\t<Groups>\\r\\n\\t\\t<Group>\\r\\n\\t\\t\\t<GroupName>Dev-Team</GroupName>\\r\\n\\t\\t\\t<Comments>开发团队</Comments>\\r\\n\\t\\t\\t<CreateDate>2015-01-23T12:33:18Z</CreateDate>\\r\\n\\t\\t\\t<UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\r\\n\\t\\t\\t<GroupId>g-FpMEHiMysofp****</GroupId>\\r\\n\\t\\t</Group>\\r\\n\\t\\t<Group>\\r\\n\\t\\t\\t<GroupName>QA-Team</GroupName>\\r\\n\\t\\t\\t<Comments>测试团队</Comments>\\r\\n\\t\\t\\t<CreateDate>2015-02-18T17:22:08Z</CreateDate>\\r\\n\\t\\t\\t<UpdateDate>2015-02-18T17:22:08Z</UpdateDate>\\r\\n\\t\\t\\t<GroupId>g-zYtroLrgbZR1****</GroupId>\\r\\n\\t\\t</Group>\\r\\n\\t</Groups>\\r\\n</ListGroupsResponse>\\r\\n\\t\\r\\n","errorExample":"<ListGroupsResponse>\\n <RequestId>065527AA-2F2E-AD7C-7484-F2626CFE4934</RequestId>\\n <IsTruncated>true</IsTruncated>\\n <Marker>EXAMPLE</Marker>\\n <Groups>\\n <Group>\\n <GroupName>Dev-Team</GroupName>\\n <Comments>开发团队</Comments>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n </Group>\\n <Group>\\n <GroupName>QA-Team</GroupName>\\n <Comments>测试团队</Comments>\\n <CreateDate>2015-02-18T17:22:08Z</CreateDate>\\n <UpdateDate>2015-02-18T17:22:08Z</UpdateDate>\\n </Group>\\n </Groups>\\n</ListGroupsResponse>"}]', - 'title' => 'ListGroups', - 'summary' => 'Queries Resource Access Management (RAM) user groups.', + 'title' => 'GetAccessKeyLastUsed', + 'summary' => 'Queries the last time when an AccessKey pair was used.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'ListGroupsForUser' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAccessKeyLastUsed'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetAccessKeyLastUsed', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"AccessKeyLastUsed\\": {\\n \\"LastUsedDate\\": \\"2020-10-21T06:37:40Z\\"\\n },\\n \\"RequestId\\": \\"5CCE804C-6450-49A7-B1DB-2460F7A97416\\"\\n}","type":"json"}]', + ], + 'GetAccountAlias' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], - 'parameters' => [ - [ - 'name' => 'UserName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Alice', - ], - ], - ], + 'systemTags' => ['operationType' => 'get'], + 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ + 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The ID of the request.'."\n", - 'type' => 'string', - 'example' => 'DA772B52-BF9F-54CA-AC77-AA7A2DA89D46', - ], - 'Groups' => [ - 'type' => 'object', - 'itemNode' => true, - 'properties' => [ - 'Group' => [ - 'description' => 'The information about the RAM user groups.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The information about the RAM user group.'."\n", - 'type' => 'object', - 'properties' => [ - 'GroupId' => [ - 'description' => 'The ID of the RAM user group.'."\n", - 'type' => 'string', - 'example' => 'g-zYtroLrgbZR1****', - ], - 'GroupName' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'example' => 'Dev-Team', - ], - 'Comments' => [ - 'description' => 'The description.'."\n", - 'type' => 'string', - 'example' => 'Dev-Team', - ], - 'JoinDate' => [ - 'description' => 'The time when the RAM user was added to the RAM user group.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - ], - ], - ], - ], - ], + 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], + 'AccountAlias' => ['description' => 'The alias of the Alibaba Cloud account.'."\n", 'type' => 'string', 'example' => 'myalias', 'title' => ''], ], - 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"DA772B52-BF9F-54CA-AC77-AA7A2DA89D46\\",\\n \\"Groups\\": {\\n \\"Group\\": [\\n {\\n \\"GroupId\\": \\"g-zYtroLrgbZR1****\\",\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"开发团队\\",\\n \\"JoinDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n ]\\n }\\n}","errorExample":""},{"type":"xml","example":"<ListGroupsForUserResponse>\\n <RequestId>DA772B52-BF9F-54CA-AC77-AA7A2DA89D46</RequestId>\\n <Groups>\\n <Group>\\n <GroupName>Dev-Team</GroupName>\\n <Comments>开发团队</Comments>\\n <JoinDate>2015-01-23T12:33:18Z</JoinDate>\\n <GroupId>g-zYtroLrgbZR1****</GroupId>\\n </Group>\\n </Groups>\\n</ListGroupsForUserResponse>","errorExample":""}]', - 'title' => 'ListGroupsForUser', - 'summary' => 'Queries the Resource Access Management (RAM) user groups to which a RAM user belongs.', - 'description' => '### [](#)'."\n" - ."\n" - .'This topic provides an example on how to query the RAM user groups to which the RAM user `Alice` belongs. The response shows that `Alice` belongs to the RAM user group named `Dev-Team`.'."\n", - 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).'."\n", + 'title' => 'GetAccountAlias', + 'summary' => 'Queries the alias of an Alibaba Cloud account.', + 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'ListUsersForGroup' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAccountAlias'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetAccountAlias', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], ], + 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"AccountAlias\\": \\"myalias\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"AccountAlias\\": \\"myalias\\"\\n}"},{"type":"xml","example":"<GetAccountAliasResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <AccountAlias>myalias</AccountAlias>\\n</GetAccountAliasResponse>","errorExample":"<GetAccountAliasResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <AccountAlias>myalias</AccountAlias>\\n</GetAccountAliasResponse>"}]', + ], + 'GetGroup' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'GroupName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Dev-Team', - ], - ], - [ - 'name' => 'Marker', - 'in' => 'query', - 'schema' => [ - 'description' => 'The `marker`. If part of a previous response is truncated, you can use this parameter to obtain the truncated part.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'EXAMPLE', - ], - ], - [ - 'name' => 'MaxItems', - 'in' => 'query', - 'schema' => [ - 'description' => 'The number of entries to return. If a response is truncated because it reaches the value of `MaxItems`, the value of `IsTruncated` will be `true`.'."\n" - ."\n" - .'Valid values: 1 to 1000. Default value: 100.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'required' => false, - 'example' => '100', - ], + 'schema' => ['description' => 'The name of the RAM user group.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Dev-Team', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '4B450CA1-36E8-4AA2-8461-86B42BF4CC4E', - ], - 'IsTruncated' => [ - 'description' => 'Indicates whether the response is truncated.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'Marker' => [ - 'description' => 'The marker. This parameter is returned only if the value of `IsTruncated` is `true`. If the parameter is returned, you can call this operation again and set this parameter to obtain the truncated part.````'."\n", - 'type' => 'string', - 'example' => 'EXAMPLE', - ], - 'Users' => [ + 'Group' => [ + 'description' => 'The information about the RAM user group.', 'type' => 'object', - 'itemNode' => true, 'properties' => [ - 'User' => [ - 'description' => 'The information about the RAM users.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The information about the RAM user.'."\n", - 'type' => 'object', - 'properties' => [ - 'DisplayName' => [ - 'description' => 'The display name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'Alice', - ], - 'JoinDate' => [ - 'description' => 'The time when the RAM user joined the RAM user group.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'UserName' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'zhangqiang', - ], - ], - ], - ], + 'GroupId' => ['description' => 'The ID of the RAM user group.', 'type' => 'string', 'example' => 'g-FpMEHiMysofp****', 'title' => ''], + 'UpdateDate' => ['description' => 'The modification time.', 'type' => 'string', 'example' => '2015-02-11T03:15:21Z', 'title' => ''], + 'GroupName' => ['description' => 'The name of the RAM user group.', 'type' => 'string', 'example' => 'Dev-Team', 'title' => ''], + 'Comments' => ['description' => 'The description of the RAM user group.', 'type' => 'string', 'example' => 'Development team', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the RAM user group was created.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], ], + 'title' => '', + 'example' => '', ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'D4065824-E422-3ED6-68B1-1AF7D5C7804C', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"4B450CA1-36E8-4AA2-8461-86B42BF4CC4E\\",\\n \\"IsTruncated\\": true,\\n \\"Marker\\": \\"EXAMPLE\\",\\n \\"Users\\": {\\n \\"User\\": [\\n {\\n \\"DisplayName\\": \\"Alice\\",\\n \\"JoinDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"Alice\\"\\n }\\n ]\\n }\\n}","errorExample":"{\\n \\"RequestId\\" : \\"4B450CA1-36E8-4AA2-8461-86B42BF4CC4E\\",\\n \\"Users\\" : {\\n \\"User\\" : [\\n {\\n \\"UserId\\" : \\"1227489245380721\\",\\n \\"UserName\\" : \\"zhangqiang\\",\\n \\"DisplayName\\" : \\"张强\\",\\n \\"JoinDate\\" : \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"UserId\\" : \\"1406498224724456\\",\\n \\"UserName\\" : \\"lili\\",\\n \\"DisplayName\\" : \\"李丽\\",\\n \\"JoinDate\\" : \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<RequestId>4B450CA1-36E8-4AA2-8461-86B42BF4CC4E</RequestId>\\n<Users>\\n <User>\\n <UserName>zhangqiang</UserName>\\n <DisplayName>张强</DisplayName>\\n <JoinDate>2015-01-23T12:33:18Z</JoinDate>\\n </User>\\n <User>\\n <UserName>lili</UserName>\\n <DisplayName>李丽</DisplayName>\\n <JoinDate>2015-02-18T17:22:08Z</JoinDate>\\n </User>\\n</Users>","errorExample":"<ListUsersForGroupResponse>\\n <RequestId>5756784B-79C4-E82E-24C2-FC3E171E5AB3</RequestId>\\n <Users>\\n <User>\\n <UserId>1227489245380721</UserId>\\n <UserName>zhangqiang</UserName>\\n <DisplayName>张强</DisplayName>\\n <JoinDate>2015-01-23T12:33:18Z</JoinDate>\\n </User>\\n <User>\\n <UserId>1406498224724456</UserId>\\n <UserName>lili</UserName>\\n <DisplayName>李丽</DisplayName>\\n <JoinDate>2015-02-18T17:22:08Z</JoinDate>\\n </User>\\n </Users>\\n</ListUsersForGroupResponse>"}]', - 'title' => 'ListUsersForGroup', - 'summary' => 'Queries Resource Access Management (RAM) users in a RAM user group.', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Group\\": {\\n \\"GroupId\\": \\"g-FpMEHiMysofp****\\",\\n \\"UpdateDate\\": \\"2015-02-11T03:15:21Z\\",\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"Development team\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n \\"RequestId\\": \\"D4065824-E422-3ED6-68B1-1AF7D5C7804C\\"\\n}","type":"json"}]', + 'title' => 'GetGroup', + 'summary' => 'Queries information about a Resource Access Management (RAM) user group.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'AddUserToGroup' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetGroup'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ], + ], + ], ], + 'translator' => 'manual', + ], + 'GetLoginProfile' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'create', - ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'UserName', 'in' => 'query', + 'schema' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], + ], + ], + 'responses' => [ + 200 => [ 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', + 'description' => 'The response parameters.', + 'type' => 'object', + 'properties' => [ + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], + 'LoginProfile' => [ + 'description' => 'The logon configurations of the RAM user.', + 'type' => 'object', + 'properties' => [ + 'PasswordResetRequired' => ['description' => 'Indicates whether the RAM user must change the password upon logon.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'CreateDate' => ['description' => 'The creation time.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'UserName' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'example' => 'zhangq****', 'title' => ''], + 'MFABindRequired' => ['description' => 'Indicates whether a multi-factor authentication (MFA) device must be bound to the RAM user.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + ], + 'title' => '', + 'example' => '', ], ], + ], + 'title' => 'GetLoginProfile', + 'summary' => 'Queries the logon configurations of a Resource Access Management (RAM) user.', + 'requestParamsDescription' => ' ', + 'responseParamsDescription' => ' ', + 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetLoginProfile'], + ], + ], + 'ramActions' => [ [ - 'name' => 'GroupName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Dev-Team', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetLoginProfile', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], ], ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"LoginProfile\\": {\\n \\"PasswordResetRequired\\": true,\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"zhangq****\\",\\n \\"MFABindRequired\\": true\\n }\\n}","type":"json"}]', + ], + 'GetPasswordPolicy' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], + 'security' => [ + [ + 'AK' => [], + ], + ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get'], + 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '1B968853-B423-63A6-FE1F-45E81BC2AD61', + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], + 'PasswordPolicy' => [ + 'description' => 'The password policy.', + 'type' => 'object', + 'properties' => [ + 'RequireNumbers' => ['description' => 'Indicates whether a password must contain one or more digits.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'RequireLowercaseCharacters' => ['description' => 'Indicates whether a password must contain one or more lowercase letters.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'HardExpiry' => ['description' => 'Indicates whether a password expires. Valid values: `true` and `false`. Default value: `false`. If the parameter is unspecified, the default value false is returned.'."\n" + ."\n" + .'- If this parameter is set to `true`, the Alibaba Cloud account to which the RAM users belong must reset the password before the RAM users can log on to the Alibaba Cloud Management Console.'."\n" + ."\n" + .'- If this parameter is set to `false`, the RAM users can change the passwords after the passwords expire and then log on to the Alibaba Cloud Management Console.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], + 'PasswordReusePrevention' => ['description' => 'The number of previous passwords that a RAM user is prevented from reusing. Default value: 0. The default value indicates that the RAM user can reuse previous passwords.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], + 'RequireSymbols' => ['description' => 'Indicates whether a password must contain one or more special characters.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'MaxPasswordAge' => ['description' => 'The number of days for which a password is valid. If you reset a password, the password validity period restarts. Default value: 0. The default value indicates that the password never expires.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], + 'MinimumPasswordLength' => ['description' => 'The minimum number of characters in a password.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], + 'RequireUppercaseCharacters' => ['description' => 'Indicates whether a password must contain one or more uppercase letters.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'MaxLoginAttemps' => ['description' => 'The maximum number of permitted logon attempts within one hour. The number of logon attempts is reset to zero if a RAM user changes the password.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"1B968853-B423-63A6-FE1F-45E81BC2AD61\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"1B968853-B423-63A6-FE1F-45E81BC2AD61\\"\\n}"},{"type":"xml","example":"<RequestId>1B968853-B423-63A6-FE1F-45E81BC2AD61</RequestId>","errorExample":"<AddUserToGroupResponse>\\n <RequestId>1B968853-B423-63A6-FE1F-45E81BC2AD61</RequestId>\\n</AddUserToGroupResponse>"}]', - 'title' => 'AddUserToGroup', - 'summary' => 'Adds a Resource Access Management (RAM) user to a RAM user group.', + 'title' => 'GetPasswordPolicy', + 'summary' => 'Queries the password policy of Resource Access Management (RAM) users, including the password strength.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'RemoveUserFromGroup' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetPasswordPolicy'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetPasswordPolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"PasswordPolicy\\": {\\n \\"RequireNumbers\\": true,\\n \\"RequireLowercaseCharacters\\": true,\\n \\"HardExpiry\\": false,\\n \\"PasswordReusePrevention\\": 0,\\n \\"RequireSymbols\\": true,\\n \\"MaxPasswordAge\\": 0,\\n \\"MinimumPasswordLength\\": 12,\\n \\"RequireUppercaseCharacters\\": true,\\n \\"MaxLoginAttemps\\": 5\\n }\\n}","type":"json"}]', + ], + 'GetPolicy' => [ + 'summary' => 'Queries information about a policy.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ - 'name' => 'UserName', + 'name' => 'PolicyType', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', - ], + 'schema' => ['description' => 'The type of the policy. Valid values: `System` and `Custom`.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Custom', 'title' => ''], ], [ - 'name' => 'GroupName', + 'name' => 'PolicyName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Dev-Team', - ], + 'schema' => ['description' => 'The name of the policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => 'A07EF215-B9B3-8CB2-2899-3F9575C6E320', + 'Policy' => [ + 'description' => 'The basic information about the policy.', + 'type' => 'object', + 'properties' => [ + 'DefaultVersion' => ['description' => 'The default version of the policy.', 'type' => 'string', 'example' => 'v1', 'title' => ''], + 'UpdateDate' => ['description' => 'The time when the policy was modified.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'Description' => ['description' => 'The description of the policy.', 'type' => 'string', 'example' => 'OSS administrator permission', 'title' => ''], + 'PolicyDocument' => ['description' => 'This parameter is deprecated.', 'type' => 'string', 'example' => 'N/A', 'title' => ''], + 'AttachmentCount' => ['description' => 'The number of references to the policy.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], + 'PolicyName' => ['description' => 'The name of the policy.', 'type' => 'string', 'example' => 'OSS-Administrator', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the policy was created.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'PolicyType' => ['description' => 'The type of the policy.', 'type' => 'string', 'example' => 'Custom', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', 'title' => ''], + 'DefaultPolicyVersion' => [ + 'description' => 'The information about the default policy version.', + 'type' => 'object', + 'properties' => [ + 'IsDefaultVersion' => ['description' => 'An attribute in the `DefaultPolicyVersion` parameter. The value of the `IsDefaultVersion` parameter is `true`.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'PolicyDocument' => ['description' => 'The document of the policy.', 'type' => 'string', 'example' => '{ "Statement": [{ "Action": ["oss:*"], "Effect": "Allow", "Resource": ["acs:oss:*:*:*"]}], "Version": "1"}', 'title' => ''], + 'VersionId' => ['description' => 'The ID of the default policy version.', 'type' => 'string', 'example' => 'v1', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the default policy version was created.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"A07EF215-B9B3-8CB2-2899-3F9575C6E320\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"A07EF215-B9B3-8CB2-2899-3F9575C6E320\\"\\n}"},{"type":"xml","example":"<RemoveUserFromGroupResponse>\\n <RequestId>A07EF215-B9B3-8CB2-2899-3F9575C6E320</RequestId>\\n</RemoveUserFromGroupResponse>","errorExample":"<RemoveUserFromGroupResponse>\\n <RequestId>A07EF215-B9B3-8CB2-2899-3F9575C6E320</RequestId>\\n</RemoveUserFromGroupResponse>"}]', - 'title' => 'RemoveUserFromGroup', - 'summary' => 'Removes a Resource Access Management (RAM) user from a RAM user group.', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Policy\\": {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"Description\\": \\"OSS administrator permission\\",\\n \\"PolicyDocument\\": \\"N/A\\",\\n \\"AttachmentCount\\": 0,\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"PolicyType\\": \\"Custom\\"\\n },\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\",\\n \\"DefaultPolicyVersion\\": {\\n \\"IsDefaultVersion\\": true,\\n \\"PolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [{ \\\\\\"Action\\\\\\": [\\\\\\"oss:*\\\\\\"], \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Resource\\\\\\": [\\\\\\"acs:oss:*:*:*\\\\\\"]}], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\"}\\",\\n \\"VersionId\\": \\"v1\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n}","type":"json"}]', + 'title' => 'GetPolicy', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'CreateRole' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetPolicy'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetPolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], ], + 'translator' => 'manual', + ], + 'GetPolicyVersion' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'create', - ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ - 'name' => 'RoleName', + 'name' => 'PolicyType', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM role.'."\n" - ."\n" - .'The name must be 1 to 64 characters in length, and can contain letters, digits, periods (.), and hyphens (-).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'ECSAdmin', - ], + 'schema' => ['description' => 'The type of the policy. Valid values: `System` and `Custom`.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Custom', 'title' => ''], ], [ - 'name' => 'Description', - 'in' => 'query', - 'schema' => [ - 'description' => 'The description of the RAM role.'."\n" - ."\n" - .'The description must be 1 to 1,024 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'ECS administrator', - ], - ], - [ - 'name' => 'AssumeRolePolicyDocument', + 'name' => 'PolicyName', 'in' => 'query', - 'schema' => [ - 'description' => 'The trust policy that specifies one or more trusted entities to assume the RAM role. The trusted entities can be Alibaba Cloud accounts, Alibaba Cloud services, or identity providers (IdPs).'."\n" - ."\n" - .'> RAM users cannot assume the RAM roles of trusted Alibaba Cloud services.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => '{"Statement":[{"Action":"sts:AssumeRole","Effect":"Allow","Principal":{"RAM":"acs:ram::123456789012****:root"}}],"Version":"1"}', - ], + 'schema' => ['description' => 'The name of the policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], ], [ - 'name' => 'MaxSessionDuration', - 'in' => 'query', - 'schema' => [ - 'description' => 'The maximum session time of the RAM role.'."\n" - ."\n" - .'Valid values: 3600 to 43200. Unit: seconds. Default value: 3600.'."\n" - ."\n" - .'If you do not specify this parameter, the default value is used.'."\n", - 'type' => 'integer', - 'format' => 'int64', - 'required' => false, - 'example' => '3600', - ], - ], - [ - 'name' => 'Tag', + 'name' => 'VersionId', 'in' => 'query', - 'style' => 'json', - 'schema' => [ - 'description' => 'The tags.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The tag.'."\n", - 'type' => 'object', - 'properties' => [ - 'Key' => [ - 'description' => 'The key of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => false, - 'example' => 'k1', - ], - 'Value' => [ - 'description' => 'The value of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => false, - 'example' => 'v1', - ], - ], - 'required' => false, - 'docRequired' => false, - ], - 'required' => false, - 'docRequired' => false, - ], + 'schema' => ['description' => 'The ID of the policy version.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'v3', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'Role' => [ - 'description' => 'The information about the RAM role.'."\n", + 'PolicyVersion' => [ + 'description' => 'The information about the policy version.', 'type' => 'object', 'properties' => [ - 'AssumeRolePolicyDocument' => [ - 'description' => 'The trust policy that specifies the trusted entity to assume the RAM role.'."\n", - 'type' => 'string', - 'example' => '{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::123456789012****:root" } } ], "Version": "1" }', - ], - 'Description' => [ - 'description' => 'The description of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'ECS administrator', - ], - 'MaxSessionDuration' => [ - 'description' => 'The maximum session time of the RAM role.'."\n", - 'type' => 'integer', - 'format' => 'int64', - 'example' => '3600', - ], - 'RoleName' => [ - 'description' => 'The name of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'ECSAdmin', - ], - 'CreateDate' => [ - 'description' => 'The time when the RAM role was created.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'RoleId' => [ - 'description' => 'The ID of the RAM role.'."\n", - 'type' => 'string', - 'example' => '901234567890****', - ], - 'Arn' => [ - 'description' => 'The Alibaba Cloud Resource Name (ARN) of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'acs:ram::123456789012****:role/ECSAdmin', - ], + 'IsDefaultVersion' => ['description' => 'Indicates whether the policy version is the default version.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], + 'PolicyDocument' => ['description' => 'The document of the policy.', 'type' => 'string', 'example' => '{ "Statement": [{ "Action": ["oss:*"], "Effect": "Allow", "Resource": ["acs:oss:*:*:*"]}], "Version": "1"}', 'title' => ''], + 'VersionId' => ['description' => 'The ID of the policy version.', 'type' => 'string', 'example' => 'v3', 'title' => ''], + 'CreateDate' => ['description' => 'The creation time.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], ], + 'title' => '', + 'example' => '', ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '9B34724D-54B0-4A51-B34D-4512372FE1BE', 'title' => ''], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Role\\": {\\n \\"AssumeRolePolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [ { \\\\\\"Action\\\\\\": \\\\\\"sts:AssumeRole\\\\\\", \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Principal\\\\\\": { \\\\\\"RAM\\\\\\": \\\\\\"acs:ram::123456789012****:root\\\\\\" } } ], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\" }\\",\\n \\"Description\\": \\"ECS管理角色\\",\\n \\"MaxSessionDuration\\": 3600,\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"RoleId\\": \\"901234567890****\\",\\n \\"Arn\\": \\"acs:ram::123456789012****:role/ECSAdmin\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"Role\\": {\\n \\"RoleId\\": \\"901234567890123\\",\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"Arn\\": \\"acs:ram::1234567890123456:role/ECSAdmin\\",\\n \\"Description\\": \\"ECS管理角色\\",\\n \\"AssumeRolePolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [ { \\\\\\"Action\\\\\\": \\\\\\"sts:AssumeRole\\\\\\", \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Principal\\\\\\": { \\\\\\"RAM\\\\\\": \\\\\\"acs:ram::123456789012345678:root\\\\\\" } } ], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\" }\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\n<CreateRoleResponse>\\n\\t<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n\\t<Role>\\n\\t\\t<RoleId>901234567890****</RoleId>\\n\\t\\t<RoleName>ECSAdmin</RoleName>\\n\\t\\t<Arn>acs:ram::123456789012****:role/ECSAdmin</Arn>\\n\\t\\t<Description>ECS管理角色</Description>\\n\\t\\t<MaxSessionDuration>3600</MaxSessionDuration>\\n\\t\\t<AssumeRolePolicyDocument>{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::123456789012****:root" } } ], "Version": "1" }</AssumeRolePolicyDocument>\\n\\t\\t<CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n\\t</Role>\\n</CreateRoleResponse>","errorExample":"<CreateRoleResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <Role>\\n <RoleId>901234567890123</RoleId>\\n <RoleName>ECSAdmin</RoleName>\\n <Arn>acs:ram::1234567890123456:role/ECSAdmin</Arn>\\n <Description>ECS管理角色</Description>\\n <AssumeRolePolicyDocument>{ \\"Statement\\": [ { \\"Action\\": \\"sts:AssumeRole\\", \\"Effect\\": \\"Allow\\", \\"Principal\\": { \\"RAM\\": \\"acs:ram::123456789012345678:root\\" } } ], \\"Version\\": \\"1\\" }</AssumeRolePolicyDocument>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n </Role>\\n</CreateRoleResponse>"}]', - 'title' => 'CreateRole', - 'summary' => 'Creates a Resource Access Management (RAM) role.', - 'description' => '### [](#)Operation description'."\n" - ."\n" - .'For more information about RAM roles, see [Overview of RAM roles](~~93689~~).'."\n", - 'requestParamsDescription' => 'The following content provides sample values for the **AssumeRolePolicyDocument** parameter.'."\n" - ."\n" - .'* The following policy allows the RAM role to be assumed by all RAM users of the Alibaba Cloud account whose ID is `123456789012****`.'."\n" - ."\n" - .'<!---->'."\n" - ."\n" - .' {'."\n" - .' "Statement": [{'."\n" - .' "Action": "sts:AssumeRole",'."\n" - .' "Effect": "Allow",'."\n" - .' "Principal": {'."\n" - .' "RAM": ['."\n" - .' "acs:ram::123456789012****:root"'."\n" - .' ]'."\n" - .' }'."\n" - .' }],'."\n" - .' "Version": "1"'."\n" - .' }'."\n" - ."\n" - .'* The following policy allows the RAM role to be assumed by the RAM user named `testuser` of the trusted Alibaba Cloud account whose ID is `123456789012****`.'."\n" - ."\n" - .'> Before you create the role, make sure that you have created a RAM user named `testuser` whose logon name is `testuser@123456789012****.onaliyun.com`.'."\n" - ."\n" - .' {'."\n" - .' "Statement": [{'."\n" - .' "Action": "sts:AssumeRole",'."\n" - .' "Effect": "Allow",'."\n" - .' "Principal": {'."\n" - .' "RAM": ['."\n" - .' "acs:ram::123456789012****:user/testuser"'."\n" - .' ]'."\n" - .' }'."\n" - .' }],'."\n" - .' "Version": "1"'."\n" - .' }'."\n" - ."\n" - .'* The following policy allows the RAM role to be assumed by the Elastic Compute Service (ECS) service of the current trusted Alibaba Cloud account.'."\n" - ."\n" - .'<!---->'."\n" - ."\n" - .' {'."\n" - .' "Statement": [{'."\n" - .' "Action": "sts:AssumeRole",'."\n" - .' "Effect": "Allow",'."\n" - .' "Principal": {'."\n" - .' "Service": ['."\n" - .' "ecs.aliyuncs.com"'."\n" - .' ]'."\n" - .' }'."\n" - .' }],'."\n" - .' "Version": "1"'."\n" - .' }'."\n" - ."\n" - .'* The following policy allows the RAM role to be assumed by the Security Assertion Markup Language (SAML) IdP named `testprovider` of the current trusted Alibaba Cloud account whose ID is `123456789012****`.'."\n" - ."\n" - .'> Before you create the role, make sure that you have created a SAML IdP named `testprovider`.'."\n" - ."\n" - .' {'."\n" - .' "Statement": [{'."\n" - .' "Action": "sts:AssumeRole",'."\n" - .' "Effect": "Allow",'."\n" - .' "Principal": {'."\n" - .' "Federated": ['."\n" - .' "acs:ram::123456789012****:saml-provider/testprovider"'."\n" - .' ]'."\n" - .' },'."\n" - .' "Condition": {'."\n" - .' "StringEquals": {'."\n" - .' "saml:recipient": "https://signin.aliyun.com/saml-role/sso"'."\n" - .' }'."\n" - .' }'."\n" - .' }],'."\n" - .' "Version": "1"'."\n" - .' }'."\n" - ."\n" - .'* The following policy allows the RAM role to be assumed by the OpenID Connect (OIDC) IdP named `TestOIDCProvider` of the current trusted Alibaba Cloud account whose ID is `123456789012****`.'."\n" - ."\n" - .'> Before you create the role, make sure that you have created an OIDC IdP named `TestOIDCProvider`.'."\n" - ."\n" - .' {'."\n" - .' "Statement": [{'."\n" - .' "Action": "sts:AssumeRole",'."\n" - .' "Effect": "Allow",'."\n" - .' "Principal": {'."\n" - .' "Federated": ['."\n" - .' "acs:ram::123456789012****:oidc-provider/TestOIDCProvider"'."\n" - .' ]'."\n" - .' },'."\n" - .' "Condition": {'."\n" - .' "StringEquals": {'."\n" - .' "oidc:aud": ['."\n" - .' "496271242565057****"'."\n" - .' ],'."\n" - .' "oidc:iss": "https://dev-xxxxxx.okta.com",'."\n" - .' "oidc:sub": "KryrkIdjylZb7agUgCEf****"'."\n" - .' }'."\n" - .' }'."\n" - .' }],'."\n" - .' "Version": "1"'."\n" - .' }'."\n", + 'title' => 'GetPolicyVersion', + 'summary' => 'Queries the information about a policy version.', + 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'DeleteRole' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetPolicyVersion'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetPolicyVersion', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"PolicyVersion\\": {\\n \\"IsDefaultVersion\\": false,\\n \\"PolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [{ \\\\\\"Action\\\\\\": [\\\\\\"oss:*\\\\\\"], \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Resource\\\\\\": [\\\\\\"acs:oss:*:*:*\\\\\\"]}], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\"}\\",\\n \\"VersionId\\": \\"v3\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\"\\n}","type":"json"}]', + ], + 'GetRole' => [ + 'summary' => 'Queries information about a Resource Access Management (RAM) role.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'delete', - ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ 'name' => 'RoleName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM role.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'ECSAdmin', - ], + 'schema' => ['description' => 'The name of the RAM role.'."\n" + ."\n" + .'The name must be 1 to 64 characters in length, and can contain letters, digits, periods (.), and hyphens (-).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'ECSAdmin', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '898FAB24-7509-43EE-A287-086FE4C44394', + 'Role' => [ + 'description' => 'The information about the RAM role.', + 'type' => 'object', + 'properties' => [ + 'AssumeRolePolicyDocument' => ['description' => 'The policy that specifies the trusted entity to assume the RAM role.', 'type' => 'string', 'example' => '{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::123456789012****:root" } } ], "Version": "1" }', 'title' => ''], + 'UpdateDate' => ['description' => 'The time when the RAM role was modified.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'Description' => ['description' => 'The description of the RAM role.', 'type' => 'string', 'example' => 'ECS management role', 'title' => ''], + 'MaxSessionDuration' => ['description' => 'The maximum session duration of the RAM role.', 'type' => 'integer', 'format' => 'int64', 'example' => '3600', 'title' => ''], + 'RoleName' => ['description' => 'The name of the RAM role.', 'type' => 'string', 'example' => 'ECSAdmin', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the RAM role was created.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'RoleId' => ['description' => 'The ID of the RAM role.', 'type' => 'string', 'example' => '901234567890****', 'title' => ''], + 'Arn' => ['description' => 'The Alibaba Cloud Resource Name (ARN) of the RAM role.', 'type' => 'string', 'example' => 'acs:ram::123456789012****:role/ECSAdmin', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"898FAB24-7509-43EE-A287-086FE4C44394\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"898FAB24-7509-43EE-A287-086FE4C44394\\"\\n}"},{"type":"xml","example":"<DeleteRoleResponse>\\n <RequestId>898FAB24-7509-43EE-A287-086FE4C44394</RequestId>\\n</DeleteRoleResponse>","errorExample":"<DeleteRoleResponse>\\n <RequestId>898FAB24-7509-43EE-A287-086FE4C44394</RequestId>\\n</DeleteRoleResponse>"}]', - 'title' => 'DeleteRole', - 'summary' => 'Deletes a regular Resource Access Management (RAM) role.', - 'description' => 'Before you delete a regular RAM role, call the [DetachPolicyFromRole](~~2337680~~) operation to remove all policies from the RAM role.'."\n" - ."\n" - .'The DeleteRole operation cannot be used to delete service-linked roles and reserved roles for cloud services.'."\n", + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Role\\": {\\n \\"AssumeRolePolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [ { \\\\\\"Action\\\\\\": \\\\\\"sts:AssumeRole\\\\\\", \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Principal\\\\\\": { \\\\\\"RAM\\\\\\": \\\\\\"acs:ram::123456789012****:root\\\\\\" } } ], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\" }\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"Description\\": \\"ECS management role\\",\\n \\"MaxSessionDuration\\": 3600,\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"RoleId\\": \\"901234567890****\\",\\n \\"Arn\\": \\"acs:ram::123456789012****:role/ECSAdmin\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + 'title' => 'GetRole', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'UpdateRole' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], - 'security' => [ - [ - 'AK' => [], + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetRole'], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], - 'parameters' => [ - [ - 'name' => 'RoleName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM role.'."\n" - ."\n" - .'The name must be 1 to 64 characters in length, and can contain letters, digits, periods (.), and hyphens (-).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'ECSAdmin', - ], - ], - [ - 'name' => 'NewAssumeRolePolicyDocument', - 'in' => 'query', - 'schema' => [ - 'description' => 'The trust policy that specifies the trusted entity to assume the RAM role.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => '{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::12345678901234****:root" } } ], "Version": "1" }', - ], - ], + 'ramActions' => [ [ - 'name' => 'NewMaxSessionDuration', - 'in' => 'query', - 'schema' => [ - 'description' => 'The maximum session time of the RAM role.'."\n" - ."\n" - .'Valid values: 3600 to 43200. Unit: seconds. Default value: 3600.'."\n" - ."\n" - .'If you do not specify this parameter, the default value is used.'."\n", - 'type' => 'integer', - 'format' => 'int64', - 'required' => false, - 'example' => '3600', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetRole', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ], ], ], + ], + 'translator' => 'manual', + ], + 'GetSecurityPreference' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], + 'security' => [ [ - 'name' => 'NewDescription', - 'in' => 'query', - 'schema' => [ - 'description' => 'The new description of the RAM role.'."\n" - ."\n" - .'The description must be 1 to 1,024 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'ECS administrator', - ], + 'AK' => [], ], ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get'], + 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'Role' => [ - 'description' => 'The information about the RAM role.'."\n", + 'SecurityPreference' => [ + 'description' => 'The security preferences.', 'type' => 'object', 'properties' => [ - 'AssumeRolePolicyDocument' => [ - 'description' => 'The trust policy that specifies the trusted entity to assume the RAM role.'."\n", - 'type' => 'string', - 'example' => '{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::123456789012****:root" } } ], "Version": "1" }', - ], - 'UpdateDate' => [ - 'description' => 'The time when the description of the RAM role was changed.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'Description' => [ - 'description' => 'The description of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'ECS administrator', - ], - 'MaxSessionDuration' => [ - 'description' => 'The maximum session time of the RAM role.'."\n", - 'type' => 'integer', - 'format' => 'int64', - 'example' => '3600', - ], - 'RoleName' => [ - 'description' => 'The name of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'ECSAdmin', + 'AccessKeyPreference' => [ + 'description' => 'The AccessKey pair preference.', + 'type' => 'object', + 'properties' => [ + 'AllowUserToManageAccessKeys' => ['description' => 'Indicates whether Resource Access Management (RAM) users can manage their AccessKey pairs. Valid values:'."\n" + ."\n" + .'- true'."\n" + ."\n" + .'- false', 'type' => 'boolean', 'example' => 'false', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], - 'CreateDate' => [ - 'description' => 'The time when the RAM role was created.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', + 'MFAPreference' => [ + 'description' => 'The multi-factor authentication (MFA) preference.', + 'type' => 'object', + 'properties' => [ + 'AllowUserToManageMFADevices' => ['description' => 'Indicates whether RAM users can manage their MFA devices. Valid values:'."\n" + ."\n" + .'- true'."\n" + ."\n" + .'- false', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], - 'RoleId' => [ - 'description' => 'The ID of the RAM role.'."\n", - 'type' => 'string', - 'example' => '901234567890****', + 'LoginProfilePreference' => [ + 'description' => 'The logon preference.', + 'type' => 'object', + 'properties' => [ + 'EnableSaveMFATicket' => ['description' => 'Indicates whether RAM users can save security codes for MFA during logon. Each security code is valid for seven days. Valid values:'."\n" + ."\n" + .'- true'."\n" + ."\n" + .'- false', 'type' => 'boolean', 'example' => 'false', 'title' => ''], + 'LoginSessionDuration' => ['description' => 'The validity period of the logon session of RAM users. Unit: hours.', 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], + 'LoginNetworkMasks' => ['description' => 'The subnet mask that indicates the IP addresses from which logon to the Alibaba Cloud Management Console is allowed. This parameter applies to password-based logon and single sign-on (SSO). However, this parameter does not apply to API calls that are authenticated based on AccessKey pairs.'."\n" + ."\n" + .'- If you specify a subnet mask, RAM users can use only the IP addresses in the subnet mask to log on to the Alibaba Cloud Management Console.'."\n" + ."\n" + .'- If you do not specify a subnet mask, RAM users can use all IP addresses to log on to the Alibaba Cloud Management Console.'."\n" + ."\n" + .'If you want to specify more than one subnet mask, separate the masks with semicolons (;). Example: 192.168.0.0/16;10.0.0.0/8.', 'type' => 'string', 'example' => '10.0.0.0/8', 'title' => ''], + 'AllowUserToChangePassword' => ['description' => 'Indicates whether RAM users can change their passwords. Valid values:'."\n" + ."\n" + .'- true'."\n" + ."\n" + .'- false', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], - 'Arn' => [ - 'description' => 'The Alibaba Cloud Resource Name (ARN) of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'acs:ram::123456789012****:role/ECSAdmin', + 'PublicKeyPreference' => [ + 'description' => 'The public key preference.'."\n" + ."\n" + .'> This parameter is valid only for the Japan site.', + 'type' => 'object', + 'properties' => [ + 'AllowUserToManagePublicKeys' => ['description' => 'Indicates whether RAM users can manage their public keys. Valid values:'."\n" + ."\n" + .'- true'."\n" + ."\n" + .'- false', 'type' => 'boolean', 'example' => 'false', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], ], + 'title' => '', + 'example' => '', ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'DC1213F1-A9D5-4A01-A996-44983689126C', 'title' => ''], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Role\\": {\\n \\"AssumeRolePolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [ { \\\\\\"Action\\\\\\": \\\\\\"sts:AssumeRole\\\\\\", \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Principal\\\\\\": { \\\\\\"RAM\\\\\\": \\\\\\"acs:ram::123456789012****:root\\\\\\" } } ], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\" }\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"Description\\": \\"ECS管理角色\\",\\n \\"MaxSessionDuration\\": 3600,\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"RoleId\\": \\"901234567890****\\",\\n \\"Arn\\": \\"acs:ram::123456789012****:role/ECSAdmin\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"Role\\": {\\n \\"RoleId\\": \\"901234567890123\\",\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"Arn\\": \\"acs:ram::1234567890123456:role/ECSAdmin\\",\\n \\"Description\\": \\"ECS管理角色\\",\\n \\"AssumeRolePolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [ { \\\\\\"Action\\\\\\": \\\\\\"sts:AssumeRole\\\\\\", \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Principal\\\\\\": { \\\\\\"RAM\\\\\\": \\\\\\"acs:ram::123456789012345678:root\\\\\\" } } ], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\" }\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\n<UpdateRoleResponse>\\n\\t<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n\\t<Role>\\n\\t\\t<RoleId>901234567890****</RoleId>\\n\\t\\t<RoleName>ECSAdmin</RoleName>\\n\\t\\t<Arn>acs:ram::123456789012****:role/ECSAdmin</Arn>\\n\\t\\t<Description>ECS管理角色</Description>\\n\\t\\t<MaxSessionDuration>3600</MaxSessionDuration>\\n\\t\\t<AssumeRolePolicyDocument>{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::123456789012****:root" } } ], "Version": "1" }</AssumeRolePolicyDocument>\\n\\t\\t<CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n\\t\\t<UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n\\t</Role>\\n</UpdateRoleResponse>","errorExample":"<UpdateRoleResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <Role>\\n <RoleId>901234567890123</RoleId>\\n <RoleName>ECSAdmin</RoleName>\\n <Arn>acs:ram::1234567890123456:role/ECSAdmin</Arn>\\n <Description>ECS管理角色</Description>\\n <AssumeRolePolicyDocument>{ \\"Statement\\": [ { \\"Action\\": \\"sts:AssumeRole\\", \\"Effect\\": \\"Allow\\", \\"Principal\\": { \\"RAM\\": \\"acs:ram::123456789012345678:root\\" } } ], \\"Version\\": \\"1\\" }</AssumeRolePolicyDocument>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n </Role>\\n</UpdateRoleResponse>"}]', - 'title' => 'UpdateRole', - 'summary' => 'Modifies information about a Resource Access Management (RAM) role.', - 'description' => 'This topic provides an example on how to change the description of `ECSAdmin` to `ECS administrator`.'."\n", - 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).'."\n", + 'title' => 'GetSecurityPreference', + 'summary' => 'Queries the security preferences.', + 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'GetRole' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSecurityPreference'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetSecurityPreference', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"SecurityPreference\\": {\\n \\"AccessKeyPreference\\": {\\n \\"AllowUserToManageAccessKeys\\": false\\n },\\n \\"MFAPreference\\": {\\n \\"AllowUserToManageMFADevices\\": true\\n },\\n \\"LoginProfilePreference\\": {\\n \\"EnableSaveMFATicket\\": false,\\n \\"LoginSessionDuration\\": 6,\\n \\"LoginNetworkMasks\\": \\"10.0.0.0/8\\",\\n \\"AllowUserToChangePassword\\": true\\n },\\n \\"PublicKeyPreference\\": {\\n \\"AllowUserToManagePublicKeys\\": false\\n }\\n },\\n \\"RequestId\\": \\"DC1213F1-A9D5-4A01-A996-44983689126C\\"\\n}","type":"json"}]', + ], + 'GetUser' => [ + 'summary' => 'You can call the GetUser operation to query the details of a Resource Access Management (RAM) user.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ - 'name' => 'RoleName', + 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM role.'."\n" - ."\n" - .'The name must be 1 to 64 characters in length, and can contain letters, digits, periods (.), and hyphens (-).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'ECSAdmin', - ], + 'schema' => ['description' => 'The name of the RAM user.'."\n" + ."\n" + .'The name is 1 to 64 characters in length and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'title' => '', 'example' => 'alice'], ], ], 'responses' => [ 200 => [ 'schema' => [ + 'description' => 'The data returned.', 'type' => 'object', 'properties' => [ - 'Role' => [ - 'description' => 'The information about the RAM role.'."\n", + 'User' => [ + 'description' => 'The information about the RAM user.', 'type' => 'object', 'properties' => [ - 'AssumeRolePolicyDocument' => [ - 'description' => 'The policy that specifies the trusted entity to assume the RAM role.'."\n", - 'type' => 'string', - 'example' => '{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::123456789012****:root" } } ], "Version": "1" }', - ], - 'UpdateDate' => [ - 'description' => 'The time when the RAM role was modified.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'Description' => [ - 'description' => 'The description of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'ECS administrator', - ], - 'MaxSessionDuration' => [ - 'description' => 'The maximum session duration of the RAM role.'."\n", - 'type' => 'integer', - 'format' => 'int64', - 'example' => '3600', - ], - 'RoleName' => [ - 'description' => 'The name of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'ECSAdmin', - ], - 'CreateDate' => [ - 'description' => 'The time when the RAM role was created.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'RoleId' => [ - 'description' => 'The ID of the RAM role.'."\n", - 'type' => 'string', - 'example' => '901234567890****', - ], - 'Arn' => [ - 'description' => 'The Alibaba Cloud Resource Name (ARN) of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'acs:ram::123456789012****:role/ECSAdmin', - ], + 'DisplayName' => ['description' => 'The display name.', 'type' => 'string', 'title' => '', 'example' => 'alice'], + 'Email' => ['description' => 'The email address of the RAM user.'."\n" + ."\n" + .'> This parameter is available only on the China site (aliyun.com).', 'type' => 'string', 'title' => '', 'example' => 'alice@example.com'], + 'UpdateDate' => ['description' => 'The time when the RAM user was last updated. The time is in UTC.', 'type' => 'string', 'title' => '', 'example' => '2015-02-11T03:15:21Z'], + 'MobilePhone' => ['description' => 'The mobile phone number of the RAM user.'."\n" + ."\n" + .'> This parameter is available only on the China site (aliyun.com).', 'type' => 'string', 'title' => '', 'example' => '86-1860000****'], + 'UserId' => ['description' => 'The unique ID of the RAM user.', 'type' => 'string', 'title' => '', 'example' => '222748924538****'], + 'Comments' => ['description' => 'The description.', 'type' => 'string', 'title' => '', 'example' => 'This is a cloud computing engineer.'], + 'LastLoginDate' => ['description' => 'The last time the user logged on with a password. The time is in UTC.', 'type' => 'string', 'title' => '', 'example' => '2015-01-23T12:33:18Z'], + 'CreateDate' => ['description' => 'The time when the RAM user was created. The time is in UTC.', 'type' => 'string', 'title' => '', 'example' => '2015-01-23T12:33:18Z'], + 'UserName' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'title' => '', 'example' => 'alice'], ], + 'title' => '', + 'example' => '', ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'title' => '', 'example' => '2D69A58F-345C-4FDE-88E4-BF5189484043'], ], - 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Role\\": {\\n \\"AssumeRolePolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [ { \\\\\\"Action\\\\\\": \\\\\\"sts:AssumeRole\\\\\\", \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Principal\\\\\\": { \\\\\\"RAM\\\\\\": \\\\\\"acs:ram::123456789012****:root\\\\\\" } } ], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\" }\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"Description\\": \\"ECS管理角色\\",\\n \\"MaxSessionDuration\\": 3600,\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"RoleId\\": \\"901234567890****\\",\\n \\"Arn\\": \\"acs:ram::123456789012****:role/ECSAdmin\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"Role\\": {\\n \\"RoleId\\": \\"901234567890123\\",\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"Arn\\": \\"acs:ram::1234567890123456:role/ECSAdmin\\",\\n \\"Description\\": \\"ECS管理角色\\",\\n \\"AssumeRolePolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [ { \\\\\\"Action\\\\\\": \\\\\\"sts:AssumeRole\\\\\\", \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Principal\\\\\\": { \\\\\\"RAM\\\\\\": \\\\\\"acs:ram::123456789012345678:root\\\\\\" } } ], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\" }\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\r\\n<GetRoleResponse>\\r\\n\\t<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\r\\n\\t<Role>\\r\\n\\t\\t<RoleId>901234567890****</RoleId>\\r\\n\\t\\t<RoleName>ECSAdmin</RoleName>\\r\\n\\t\\t<Arn>acs:ram::123456789012****:role/ECSAdmin</Arn>\\r\\n\\t\\t<Description>ECS管理角色</Description>\\r\\n\\t\\t<MaxSessionDuration>3600</MaxSessionDuration>\\r\\n\\t\\t<AssumeRolePolicyDocument>{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::123456789012****:root" } } ], "Version": "1" }</AssumeRolePolicyDocument>\\r\\n\\t\\t<CreateDate>2015-01-23T12:33:18Z</CreateDate>\\r\\n\\t\\t<UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\r\\n\\t</Role>\\r\\n</GetRoleResponse>\\r\\n\\t\\r\\n","errorExample":"<GetRoleResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <Role>\\n <RoleId>901234567890123</RoleId>\\n <RoleName>ECSAdmin</RoleName>\\n <Arn>acs:ram::1234567890123456:role/ECSAdmin</Arn>\\n <Description>ECS管理角色</Description>\\n <AssumeRolePolicyDocument>{ \\"Statement\\": [ { \\"Action\\": \\"sts:AssumeRole\\", \\"Effect\\": \\"Allow\\", \\"Principal\\": { \\"RAM\\": \\"acs:ram::123456789012345678:root\\" } } ], \\"Version\\": \\"1\\" }</AssumeRolePolicyDocument>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n </Role>\\n</GetRoleResponse>"}]', - 'title' => 'GetRole', - 'summary' => 'Queries information about a Resource Access Management (RAM) role.', - 'requestParamsDescription' => ' ', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"User\\": {\\n \\"DisplayName\\": \\"alice\\",\\n \\"Email\\": \\"alice@example.com\\",\\n \\"UpdateDate\\": \\"2015-02-11T03:15:21Z\\",\\n \\"MobilePhone\\": \\"86-1860000****\\",\\n \\"UserId\\": \\"222748924538****\\",\\n \\"Comments\\": \\"This is a cloud computing engineer.\\",\\n \\"LastLoginDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"alice\\"\\n },\\n \\"RequestId\\": \\"2D69A58F-345C-4FDE-88E4-BF5189484043\\"\\n}","type":"json"}]', + 'title' => 'GetUser', + 'description' => 'This topic provides an example of how to query the details of the RAM user `alice`.', + 'requestParamsDescription' => 'For more information about common parameters, see [Common parameters](~~28676~~).', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'ListRoles' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetUser'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], ], + 'translator' => 'machine', + ], + 'GetUserMFAInfo' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'autoTest' => false, 'notSupportAutoTestReason' => 'MFA相关API依赖设备返回的随机验证码,自动化测试中取不到'], 'parameters' => [ [ - 'name' => 'Marker', - 'in' => 'query', - 'schema' => [ - 'description' => 'The `marker`. If part of a previous response is truncated, you can use this parameter to obtain the truncated part.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'EXAMPLE', - ], - ], - [ - 'name' => 'MaxItems', + 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The number of entries to return. If a response is truncated because it reaches the value of `MaxItems`, the value of `IsTruncated` will be `true`.'."\n" - ."\n" - .'Valid values: 1 to 1000. Default value: 100.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'required' => false, - 'example' => '100', - ], - ], - [ - 'name' => 'Tag', - 'in' => 'query', - 'style' => 'json', - 'schema' => [ - 'description' => 'The tags.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The tag.'."\n", - 'type' => 'object', - 'properties' => [ - 'Key' => [ - 'description' => 'The key of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => false, - 'example' => 'owner', - ], - 'Value' => [ - 'description' => 'The value of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'alice', - ], - ], - 'required' => false, - 'docRequired' => false, - ], - 'required' => false, - 'docRequired' => false, - ], + 'schema' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'test', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', - ], - 'IsTruncated' => [ - 'description' => 'Indicates whether the response is truncated.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'Roles' => [ + 'MFADevice' => [ + 'description' => 'The information about the MFA device that is bound to the RAM user.', 'type' => 'object', - 'itemNode' => true, 'properties' => [ - 'Role' => [ - 'description' => 'The information about the RAM roles.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The information about the RAM role.'."\n", - 'type' => 'object', - 'properties' => [ - 'Description' => [ - 'description' => 'The description of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'ECS administrator', - ], - 'UpdateDate' => [ - 'description' => 'The update time.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'MaxSessionDuration' => [ - 'description' => 'The maximum session duration of the RAM role.'."\n", - 'type' => 'integer', - 'format' => 'int64', - 'example' => '3600', - ], - 'RoleName' => [ - 'description' => 'The name of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'ECSAdmin', - ], - 'CreateDate' => [ - 'description' => 'The creation time.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'RoleId' => [ - 'description' => 'The ID of the RAM role.'."\n", - 'type' => 'string', - 'example' => '901234567890****', - ], - 'Arn' => [ - 'description' => 'The Alibaba Cloud Resource Name (ARN) of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'acs:ram::123456789012****:role/ECSAdmin', - ], - 'Tags' => [ - 'type' => 'object', - 'itemNode' => true, - 'properties' => [ - 'Tag' => [ - 'description' => 'The tags.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The tag.'."\n", - 'type' => 'object', - 'properties' => [ - 'TagKey' => [ - 'description' => 'The key of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'owner', - ], - 'TagValue' => [ - 'description' => 'The value of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'alice', - ], - ], - 'required' => false, - ], - ], - ], - ], - ], - ], - ], + 'SerialNumber' => ['description' => 'The serial number of the MFA device.', 'type' => 'string', 'example' => 'acs:ram::177242285274****:mfa/test', 'title' => ''], + 'Type' => ['description' => 'The type of the MFA device. Valid values:'."\n" + ."\n" + .'- VMFA: virtual MFA device.'."\n" + ."\n" + .'- U2F: Universal 2nd Factor (U2F) security key.', 'type' => 'string', 'example' => 'VMFA', 'title' => ''], ], + 'title' => '', + 'example' => '', ], - 'Marker' => [ - 'description' => 'The marker. This parameter is returned only if the value of `IsTruncated` is `true`. If the parameter is returned, you can call this operation again and set this parameter to obtain the truncated part.````'."\n", - 'type' => 'string', - 'example' => 'EXAMPLE', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], - 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"IsTruncated\\": true,\\n \\"Roles\\": {\\n \\"Role\\": [\\n {\\n \\"Description\\": \\"ECS管理角色\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"MaxSessionDuration\\": 3600,\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"RoleId\\": \\"901234567890****\\",\\n \\"Arn\\": \\"acs:ram::123456789012****:role/ECSAdmin\\",\\n \\"Tags\\": {\\n \\"Tag\\": [\\n {\\n \\"TagKey\\": \\"owner\\",\\n \\"TagValue\\": \\"alice\\"\\n }\\n ]\\n }\\n }\\n ]\\n },\\n \\"Marker\\": \\"EXAMPLE\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"Roles\\": {\\n \\"Role\\": [\\n {\\n \\"RoleId\\": \\"901234567890123\\",\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"Arn\\": \\"acs:ram::1234567890123456:role/ECSAdmin\\",\\n \\"Description\\": \\"ECS管理角色\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"RoleId\\": \\"901234567890456\\",\\n \\"RoleName\\": \\"OSSReadonlyAccess\\",\\n \\"Arn\\": \\"acs:ram::1234567890123456:role/OSSReadonlyAccess\\",\\n \\"Description\\": \\"OSS只读访问角色\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\n<ListRolesResponse>\\n\\t<RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n\\t<IsTruncated>true</IsTruncated>\\n\\t<Marker>EXAMPLE</Marker>\\n\\t<Roles>\\n\\t\\t<Role>\\n\\t\\t\\t<RoleId>901234567890****</RoleId>\\n\\t\\t\\t<RoleName>ECSAdmin</RoleName>\\n\\t\\t\\t<Arn>acs:ram::123456789012****:role/ECSAdmin</Arn>\\n\\t\\t\\t<Description>ECS管理角色</Description>\\n\\t\\t\\t<MaxSessionDuration>3600</MaxSessionDuration>\\n\\t\\t\\t<CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n\\t\\t\\t<UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n\\t\\t</Role>\\n\\t\\t<Role>\\n\\t\\t\\t<RoleId>901234567890****</RoleId>\\n\\t\\t\\t<RoleName>OSSReadonlyAccess</RoleName>\\n\\t\\t\\t<Arn>acs:ram::123456789012****:role/OSSReadonlyAccess</Arn>\\n\\t\\t\\t<Description>OSS只读访问角色</Description>\\n\\t\\t\\t<MaxSessionDuration>3600</MaxSessionDuration>\\n\\t\\t\\t<CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n\\t\\t\\t<UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n\\t\\t</Role>\\n\\t</Roles>\\n</ListRolesResponse>\\t\\n","errorExample":"<ListRolesResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <Roles>\\n <Role>\\n <RoleId>901234567890123</RoleId>\\n <RoleName>ECSAdmin</RoleName>\\n <Arn>acs:ram::1234567890123456:role/ECSAdmin</Arn>\\n <Description>ECS管理角色</Description>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n </Role>\\n <Role>\\n <RoleId>901234567890456</RoleId>\\n <RoleName>OSSReadonlyAccess</RoleName>\\n <Arn>acs:ram::1234567890123456:role/OSSReadonlyAccess</Arn>\\n <Description>OSS只读访问角色</Description>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n </Role>\\n </Roles>\\n</ListRolesResponse>"}]', - 'title' => 'ListRoles', - 'summary' => 'Queries all Resource Access Management (RAM) roles.', + 'title' => 'GetUserMFAInfo', + 'summary' => 'Queries the multi-factor authentication (MFA) device that is bound to a Resource Access Management (RAM) user.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'CreatePolicy' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetUserMFAInfo'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetUserMFAInfo', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"MFADevice\\": {\\n \\"SerialNumber\\": \\"acs:ram::177242285274****:mfa/test\\",\\n \\"Type\\": \\"VMFA\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + ], + 'ListAccessKeys' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'create', - ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ - 'name' => 'PolicyName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n" - ."\n" - .'The name must be 1 to 128 characters in length and can contain letters, digits, and hyphens (-).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'View-ECS-instances-in-a-specific-region', - ], - ], - [ - 'name' => 'Description', - 'in' => 'query', - 'schema' => [ - 'description' => 'The description of the policy.'."\n" - ."\n" - .'The description must be 1 to 1,024 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'Query ECS instances in a specific region', - ], - ], - [ - 'name' => 'PolicyDocument', - 'in' => 'query', - 'schema' => [ - 'description' => 'The document of the policy.'."\n" - ."\n" - .'The document must be 1 to 6,144 characters in length.'."\n" - ."\n" - .'For more information about policy elements and sample policies, see [Policy elements](~~93738~~) and [Overview of sample policies](~~210969~~).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => '{"Statement": [{"Effect": "Allow","Action": "ecs:Describe*","Resource": "acs:ecs:cn-qingdao:*:instance/*"}],"Version": "1"}', - ], - ], - [ - 'name' => 'Tag', + 'name' => 'UserName', 'in' => 'query', - 'style' => 'json', - 'schema' => [ - 'description' => 'The tags.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The tag.'."\n", - 'type' => 'object', - 'properties' => [ - 'Key' => [ - 'description' => 'The key of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => false, - 'example' => 'owner', - ], - 'Value' => [ - 'description' => 'The value of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => false, - 'example' => 'alice', - ], - ], - 'required' => false, - 'docRequired' => false, - ], - 'required' => false, - 'docRequired' => false, - ], + 'schema' => ['description' => 'The name of the RAM user. If a RAM user calls this operation and does not specify this parameter, the AccessKey pairs of the RAM user are returned.', 'type' => 'string', 'required' => false, 'example' => 'zhangq****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'Policy' => [ - 'description' => 'The information about the policy.'."\n", + 'AccessKeys' => [ 'type' => 'object', + 'itemNode' => true, 'properties' => [ - 'DefaultVersion' => [ - 'description' => 'The version of the policy. Default value: v1.'."\n", - 'type' => 'string', - 'example' => 'v1', - ], - 'Description' => [ - 'description' => 'The description of the policy.'."\n", - 'type' => 'string', - 'example' => 'Query ECS instances in a specific region', - ], - 'PolicyName' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'example' => 'View-ECS-instances-in-a-specific-region', - ], - 'CreateDate' => [ - 'description' => 'The time when the policy was created.'."\n", - 'type' => 'string', - 'example' => '2021-10-13T02:46:57Z', - ], - 'PolicyType' => [ - 'description' => 'The type of the policy. Valid values:'."\n" - ."\n" - .'* Custom'."\n" - .'* System'."\n", - 'type' => 'string', - 'example' => 'Custom', + 'AccessKey' => [ + 'description' => 'The AccessKey pairs that belong to the RAM user.', + 'type' => 'array', + 'items' => [ + 'description' => 'The AccessKey pair that belongs to the RAM user.', + 'type' => 'object', + 'properties' => [ + 'Status' => ['description' => 'The status of the AccessKey pair. Valid values: Active and Inactive.', 'type' => 'string', 'example' => 'Active', 'title' => ''], + 'AccessKeyId' => ['description' => 'The AccessKey ID.', 'type' => 'string', 'example' => '0wNEpMMlzy7s****', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the AccessKey pair was created.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => 'BA34C54A-C2B1-5A65-B6B0-B5842C1DB4DA', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '4B450CA1-36E8-4AA2-8461-86B42BF4CC4E', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Policy\\": {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"Description\\": \\"查看指定地域ECS实例\\",\\n \\"PolicyName\\": \\"View-ECS-instances-in-a-specific-region\\",\\n \\"CreateDate\\": \\"2021-10-13T02:46:57Z\\",\\n \\"PolicyType\\": \\"Custom\\"\\n },\\n \\"RequestId\\": \\"BA34C54A-C2B1-5A65-B6B0-B5842C1DB4DA\\"\\n}","errorExample":""},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\n<CreatePolicyResponse>\\n\\t<Policy>\\n\\t\\t<PolicyType>Custom</PolicyType>\\n\\t\\t<Description>查看指定地域ECS实例</Description>\\n\\t\\t<DefaultVersion>v1</DefaultVersion>\\n\\t\\t<PolicyName>View-ECS-instances-in-a-specific-region</PolicyName>\\n\\t\\t<CreateDate>2021-10-13T02:46:57Z</CreateDate>\\n\\t</Policy>\\n\\t<RequestId>BA34C54A-C2B1-5A65-B6B0-B5842C1DB4DA</RequestId>\\n</CreatePolicyResponse>","errorExample":""}]', - 'title' => 'CreatePolicy', - 'summary' => 'Creates a custom policy.', - 'description' => 'For more information about policies, see [Policy overview](~~93732~~).'."\n" - ."\n" - .'This topic provides an example on how to create a custom policy to query Elastic Compute Service (ECS) instances in a specific region.'."\n", + 'title' => 'ListAccessKeys', + 'summary' => 'Queries all AccessKey pairs that belong to a Resource Access Management (RAM) user.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'GetPolicy' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAccessKeys'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListAccessKeys', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"AccessKeys\\": {\\n \\"AccessKey\\": [\\n {\\n \\"Status\\": \\"Active\\",\\n \\"AccessKeyId\\": \\"0wNEpMMlzy7s****\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"4B450CA1-36E8-4AA2-8461-86B42BF4CC4E\\"\\n}","type":"json"}]', + ], + 'ListEntitiesForPolicy' => [ + 'summary' => 'Queries the entities to which a policy is attached.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ 'name' => 'PolicyType', 'in' => 'query', - 'schema' => [ - 'description' => 'The type of the policy. Valid values: `System` and `Custom`.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Custom', - ], + 'schema' => ['description' => 'The type of the policy. Valid values: `System` and `Custom`.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Custom', 'title' => ''], ], [ 'name' => 'PolicyName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], + 'schema' => ['description' => 'The name of the policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'Policy' => [ - 'description' => 'The basic information about the policy.'."\n", + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', 'title' => ''], + 'Groups' => [ 'type' => 'object', + 'itemNode' => true, 'properties' => [ - 'DefaultVersion' => [ - 'description' => 'The default version of the policy.'."\n", - 'type' => 'string', - 'example' => 'v1', - ], - 'UpdateDate' => [ - 'description' => 'The time when the policy was modified.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'Description' => [ - 'description' => 'The description of the policy.'."\n", - 'type' => 'string', - 'example' => 'OSS administrator', - ], - 'PolicyDocument' => [ - 'description' => 'This parameter is deprecated.'."\n", - 'type' => 'string', - 'example' => 'N/A', - ], - 'AttachmentCount' => [ - 'description' => 'The number of references to the policy.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '0', - ], - 'PolicyName' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'example' => 'OSS-Administrator', - ], - 'CreateDate' => [ - 'description' => 'The time when the policy was created.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'PolicyType' => [ - 'description' => 'The type of the policy.'."\n", - 'type' => 'string', - 'example' => 'Custom', + 'Group' => [ + 'description' => 'The information about the Resource Access Management (RAM) user groups.', + 'type' => 'array', + 'items' => [ + 'description' => 'The information about the RAM user group.', + 'type' => 'object', + 'properties' => [ + 'GroupName' => ['description' => 'The name of the RAM user group.', 'type' => 'string', 'example' => 'QA-Team', 'title' => ''], + 'Comments' => ['description' => 'The description of the RAM user group.', 'type' => 'string', 'example' => 'Test team', 'title' => ''], + 'AttachDate' => ['description' => 'The time when the policy was attached to the RAM user group.', 'type' => 'string', 'example' => '2015-02-18T17:22:08Z', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', - ], - 'DefaultPolicyVersion' => [ - 'description' => 'The information about the default policy version.'."\n", + 'Roles' => [ 'type' => 'object', + 'itemNode' => true, 'properties' => [ - 'IsDefaultVersion' => [ - 'description' => 'An attribute in the `DefaultPolicyVersion` parameter. The value of the `IsDefaultVersion` parameter is `true`.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'PolicyDocument' => [ - 'description' => 'The document of the policy.'."\n", - 'type' => 'string', - 'example' => '{ "Statement": [{ "Action": ["oss:*"], "Effect": "Allow", "Resource": ["acs:oss:*:*:*"]}], "Version": "1"}', - ], - 'VersionId' => [ - 'description' => 'The ID of the default policy version.'."\n", - 'type' => 'string', - 'example' => 'v1', + 'Role' => [ + 'description' => 'The information about the RAM roles.', + 'type' => 'array', + 'items' => [ + 'description' => 'The information about the RAM role.', + 'type' => 'object', + 'properties' => [ + 'Description' => ['description' => 'The description of the RAM role.', 'type' => 'string', 'example' => 'ECS management role', 'title' => ''], + 'RoleName' => ['description' => 'The name of the RAM role.', 'type' => 'string', 'example' => 'ECSAdmin', 'title' => ''], + 'AttachDate' => ['description' => 'The time when the policy was attached to the RAM role.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'Arn' => ['description' => 'The Alibaba Cloud Resource Name (ARN) of the RAM role.', 'type' => 'string', 'example' => 'acs:ram::123456789012****:role/ECSAdmin', 'title' => ''], + 'RoleId' => ['description' => 'The ID of the RAM role.', 'type' => 'string', 'example' => '122748924538****', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', ], - 'CreateDate' => [ - 'description' => 'The time when the default policy version was created.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', + ], + 'description' => '', + 'title' => '', + 'example' => '', + ], + 'Users' => [ + 'type' => 'object', + 'itemNode' => true, + 'properties' => [ + 'User' => [ + 'description' => 'The information about the RAM users.', + 'type' => 'array', + 'items' => [ + 'description' => 'The information about the RAM user.', + 'type' => 'object', + 'properties' => [ + 'DisplayName' => ['description' => 'The display name of the RAM user.', 'type' => 'string', 'example' => '张*', 'title' => ''], + 'UserId' => ['description' => 'The unique ID of the RAM user.', 'type' => 'string', 'example' => '122748924538****', 'title' => ''], + 'UserName' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'example' => 'zhangq****', 'title' => ''], + 'AttachDate' => ['description' => 'The time when the policy was attached to the RAM user.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Policy\\": {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"Description\\": \\"OSS管理员权限\\",\\n \\"PolicyDocument\\": \\"N/A\\",\\n \\"AttachmentCount\\": 0,\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"PolicyType\\": \\"Custom\\"\\n },\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\",\\n \\"DefaultPolicyVersion\\": {\\n \\"IsDefaultVersion\\": true,\\n \\"PolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [{ \\\\\\"Action\\\\\\": [\\\\\\"oss:*\\\\\\"], \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Resource\\\\\\": [\\\\\\"acs:oss:*:*:*\\\\\\"]}], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\"}\\",\\n \\"VersionId\\": \\"v1\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n}","errorExample":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\",\\n \\"Policy\\": {\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"PolicyType\\": \\"Custom\\",\\n \\"Description\\": \\"OSS管理员权限\\",\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"AttachmentCount\\": 0\\n }\\n}"},{"type":"xml","example":"<GetPolicyResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n <Policy>\\n <PolicyName>OSS-Administrator</PolicyName>\\n <PolicyType>Custom</PolicyType>\\n <Description>OSS管理员权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n <AttachmentCount>0</AttachmentCount>\\n </Policy>\\n <DefaultPolicyVersion>\\n\\t\\t<VersionId>v1</VersionId>\\n\\t\\t<IsDefaultVersion>true</IsDefaultVersion>\\n\\t\\t<CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n\\t\\t<PolicyDocument>{ \\"Statement\\": [{ \\"Action\\": [\\"oss:*\\"], \\"Effect\\": \\"Allow\\", \\"Resource\\": [\\"acs:oss:*:*:*\\"]}], \\"Version\\": \\"1\\"}</PolicyDocument>\\n </DefaultPolicyVersion>\\n</GetPolicyResponse>","errorExample":"<GetPolicyResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n <Policy>\\n <PolicyName>OSS-Administrator</PolicyName>\\n <PolicyType>Custom</PolicyType>\\n <Description>OSS管理员权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n <AttachmentCount>0</AttachmentCount>\\n </Policy>\\n</GetPolicyResponse>"}]', - 'title' => 'GetPolicy', - 'summary' => 'Queries information about a policy.', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"Groups\\": {\\n \\"Group\\": [\\n {\\n \\"GroupName\\": \\"QA-Team\\",\\n \\"Comments\\": \\"Test team\\",\\n \\"AttachDate\\": \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n },\\n \\"Roles\\": {\\n \\"Role\\": [\\n {\\n \\"Description\\": \\"ECS management role\\",\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"Arn\\": \\"acs:ram::123456789012****:role/ECSAdmin\\",\\n \\"RoleId\\": \\"122748924538****\\"\\n }\\n ]\\n },\\n \\"Users\\": {\\n \\"User\\": [\\n {\\n \\"DisplayName\\": \\"张*\\",\\n \\"UserId\\": \\"122748924538****\\",\\n \\"UserName\\": \\"zhangq****\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n ]\\n }\\n}","type":"json"}]', + 'title' => 'ListEntitiesForPolicy', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'UpdatePolicyDescription' => [ - 'summary' => 'Modifies the description of a custom policy.', - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListEntitiesForPolicy'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListEntitiesForPolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], ], + 'translator' => 'manual', + ], + 'ListGroups' => [ + 'summary' => 'Queries Resource Access Management (RAM) user groups.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'write', - 'deprecated' => false, - 'systemTags' => [ - 'operationType' => 'update', - ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ - 'name' => 'PolicyName', + 'name' => 'Marker', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'TestPolicy', - ], + 'schema' => ['description' => 'The pagination token that is used in the next request to retrieve a new page of results. You do not need to specify this parameter for the first request.\\`\\`'."\n" + ."\n" + .'When you call the operation for the first time, if the total number of returned entries exceeds the value of `MaxItems`, the entries are truncated. The system returns entries based on the value of `MaxItems` and does not return the excess entries. In this case, the value of the response parameter `IsTruncated` is `true`, and `Marker` is returned. In the next call, you can use the value of `Marker` and maintain the settings of the other request parameters to query the excess entries. You can repeat the call until the value of `IsTruncated` becomes `false`. This way, all entries are returned.', 'type' => 'string', 'required' => false, 'example' => 'EXAMPLE', 'title' => ''], ], [ - 'name' => 'NewDescription', + 'name' => 'MaxItems', 'in' => 'query', - 'schema' => [ - 'description' => 'The description of the policy.'."\n" - ."\n" - .'The description must be 1 to 1,024 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'This is a test policy.', - ], + 'schema' => ['description' => 'The number of entries per page.'."\n" + ."\n" + .'Valid values: 1 to 100.'."\n" + ."\n" + .'Default value: 100.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '100', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'title' => 'Schema of Response', - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'title' => 'Id of the request', - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '7572DEBD-0ECE-518E-8682-D8CB82F8FE8E', - ], - 'Policy' => [ - 'description' => 'The information about the policy.'."\n", + 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => '065527AA-2F2E-AD7C-7484-F2626CFE4934', 'title' => ''], + 'Groups' => [ 'type' => 'object', + 'itemNode' => true, 'properties' => [ - 'PolicyName' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'example' => 'TestPolicy', - ], - 'PolicyType' => [ - 'description' => 'The type of the policy. Valid values:'."\n" - ."\n" - .'* Custom'."\n" - .'* System'."\n", - 'type' => 'string', - 'example' => 'Custom', - ], - 'CreateDate' => [ - 'description' => 'The time when the policy was created.'."\n", - 'type' => 'string', - 'example' => '2022-02-28T07:04:15Z', - ], - 'UpdateDate' => [ - 'description' => 'The time when the policy was modified.'."\n", - 'type' => 'string', - 'example' => '2022-02-28T07:05:37Z', - ], - 'Description' => [ - 'description' => 'The description of the policy.'."\n", - 'type' => 'string', - 'example' => 'This is a test policy.', - ], - 'DefaultVersion' => [ - 'description' => 'The version of the policy. Default value: v1.'."\n", - 'type' => 'string', - 'example' => 'v1', + 'Group' => [ + 'description' => 'The information about the RAM user groups.', + 'type' => 'array', + 'items' => [ + 'description' => 'The information about the RAM user group.', + 'type' => 'object', + 'properties' => [ + 'GroupId' => ['description' => 'The ID of the RAM user group.', 'type' => 'string', 'example' => 'g-FpMEHiMysofp****', 'title' => ''], + 'UpdateDate' => ['description' => 'The update time.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'GroupName' => ['description' => 'The name of the RAM user group.', 'type' => 'string', 'example' => 'Dev-Team', 'title' => ''], + 'Comments' => ['description' => 'The description.', 'type' => 'string', 'example' => 'Development team', 'title' => ''], + 'CreateDate' => ['description' => 'The creation time.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], + 'IsTruncated' => ['description' => 'Indicates whether the response is truncated. Valid values:'."\n" + ."\n" + .'- true'."\n" + ."\n" + .'- false', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'Marker' => ['description' => 'The pagination token that is used in the next request to retrieve a new page of results.'."\n" + ."\n" + .'> This parameter is returned only when `IsTruncated` is `true`.', 'type' => 'string', 'example' => 'EXAMPLE', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"7572DEBD-0ECE-518E-8682-D8CB82F8FE8E\\",\\n \\"Policy\\": {\\n \\"PolicyName\\": \\"TestPolicy\\",\\n \\"PolicyType\\": \\"Custom\\",\\n \\"CreateDate\\": \\"2022-02-28T07:04:15Z\\",\\n \\"UpdateDate\\": \\"2022-02-28T07:05:37Z\\",\\n \\"Description\\": \\"This is a test policy.\\",\\n \\"DefaultVersion\\": \\"v1\\"\\n }\\n}","errorExample":""},{"type":"xml","example":"<UpdatePolicyDescriptionResponse>\\n <Policy>\\n <PolicyType>Custom</PolicyType>\\n <UpdateDate>2022-02-28T07:05:37Z</UpdateDate>\\n <Description>This is a test policy.</Description>\\n <PolicyName>TestPolicy</PolicyName>\\n <DefaultVersion>v1</DefaultVersion>\\n <CreateDate>2022-02-28T07:04:15Z</CreateDate>\\n </Policy>\\n <RequestId>7572DEBD-0ECE-518E-8682-D8CB82F8FE8E</RequestId>\\n</UpdatePolicyDescriptionResponse>","errorExample":""}]', - 'title' => 'UpdatePolicyDescription', - 'description' => '### [](#)'."\n" - ."\n" - .'You can call this operation to modify only the description of a custom policy. You cannot modify the description of a system policy.'."\n", - 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).'."\n", - ], - 'DeletePolicy' => [ - 'methods' => [ - 'post', - 'get', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"065527AA-2F2E-AD7C-7484-F2626CFE4934\\",\\n \\"Groups\\": {\\n \\"Group\\": [\\n {\\n \\"GroupId\\": \\"g-FpMEHiMysofp****\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"Development team\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n ]\\n },\\n \\"IsTruncated\\": true,\\n \\"Marker\\": \\"EXAMPLE\\"\\n}","type":"json"}]', + 'title' => 'ListGroups', + 'requestParamsDescription' => ' ', + 'responseParamsDescription' => ' ', + 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListGroups'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListGroups', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/*'], + ], + ], + ], ], + 'translator' => 'manual', + ], + 'ListGroupsForUser' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'delete', - ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ - 'name' => 'PolicyName', + 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], - ], - [ - 'name' => 'CascadingDelete', - 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether to delete all versions of the policy. Valid values:'."\n" - ."\n" - .'* true: deletes all versions of the policy.'."\n" - .'* false: does not delete all versions of the policy. If you set the parameter to false, the non-default versions of the policy are not deleted. Before you delete the policy, you must manually delete all non-default versions of the policy.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'true', - ], + 'schema' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Alice', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '898FAB24-7509-43EE-A287-086FE4C44394', + 'RequestId' => ['description' => 'The ID of the request.', 'type' => 'string', 'example' => 'DA772B52-BF9F-54CA-AC77-AA7A2DA89D46', 'title' => ''], + 'Groups' => [ + 'type' => 'object', + 'itemNode' => true, + 'properties' => [ + 'Group' => [ + 'description' => 'The information about the RAM user groups.', + 'type' => 'array', + 'items' => [ + 'description' => 'The information about the RAM user group.', + 'type' => 'object', + 'properties' => [ + 'GroupId' => ['description' => 'The ID of the RAM user group.', 'type' => 'string', 'example' => 'g-zYtroLrgbZR1****', 'title' => ''], + 'GroupName' => ['description' => 'The name of the RAM user group.', 'type' => 'string', 'example' => 'Dev-Team', 'title' => ''], + 'Comments' => ['description' => 'The description.', 'type' => 'string', 'example' => 'Development team', 'title' => ''], + 'JoinDate' => ['description' => 'The time when the RAM user was added to the RAM user group.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', + ], + ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"898FAB24-7509-43EE-A287-086FE4C44394\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"898FAB24-7509-43EE-A287-086FE4C44394\\"\\n}"},{"type":"xml","example":"<DeletePolicyResponse>\\n <RequestId>898FAB24-7509-43EE-A287-086FE4C44394</RequestId>\\n</DeletePolicyResponse>","errorExample":"<DeletePolicyResponse>\\n <RequestId>898FAB24-7509-43EE-A287-086FE4C44394</RequestId>\\n</DeletePolicyResponse>"}]', - 'title' => 'DeletePolicy', - 'summary' => 'Deletes a policy.', - 'requestParamsDescription' => ' ', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"DA772B52-BF9F-54CA-AC77-AA7A2DA89D46\\",\\n \\"Groups\\": {\\n \\"Group\\": [\\n {\\n \\"GroupId\\": \\"g-zYtroLrgbZR1****\\",\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"Development team\\",\\n \\"JoinDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n ]\\n }\\n}","type":"json"}]', + 'title' => 'ListGroupsForUser', + 'summary' => 'Queries the Resource Access Management (RAM) user groups to which a RAM user belongs.', + 'description' => '###'."\n" + ."\n" + .'This topic provides an example on how to query the RAM user groups to which the RAM user `Alice` belongs. The response shows that `Alice` belongs to the RAM user group named `Dev-Team`.', + 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListGroupsForUser'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListGroupsForUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + ], + 'translator' => 'manual', ], 'ListPolicies' => [ 'summary' => 'Queries a list of policies.', - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - 'riskType' => 'none', - 'chargeType' => 'free', - 'tenantRelevance' => 'publicInformation', - ], + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ 'name' => 'PolicyType', 'in' => 'query', - 'schema' => [ - 'description' => 'The type of the policies. Valid values: `System` and `Custom`. If you do not specify the parameter, all policies are returned.``'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'System', - ], + 'schema' => ['description' => 'The type of the policies. Valid values: `System` and `Custom`. If you do not specify the parameter, all policies are returned.\\`\\`', 'type' => 'string', 'required' => false, 'example' => 'System', 'title' => ''], ], [ 'name' => 'Marker', 'in' => 'query', - 'schema' => [ - 'description' => 'The `marker`. If part of a previous response is truncated, you can use this parameter to obtain the truncated part.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'EXAMPLE', - ], + 'schema' => ['description' => 'The `marker`. If part of a previous response is truncated, you can use this parameter to obtain the truncated part.', 'type' => 'string', 'required' => false, 'example' => 'EXAMPLE', 'title' => ''], ], [ 'name' => 'MaxItems', 'in' => 'query', - 'schema' => [ - 'description' => 'The number of entries to return. If a response is truncated because it reaches the value of `MaxItems`, the value of `IsTruncated` will be `true`.'."\n" - ."\n" - .'Valid values: 1 to 1000. Default value: 100.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'required' => false, - 'example' => '100', - ], + 'schema' => ['description' => 'The number of entries to return. If a response is truncated because it reaches the value of `MaxItems`, the value of `IsTruncated` will be `true`.'."\n" + ."\n" + .'Valid values: 1 to 1000. Default value: 100.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '100', 'title' => ''], ], [ 'name' => 'Tag', 'in' => 'query', 'style' => 'json', 'schema' => [ - 'description' => 'The tags.'."\n", + 'description' => 'The tags.', 'type' => 'array', 'items' => [ - 'description' => 'The tag.'."\n", + 'description' => 'The tag.', 'type' => 'object', 'properties' => [ - 'Key' => [ - 'description' => 'The key of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => false, - 'example' => 'owner', - ], - 'Value' => [ - 'description' => 'The value of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => false, - 'example' => 'alice', - ], + 'Key' => ['description' => 'The key of the tag.', 'type' => 'string', 'docRequired' => false, 'required' => false, 'example' => 'owner', 'title' => ''], + 'Value' => ['description' => 'The value of the tag.', 'type' => 'string', 'docRequired' => false, 'required' => false, 'example' => 'alice', 'title' => ''], ], 'required' => false, 'docRequired' => false, + 'title' => '', + 'example' => '', ], 'required' => false, 'docRequired' => false, + 'title' => '', + 'example' => '', ], ], ], @@ -4075,173 +3625,108 @@ 'itemNode' => true, 'properties' => [ 'Policy' => [ - 'description' => 'The information about the policies.'."\n", + 'description' => 'The information about the policies.', 'type' => 'array', 'items' => [ - 'description' => 'The information about the policy.'."\n", + 'description' => 'The information about the policy.', 'type' => 'object', 'properties' => [ - 'DefaultVersion' => [ - 'description' => 'The default version of the policy.'."\n", - 'type' => 'string', - 'example' => 'v1', - ], - 'Description' => [ - 'description' => 'The description of the policy.'."\n", - 'type' => 'string', - 'example' => 'OSS administrator', - ], - 'UpdateDate' => [ - 'description' => 'The time when the policy was modified.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'AttachmentCount' => [ - 'description' => 'The number of references to the policy.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '3', - ], - 'PolicyName' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'example' => 'OSS-Administrator', - ], - 'CreateDate' => [ - 'description' => 'The time when the policy was created.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'PolicyType' => [ - 'description' => 'The type of the policy.'."\n", - 'type' => 'string', - 'example' => 'System', - ], + 'DefaultVersion' => ['description' => 'The default version of the policy.', 'type' => 'string', 'example' => 'v1', 'title' => ''], + 'Description' => ['description' => 'The description of the policy.', 'type' => 'string', 'example' => 'OSS administrator permission', 'title' => ''], + 'UpdateDate' => ['description' => 'The time when the policy was modified.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'AttachmentCount' => ['description' => 'The number of references to the policy.', 'type' => 'integer', 'format' => 'int32', 'example' => '3', 'title' => ''], + 'PolicyName' => ['description' => 'The name of the policy.', 'type' => 'string', 'example' => 'OSS-Administrator', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the policy was created.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'PolicyType' => ['description' => 'The type of the policy.', 'type' => 'string', 'example' => 'System', 'title' => ''], 'Tags' => [ 'type' => 'object', 'itemNode' => true, 'properties' => [ 'Tag' => [ - 'description' => 'The tags.'."\n", + 'description' => 'The tags.', 'type' => 'array', 'items' => [ - 'description' => 'The tag.'."\n", + 'description' => 'The tag.', 'type' => 'object', 'properties' => [ - 'TagKey' => [ - 'description' => 'The key of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'owner', - ], - 'TagValue' => [ - 'description' => 'The value of the tag.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'alice', - ], + 'TagKey' => ['description' => 'The key of the tag.', 'type' => 'string', 'required' => false, 'example' => 'owner', 'title' => ''], + 'TagValue' => ['description' => 'The value of the tag.', 'type' => 'string', 'required' => false, 'example' => 'alice', 'title' => ''], ], + 'title' => '', + 'example' => '', ], + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], + 'title' => '', + 'example' => '', ], + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', - ], - 'IsTruncated' => [ - 'description' => 'Indicates whether the response is truncated.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'Marker' => [ - 'description' => 'The marker. This parameter is returned only if the value of `IsTruncated` is `true`. If the parameter is returned, you can call this operation again and set `Marker` to obtain the truncated part.``'."\n", - 'type' => 'string', - 'example' => 'EXAMPLE', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', 'title' => ''], + 'IsTruncated' => ['description' => 'Indicates whether the response is truncated.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'Marker' => ['description' => 'The marker. This parameter is returned only if the value of `IsTruncated` is `true`. If the parameter is returned, you can call this operation again and set `Marker` to obtain the truncated part.\\`\\`', 'type' => 'string', 'example' => 'EXAMPLE', 'title' => ''], ], 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"Description\\": \\"OSS管理员权限\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"AttachmentCount\\": 3,\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"PolicyType\\": \\"System\\",\\n \\"Tags\\": {\\n \\"Tag\\": [\\n {\\n \\"TagKey\\": \\"owner\\",\\n \\"TagValue\\": \\"alice\\"\\n }\\n ]\\n }\\n }\\n ]\\n },\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"IsTruncated\\": true,\\n \\"Marker\\": \\"EXAMPLE\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"IsTruncated\\": true,\\n \\"Marker\\": \\"EXAMPLE\\",\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"PolicyType\\": \\"Custom\\",\\n \\"Description\\": \\"OSS管理员权限\\",\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"AttachmentCount\\": 3\\n },\\n {\\n \\"PolicyName\\": \\"ReadOnlyAccess\\",\\n \\"PolicyType\\": \\"System\\",\\n \\"Description\\": \\"只读权限\\",\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"CreateDate\\": \\"2015-02-11T18:39:12Z\\",\\n \\"UpdateDate\\": \\"2015-02-19T09:43:16Z\\",\\n \\"AttachmentCount\\": 1\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<ListPoliciesResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <IsTruncated>true</IsTruncated>\\n <Marker>EXAMPLE</Marker>\\n <Policies>\\n <Policy>\\n <PolicyName>OSS-Administrator</PolicyName>\\n <PolicyType>Custom</PolicyType>\\n <Description>OSS管理员权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n <AttachmentCount>0</AttachmentCount>\\n </Policy>\\n <Policy>\\n <PolicyName>ReadOnlyAccess</PolicyName>\\n <PolicyType>System</PolicyType>\\n <Description>只读权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <CreateDate>2015-02-11T18:39:12Z</CreateDate>\\n <UpdateDate>2015-02-19T09:43:16Z</UpdateDate>\\n <AttachmentCount>0</AttachmentCount>\\n </Policy>\\n </Policies>\\n</ListPoliciesResponse>","errorExample":"<ListPoliciesResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <IsTruncated>true</IsTruncated>\\n <Marker>EXAMPLE</Marker>\\n <Policies>\\n <Policy>\\n <PolicyName>OSS-Administrator</PolicyName>\\n <PolicyType>Custom</PolicyType>\\n <Description>OSS管理员权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <UpdateDate>2015-01-23T12:33:18Z</UpdateDate>\\n <AttachmentCount>0</AttachmentCount>\\n </Policy>\\n <Policy>\\n <PolicyName>ReadOnlyAccess</PolicyName>\\n <PolicyType>System</PolicyType>\\n <Description>只读权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <CreateDate>2015-02-11T18:39:12Z</CreateDate>\\n <UpdateDate>2015-02-19T09:43:16Z</UpdateDate>\\n <AttachmentCount>0</AttachmentCount>\\n </Policy>\\n </Policies>\\n</ListPoliciesResponse>"}]', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"Description\\": \\"OSS administrator permission\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"AttachmentCount\\": 3,\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"PolicyType\\": \\"System\\",\\n \\"Tags\\": {\\n \\"Tag\\": [\\n {\\n \\"TagKey\\": \\"owner\\",\\n \\"TagValue\\": \\"alice\\"\\n }\\n ]\\n }\\n }\\n ]\\n },\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"IsTruncated\\": true,\\n \\"Marker\\": \\"EXAMPLE\\"\\n}","type":"json"}]', 'title' => 'ListPolicies', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'CreatePolicyVersion' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPolicies'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListPolicies', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/*'], + ], + ], + ], ], + 'translator' => 'manual', + ], + 'ListPoliciesForGroup' => [ + 'summary' => 'Queries the policies that are attached to a Resource Access Management (RAM) user group.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'create', - ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ - 'name' => 'PolicyName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], - ], - [ - 'name' => 'PolicyDocument', - 'in' => 'query', - 'schema' => [ - 'description' => 'The document of the policy. The document can be up to 6,144 bytes in length.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => '{"Statement":[{"Action":["oss:*"],"Effect":"Allow","Resource":["acs:oss:*:*:*"]}],"Version":"1"}', - ], - ], - [ - 'name' => 'SetAsDefault', - 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether to set this policy as the default policy. Default value: `false`.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'false', - ], - ], - [ - 'name' => 'RotateStrategy', + 'name' => 'GroupName', 'in' => 'query', - 'schema' => [ - 'description' => 'The rotation strategy of the policy. The rotation strategy can be used to delete an early policy version.'."\n" - ."\n" - .'Valid values:'."\n" - ."\n" - .'* `None`: disables the rotation strategy.'."\n" - .'* `DeleteOldestNonDefaultVersionWhenLimitExceeded`: deletes the earliest non-active version if the number of versions exceeds the limit.'."\n" - ."\n" - .'Default value: `None`.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'None', - ], + 'schema' => ['description' => 'The name of the RAM user group.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'dev', 'title' => ''], ], ], 'responses' => [ @@ -4249,99 +3734,84 @@ 'schema' => [ 'type' => 'object', 'properties' => [ - 'PolicyVersion' => [ - 'description' => 'The information about the policy version.'."\n", + 'Policies' => [ 'type' => 'object', + 'itemNode' => true, 'properties' => [ - 'IsDefaultVersion' => [ - 'description' => 'Indicates whether the policy version is the default version.'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], - 'PolicyDocument' => [ - 'description' => 'The document of the policy.'."\n", - 'type' => 'string', - 'example' => '{ "Statement": [{ "Action": ["oss:*"], "Effect": "Allow", "Resource": ["acs:oss:*:*:*"]}], "Version": "1"}', - ], - 'VersionId' => [ - 'description' => 'The ID of the policy version.'."\n", - 'type' => 'string', - 'example' => 'v3', - ], - 'CreateDate' => [ - 'description' => 'The time when the policy version was created.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', + 'Policy' => [ + 'description' => 'The information about the policies.', + 'type' => 'array', + 'items' => [ + 'description' => 'The information about the policy.', + 'type' => 'object', + 'properties' => [ + 'DefaultVersion' => ['description' => 'The default version of the policy.', 'type' => 'string', 'example' => 'v1', 'title' => ''], + 'Description' => ['description' => 'The description of the policy.', 'type' => 'string', 'example' => 'OSS administrator permission', 'title' => ''], + 'PolicyName' => ['description' => 'The name of the policy.', 'type' => 'string', 'example' => 'OSS-Administrator', 'title' => ''], + 'AttachDate' => ['description' => 'The time when the policy was attached to the RAM user group.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'PolicyType' => ['description' => 'The type of the policy.', 'type' => 'string', 'example' => 'Custom', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '9B34724D-54B0-4A51-B34D-4512372FE1BE', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', 'title' => ''], ], 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"PolicyVersion\\": {\\n \\"IsDefaultVersion\\": false,\\n \\"PolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [{ \\\\\\"Action\\\\\\": [\\\\\\"oss:*\\\\\\"], \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Resource\\\\\\": [\\\\\\"acs:oss:*:*:*\\\\\\"]}], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\"}\\",\\n \\"VersionId\\": \\"v3\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\",\\n \\"PolicyVersion\\": {\\n \\"VersionId\\": \\"v3\\",\\n \\"IsDefaultVersion\\": false,\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n}"},{"type":"xml","example":"<CreatePolicyVersionResponse>\\n <RequestId>9B34724D-54B0-4A51-B34D-4512372FE1BE</RequestId>\\n <PolicyVersion>\\n <VersionId>v3</VersionId>\\n <IsDefaultVersion>false</IsDefaultVersion>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <PolicyDocument>{ \\"Statement\\": [{ \\"Action\\": [\\"oss:*\\"], \\"Effect\\": \\"Allow\\", \\"Resource\\": [\\"acs:oss:*:*:*\\"]}], \\"Version\\": \\"1\\"}</PolicyDocument>\\n </PolicyVersion>\\n</CreatePolicyVersionResponse>","errorExample":"<CreatePolicyVersionResponse>\\n <RequestId>9B34724D-54B0-4A51-B34D-4512372FE1BE</RequestId>\\n <PolicyVersion>\\n <VersionId>v3</VersionId>\\n <IsDefaultVersion>false</IsDefaultVersion>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n </Policy>\\n</CreatePolicyVersionResponse>"}]', - 'title' => 'CreatePolicyVersion', - 'summary' => 'Creates a version for a policy.', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"Description\\": \\"OSS administrator permission\\",\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"PolicyType\\": \\"Custom\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\"\\n}","type":"json"}]', + 'title' => 'ListPoliciesForGroup', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'GetPolicyVersion' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPoliciesForGroup'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListPoliciesForGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ], + ], + ], ], + 'translator' => 'manual', + ], + 'ListPoliciesForRole' => [ + 'summary' => 'Queries the policies that are attached to a Resource Access Management (RAM) role.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ - 'name' => 'PolicyType', - 'in' => 'query', - 'schema' => [ - 'description' => 'The type of the policy. Valid values: `System` and `Custom`.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Custom', - ], - ], - [ - 'name' => 'PolicyName', + 'name' => 'RoleName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], - ], - [ - 'name' => 'VersionId', - 'in' => 'query', - 'schema' => [ - 'description' => 'The ID of the policy version.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'v3', - ], + 'schema' => ['description' => 'The name of the RAM role.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'AdminRole', 'title' => ''], ], ], 'responses' => [ @@ -4349,397 +3819,294 @@ 'schema' => [ 'type' => 'object', 'properties' => [ - 'PolicyVersion' => [ - 'description' => 'The information about the policy version.'."\n", + 'Policies' => [ 'type' => 'object', + 'itemNode' => true, 'properties' => [ - 'IsDefaultVersion' => [ - 'description' => 'Indicates whether the policy version is the default version.'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], - 'PolicyDocument' => [ - 'description' => 'The document of the policy.'."\n", - 'type' => 'string', - 'example' => '{ "Statement": [{ "Action": ["oss:*"], "Effect": "Allow", "Resource": ["acs:oss:*:*:*"]}], "Version": "1"}', - ], - 'VersionId' => [ - 'description' => 'The ID of the policy version.'."\n", - 'type' => 'string', - 'example' => 'v3', - ], - 'CreateDate' => [ - 'description' => 'The creation time.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', + 'Policy' => [ + 'description' => 'The information about the policies.', + 'type' => 'array', + 'items' => [ + 'description' => 'The information about the policy.', + 'type' => 'object', + 'properties' => [ + 'DefaultVersion' => ['description' => 'The default version of the policy.', 'type' => 'string', 'example' => 'v1', 'title' => ''], + 'Description' => ['description' => 'The description of the policy.', 'type' => 'string', 'example' => 'OSS administrator permission', 'title' => ''], + 'PolicyName' => ['description' => 'The name of the policy.', 'type' => 'string', 'example' => 'OSS-Administrator', 'title' => ''], + 'AttachDate' => ['description' => 'The time when the policy was attached to the RAM role.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'PolicyType' => ['description' => 'The type of the policy.', 'type' => 'string', 'example' => 'Custom', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '9B34724D-54B0-4A51-B34D-4512372FE1BE', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', 'title' => ''], ], 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"PolicyVersion\\": {\\n \\"IsDefaultVersion\\": false,\\n \\"PolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [{ \\\\\\"Action\\\\\\": [\\\\\\"oss:*\\\\\\"], \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Resource\\\\\\": [\\\\\\"acs:oss:*:*:*\\\\\\"]}], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\"}\\",\\n \\"VersionId\\": \\"v3\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\",\\n \\"PolicyVersion\\": {\\n \\"VersionId\\": \\"v3\\",\\n \\"IsDefaultVersion\\": false,\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"PolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [{ \\\\\\"Action\\\\\\": [\\\\\\"oss:*\\\\\\"], \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Resource\\\\\\": [\\\\\\"acs:oss:*:*:*\\\\\\"]}], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\"}\\"\\n }\\n}"},{"type":"xml","example":"<GetPolicyVersionResponse>\\n <RequestId>9B34724D-54B0-4A51-B34D-4512372FE1BE</RequestId>\\n <PolicyVersion>\\n <VersionId>v3</VersionId>\\n <IsDefaultVersion>false</IsDefaultVersion>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <PolicyDocument>\\n { \\"Statement\\": [{ \\"Action\\": [\\"oss:*\\"], \\"Effect\\": \\"Allow\\", \\"Resource\\": [\\"acs:oss:*:*:*\\"]}], \\"Version\\": \\"1\\"}\\n </PolicyDocument>\\n </PolicyVersion>\\n</GetPolicyVersionResponse>","errorExample":"<GetPolicyVersionResponse>\\n <RequestId>9B34724D-54B0-4A51-B34D-4512372FE1BE</RequestId>\\n <PolicyVersion>\\n <VersionId>v3</VersionId>\\n <IsDefaultVersion>false</IsDefaultVersion>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <PolicyDocument>\\n { \\"Statement\\": [{ \\"Action\\": [\\"oss:*\\"], \\"Effect\\": \\"Allow\\", \\"Resource\\": [\\"acs:oss:*:*:*\\"]}], \\"Version\\": \\"1\\"}\\n </PolicyDocument>\\n </PolicyVersion>\\n</GetPolicyVersionResponse>"}]', - 'title' => 'GetPolicyVersion', - 'summary' => 'Queries the information about a policy version.', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"Description\\": \\"OSS administrator permission\\",\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"PolicyType\\": \\"Custom\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\"\\n}","type":"json"}]', + 'title' => 'ListPoliciesForRole', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'DeletePolicyVersion' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], - 'security' => [ - [ - 'AK' => [], + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPoliciesForRole'], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'delete', - ], - 'parameters' => [ - [ - 'name' => 'PolicyName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], - ], + 'ramActions' => [ [ - 'name' => 'VersionId', - 'in' => 'query', - 'schema' => [ - 'description' => 'The ID of the policy version that you want to delete.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'v3', - ], - ], - ], - 'responses' => [ - 200 => [ - 'schema' => [ - 'description' => 'The response parameters.'."\n", - 'type' => 'object', - 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '9B34724D-54B0-4A51-B34D-4512372FE1BE', - ], + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListPoliciesForRole', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], ], ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\"\\n}"},{"type":"xml","example":"<DeletePolicyVersionResponse>\\n <RequestId>9B34724D-54B0-4A51-B34D-4512372FE1BE</RequestId>\\n</DeletePolicyVersionResponse>","errorExample":"<DeletePolicyVersionResponse>\\n <RequestId>9B34724D-54B0-4A51-B34D-4512372FE1BE</RequestId>\\n</DeletePolicyVersionResponse>"}]', - 'title' => 'DeletePolicyVersion', - 'summary' => 'Deletes a policy version.', - 'requestParamsDescription' => ' ', - 'responseParamsDescription' => ' ', - 'extraInfo' => ' ', + 'translator' => 'manual', ], - 'ListPolicyVersions' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], + 'ListPoliciesForUser' => [ + 'summary' => 'Queries the policies that are attached to a RAM user.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free'], 'parameters' => [ [ - 'name' => 'PolicyType', - 'in' => 'query', - 'schema' => [ - 'description' => 'The type of the policy. Valid values: `System` and `Custom`.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Custom', - ], - ], - [ - 'name' => 'PolicyName', + 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], + 'schema' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', - ], - 'PolicyVersions' => [ + 'Policies' => [ 'type' => 'object', 'itemNode' => true, 'properties' => [ - 'PolicyVersion' => [ - 'description' => 'The information about the policy versions.'."\n", + 'Policy' => [ + 'description' => 'The information about the policy.', 'type' => 'array', 'items' => [ - 'description' => 'The information about the policy version.'."\n", + 'description' => 'The information of a policy.', 'type' => 'object', 'properties' => [ - 'IsDefaultVersion' => [ - 'description' => 'Indicates whether the policy version is the default version.'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], - 'PolicyDocument' => [ - 'description' => 'The document of the policy.'."\n", - 'type' => 'string', - 'example' => '{ "Statement": [{ "Action": ["oss:*"], "Effect": "Allow", "Resource": ["acs:oss:*:*:*"]}], "Version": "1"}', - ], - 'VersionId' => [ - 'description' => 'The ID of the policy version.'."\n", - 'type' => 'string', - 'example' => 'v3', - ], - 'CreateDate' => [ - 'description' => 'The time when the version was created.'."\n", - 'type' => 'string', - 'example' => '2015-02-26T01:25:52Z', - ], + 'DefaultVersion' => ['description' => 'The current version.', 'type' => 'string', 'example' => 'v1', 'title' => ''], + 'Description' => ['description' => 'The description of the policy.', 'type' => 'string', 'example' => 'OSS administrator permission', 'title' => ''], + 'PolicyName' => ['description' => 'The name of the policy.', 'type' => 'string', 'example' => 'OSS-Administrator', 'title' => ''], + 'AttachDate' => ['description' => 'The time at which the policy is attached to the RAM user. The time is displayed in UTC.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'PolicyType' => ['description' => 'The type of the policy. Valid values:'."\n" + ."\n" + .'- System: system policy'."\n" + ."\n" + .'- Custom: custom policy', 'type' => 'string', 'example' => 'Custom', 'title' => ''], ], + 'title' => '', + 'example' => '', ], + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', 'title' => ''], ], - 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"PolicyVersions\\": {\\n \\"PolicyVersion\\": [\\n {\\n \\"IsDefaultVersion\\": false,\\n \\"PolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [{ \\\\\\"Action\\\\\\": [\\\\\\"oss:*\\\\\\"], \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Resource\\\\\\": [\\\\\\"acs:oss:*:*:*\\\\\\"]}], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\"}\\",\\n \\"VersionId\\": \\"v3\\",\\n \\"CreateDate\\": \\"2015-02-26T01:25:52Z\\"\\n }\\n ]\\n }\\n}","errorExample":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"PolicyVersions\\": {\\n \\"PolicyVersion\\": [\\n {\\n \\"VersionId\\": \\"v3\\",\\n \\"IsDefaultVersion\\": false,\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"VersionId\\": \\"v5\\",\\n \\"IsDefaultVersion\\": true,\\n \\"CreateDate\\": \\"2015-02-26T01:25:52Z\\"\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<ListPolicyVersionsResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <PolicyVersions>\\n <PolicyVersion>\\n <VersionId>v3</VersionId>\\n <IsDefaultVersion>false</IsDefaultVersion>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n <PolicyDocument>{ \\"Statement\\": [{ \\"Action\\": [\\"oss:*\\"], \\"Effect\\": \\"Allow\\", \\"Resource\\": [\\"acs:oss:*:*:*\\"]}], \\"Version\\": \\"1\\"}</PolicyDocument>\\n </PolicyVersion>\\n <PolicyVersion>\\n <VersionId>v5</VersionId>\\n <IsDefaultVersion>true</IsDefaultVersion>\\n <CreateDate>2015-02-26T01:25:52Z</CreateDate>\\n <PolicyDocument>{ \\"Statement\\": [{ \\"Action\\": [\\"oss:*\\"], \\"Effect\\": \\"Allow\\", \\"Resource\\": [\\"acs:oss:*:*:*\\"]}], \\"Version\\": \\"1\\"}</PolicyDocument>\\n </PolicyVersion>\\n </PolicyVersions>\\n</ListPolicyVersionsResponse>","errorExample":"<ListPolicyVersionsResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <PolicyVersions>\\n <PolicyVersion>\\n <VersionId>v3</VersionId>\\n <IsDefaultVersion>false</IsDefaultVersion>\\n <CreateDate>2015-01-23T12:33:18Z</CreateDate>\\n </PolicyVersion>\\n <PolicyVersion>\\n <VersionId>v5</VersionId>\\n <IsDefaultVersion>true</IsDefaultVersion>\\n <CreateDate>2015-02-26T01:25:52Z</CreateDate>\\n </PolicyVersion>\\n </PolicyVersions>\\n</ListPolicyVersionsResponse>"}]', - 'title' => 'ListPolicyVersions', - 'summary' => 'Queries the versions of a policy.', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"Description\\": \\"OSS administrator permission\\",\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"PolicyType\\": \\"Custom\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\"\\n}","type":"json"}]', + 'title' => 'ListPoliciesForUser', + 'description' => '> You can call this operation to query only the policies that are attached to Alibaba Cloud accounts. You cannot query the policies that are attached to resource groups.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'SetDefaultPolicyVersion' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], - 'security' => [ - [ - 'AK' => [], + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPoliciesForUser'], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], - 'parameters' => [ + 'ramActions' => [ [ - 'name' => 'PolicyName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], - ], - [ - 'name' => 'VersionId', - 'in' => 'query', - 'schema' => [ - 'description' => 'The ID of the policy version that you want to set as the default version.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'v2', - ], - ], - ], - 'responses' => [ - 200 => [ - 'schema' => [ - 'type' => 'object', - 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '9B34724D-54B0-4A51-B34D-4512372FE1BE', - ], + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListPoliciesForUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], ], - 'description' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\"\\n}"},{"type":"xml","example":"<SetDefaultPolicyVersionResponse>\\n <RequestId>9B34724D-54B0-4A51-B34D-4512372FE1BE</RequestId>\\n</SetDefaultPolicyVersionResponse>","errorExample":"<SetDefaultPolicyVersionResponse>\\n <RequestId>9B34724D-54B0-4A51-B34D-4512372FE1BE</RequestId>\\n</SetDefaultPolicyVersionResponse>"}]', - 'title' => 'SetDefaultPolicyVersion', - 'summary' => 'Specifies a version for a policy as the default version.', - 'requestParamsDescription' => ' ', - 'responseParamsDescription' => ' ', - 'extraInfo' => ' ', + 'translator' => 'manual', ], - 'AttachPolicyToUser' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], + 'ListPolicyVersions' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'PolicyType', 'in' => 'query', - 'schema' => [ - 'description' => 'The type of the policy. Valid values: `System` and `Custom`.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Custom', - ], + 'schema' => ['description' => 'The type of the policy. Valid values: `System` and `Custom`.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Custom', 'title' => ''], ], [ 'name' => 'PolicyName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], - ], - [ - 'name' => 'UserName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', - ], + 'schema' => ['description' => 'The name of the policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', 'title' => ''], + 'PolicyVersions' => [ + 'type' => 'object', + 'itemNode' => true, + 'properties' => [ + 'PolicyVersion' => [ + 'description' => 'The information about the policy versions.', + 'type' => 'array', + 'items' => [ + 'description' => 'The information about the policy version.', + 'type' => 'object', + 'properties' => [ + 'IsDefaultVersion' => ['description' => 'Indicates whether the policy version is the default version.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], + 'PolicyDocument' => ['description' => 'The document of the policy.', 'type' => 'string', 'example' => '{ "Statement": [{ "Action": ["oss:*"], "Effect": "Allow", "Resource": ["acs:oss:*:*:*"]}], "Version": "1"}', 'title' => ''], + 'VersionId' => ['description' => 'The ID of the policy version.', 'type' => 'string', 'example' => 'v3', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the version was created.', 'type' => 'string', 'example' => '2015-02-26T01:25:52Z', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', + ], + ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}"},{"type":"xml","example":"<AttachPolicyToUserResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</AttachPolicyToUserResponse>","errorExample":"<AttachPolicyToUserResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</AttachPolicyToUserResponse>"}]', - 'title' => 'AttachPolicyToUser', - 'summary' => 'Attaches a policy to a Resource Access Management (RAM) user.', + 'title' => 'ListPolicyVersions', + 'summary' => 'Queries the versions of a policy.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'DetachPolicyFromUser' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPolicyVersions'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListPolicyVersions', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"PolicyVersions\\": {\\n \\"PolicyVersion\\": [\\n {\\n \\"IsDefaultVersion\\": false,\\n \\"PolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [{ \\\\\\"Action\\\\\\": [\\\\\\"oss:*\\\\\\"], \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Resource\\\\\\": [\\\\\\"acs:oss:*:*:*\\\\\\"]}], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\"}\\",\\n \\"VersionId\\": \\"v3\\",\\n \\"CreateDate\\": \\"2015-02-26T01:25:52Z\\"\\n }\\n ]\\n }\\n}","type":"json"}]', + ], + 'ListRoles' => [ + 'summary' => 'Queries all Resource Access Management (RAM) roles.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], + 'operationType' => 'read', + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ - 'name' => 'PolicyType', + 'name' => 'Marker', 'in' => 'query', - 'schema' => [ - 'description' => 'The type of the policy. Valid values: `System` and `Custom`.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Custom', - ], + 'schema' => ['description' => 'The `marker`. If part of a previous response is truncated, you can use this parameter to obtain the truncated part.', 'type' => 'string', 'required' => false, 'example' => 'EXAMPLE', 'title' => ''], ], [ - 'name' => 'PolicyName', + 'name' => 'MaxItems', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], + 'schema' => ['description' => 'The number of entries to return. If a response is truncated because it reaches the value of `MaxItems`, the value of `IsTruncated` will be `true`.'."\n" + ."\n" + .'Valid values: 1 to 1000. Default value: 100.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '100', 'title' => ''], ], [ - 'name' => 'UserName', + 'name' => 'Tag', 'in' => 'query', + 'style' => 'json', 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', + 'description' => 'The tags.', + 'type' => 'array', + 'items' => [ + 'description' => 'The tag.', + 'type' => 'object', + 'properties' => [ + 'Key' => ['description' => 'The key of the tag.', 'type' => 'string', 'docRequired' => false, 'required' => false, 'example' => 'owner', 'title' => ''], + 'Value' => ['description' => 'The value of the tag.', 'type' => 'string', 'required' => false, 'example' => 'alice', 'title' => ''], + ], + 'required' => false, + 'docRequired' => false, + 'title' => '', + 'example' => '', + ], 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', + 'docRequired' => false, + 'title' => '', + 'example' => '', ], ], ], @@ -4748,1325 +4115,914 @@ 'schema' => [ 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', 'title' => ''], + 'IsTruncated' => ['description' => 'Indicates whether the response is truncated.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'Roles' => [ + 'type' => 'object', + 'itemNode' => true, + 'properties' => [ + 'Role' => [ + 'description' => 'The information about the RAM roles.', + 'type' => 'array', + 'items' => [ + 'description' => 'The information about the RAM role.', + 'type' => 'object', + 'properties' => [ + 'Description' => ['description' => 'The description of the RAM role.', 'type' => 'string', 'example' => 'ECS management role', 'title' => ''], + 'UpdateDate' => ['description' => 'The update time.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'MaxSessionDuration' => ['description' => 'The maximum session duration of the RAM role.', 'type' => 'integer', 'format' => 'int64', 'example' => '3600', 'title' => ''], + 'RoleName' => ['description' => 'The name of the RAM role.', 'type' => 'string', 'example' => 'ECSAdmin', 'title' => ''], + 'CreateDate' => ['description' => 'The creation time.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'RoleId' => ['description' => 'The ID of the RAM role.', 'type' => 'string', 'example' => '901234567890****', 'title' => ''], + 'Arn' => ['description' => 'The Alibaba Cloud Resource Name (ARN) of the RAM role.', 'type' => 'string', 'example' => 'acs:ram::123456789012****:role/ECSAdmin', 'title' => ''], + 'Tags' => [ + 'type' => 'object', + 'itemNode' => true, + 'properties' => [ + 'Tag' => [ + 'description' => 'The tags.', + 'type' => 'array', + 'items' => [ + 'description' => 'The tag.', + 'type' => 'object', + 'properties' => [ + 'TagKey' => ['description' => 'The key of the tag.', 'type' => 'string', 'required' => false, 'example' => 'owner', 'title' => ''], + 'TagValue' => ['description' => 'The value of the tag.', 'type' => 'string', 'required' => false, 'example' => 'alice', 'title' => ''], + ], + 'required' => false, + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', + ], + ], + 'description' => '', + 'title' => '', + 'example' => '', + ], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', + ], + ], + 'description' => '', + 'title' => '', + 'example' => '', ], + 'Marker' => ['description' => 'The marker. This parameter is returned only if the value of `IsTruncated` is `true`. If the parameter is returned, you can call this operation again and set this parameter to obtain the truncated part.\\`\\`\\`\\`', 'type' => 'string', 'example' => 'EXAMPLE', 'title' => ''], ], 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}"},{"type":"xml","example":"<DetachPolicyFromUserResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</DetachPolicyFromUserResponse>","errorExample":"<DetachPolicyFromUserResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</DetachPolicyFromUserResponse>"}]', - 'title' => 'DetachPolicyFromUser', - 'summary' => 'Detaches a policy from a Resource Access Management (RAM) user.', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"IsTruncated\\": true,\\n \\"Roles\\": {\\n \\"Role\\": [\\n {\\n \\"Description\\": \\"ECS management role\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"MaxSessionDuration\\": 3600,\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"RoleId\\": \\"901234567890****\\",\\n \\"Arn\\": \\"acs:ram::123456789012****:role/ECSAdmin\\",\\n \\"Tags\\": {\\n \\"Tag\\": [\\n {\\n \\"TagKey\\": \\"owner\\",\\n \\"TagValue\\": \\"alice\\"\\n }\\n ]\\n }\\n }\\n ]\\n },\\n \\"Marker\\": \\"EXAMPLE\\"\\n}","type":"json"}]', + 'title' => 'ListRoles', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'AttachPolicyToGroup' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], - 'security' => [ - [ - 'AK' => [], + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListRoles'], ], ], - 'systemTags' => [ - 'operationType' => 'update', - ], - 'parameters' => [ - [ - 'name' => 'PolicyType', - 'in' => 'query', - 'schema' => [ - 'description' => 'The type of the policy. Valid values: `System` and `Custom`.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Custom', - ], - ], - [ - 'name' => 'PolicyName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], - ], + 'ramActions' => [ [ - 'name' => 'GroupName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'dev', - ], - ], - ], - 'responses' => [ - 200 => [ - 'schema' => [ - 'type' => 'object', - 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', - ], + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListRoles', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/*'], ], - 'description' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}"},{"type":"xml","example":"<AttachPolicyToGroupResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</AttachPolicyToGroupResponse>","errorExample":"<AttachPolicyToGroupResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</AttachPolicyToGroupResponse>"}]', - 'title' => 'AttachPolicyToGroup', - 'summary' => 'Attaches a policy to a Resource Access Management (RAM) user group.', - 'requestParamsDescription' => ' ', - 'responseParamsDescription' => ' ', - 'extraInfo' => ' ', + 'translator' => 'manual', ], - 'DetachPolicyFromGroup' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], + 'ListTagResources' => [ + 'summary' => 'Queries the tags that are added to cloud resources which are Resource Access Management (RAM) roles and policies.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'write', + 'operationType' => 'read', + 'deprecated' => false, 'systemTags' => [ - 'operationType' => 'update', + 'operationType' => 'list', + 'riskType' => 'none', + 'chargeType' => 'free', + 'abilityTreeCode' => '255081', + 'abilityTreeNodes' => ['FEATUREramGR28GE'], + 'autoTest' => true, + 'tenantRelevance' => 'tenant', ], 'parameters' => [ [ - 'name' => 'PolicyType', + 'name' => 'ResourceType', 'in' => 'query', 'schema' => [ - 'description' => 'The type of the policy. Valid values: `System` and `Custom`.'."\n", + 'description' => 'The resource type.'."\n" + ."\n" + .'Enumerated values:'."\n" + ."\n" + .'- role: RAM roles.'."\n" + ."\n" + .'- policy: policies.', + 'enumValueTitles' => ['role' => 'RAM role', 'policy' => 'policy'], 'type' => 'string', - 'required' => false, 'docRequired' => true, - 'example' => 'Custom', + 'required' => true, + 'example' => 'role', + 'title' => '', ], ], [ - 'name' => 'PolicyName', + 'name' => 'ResourceNames', 'in' => 'query', + 'style' => 'json', 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', + 'description' => 'The names of the resources. You can specify up to 50 resource names.', + 'type' => 'array', + 'items' => ['description' => 'The name of the resource.', 'type' => 'string', 'required' => false, 'example' => 'role1', 'title' => ''], 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', + 'title' => '', + 'example' => '', ], ], [ - 'name' => 'GroupName', + 'name' => 'Tag', 'in' => 'query', + 'style' => 'json', 'schema' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'dev', - ], - ], - ], - 'responses' => [ - 200 => [ - 'schema' => [ - 'type' => 'object', - 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', + 'description' => 'The tags. You can specify up to 20 tags.', + 'type' => 'array', + 'items' => [ + 'description' => 'The tag.', + 'type' => 'object', + 'properties' => [ + 'Key' => ['description' => 'The key of the tag. The tag key can be up to 128 characters in length.', 'type' => 'string', 'docRequired' => false, 'required' => false, 'example' => 't1', 'title' => ''], + 'Value' => ['description' => 'The value of the tag. The tag value can be up to 256 characters in length.', 'type' => 'string', 'docRequired' => false, 'required' => false, 'example' => 'v1', 'title' => ''], ], + 'required' => false, + 'docRequired' => false, + 'title' => '', + 'example' => '', ], - 'description' => '', - ], - ], - ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}"},{"type":"xml","example":"<DetachPolicyFromGroupResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</DetachPolicyFromGroupResponse>","errorExample":"<DetachPolicyFromGroupResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</DetachPolicyFromGroupResponse>"}]', - 'title' => 'DetachPolicyFromGroup', - 'summary' => 'Detaches a policy from a Resource Access Management (RAM) user group.', - 'requestParamsDescription' => ' ', - 'responseParamsDescription' => ' ', - 'extraInfo' => ' ', - ], - 'AttachPolicyToRole' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], - 'security' => [ - [ - 'AK' => [], - ], - ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], - 'parameters' => [ - [ - 'name' => 'PolicyType', - 'in' => 'query', - 'schema' => [ - 'description' => 'The type of the policy. Valid values: `System` and `Custom`.'."\n", - 'type' => 'string', 'required' => false, - 'docRequired' => true, - 'example' => 'Custom', + 'docRequired' => false, + 'title' => '', + 'example' => '', ], ], [ - 'name' => 'PolicyName', + 'name' => 'PageSize', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], + 'schema' => ['description' => 'The number of entries per page. Valid values: 1 to 100.', 'type' => 'integer', 'format' => 'int32', 'docRequired' => false, 'required' => false, 'example' => '100', 'title' => ''], ], [ - 'name' => 'RoleName', + 'name' => 'NextToken', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM role.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSSAdminRole', - ], + 'schema' => ['description' => 'The pagination token that is used in the next request to retrieve a new page of results.', 'type' => 'string', 'docRequired' => false, 'required' => false, 'example' => 'GY/oWREsOP1bPHGcHGrXfYX7UG1k9KqWFYThNDPx1UX26PbWOIu2CMqqiMr68H/K', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ + 'title' => 'Schema of Response', + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', + 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.', 'type' => 'string', 'example' => '5CCE804C-6450-49A7-B1DB-2460F7A97416'], + 'TagResources' => [ + 'description' => 'The tags that are added to the cloud resources.', + 'type' => 'array', + 'items' => [ + 'description' => 'The tag that is added to the cloud resources.', + 'type' => 'object', + 'properties' => [ + 'ResourceName' => ['description' => 'The name of the resource.', 'type' => 'string', 'example' => 'role1', 'title' => ''], + 'ResourceType' => [ + 'description' => 'The resource type.'."\n" + ."\n" + .'Enumerated values:'."\n" + ."\n" + .'- role: RAM roles.'."\n" + ."\n" + .'- policy: policies.', + 'enumValueTitles' => ['role' => 'RAM role', 'policy' => 'policy'], + 'type' => 'string', + 'example' => 'role', + 'title' => '', + ], + 'TagKey' => ['description' => 'The key of the tag.', 'type' => 'string', 'example' => 't1', 'title' => ''], + 'TagValue' => ['description' => 'The value of the tag.', 'type' => 'string', 'example' => 'v1', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'title' => '', + 'example' => '', ], + 'NextToken' => ['description' => 'A pagination token. It can be used in the next request to retrieve a new page of results.', 'type' => 'string', 'example' => 'GY/oWREsOP1bPHGcHGrXfYX7UG1k9KqWFYThNDPx1UX26PbWOIu2CMqqiMr68H/K', 'title' => ''], ], - 'description' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}"},{"type":"xml","example":"<AttachPolicyToRoleResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</AttachPolicyToRoleResponse>","errorExample":"<AttachPolicyToRoleResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</AttachPolicyToRoleResponse>"}]', - 'title' => 'AttachPolicyToRole', - 'summary' => 'Attaches a policy to a Resource Access Management (RAM) role.', - 'requestParamsDescription' => ' ', - 'responseParamsDescription' => ' ', - 'extraInfo' => ' ', - ], - 'DetachPolicyFromRole' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], - 'security' => [ - [ - 'AK' => [], + 'staticInfo' => ['returnType' => 'synchronous'], + 'title' => 'ListTagResources', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListTagResources'], ], ], - 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], - 'parameters' => [ - [ - 'name' => 'PolicyType', - 'in' => 'query', - 'schema' => [ - 'description' => 'The type of the policy. Valid values: `System` and `Custom`.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Custom', - ], - ], + 'ramActions' => [ [ - 'name' => 'PolicyName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], - ], - [ - 'name' => 'RoleName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM role.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSSAdminRole', - ], - ], - ], - 'responses' => [ - 200 => [ - 'schema' => [ - 'type' => 'object', - 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', - ], + 'operationType' => 'list', + 'ramAction' => [ + 'action' => 'ram:ListTagResources', + 'authLevel' => 'operate', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], ], - 'description' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}"},{"type":"xml","example":"<DetachPolicyFromRoleResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</DetachPolicyFromRoleResponse>","errorExample":"<DetachPolicyFromRoleResponse>\\n <RequestId>697852FB-50D7-44D9-9774-530C31EAC572</RequestId>\\n</DetachPolicyFromRoleResponse>"}]', - 'title' => 'DetachPolicyFromRole', - 'summary' => 'Detaches a policy from a Resource Access Management (RAM) role.', - 'requestParamsDescription' => ' ', - 'responseParamsDescription' => ' ', - 'extraInfo' => ' ', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"5CCE804C-6450-49A7-B1DB-2460F7A97416\\",\\n \\"TagResources\\": [\\n {\\n \\"ResourceName\\": \\"role1\\",\\n \\"ResourceType\\": \\"role\\",\\n \\"TagKey\\": \\"t1\\",\\n \\"TagValue\\": \\"v1\\"\\n }\\n ],\\n \\"NextToken\\": \\"GY/oWREsOP1bPHGcHGrXfYX7UG1k9KqWFYThNDPx1UX26PbWOIu2CMqqiMr68H/K\\"\\n}","type":"json"}]', ], - 'ListPoliciesForUser' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], + 'ListUsers' => [ + 'summary' => 'Queries the information about all RAM users.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ - 'name' => 'UserName', + 'name' => 'Marker', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'zhangq****', - ], + 'schema' => ['description' => 'The `marker`. If part of a previous response is truncated, you can use this parameter to obtain the truncated part.', 'type' => 'string', 'required' => false, 'example' => 'EXAMPLE', 'title' => ''], + ], + [ + 'name' => 'MaxItems', + 'in' => 'query', + 'schema' => ['description' => 'The number of entries per page. If a response is truncated because it reaches the value of MaxItems, the value of `IsTruncatedg` will be `true`.'."\n" + ."\n" + .'Valid values: 1 to 1000. Default value: 100.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '100', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'Policies' => [ + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '4B450CA1-36E8-4AA2-8461-86B42BF4CC4E', 'title' => ''], + 'IsTruncated' => ['description' => 'Indicates whether the response is truncated.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'Marker' => ['description' => 'The marker. This parameter is returned only if the value of `IsTruncated` is `true`. If the parameter is returned, you can call this operation again and set `Marker` to obtain the truncated part.\\`\\`', 'type' => 'string', 'example' => 'EXAMPLE', 'title' => ''], + 'Users' => [ 'type' => 'object', 'itemNode' => true, 'properties' => [ - 'Policy' => [ - 'description' => 'The information about the policy.'."\n", + 'User' => [ + 'description' => 'The RAM users.', 'type' => 'array', 'items' => [ - 'description' => 'The information of a policy.', + 'description' => 'The list of RAM users.', 'type' => 'object', 'properties' => [ - 'DefaultVersion' => [ - 'description' => 'The current version.'."\n", - 'type' => 'string', - 'example' => 'v1', - ], - 'Description' => [ - 'description' => 'The description of the policy.'."\n", - 'type' => 'string', - 'example' => 'OSS administrator', - ], - 'PolicyName' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'example' => 'OSS-Administrator', - ], - 'AttachDate' => [ - 'description' => 'The time at which the policy is attached to the RAM user. The time is displayed in UTC.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'PolicyType' => [ - 'description' => 'The type of the policy. Valid values:'."\n" - ."\n" - .'* System: system policy'."\n" - .'* Custom: custom policy'."\n", - 'type' => 'string', - 'example' => 'Custom', - ], + 'DisplayName' => ['description' => 'The display name of the RAM user.', 'type' => 'string', 'example' => '张*', 'title' => ''], + 'Email' => ['description' => 'The email address of the RAM user.'."\n" + ."\n" + .'> This parameter is unavailable.', 'type' => 'string', 'example' => 'zhangq****@example.com', 'title' => ''], + 'UpdateDate' => ['description' => 'The point in time when the information about the RAM user was last modified. The time is displayed in UTC.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'MobilePhone' => ['description' => 'The mobile phone number of the RAM user.'."\n" + ."\n" + .'> This parameter is unavailable.', 'type' => 'string', 'example' => '86-1860000****', 'title' => ''], + 'UserId' => ['description' => 'The ID of the RAM user.', 'type' => 'string', 'example' => '20732900249392****', 'title' => ''], + 'Comments' => ['description' => 'The description.', 'type' => 'string', 'example' => 'This is a cloud computing engineer.', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the RAM user was created. The time is displayed in UTC.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'UserName' => ['description' => 'The logon name of the RAM user.', 'type' => 'string', 'example' => 'zhangq****', 'title' => ''], ], + 'title' => '', + 'example' => '', ], + 'title' => '', + 'example' => '', ], ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', + 'description' => '', + 'title' => '', + 'example' => '', ], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"Description\\": \\"OSS管理员权限\\",\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"PolicyType\\": \\"Custom\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"PolicyType\\": \\"Custom\\",\\n \\"Description\\": \\"OSS管理员权限\\",\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"PolicyName\\": \\"ReadOnlyAccess\\",\\n \\"PolicyType\\": \\"System\\",\\n \\"Description\\": \\"只读权限\\",\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"AttachDate\\": \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n<Policies>\\n <Policy>\\n <PolicyName>OSS-Administrator</PolicyName>\\n <PolicyType>Custom</PolicyType>\\n <Description>OSS管理员权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Policy>\\n <Policy>\\n <PolicyName>ReadOnlyAccess</PolicyName>\\n <PolicyType>System</PolicyType>\\n <Description>只读权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-02-18T17:22:08Z</AttachDate>\\n </Policy>\\n</Policies>","errorExample":"<ListPoliciesForUserResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <Policies>\\n <Policy>\\n <PolicyName>OSS-Administrator</PolicyPolicyName>\\n <PolicyType>Custom</PolicyType>\\n <Description>OSS管理员权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Policy>\\n <Policy>\\n <PolicyName>ReadOnlyAccess</PolicyPolicyName>\\n <PolicyType>System</PolicyType>\\n <Description>只读权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-02-18T17:22:08Z</AttachDate>\\n </Policy>\\n </Policies>\\n</ListPoliciesForUserResponse>"}]', - 'title' => 'ListPoliciesForUser', - 'summary' => 'Queries the policies that are attached to a RAM user.', - 'description' => '> You can call this operation to query only the policies that are attached to Alibaba Cloud accounts. You cannot query the policies that are attached to resource groups.'."\n", + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4B450CA1-36E8-4AA2-8461-86B42BF4CC4E\\",\\n \\"IsTruncated\\": true,\\n \\"Marker\\": \\"EXAMPLE\\",\\n \\"Users\\": {\\n \\"User\\": [\\n {\\n \\"DisplayName\\": \\"张*\\",\\n \\"Email\\": \\"zhangq****@example.com\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"MobilePhone\\": \\"86-1860000****\\",\\n \\"UserId\\": \\"20732900249392****\\",\\n \\"Comments\\": \\"This is a cloud computing engineer.\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"zhangq****\\"\\n }\\n ]\\n }\\n}","type":"json"}]', + 'title' => 'ListUsers', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'ListPoliciesForGroup' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUsers'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListUsers', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/*'], + ], + ], + ], ], + 'translator' => 'manual', + ], + 'ListUsersForGroup' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], + 'systemTags' => ['operationType' => 'get'], 'parameters' => [ [ 'name' => 'GroupName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'dev', - ], + 'schema' => ['description' => 'The name of the RAM user group.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Dev-Team', 'title' => ''], + ], + [ + 'name' => 'Marker', + 'in' => 'query', + 'schema' => ['description' => 'The `marker`. If part of a previous response is truncated, you can use this parameter to obtain the truncated part.', 'type' => 'string', 'required' => false, 'example' => 'EXAMPLE', 'title' => ''], + ], + [ + 'name' => 'MaxItems', + 'in' => 'query', + 'schema' => ['description' => 'The number of entries to return. If a response is truncated because it reaches the value of `MaxItems`, the value of `IsTruncated` will be `true`.'."\n" + ."\n" + .'Valid values: 1 to 1000. Default value: 100.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '100', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'Policies' => [ + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '4B450CA1-36E8-4AA2-8461-86B42BF4CC4E', 'title' => ''], + 'IsTruncated' => ['description' => 'Indicates whether the response is truncated.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'Marker' => ['description' => 'The marker. This parameter is returned only if the value of `IsTruncated` is `true`. If the parameter is returned, you can call this operation again and set this parameter to obtain the truncated part.\\`\\`\\`\\`', 'type' => 'string', 'example' => 'EXAMPLE', 'title' => ''], + 'Users' => [ 'type' => 'object', 'itemNode' => true, 'properties' => [ - 'Policy' => [ - 'description' => 'The information about the policies.'."\n", + 'User' => [ + 'description' => 'The information about the RAM users.', 'type' => 'array', 'items' => [ - 'description' => 'The information about the policy.'."\n", + 'description' => 'The information about the RAM user.', 'type' => 'object', 'properties' => [ - 'DefaultVersion' => [ - 'description' => 'The default version of the policy.'."\n", - 'type' => 'string', - 'example' => 'v1', - ], - 'Description' => [ - 'description' => 'The description of the policy.'."\n", - 'type' => 'string', - 'example' => 'OSS administrator', - ], - 'PolicyName' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'example' => 'OSS-Administrator', - ], - 'AttachDate' => [ - 'description' => 'The time when the policy was attached to the RAM user group.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'PolicyType' => [ - 'description' => 'The type of the policy.'."\n", - 'type' => 'string', - 'example' => 'Custom', - ], + 'DisplayName' => ['description' => 'The display name of the RAM user.', 'type' => 'string', 'example' => 'Alice', 'title' => ''], + 'JoinDate' => ['description' => 'The time when the RAM user joined the RAM user group.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'UserName' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'example' => 'Alice', 'title' => ''], ], + 'title' => '', + 'example' => '', ], + 'title' => '', + 'example' => '', ], ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', + 'description' => '', + 'title' => '', + 'example' => '', ], ], - 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"Description\\": \\"OSS管理员权限\\",\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"PolicyType\\": \\"Custom\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"PolicyType\\": \\"Custom\\",\\n \\"Description\\": \\"OSS管理员权限\\",\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"PolicyName\\": \\"ReadOnlyAccess\\",\\n \\"PolicyType\\": \\"System\\",\\n \\"Description\\": \\"只读权限\\",\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"AttachDate\\": \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<ListPoliciesForGroupResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <Policies>\\n <Policy>\\n <PolicyName>OSS-Administrator</PolicyName>\\n <PolicyType>Custom</PolicyType>\\n <Description>OSS管理员权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Policy>\\n <Policy>\\n <PolicyName>ReadOnlyAccess</PolicyName>\\n <PolicyType>System</PolicyType>\\n <Description>只读权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-02-18T17:22:08Z</AttachDate>\\n </Policy>\\n </Policies>\\n</ListPoliciesForGroupResponse>","errorExample":"<ListPoliciesForGroupResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <Policies>\\n <Policy>\\n <PolicyName>OSS-Administrator</PolicyName>\\n <PolicyType>Custom</PolicyType>\\n <Description>OSS管理员权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Policy>\\n <Policy>\\n <PolicyName>ReadOnlyAccess</PolicyName>\\n <PolicyType>System</PolicyType>\\n <Description>只读权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-02-18T17:22:08Z</AttachDate>\\n </Policy>\\n </Policies>\\n</ListPoliciesForGroupResponse>"}]', - 'title' => 'ListPoliciesForGroup', - 'summary' => 'Queries the policies that are attached to a Resource Access Management (RAM) user group.', + 'title' => 'ListUsersForGroup', + 'summary' => 'Queries Resource Access Management (RAM) users in a RAM user group.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'ListPoliciesForRole' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUsersForGroup'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListUsersForGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"4B450CA1-36E8-4AA2-8461-86B42BF4CC4E\\",\\n \\"IsTruncated\\": true,\\n \\"Marker\\": \\"EXAMPLE\\",\\n \\"Users\\": {\\n \\"User\\": [\\n {\\n \\"DisplayName\\": \\"Alice\\",\\n \\"JoinDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"Alice\\"\\n }\\n ]\\n }\\n}","type":"json"}]', + ], + 'ListVirtualMFADevices' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], - 'parameters' => [ - [ - 'name' => 'RoleName', - 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the RAM role.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'AdminRole', - ], - ], - ], + 'systemTags' => ['operationType' => 'get', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], + 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'Policies' => [ + 'VirtualMFADevices' => [ 'type' => 'object', 'itemNode' => true, 'properties' => [ - 'Policy' => [ - 'description' => 'The information about the policies.'."\n", + 'VirtualMFADevice' => [ + 'description' => 'The information about the MFA devices.', 'type' => 'array', 'items' => [ - 'description' => 'The information about the policy.'."\n", + 'description' => 'The information about the MFA device.', 'type' => 'object', 'properties' => [ - 'DefaultVersion' => [ - 'description' => 'The default version of the policy.'."\n", - 'type' => 'string', - 'example' => 'v1', - ], - 'Description' => [ - 'description' => 'The description of the policy.'."\n", - 'type' => 'string', - 'example' => 'OSS administrator', - ], - 'PolicyName' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'example' => 'OSS-Administrator', - ], - 'AttachDate' => [ - 'description' => 'The time when the policy was attached to the RAM role.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'PolicyType' => [ - 'description' => 'The type of the policy.'."\n", - 'type' => 'string', - 'example' => 'Custom', + 'SerialNumber' => ['description' => 'The serial number of the MFA device.', 'type' => 'string', 'example' => 'acs:ram::123456789012****:mfa/device002', 'title' => ''], + 'User' => [ + 'description' => 'The basic information about the Resource Access Management (RAM) user to which the MFA device is bound.', + 'type' => 'object', + 'properties' => [ + 'DisplayName' => ['description' => 'The display name of the RAM user.', 'type' => 'string', 'example' => '张*', 'title' => ''], + 'UserId' => ['description' => 'The unique ID of the RAM user.', 'type' => 'string', 'example' => '122748924538****', 'title' => ''], + 'UserName' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'example' => 'zhangq****', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], + 'ActivateDate' => ['description' => 'The time when the MFA device was enabled.', 'type' => 'string', 'example' => '2015-02-18T17:22:08Z', 'title' => ''], ], + 'title' => '', + 'example' => '', ], + 'title' => '', + 'example' => '', ], ], + 'description' => '', + 'title' => '', + 'example' => '', ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], - 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"Description\\": \\"OSS管理员权限\\",\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"PolicyType\\": \\"Custom\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"Policies\\": {\\n \\"Policy\\": [\\n {\\n \\"PolicyName\\": \\"OSS-Administrator\\",\\n \\"PolicyType\\": \\"Custom\\",\\n \\"Description\\": \\"OSS管理员权限\\",\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"PolicyName\\": \\"ReadOnlyAccess\\",\\n \\"PolicyType\\": \\"System\\",\\n \\"Description\\": \\"只读权限\\",\\n \\"DefaultVersion\\": \\"v1\\",\\n \\"AttachDate\\": \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<ListPoliciesForRoleResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <Policies>\\n <Policy>\\n <PolicyName>OSS-Administrator</PolicyName>\\n <PolicyType>Custom</PolicyType>\\n <Description>OSS管理员权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Policy>\\n <Policy>\\n <PolicyName>ReadOnlyAccess</PolicyName>\\n <PolicyType>System</PolicyType>\\n <Description>只读权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-02-18T17:22:08Z</AttachDate>\\n </Policy>\\n </Policies>\\n</ListPoliciesForRoleResponse>","errorExample":"<ListPoliciesForRoleResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <Policies>\\n <Policy>\\n <PolicyName>OSS-Administrator</PolicyName>\\n <PolicyType>Custom</PolicyType>\\n <Description>OSS管理员权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Policy>\\n <Policy>\\n <PolicyName>ReadOnlyAccess</PolicyName>\\n <PolicyType>System</PolicyType>\\n <Description>只读权限</Description>\\n <DefaultVersion>v1</DefaultVersion>\\n <AttachDate>2015-02-18T17:22:08Z</AttachDate>\\n </Policy>\\n </Policies>\\n</ListPoliciesForRoleResponse>"}]', - 'title' => 'ListPoliciesForRole', - 'summary' => 'Queries the policies that are attached to a Resource Access Management (RAM) role.', + 'title' => 'ListVirtualMFADevices', + 'summary' => 'Queries multi-factor authentication (MFA) devices.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'ListEntitiesForPolicy' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVirtualMFADevices'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListVirtualMFADevices', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'MFADevice', 'arn' => 'acs:ram:*:{#accountId}:mfa/*'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"VirtualMFADevices\\": {\\n \\"VirtualMFADevice\\": [\\n {\\n \\"SerialNumber\\": \\"acs:ram::123456789012****:mfa/device002\\",\\n \\"User\\": {\\n \\"DisplayName\\": \\"张*\\",\\n \\"UserId\\": \\"122748924538****\\",\\n \\"UserName\\": \\"zhangq****\\"\\n },\\n \\"ActivateDate\\": \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + ], + 'RemoveUserFromGroup' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'systemTags' => [ - 'operationType' => 'get', - ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ - 'name' => 'PolicyType', + 'name' => 'UserName', 'in' => 'query', - 'schema' => [ - 'description' => 'The type of the policy. Valid values: `System` and `Custom`.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'Custom', - ], + 'schema' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], ], [ - 'name' => 'PolicyName', + 'name' => 'GroupName', 'in' => 'query', - 'schema' => [ - 'description' => 'The name of the policy.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'OSS-Administrator', - ], + 'schema' => ['description' => 'The name of the RAM user group.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Dev-Team', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '7B8A4E7D-6CFF-471D-84DF-195A7A241ECB', - ], - 'Groups' => [ - 'type' => 'object', - 'itemNode' => true, - 'properties' => [ - 'Group' => [ - 'description' => 'The information about the Resource Access Management (RAM) user groups.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The information about the RAM user group.'."\n", - 'type' => 'object', - 'properties' => [ - 'GroupName' => [ - 'description' => 'The name of the RAM user group.'."\n", - 'type' => 'string', - 'example' => 'QA-Team', - ], - 'Comments' => [ - 'description' => 'The description of the RAM user group.'."\n", - 'type' => 'string', - 'example' => 'Test team', - ], - 'AttachDate' => [ - 'description' => 'The time when the policy was attached to the RAM user group.'."\n", - 'type' => 'string', - 'example' => '2015-02-18T17:22:08Z', - ], - ], - ], - ], - ], - ], - 'Roles' => [ - 'type' => 'object', - 'itemNode' => true, - 'properties' => [ - 'Role' => [ - 'description' => 'The information about the RAM roles.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The information about the RAM role.'."\n", - 'type' => 'object', - 'properties' => [ - 'Description' => [ - 'description' => 'The description of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'ECS administrator', - ], - 'RoleName' => [ - 'description' => 'The name of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'ECSAdmin', - ], - 'AttachDate' => [ - 'description' => 'The time when the policy was attached to the RAM role.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - 'Arn' => [ - 'description' => 'The Alibaba Cloud Resource Name (ARN) of the RAM role.'."\n", - 'type' => 'string', - 'example' => 'acs:ram::123456789012****:role/ECSAdmin', - ], - 'RoleId' => [ - 'description' => 'The ID of the RAM role.'."\n", - 'type' => 'string', - 'example' => '122748924538****', - ], - ], - ], - ], - ], - ], - 'Users' => [ - 'type' => 'object', - 'itemNode' => true, - 'properties' => [ - 'User' => [ - 'description' => 'The information about the RAM users.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The information about the RAM user.'."\n", - 'type' => 'object', - 'properties' => [ - 'DisplayName' => [ - 'description' => 'The display name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'Zhang*', - ], - 'UserId' => [ - 'description' => 'The unique ID of the RAM user.'."\n", - 'type' => 'string', - 'example' => '122748924538****', - ], - 'UserName' => [ - 'description' => 'The name of the RAM user.'."\n", - 'type' => 'string', - 'example' => 'zhangq****', - ], - 'AttachDate' => [ - 'description' => 'The time when the policy was attached to the RAM user.'."\n", - 'type' => 'string', - 'example' => '2015-01-23T12:33:18Z', - ], - ], - ], - ], - ], - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => 'A07EF215-B9B3-8CB2-2899-3F9575C6E320', 'title' => ''], ], - 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"Groups\\": {\\n \\"Group\\": [\\n {\\n \\"GroupName\\": \\"QA-Team\\",\\n \\"Comments\\": \\"测试团队\\",\\n \\"AttachDate\\": \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n },\\n \\"Roles\\": {\\n \\"Role\\": [\\n {\\n \\"Description\\": \\"ECS管理角色\\",\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"Arn\\": \\"acs:ram::123456789012****:role/ECSAdmin\\",\\n \\"RoleId\\": \\"122748924538****\\"\\n }\\n ]\\n },\\n \\"Users\\": {\\n \\"User\\": [\\n {\\n \\"DisplayName\\": \\"张*\\",\\n \\"UserId\\": \\"122748924538****\\",\\n \\"UserName\\": \\"zhangq****\\",\\n \\"AttachDate\\": \\"2015-01-23T12:33:18Z\\"\\n }\\n ]\\n }\\n}","errorExample":"{\\n \\"RequestId\\" : \\"7B8A4E7D-6CFF-471D-84DF-195A7A241ECB\\",\\n \\"Groups\\" : {\\n \\"Group\\" : [\\n {\\n \\"GroupName\\": \\"QA-Team\\",\\n \\"Comments\\": \\"测试团队\\",\\n \\"AttachDate\\" : \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"GroupName\\": \\"Dev-Team\\",\\n \\"Comments\\": \\"开发团队\\",\\n \\"AttachDate\\" : \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n },\\n \\"Users\\" : {\\n \\"User\\" : [\\n {\\n \\"UserId\\" : \\"1227489245380721\\",\\n \\"UserName\\" : \\"zhangqiang\\",\\n \\"DisplayName\\": \\"张强\\",\\n \\"AttachDate\\" : \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"UserId\\" : \\"1406498224724456\\",\\n \\"UserName\\" : \\"lili\\",\\n \\"DisplayName\\": \\"李丽\\",\\n \\"AttachDate\\" : \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n },\\n \\"Roles\\" : {\\n \\"Role\\" : [\\n {\\n \\"RoleId\\" : \\"1227489245380721\\",\\n \\"RoleName\\" : \\"ECSAdmin\\",\\n \\"Arn\\": \\"acs:ram::1234567890123456:role/ECSAdmin\\",\\n \\"Description\\": \\"ECS管理角色\\",\\n \\"AttachDate\\" : \\"2015-01-23T12:33:18Z\\"\\n },\\n {\\n \\"RoleId\\" : \\"1406498224724456\\",\\n \\"RoleName\\" : \\"OSSReadonlyAccess\\",\\n \\"Arn\\": \\"acs:ram::1234567890123456:role/OSSReadonlyAccess\\",\\n \\"Description\\": \\"OSS只读访问角色\\",\\n \\"AttachDate\\" : \\"2015-02-18T17:22:08Z\\"\\n }\\n ]\\n }\\n}"},{"type":"xml","example":"<ListEntitiesForPolicyResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <Groups>\\n <Group>\\n <GroupName>QA-Team</GroupName>\\n <Comments>测试团队</Comments>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Group>\\n <Group>\\n <GroupName>Dev-Team</GroupName>\\n <Comments>开发团队</Comments>\\n <AttachDate>2015-02-18T17:22:08Z</AttachDate>\\n </Group>\\n </Groups>\\n <Users>\\n <User>\\n <UserId>122748924538****</UserId>\\n <UserName>zhangq****</UserName>\\n <DisplayName>张*</DisplayName>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </User>\\n <User>\\n <UserId>140649822472****</UserId>\\n <UserName>li****</UserName>\\n <DisplayName>李*</DisplayName>\\n <AttachDate>2015-02-18T17:22:08Z</AttachDate>\\n </User>\\n </Users>\\n <Roles>\\n <Role>\\n <RoleId>122748924538****</RoleId>\\n <RoleName>ECSAdmin</RoleName>\\n <Arn>acs:ram::123456789012****:role/ECSAdmin</Arn>\\n <Description>ECS管理角色</Description>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Role>\\n <Role>\\n <RoleId>140649822472****</RoleId>\\n <RoleName>OSSReadonlyAccess</RoleName>\\n <Description>OSS只读访问角色</Description>\\n <Arn>acs:ram::123456789012****:role/OSSReadonlyAccess</Arn>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Role>\\n </Roles>\\n</ListEntitiesForPolicyResponse>","errorExample":"<ListEntitiesForPolicyResponse>\\n <RequestId>7B8A4E7D-6CFF-471D-84DF-195A7A241ECB</RequestId>\\n <Groups>\\n <Group>\\n <GroupName>QA-Team</GroupName>\\n <Comments>测试团队</Comments>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Group>\\n <Group>\\n <GroupName>Dev-Team</GroupName>\\n <Comments>开发团队</Comments>\\n <AttachDate>2015-02-18T17:22:08Z</AttachDate>\\n </Group>\\n </Groups>\\n <Users>\\n <User>\\n <UserId>1227489245380721</UserId>\\n <UserName>zhangqiang</UserName>\\n <DisplayName>张强</DisplayName>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </User>\\n <User>\\n <UserId>1406498224724456</UserId>\\n <UserName>lili</UserName>\\n <DisplayName>李丽</DisplayName>\\n <AttachDate>2015-02-18T17:22:08Z</AttachDate>\\n </User>\\n </Users>\\n <Roles>\\n <Role>\\n <RoleId>901234567890123</RoleId>\\n <RoleName>ECSAdmin</RoleName>\\n <Arn>acs:ram::1234567890123456:role/ECSAdmin</Arn>\\n <Description>ECS管理角色</Description>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Role>\\n <Role>\\n <RoleId>901234567890456</RoleId>\\n <RoleName>OSSReadonlyAccess</RoleName>\\n <Description>OSS只读访问角色</Description>\\n <Arn>acs:ram::1234567890123456:role/OSSReadonlyAccess</Arn>\\n <AttachDate>2015-01-23T12:33:18Z</AttachDate>\\n </Role>\\n </Roles>\\n</ListEntitiesForPolicyResponse>"}]', - 'title' => 'ListEntitiesForPolicy', - 'summary' => 'Queries the entities to which a policy is attached.', + 'title' => 'RemoveUserFromGroup', + 'summary' => 'Removes a Resource Access Management (RAM) user from a RAM user group.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RemoveUserFromGroup'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:RemoveUserFromGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"A07EF215-B9B3-8CB2-2899-3F9575C6E320\\"\\n}","type":"json"}]', ], 'SetAccountAlias' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], + 'summary' => 'Configures an alias for an Alibaba Cloud account.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - ], + 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ 'name' => 'AccountAlias', 'in' => 'query', - 'schema' => [ - 'description' => 'The alias of the Alibaba Cloud account.'."\n" - ."\n" - .'The alias must be 3 to 32 characters in length, and can contain lowercase letters, digits, and hyphens (-).'."\n" - ."\n" - .'> It cannot start or end with a hyphen (-), and cannot contain consecutive hyphens (-).'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => true, - 'example' => 'myalias', - ], + 'schema' => ['description' => 'The alias of the Alibaba Cloud account.'."\n" + ."\n" + .'The alias must be 3 to 32 characters in length, and can contain lowercase letters, digits, and hyphens (-).'."\n" + ."\n" + .'> It cannot start or end with a hyphen (-), and cannot contain consecutive hyphens (-).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'myalias', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>","errorExample":"<SetAccountAliasResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</SetAccountAliasResponse>"}]', 'title' => 'SetAccountAlias', - 'summary' => 'Configures an alias for an Alibaba Cloud account.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'GetAccountAlias' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], - 'security' => [ - [ - 'AK' => [], + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetAccountAlias'], ], ], - 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], - 'parameters' => [], - 'responses' => [ - 200 => [ - 'schema' => [ - 'description' => 'The response parameters.'."\n", - 'type' => 'object', - 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], - 'AccountAlias' => [ - 'description' => 'The alias of the Alibaba Cloud account.'."\n", - 'type' => 'string', - 'example' => 'myalias', - ], + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:SetAccountAlias', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"AccountAlias\\": \\"myalias\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"AccountAlias\\": \\"myalias\\"\\n}"},{"type":"xml","example":"<GetAccountAliasResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <AccountAlias>myalias</AccountAlias>\\n</GetAccountAliasResponse>","errorExample":"<GetAccountAliasResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <AccountAlias>myalias</AccountAlias>\\n</GetAccountAliasResponse>"}]', - 'title' => 'GetAccountAlias', - 'summary' => 'Queries the alias of an Alibaba Cloud account.', - 'requestParamsDescription' => ' ', - 'responseParamsDescription' => ' ', - 'extraInfo' => ' ', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', ], - 'ClearAccountAlias' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], + 'SetDefaultPolicyVersion' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - 'tenantRelevance' => 'publicInformation', + 'systemTags' => ['operationType' => 'update'], + 'parameters' => [ + [ + 'name' => 'PolicyName', + 'in' => 'query', + 'schema' => ['description' => 'The name of the policy.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'OSS-Administrator', 'title' => ''], + ], + [ + 'name' => 'VersionId', + 'in' => 'query', + 'schema' => ['description' => 'The ID of the policy version that you want to set as the default version.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'v2', 'title' => ''], + ], ], - 'parameters' => [], 'responses' => [ 200 => [ 'schema' => [ 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '9B34724D-54B0-4A51-B34D-4512372FE1BE', 'title' => ''], ], 'description' => '', + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}"},{"type":"xml","example":"<ClearAccountAliasResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</ClearAccountAliasResponse>","errorExample":"<ClearAccountAliasResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</ClearAccountAliasResponse>"}]', - 'title' => 'ClearAccountAlias', - 'summary' => 'Deletes the alias of an Alibaba Cloud account.', + 'title' => 'SetDefaultPolicyVersion', + 'summary' => 'Specifies a version for a policy as the default version.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'SetPasswordPolicy' => [ - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetDefaultPolicyVersion'], + ], ], - 'schemes' => [ - 'https', + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:SetDefaultPolicyVersion', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\"\\n}","type":"json"}]', + ], + 'SetPasswordPolicy' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - 'tenantRelevance' => 'publicInformation', - ], + 'systemTags' => ['operationType' => 'update', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ 'name' => 'MinimumPasswordLength', 'in' => 'query', - 'schema' => [ - 'description' => 'The minimum number of characters in a password.'."\n" - ."\n" - .'Valid values: 8 to 32. Default value: 8.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'required' => false, - 'example' => '12', - ], + 'schema' => ['description' => 'The minimum number of characters in a password.'."\n" + ."\n" + .'Valid values: 8 to 32. Default value: 8.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '12', 'title' => ''], ], [ 'name' => 'RequireLowercaseCharacters', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether a password must contain one or more lowercase letters.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'true', - ], + 'schema' => ['description' => 'Specifies whether a password must contain one or more lowercase letters.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'RequireUppercaseCharacters', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether a password must contain one or more uppercase letters.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'true', - ], + 'schema' => ['description' => 'Specifies whether a password must contain one or more uppercase letters.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'RequireNumbers', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether a password must contain one or more digits.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'true', - ], + 'schema' => ['description' => 'Specifies whether a password must contain one or more digits.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'RequireSymbols', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether a password must contain one or more special characters.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'true', - ], + 'schema' => ['description' => 'Specifies whether a password must contain one or more special characters.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'HardExpiry', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether a password will expire. Valid values: `true` and `false`. Default value: `false`. If you leave this parameter unspecified, the default value false is used.'."\n" - ."\n" - .'* If you set this parameter to `true`, the Alibaba Cloud account to which the RAM users belong must reset the passwords before the RAM users can log on to the Alibaba Cloud Management Console.'."\n" - .'* If you set this parameter to `false`, the RAM users can change the passwords after the passwords expire and then log on to the Alibaba Cloud Management Console.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'false', - ], + 'schema' => ['description' => 'Specifies whether a password will expire. Valid values: `true` and `false`. Default value: `false`. If you leave this parameter unspecified, the default value false is used.'."\n" + ."\n" + .'- If you set this parameter to `true`, the Alibaba Cloud account to which the RAM users belong must reset the passwords before the RAM users can log on to the Alibaba Cloud Management Console.'."\n" + ."\n" + .'- If you set this parameter to `false`, the RAM users can change the passwords after the passwords expire and then log on to the Alibaba Cloud Management Console.', 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'MaxPasswordAge', 'in' => 'query', - 'schema' => [ - 'description' => 'The number of days for which a password is valid. If you reset a password, the password validity period restarts. Default value: 0. The default value indicates that the password never expires.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'required' => false, - 'example' => '0', - ], + 'schema' => ['description' => 'The number of days for which a password is valid. If you reset a password, the password validity period restarts. Default value: 0. The default value indicates that the password never expires.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'PasswordReusePrevention', 'in' => 'query', - 'schema' => [ - 'description' => 'The number of previous passwords that a RAM user is prevented from reusing. Default value: 0. The default value indicates that the RAM user can reuse previous passwords.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'required' => false, - 'example' => '0', - ], + 'schema' => ['description' => 'The number of previous passwords that a RAM user is prevented from reusing. Default value: 0. The default value indicates that the RAM user can reuse previous passwords.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '0', 'title' => ''], ], [ 'name' => 'MaxLoginAttemps', 'in' => 'query', - 'schema' => [ - 'description' => 'The maximum number of permitted logon attempts within one hour. The number of logon attempts is reset to zero if a RAM user changes the password.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'required' => false, - 'example' => '5', - ], + 'schema' => ['description' => 'The maximum number of permitted logon attempts within one hour. The number of logon attempts is reset to zero if a RAM user changes the password.', 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '5', 'title' => ''], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], 'PasswordPolicy' => [ - 'description' => 'The password policy.'."\n", + 'description' => 'The password policy.', 'type' => 'object', 'properties' => [ - 'RequireNumbers' => [ - 'description' => 'Indicates whether a password must contain one or more digits.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'RequireLowercaseCharacters' => [ - 'description' => 'Indicates whether a password must contain one or more lowercase letters.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'HardExpiry' => [ - 'description' => 'Indicates whether a password expires. Valid values: `true` and `false`. Default value: `false`. If the parameter is unspecified, the default value false is returned.'."\n" - ."\n" - .'* If this parameter is set to `true`, the Alibaba Cloud account to which the RAM users belong must reset the password before the RAM users can log on to the Alibaba Cloud Management Console.'."\n" - .'* If this parameter is set to `false`, the RAM users can change the passwords after the passwords expire and then log on to the Alibaba Cloud Management Console.'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], - 'PasswordReusePrevention' => [ - 'description' => 'The number of previous passwords that a RAM user is prevented from reusing. Default value: 0. The default value indicates that the RAM user can reuse previous passwords.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '0', - ], - 'RequireSymbols' => [ - 'description' => 'Indicates whether a password must contain one or more special characters.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'MaxPasswordAge' => [ - 'description' => 'The number of days for which a password is valid. If you reset a password, the password validity period restarts. Default value: 0. The default value indicates that the password never expires.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '0', - ], - 'MinimumPasswordLength' => [ - 'description' => 'The minimum number of characters in a password.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '12', - ], - 'RequireUppercaseCharacters' => [ - 'description' => 'Indicates whether a password must contain one or more uppercase letters.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'MaxLoginAttemps' => [ - 'description' => 'The maximum number of permitted logon attempts within one hour. The number of logon attempts is reset to zero if a RAM user changes the password.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '5', - ], + 'RequireNumbers' => ['description' => 'Indicates whether a password must contain one or more digits.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'RequireLowercaseCharacters' => ['description' => 'Indicates whether a password must contain one or more lowercase letters.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'HardExpiry' => ['description' => 'Indicates whether a password expires. Valid values: `true` and `false`. Default value: `false`. If the parameter is unspecified, the default value false is returned.'."\n" + ."\n" + .'- If this parameter is set to `true`, the Alibaba Cloud account to which the RAM users belong must reset the password before the RAM users can log on to the Alibaba Cloud Management Console.'."\n" + ."\n" + .'- If this parameter is set to `false`, the RAM users can change the passwords after the passwords expire and then log on to the Alibaba Cloud Management Console.', 'type' => 'boolean', 'example' => 'false', 'title' => ''], + 'PasswordReusePrevention' => ['description' => 'The number of previous passwords that a RAM user is prevented from reusing. Default value: 0. The default value indicates that the RAM user can reuse previous passwords.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], + 'RequireSymbols' => ['description' => 'Indicates whether a password must contain one or more special characters.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'MaxPasswordAge' => ['description' => 'The number of days for which a password is valid. If you reset a password, the password validity period restarts. Default value: 0. The default value indicates that the password never expires.', 'type' => 'integer', 'format' => 'int32', 'example' => '0', 'title' => ''], + 'MinimumPasswordLength' => ['description' => 'The minimum number of characters in a password.', 'type' => 'integer', 'format' => 'int32', 'example' => '12', 'title' => ''], + 'RequireUppercaseCharacters' => ['description' => 'Indicates whether a password must contain one or more uppercase letters.', 'type' => 'boolean', 'example' => 'true', 'title' => ''], + 'MaxLoginAttemps' => ['description' => 'The maximum number of permitted logon attempts within one hour. The number of logon attempts is reset to zero if a RAM user changes the password.', 'type' => 'integer', 'format' => 'int32', 'example' => '5', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"PasswordPolicy\\": {\\n \\"RequireNumbers\\": true,\\n \\"RequireLowercaseCharacters\\": true,\\n \\"HardExpiry\\": false,\\n \\"PasswordReusePrevention\\": 0,\\n \\"RequireSymbols\\": true,\\n \\"MaxPasswordAge\\": 0,\\n \\"MinimumPasswordLength\\": 12,\\n \\"RequireUppercaseCharacters\\": true,\\n \\"MaxLoginAttemps\\": 5\\n }\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"PasswordPolicy\\": {\\n \\"MinimumPasswordLength\\": 12,\\n \\"RequireLowercaseCharacters\\": true,\\n \\"RequireUppercaseCharacters\\": true,\\n \\"RequireNumbers\\": true,\\n \\"RequireSymbols\\": true\\n }\\n}"},{"type":"xml","example":"<SetPasswordPolicyResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <PasswordPolicy>\\n <HardExpiry>false</HardExpiry>\\n <MaxLoginAttemps>5</MaxLoginAttemps>\\n <MaxPasswordAge>0</MaxPasswordAge>\\n <PasswordReusePrevention>0</PasswordReusePrevention>\\n <MinimumPasswordLength>12</MinimumPasswordLength>\\n <RequireLowercaseCharacters>true</RequireLowercaseCharacters>\\n <RequireUppercaseCharacters>true</RequireUppercaseCharacters>\\n <RequireNumbers>true</RequireNumbers>\\n <RequireSymbols>true</RequireSymbols>\\n </PasswordPolicy>\\n</SetPasswordPolicyResponse>","errorExample":"<SetPasswordPolicyResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <PasswordPolicy>\\n <MinimumPasswordLength>12</MinimumPasswordLength>\\n <RequireLowercaseCharacters>true</RequireLowercaseCharacters>\\n <RequireUppercaseCharacters>true</RequireUppercaseCharacters>\\n <RequireNumbers>true</RequireNumbers>\\n <RequireSymbols>true</RequireSymbols>\\n </PasswordPolicy>\\n</SetPasswordPolicyResponse>"}]', 'title' => 'SetPasswordPolicy', 'summary' => 'Configures the password policy for Resource Access Management (RAM) users, including the password strength.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'GetPasswordPolicy' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], - 'security' => [ - [ - 'AK' => [], + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetPasswordPolicy'], ], ], - 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], - 'parameters' => [], - 'responses' => [ - 200 => [ - 'schema' => [ - 'type' => 'object', - 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', - ], - 'PasswordPolicy' => [ - 'description' => 'The password policy.'."\n", - 'type' => 'object', - 'properties' => [ - 'RequireNumbers' => [ - 'description' => 'Indicates whether a password must contain one or more digits.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'RequireLowercaseCharacters' => [ - 'description' => 'Indicates whether a password must contain one or more lowercase letters.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'HardExpiry' => [ - 'description' => 'Indicates whether a password expires. Valid values: `true` and `false`. Default value: `false`. If the parameter is unspecified, the default value false is returned.'."\n" - ."\n" - .'* If this parameter is set to `true`, the Alibaba Cloud account to which the RAM users belong must reset the password before the RAM users can log on to the Alibaba Cloud Management Console.'."\n" - .'* If this parameter is set to `false`, the RAM users can change the passwords after the passwords expire and then log on to the Alibaba Cloud Management Console.'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], - 'PasswordReusePrevention' => [ - 'description' => 'The number of previous passwords that a RAM user is prevented from reusing. Default value: 0. The default value indicates that the RAM user can reuse previous passwords.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '0', - ], - 'RequireSymbols' => [ - 'description' => 'Indicates whether a password must contain one or more special characters.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'MaxPasswordAge' => [ - 'description' => 'The number of days for which a password is valid. If you reset a password, the password validity period restarts. Default value: 0. The default value indicates that the password never expires.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '0', - ], - 'MinimumPasswordLength' => [ - 'description' => 'The minimum number of characters in a password.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '12', - ], - 'RequireUppercaseCharacters' => [ - 'description' => 'Indicates whether a password must contain one or more uppercase letters.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - 'MaxLoginAttemps' => [ - 'description' => 'The maximum number of permitted logon attempts within one hour. The number of logon attempts is reset to zero if a RAM user changes the password.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '5', - ], - ], - ], + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:SetPasswordPolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], ], - 'description' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"PasswordPolicy\\": {\\n \\"RequireNumbers\\": true,\\n \\"RequireLowercaseCharacters\\": true,\\n \\"HardExpiry\\": false,\\n \\"PasswordReusePrevention\\": 0,\\n \\"RequireSymbols\\": true,\\n \\"MaxPasswordAge\\": 0,\\n \\"MinimumPasswordLength\\": 12,\\n \\"RequireUppercaseCharacters\\": true,\\n \\"MaxLoginAttemps\\": 5\\n }\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"PasswordPolicy\\": {\\n \\"MinimumPasswordLength\\": 12,\\n \\"RequireLowercaseCharacters\\": true,\\n \\"RequireUppercaseCharacters\\": true,\\n \\"RequireNumbers\\": true,\\n \\"RequireSymbols\\": true\\n }\\n}"},{"type":"xml","example":"<RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n<PasswordPolicy>\\n <HardExpiry>false</HardExpiry>\\n <MaxLoginAttemps>5</MaxLoginAttemps>\\n <MaxPasswordAge>0</MaxPasswordAge>\\n <PasswordReusePrevention>0</PasswordReusePrevention>\\n <MinimumPasswordLength>12</MinimumPasswordLength>\\n <RequireLowercaseCharacters>true</RequireLowercaseCharacters>\\n <RequireUppercaseCharacters>true</RequireUppercaseCharacters>\\n <RequireNumbers>true</RequireNumbers>\\n <RequireSymbols>true</RequireSymbols>\\n</PasswordPolicy>","errorExample":"<GetPasswordPolicyResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <PasswordPolicy>\\n <MinimumPasswordLength>12</MinimumPasswordLength>\\n <RequireLowercaseCharacters>true</RequireLowercaseCharacters>\\n <RequireUppercaseCharacters>true</RequireUppercaseCharacters>\\n <RequireNumbers>true</RequireNumbers>\\n <RequireSymbols>true</RequireSymbols>\\n </PasswordPolicy>\\n</GetPasswordPolicyResponse>"}]', - 'title' => 'GetPasswordPolicy', - 'summary' => 'Queries the password policy of Resource Access Management (RAM) users, including the password strength.', - 'requestParamsDescription' => ' ', - 'responseParamsDescription' => ' ', - 'extraInfo' => ' ', + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"PasswordPolicy\\": {\\n \\"RequireNumbers\\": true,\\n \\"RequireLowercaseCharacters\\": true,\\n \\"HardExpiry\\": false,\\n \\"PasswordReusePrevention\\": 0,\\n \\"RequireSymbols\\": true,\\n \\"MaxPasswordAge\\": 0,\\n \\"MinimumPasswordLength\\": 12,\\n \\"RequireUppercaseCharacters\\": true,\\n \\"MaxLoginAttemps\\": 5\\n }\\n}","type":"json"}]', ], 'SetSecurityPreference' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], 'operationType' => 'write', - 'systemTags' => [ - 'operationType' => 'update', - 'tenantRelevance' => 'publicInformation', - ], + 'systemTags' => ['operationType' => 'update', 'tenantRelevance' => 'publicInformation'], 'parameters' => [ [ 'name' => 'EnableSaveMFATicket', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether to remember the multi-factor authentication (MFA) devices of Resource Access Management (RAM) users for seven days. Valid values:'."\n" - ."\n" - .'* true'."\n" - .'* false (default)'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'true', - ], + 'schema' => ['description' => 'Specifies whether to remember the multi-factor authentication (MFA) devices of Resource Access Management (RAM) users for seven days. Valid values:'."\n" + ."\n" + .'* true'."\n" + .'* false (default)'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'AllowUserToChangePassword', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether RAM users can change their passwords. Valid values:'."\n" - ."\n" - .'* true (default)'."\n" - .'* false'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'true', - ], + 'schema' => ['description' => 'Specifies whether RAM users can change their passwords. Valid values:'."\n" + ."\n" + .'* true (default)'."\n" + .'* false'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'AllowUserToManageAccessKeys', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether RAM users can manage their AccessKey pairs. Valid values:'."\n" - ."\n" - .'* true'."\n" - .'* false (default)'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'false', - ], + 'schema' => ['description' => 'Specifies whether RAM users can manage their AccessKey pairs. Valid values:'."\n" + ."\n" + .'* true'."\n" + .'* false (default)'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'AllowUserToManagePublicKeys', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether RAM users can manage their public keys. Valid values:'."\n" - ."\n" - .'* true'."\n" - .'* false (default)'."\n" - ."\n" - .'> This parameter is valid only for the Japan site.'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'false', - ], + 'schema' => ['description' => 'Specifies whether RAM users can manage their public keys. Valid values:'."\n" + ."\n" + .'* true'."\n" + .'* false (default)'."\n" + ."\n" + .'> This parameter is valid only for the Japan site.'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'false', 'title' => ''], ], [ 'name' => 'AllowUserToManageMFADevices', 'in' => 'query', - 'schema' => [ - 'description' => 'Specifies whether RAM users can manage their MFA devices. Valid values:'."\n" - ."\n" - .'* true (default)'."\n" - .'* false'."\n", - 'type' => 'boolean', - 'required' => false, - 'example' => 'true', - ], + 'schema' => ['description' => 'Specifies whether RAM users can manage their MFA devices. Valid values:'."\n" + ."\n" + .'* true (default)'."\n" + .'* false'."\n", 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], ], [ 'name' => 'LoginSessionDuration', 'in' => 'query', - 'schema' => [ - 'description' => 'The validity period of the logon session of RAM users.'."\n" - ."\n" - .'Valid values: 1 to 24. Default value: 6. Unit: hours.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'required' => false, - 'example' => '6', - ], + 'schema' => ['description' => 'The validity period of the logon session of RAM users.'."\n" + ."\n" + .'Valid values: 1 to 24. Default value: 6. Unit: hours.'."\n", 'type' => 'integer', 'format' => 'int32', 'required' => false, 'example' => '6', 'title' => ''], ], [ 'name' => 'LoginNetworkMasks', 'in' => 'query', - 'schema' => [ - 'description' => 'The subnet mask that specifies the IP addresses from which you can log on to the Alibaba Cloud Management Console. This parameter takes effect on password-based logon and single sign-on (SSO). However, this parameter does not take effect on API calls that are authenticated by using AccessKey pairs.'."\n" - ."\n" - .'* If you specify a subnet mask, RAM users can use only the IP addresses in the subnet mask to log on to the Alibaba Cloud Management Console.'."\n" - .'* If you do not specify a subnet mask, RAM users can use all IP addresses to log on to the Alibaba Cloud Management Console.'."\n" - ."\n" - .'If you need to specify multiple subnet masks, separate the subnet masks with semicolons (;). Example: 192.168.0.0/16;10.0.0.0/8.'."\n" - ."\n" - .'You can specify up to 40 subnet masks. The total length of the subnet masks can be a maximum of 512 characters.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => '10.0.0.0/8', - ], + 'schema' => ['description' => 'The subnet mask that specifies the IP addresses from which you can log on to the Alibaba Cloud Management Console. This parameter takes effect on password-based logon and single sign-on (SSO). However, this parameter does not take effect on API calls that are authenticated by using AccessKey pairs.'."\n" + ."\n" + .'* If you specify a subnet mask, RAM users can use only the IP addresses in the subnet mask to log on to the Alibaba Cloud Management Console.'."\n" + .'* If you do not specify a subnet mask, RAM users can use all IP addresses to log on to the Alibaba Cloud Management Console.'."\n" + ."\n" + .'If you need to specify multiple subnet masks, separate the subnet masks with semicolons (;). Example: 192.168.0.0/16;10.0.0.0/8.'."\n" + ."\n" + .'You can specify up to 40 subnet masks. The total length of the subnet masks can be a maximum of 512 characters.'."\n", 'type' => 'string', 'required' => false, 'example' => '10.0.0.0/8', 'title' => ''], ], ], 'responses' => [ @@ -6083,50 +5039,31 @@ 'description' => 'The AccessKey pair preference.'."\n", 'type' => 'object', 'properties' => [ - 'AllowUserToManageAccessKeys' => [ - 'description' => 'Indicates whether RAM users can manage their AccessKey pairs.'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], + 'AllowUserToManageAccessKeys' => ['description' => 'Indicates whether RAM users can manage their AccessKey pairs.'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], ], + 'title' => '', + 'example' => '', ], 'MFAPreference' => [ 'description' => 'The MFA preference.'."\n", 'type' => 'object', 'properties' => [ - 'AllowUserToManageMFADevices' => [ - 'description' => 'Indicates whether RAM users can manage their MFA devices.'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], + 'AllowUserToManageMFADevices' => ['description' => 'Indicates whether RAM users can manage their MFA devices.'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], ], + 'title' => '', + 'example' => '', ], 'LoginProfilePreference' => [ 'description' => 'The logon preference.'."\n", 'type' => 'object', 'properties' => [ - 'EnableSaveMFATicket' => [ - 'description' => 'Indicates whether the MFA devices of RAM users are remembered.'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], - 'LoginSessionDuration' => [ - 'description' => 'The validity period of the logon session of RAM users.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '6', - ], - 'LoginNetworkMasks' => [ - 'description' => 'The subnet mask.'."\n", - 'type' => 'string', - 'example' => '10.0.0.0/8', - ], - 'AllowUserToChangePassword' => [ - 'description' => 'Indicates whether RAM users can change their passwords.'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], + 'EnableSaveMFATicket' => ['description' => 'Indicates whether the MFA devices of RAM users are remembered.'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], + 'LoginSessionDuration' => ['description' => 'The validity period of the logon session of RAM users.'."\n", 'type' => 'integer', 'format' => 'int32', 'example' => '6', 'title' => ''], + 'LoginNetworkMasks' => ['description' => 'The subnet mask.'."\n", 'type' => 'string', 'example' => '10.0.0.0/8', 'title' => ''], + 'AllowUserToChangePassword' => ['description' => 'Indicates whether RAM users can change their passwords.'."\n", 'type' => 'boolean', 'example' => 'true', 'title' => ''], ], + 'title' => '', + 'example' => '', ], 'PublicKeyPreference' => [ 'description' => 'The public key preference.'."\n" @@ -6134,466 +5071,52 @@ .'> This parameter is valid only for the Japan site.'."\n", 'type' => 'object', 'properties' => [ - 'AllowUserToManagePublicKeys' => [ - 'description' => 'Indicates whether RAM users can manage their public keys.'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], + 'AllowUserToManagePublicKeys' => ['description' => 'Indicates whether RAM users can manage their public keys.'."\n", 'type' => 'boolean', 'example' => 'false', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], + 'title' => '', + 'example' => '', ], - 'RequestId' => [ - 'description' => 'The ID of the request.'."\n", - 'type' => 'string', - 'example' => 'A978915D-F279-4CA0-A89B-9A71219FFB3E', - ], + 'RequestId' => ['description' => 'The ID of the request.'."\n", 'type' => 'string', 'example' => 'A978915D-F279-4CA0-A89B-9A71219FFB3E', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"SecurityPreference\\": {\\n \\"AccessKeyPreference\\": {\\n \\"AllowUserToManageAccessKeys\\": false\\n },\\n \\"MFAPreference\\": {\\n \\"AllowUserToManageMFADevices\\": false\\n },\\n \\"LoginProfilePreference\\": {\\n \\"EnableSaveMFATicket\\": false,\\n \\"LoginSessionDuration\\": 6,\\n \\"LoginNetworkMasks\\": \\"10.0.0.0/8\\",\\n \\"AllowUserToChangePassword\\": true\\n },\\n \\"PublicKeyPreference\\": {\\n \\"AllowUserToManagePublicKeys\\": false\\n }\\n },\\n \\"RequestId\\": \\"A978915D-F279-4CA0-A89B-9A71219FFB3E\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"SecurityPreference\\": {\\n \\"LoginProfilePreference\\": {\\n \\"EnableSaveMFATicket\\": true,\\n \\"AllowUserToChangePassword\\": true\\n },\\n \\"AccessKeyPreference\\": {\\n \\"AllowUserToManageAccessKeys\\": false\\n },\\n \\"MFAPreference\\": {\\n \\"AllowUserToManageMFADevices\\": true\\n }\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\r\\n<SetSecurityPreferenceResponse>\\r\\n\\t<SecurityPreference>\\r\\n\\t\\t<LoginProfilePreference>\\r\\n\\t\\t\\t<LoginSessionDuration>6</LoginSessionDuration>\\r\\n\\t\\t\\t<LoginNetworkMasks></LoginNetworkMasks>\\r\\n\\t\\t\\t<AllowUserToChangePassword>true</AllowUserToChangePassword>\\r\\n\\t\\t\\t<EnableSaveMFATicket>false</EnableSaveMFATicket>\\r\\n\\t\\t</LoginProfilePreference>\\r\\n\\t\\t<AccessKeyPreference>\\r\\n\\t\\t\\t<AllowUserToManageAccessKeys>false</AllowUserToManageAccessKeys>\\r\\n\\t\\t</AccessKeyPreference>\\r\\n\\t\\t<PublicKeyPreference>\\r\\n\\t\\t\\t<AllowUserToManagePublicKeys>false</AllowUserToManagePublicKeys>\\r\\n\\t\\t</PublicKeyPreference>\\r\\n\\t\\t<MFAPreference>\\r\\n\\t\\t\\t<AllowUserToManageMFADevices>true</AllowUserToManageMFADevices>\\r\\n\\t\\t</MFAPreference>\\r\\n\\t</SecurityPreference>\\r\\n\\t<RequestId>A978915D-F279-4CA0-A89B-9A71219FFB3E</RequestId>\\r\\n</SetSecurityPreferenceResponse>\\t\\r\\n","errorExample":"<SetSecurityPreferenceResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <SecurityPreference>\\n <LoginProfilePreference>\\n <EnableSaveMFATicket>true</EnableSaveMFATicket>\\n <AllowUserToChangePassword>true</AllowUserToChangePassword>\\n </LoginProfilePreference>LoginProfilePreference>\\n <AccessKeyPreference>\\n <AllowUserToManageAccessKeys>false</AllowUserToManageAccessKeys>\\n </AccessKeyPreference>\\n <MFAPreference>\\n <AllowUserToManageMFADevices>false</AllowUserToManageMFADevices>\\n </MFAPreference>\\n </SecurityPreference>\\n</SetSecurityPreferenceResponse>"}]', 'title' => 'SetSecurityPreference', 'summary' => 'Configures the security preferences.', 'requestParamsDescription' => ' ', 'responseParamsDescription' => ' ', 'extraInfo' => ' ', - ], - 'GetSecurityPreference' => [ - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], - 'security' => [ - [ - 'AK' => [], + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetSecurityPreference'], ], ], - 'operationType' => 'read', - 'systemTags' => [ - 'operationType' => 'get', - ], - 'parameters' => [], - 'responses' => [ - 200 => [ - 'schema' => [ - 'type' => 'object', - 'properties' => [ - 'SecurityPreference' => [ - 'description' => 'The security preferences.'."\n", - 'type' => 'object', - 'properties' => [ - 'AccessKeyPreference' => [ - 'description' => 'The AccessKey pair preference.'."\n", - 'type' => 'object', - 'properties' => [ - 'AllowUserToManageAccessKeys' => [ - 'description' => 'Indicates whether Resource Access Management (RAM) users can manage their AccessKey pairs. Valid values:'."\n" - ."\n" - .'* true'."\n" - .'* false'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], - ], - ], - 'MFAPreference' => [ - 'description' => 'The multi-factor authentication (MFA) preference.'."\n", - 'type' => 'object', - 'properties' => [ - 'AllowUserToManageMFADevices' => [ - 'description' => 'Indicates whether RAM users can manage their MFA devices. Valid values:'."\n" - ."\n" - .'* true'."\n" - .'* false'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - ], - ], - 'LoginProfilePreference' => [ - 'description' => 'The logon preference.'."\n", - 'type' => 'object', - 'properties' => [ - 'EnableSaveMFATicket' => [ - 'description' => 'Indicates whether RAM users can save security codes for MFA during logon. Each security code is valid for seven days. Valid values:'."\n" - ."\n" - .'* true'."\n" - .'* false'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], - 'LoginSessionDuration' => [ - 'description' => 'The validity period of the logon session of RAM users. Unit: hours.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'example' => '6', - ], - 'LoginNetworkMasks' => [ - 'description' => 'The subnet mask that indicates the IP addresses from which logon to the Alibaba Cloud Management Console is allowed. This parameter applies to password-based logon and single sign-on (SSO). However, this parameter does not apply to API calls that are authenticated based on AccessKey pairs.'."\n" - ."\n" - .'* If you specify a subnet mask, RAM users can use only the IP addresses in the subnet mask to log on to the Alibaba Cloud Management Console.'."\n" - .'* If you do not specify a subnet mask, RAM users can use all IP addresses to log on to the Alibaba Cloud Management Console.'."\n" - ."\n" - .'If you want to specify more than one subnet mask, separate the masks with semicolons (;). Example: 192.168.0.0/16;10.0.0.0/8.'."\n", - 'type' => 'string', - 'example' => '10.0.0.0/8', - ], - 'AllowUserToChangePassword' => [ - 'description' => 'Indicates whether RAM users can change their passwords. Valid values:'."\n" - ."\n" - .'* true'."\n" - .'* false'."\n", - 'type' => 'boolean', - 'example' => 'true', - ], - ], - ], - 'PublicKeyPreference' => [ - 'description' => 'The public key preference.'."\n" - ."\n" - .'> This parameter is valid only for the Japan site.'."\n", - 'type' => 'object', - 'properties' => [ - 'AllowUserToManagePublicKeys' => [ - 'description' => 'Indicates whether RAM users can manage their public keys. Valid values:'."\n" - ."\n" - .'* true'."\n" - .'* false'."\n", - 'type' => 'boolean', - 'example' => 'false', - ], - ], - ], - ], - ], - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => 'DC1213F1-A9D5-4A01-A996-44983689126C', - ], - ], - 'description' => '', - ], - ], - ], - 'responseDemo' => '[{"type":"json","example":"{\\n \\"SecurityPreference\\": {\\n \\"AccessKeyPreference\\": {\\n \\"AllowUserToManageAccessKeys\\": false\\n },\\n \\"MFAPreference\\": {\\n \\"AllowUserToManageMFADevices\\": true\\n },\\n \\"LoginProfilePreference\\": {\\n \\"EnableSaveMFATicket\\": false,\\n \\"LoginSessionDuration\\": 6,\\n \\"LoginNetworkMasks\\": \\"10.0.0.0/8\\",\\n \\"AllowUserToChangePassword\\": true\\n },\\n \\"PublicKeyPreference\\": {\\n \\"AllowUserToManagePublicKeys\\": false\\n }\\n },\\n \\"RequestId\\": \\"DC1213F1-A9D5-4A01-A996-44983689126C\\"\\n}","errorExample":""},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\r\\n<GetSecurityPreferenceResponse>\\r\\n\\t<SecurityPreference>\\r\\n\\t\\t<LoginProfilePreference>\\r\\n\\t\\t\\t<LoginSessionDuration>6</LoginSessionDuration>\\r\\n\\t\\t\\t<LoginNetworkMasks></LoginNetworkMasks>\\r\\n\\t\\t\\t<AllowUserToChangePassword>true</AllowUserToChangePassword>\\r\\n\\t\\t\\t<EnableSaveMFATicket>false</EnableSaveMFATicket>\\r\\n\\t\\t</LoginProfilePreference>\\r\\n\\t\\t<AccessKeyPreference>\\r\\n\\t\\t\\t<AllowUserToManageAccessKeys>false</AllowUserToManageAccessKeys>\\r\\n\\t\\t</AccessKeyPreference>\\r\\n\\t\\t<PublicKeyPreference>\\r\\n\\t\\t\\t<AllowUserToManagePublicKeys>false</AllowUserToManagePublicKeys>\\r\\n\\t\\t</PublicKeyPreference>\\r\\n\\t\\t<MFAPreference>\\r\\n\\t\\t\\t<AllowUserToManageMFADevices>true</AllowUserToManageMFADevices>\\r\\n\\t\\t</MFAPreference>\\r\\n\\t</SecurityPreference>\\r\\n\\t<RequestId>DC1213F1-A9D5-4A01-A996-44983689126C</RequestId>\\r\\n</GetSecurityPreferenceResponse>\\r\\n\\t\\r\\n","errorExample":""}]', - 'title' => 'GetSecurityPreference', - 'summary' => 'Queries the security preferences.', - 'requestParamsDescription' => ' ', - 'responseParamsDescription' => ' ', - 'extraInfo' => ' ', - ], - 'DecodeDiagnosticMessage' => [ - 'summary' => 'Decodes the diagnostic information in the response that contains an access denied error. The error is caused by no RAM permissions.', - 'methods' => [ - 'get', - 'post', - ], - 'schemes' => [ - 'https', - ], - 'security' => [ + 'ramActions' => [ [ - 'AK' => [], - ], - ], - 'operationType' => 'read', - 'deprecated' => false, - 'systemTags' => [ - 'operationType' => 'get', - ], - 'parameters' => [ - [ - 'name' => 'EncodedDiagnosticMessage', - 'in' => 'query', - 'schema' => [ - 'description' => 'The encoded diagnostic information in the response that contains an access denied error. The error is caused by no RAM permissions.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'AQEAAAAAZBgxr0U1MjA1NTM1LUM4BBktMzE5RS1CODgxLUU1QTI0RDNFQTM1****', - ], - ], - ], - 'responses' => [ - 200 => [ - 'headers' => [], - 'schema' => [ - 'title' => 'Schema of Response', - 'description' => 'The response parameters.'."\n", - 'type' => 'object', - 'properties' => [ - 'RequestId' => [ - 'title' => 'Id of the request', - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => 'D2331703-AADF-5564-BA9B-26CD51A33BA0', - ], - 'DecodedDiagnosticMessage' => [ - 'description' => 'The decoded diagnostic information.'."\n", - 'type' => 'object', - 'properties' => [ - 'ExplicitDeny' => [ - 'description' => 'Indicates whether the access denied error is caused by an explicit deny.'."\n" - ."\n" - .'Valid values:'."\n" - ."\n" - .'* true'."\n" - .'* false'."\n", - 'type' => 'boolean', - 'enumValueTitles' => [ - 'true' => '', - 'false' => '', - ], - 'example' => 'true', - ], - 'NoPermissionPolicyType' => [ - 'description' => 'The type of the policy that causes the access denied error.'."\n" - ."\n" - .'Valid values:'."\n" - ."\n" - .'* AssumeRolePolicy: role-specific trust policy'."\n" - .'* ControlPolicy: control policy'."\n" - .'* AccountLevelIdentityBasedPolicy: identity-based policy at the account level'."\n" - .'* ResourceGroupLevelIdentityBasedPolicy: identity-based policy at the resource group level'."\n" - .'* SessionPolicy: session policy', - 'type' => 'string', - 'enumValueTitles' => [ - 'AssumeRolePolicy' => '', - 'ControlPolicy' => '', - 'AccountLevelIdentityBasedPolicy' => '', - 'ResourceGroupLevelIdentityBasedPolicy' => '', - 'SessionPolicy' => '', - ], - 'example' => 'AccountLevelIdentityBasedPolicy', - ], - 'AuthAction' => [ - 'description' => 'The operation that is used for authentication in the request.'."\n", - 'type' => 'string', - 'example' => 'ram:DecodeDiagnosticMessage', - ], - 'AuthResource' => [ - 'description' => 'The resource that is used for authentication in the request.'."\n", - 'type' => 'string', - 'example' => '*', - ], - 'AuthPrincipal' => [ - 'description' => 'The operator that is used for authentication in the request.'."\n", - 'type' => 'object', - 'properties' => [ - 'AuthPrincipalType' => [ - 'description' => 'The identity type that is used for authentication in the request.'."\n" - ."\n" - .'Valid values:'."\n" - ."\n" - .'* SubUser: RAM user'."\n" - .'* AssumedRoleUser: RAM role'."\n" - .'* Federated: SSO federated identity', - 'type' => 'string', - 'enumValueTitles' => [ - 'SubUser' => '', - 'AssumedRoleUser' => '', - 'Federated' => '', - ], - 'example' => 'SubUser', - ], - 'AuthPrincipalOwnerId' => [ - 'description' => 'The ID of the Alibaba Cloud account to which the identity belongs.'."\n", - 'type' => 'string', - 'example' => '196813200012****', - ], - 'AuthPrincipalDisplayName' => [ - 'description' => 'The identity.'."\n" - ."\n" - .'* If the operator is a RAM user, the ID of the user is displayed.'."\n" - .'* If the operator is a RAM role, the name and session name of the role are displayed. Example: RoleName:RoleSessionName.'."\n" - .'* If the operator is an SSO federated identity, the type and name of the identity provider (IdP) are displayed. Example: saml-provider/AzureAD.'."\n", - 'type' => 'string', - 'example' => '28877424437521****', - ], - ], - ], - 'AuthConditions' => [ - 'description' => 'The conditions that are used for authentication in the request.', - 'type' => 'array', - 'items' => [ - 'description' => 'The conditions that are used for authentication in the request.', - 'type' => 'object', - 'properties' => [ - 'ConditionKey' => [ - 'description' => 'The key of the condition.'."\n", - 'type' => 'string', - 'example' => 'acs:SourceIp', - ], - 'ConditionValues' => [ - 'description' => 'The values that correspond to the key.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The value that corresponds to the key.'."\n", - 'type' => 'string', - 'example' => '172.16.215.218', - ], - ], - ], - ], - ], - 'MatchedPolicies' => [ - 'description' => 'The policies that are matched.', - 'type' => 'array', - 'items' => [ - 'description' => 'The policies that are matched.', - 'type' => 'object', - 'properties' => [ - 'Effect' => [ - 'description' => 'The effect of the policy.'."\n" - ."\n" - .'Valid values:'."\n" - ."\n" - .'* Deny'."\n" - ."\n" - .' <!-- -->'."\n" - ."\n" - .' <!-- -->'."\n" - ."\n" - .' <!-- -->'."\n" - ."\n" - .'* Allow'."\n" - ."\n" - .' <!-- -->'."\n" - ."\n" - .' <!-- -->'."\n" - ."\n" - .' <!-- -->'."\n", - 'type' => 'string', - 'enumValueTitles' => [ - 'Deny' => '', - 'Allow' => '', - ], - 'example' => 'Deny', - ], - 'PolicyIdentifier' => [ - 'description' => 'The identifier of the policy.'."\n" - ."\n" - .'* Control policy: the ID of the control policy'."\n" - .'* RAM policy: the name of the policy'."\n", - 'type' => 'string', - 'example' => 'MyPolicyName', - ], - 'PolicyType' => [ - 'description' => 'The type of the policy.'."\n" - ."\n" - .'Valid values:'."\n" - .'* Custom: custom policy'."\n" - .'* System: system policy', - 'type' => 'string', - 'enumValueTitles' => [ - 'Custom' => '', - 'System' => '', - ], - 'example' => 'Custom', - ], - 'PolicyVersion' => [ - 'description' => 'The version number of the policy.'."\n" - ."\n" - .'> Only custom policies have version numbers.'."\n", - 'type' => 'string', - 'example' => 'v1', - ], - 'AttachedEntityType' => [ - 'description' => 'The type of the entity to which the policy is attached.'."\n" - ."\n" - .'Valid values:'."\n" - ."\n" - .'* RamUser: RAM user'."\n" - .'* RamRole: RAM role'."\n" - .'* ResourceDirectoryTarget: entity in a resource directory'."\n" - .'* RamGroup: RAM user group', - 'type' => 'string', - 'enumValueTitles' => [ - 'RamUser' => '', - 'RamRole' => '', - 'ResourceDirectoryTarget' => '', - 'RamGroup' => '', - ], - 'example' => 'RamUser', - ], - 'AttachedScope' => [ - 'description' => 'The authorization scope of the policy.'."\n" - ."\n" - .'Valid values:'."\n" - ."\n" - .'* Account: Alibaba Cloud account'."\n" - .'* Folder: folder in the resource directory'."\n" - .'* ResourceGroup: resource group', - 'type' => 'string', - 'enumValueTitles' => [ - 'Account' => '', - 'Folder' => '', - 'ResourceGroup' => '', - ], - 'example' => 'Account', - ], - ], - ], - ], - ], - ], + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:SetSecurityPreference', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], ], ], ], ], - 'errorCodes' => [ - 400 => [ - [ - 'errorCode' => 'NotSupport', - 'errorMessage' => 'This method can only be invoked by customer, sub user and assumed role user.', - ], - [ - 'errorCode' => 'EncodedMessageExpire', - 'errorMessage' => 'The EncodedDiagnosticMessage is expired.', - ], - ], - 403 => [ - [ - 'errorCode' => 'NoPermission', - 'errorMessage' => 'You do not have the required permissions.', - ], - ], - [ - [ - 'errorCode' => 'SearchInaccurate', - 'errorMessage' => 'The search result is inaccurate, please retry later.', - ], - [ - 'errorCode' => 'EntityNotExist', - 'errorMessage' => 'The specific DecodedDiagnosticMessage cannot be found.', - ], - ], - 429 => [ - [ - 'errorCode' => 'TooManyRequests', - 'errorMessage' => 'Too many search requests at same time, please retry later.', - ], - ], - ], - 'staticInfo' => [ - 'returnType' => 'synchronous', - ], - 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"D2331703-AADF-5564-BA9B-26CD51A33BA0\\",\\n \\"DecodedDiagnosticMessage\\": {\\n \\"ExplicitDeny\\": true,\\n \\"NoPermissionPolicyType\\": \\"AccountLevelIdentityBasedPolicy\\",\\n \\"AuthAction\\": \\"ram:DecodeDiagnosticMessage\\",\\n \\"AuthResource\\": \\"*\\",\\n \\"AuthPrincipal\\": {\\n \\"AuthPrincipalType\\": \\"SubUser\\",\\n \\"AuthPrincipalOwnerId\\": \\"196813200012****\\",\\n \\"AuthPrincipalDisplayName\\": \\"28877424437521****\\"\\n },\\n \\"AuthConditions\\": [\\n {\\n \\"ConditionKey\\": \\"acs:SourceIp\\",\\n \\"ConditionValues\\": [\\n \\"172.16.215.218\\"\\n ]\\n }\\n ],\\n \\"MatchedPolicies\\": [\\n {\\n \\"Effect\\": \\"Deny\\",\\n \\"PolicyIdentifier\\": \\"MyPolicyName\\",\\n \\"PolicyType\\": \\"Custom\\",\\n \\"PolicyVersion\\": \\"v1\\",\\n \\"AttachedEntityType\\": \\"RamUser\\",\\n \\"AttachedScope\\": \\"Account\\"\\n }\\n ]\\n }\\n}","type":"json"}]', - 'title' => 'DecodeDiagnosticMessage', + 'responseDemo' => '[{"type":"json","example":"{\\n \\"SecurityPreference\\": {\\n \\"AccessKeyPreference\\": {\\n \\"AllowUserToManageAccessKeys\\": false\\n },\\n \\"MFAPreference\\": {\\n \\"AllowUserToManageMFADevices\\": false\\n },\\n \\"LoginProfilePreference\\": {\\n \\"EnableSaveMFATicket\\": false,\\n \\"LoginSessionDuration\\": 6,\\n \\"LoginNetworkMasks\\": \\"10.0.0.0/8\\",\\n \\"AllowUserToChangePassword\\": true\\n },\\n \\"PublicKeyPreference\\": {\\n \\"AllowUserToManagePublicKeys\\": false\\n }\\n },\\n \\"RequestId\\": \\"A978915D-F279-4CA0-A89B-9A71219FFB3E\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\",\\n \\"SecurityPreference\\": {\\n \\"LoginProfilePreference\\": {\\n \\"EnableSaveMFATicket\\": true,\\n \\"AllowUserToChangePassword\\": true\\n },\\n \\"AccessKeyPreference\\": {\\n \\"AllowUserToManageAccessKeys\\": false\\n },\\n \\"MFAPreference\\": {\\n \\"AllowUserToManageMFADevices\\": true\\n }\\n }\\n}"},{"type":"xml","example":"<?xml version=\\"1.0\\" encoding=\\"UTF-8\\" ?>\\r\\n<SetSecurityPreferenceResponse>\\r\\n\\t<SecurityPreference>\\r\\n\\t\\t<LoginProfilePreference>\\r\\n\\t\\t\\t<LoginSessionDuration>6</LoginSessionDuration>\\r\\n\\t\\t\\t<LoginNetworkMasks></LoginNetworkMasks>\\r\\n\\t\\t\\t<AllowUserToChangePassword>true</AllowUserToChangePassword>\\r\\n\\t\\t\\t<EnableSaveMFATicket>false</EnableSaveMFATicket>\\r\\n\\t\\t</LoginProfilePreference>\\r\\n\\t\\t<AccessKeyPreference>\\r\\n\\t\\t\\t<AllowUserToManageAccessKeys>false</AllowUserToManageAccessKeys>\\r\\n\\t\\t</AccessKeyPreference>\\r\\n\\t\\t<PublicKeyPreference>\\r\\n\\t\\t\\t<AllowUserToManagePublicKeys>false</AllowUserToManagePublicKeys>\\r\\n\\t\\t</PublicKeyPreference>\\r\\n\\t\\t<MFAPreference>\\r\\n\\t\\t\\t<AllowUserToManageMFADevices>true</AllowUserToManageMFADevices>\\r\\n\\t\\t</MFAPreference>\\r\\n\\t</SecurityPreference>\\r\\n\\t<RequestId>A978915D-F279-4CA0-A89B-9A71219FFB3E</RequestId>\\r\\n</SetSecurityPreferenceResponse>\\t\\r\\n","errorExample":"<SetSecurityPreferenceResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n <SecurityPreference>\\n <LoginProfilePreference>\\n <EnableSaveMFATicket>true</EnableSaveMFATicket>\\n <AllowUserToChangePassword>true</AllowUserToChangePassword>\\n </LoginProfilePreference>LoginProfilePreference>\\n <AccessKeyPreference>\\n <AllowUserToManageAccessKeys>false</AllowUserToManageAccessKeys>\\n </AccessKeyPreference>\\n <MFAPreference>\\n <AllowUserToManageMFADevices>false</AllowUserToManageMFADevices>\\n </MFAPreference>\\n </SecurityPreference>\\n</SetSecurityPreferenceResponse>"}]', ], 'TagResources' => [ 'summary' => 'Adds tags to cloud resources which are Resource Access Management (RAM) roles and policies.', - 'methods' => [ - 'post', - 'get', - ], - 'schemes' => [ - 'https', - ], + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], @@ -6606,9 +5129,7 @@ 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '254511', - 'abilityTreeNodes' => [ - 'FEATUREramGR28GE', - ], + 'abilityTreeNodes' => ['FEATUREramGR28GE'], 'tenantRelevance' => 'tenant', ], 'parameters' => [ @@ -6620,16 +5141,15 @@ ."\n" .'Enumerated values:'."\n" ."\n" - .'* role: RAM roles.'."\n" - .'* policy: policies.'."\n", + .'- role: RAM roles.'."\n" + ."\n" + .'- policy: policies.', + 'enumValueTitles' => ['role' => 'RAM role', 'policy' => 'policy'], 'type' => 'string', - 'required' => true, 'docRequired' => true, - 'enumValueTitles' => [ - 'role' => '', - 'policy' => '', - ], + 'required' => true, 'example' => 'role', + 'title' => '', ], ], [ @@ -6637,16 +5157,12 @@ 'in' => 'query', 'style' => 'json', 'schema' => [ - 'description' => 'The names of the resources. You can specify up to 50 resource names.'."\n", + 'description' => 'The names of the resources. You can specify up to 50 resource names.', 'type' => 'array', - 'items' => [ - 'description' => 'The name of the resource.'."\n", - 'type' => 'string', - 'required' => true, - 'docRequired' => true, - 'example' => 'role1', - ], + 'items' => ['description' => 'The name of the resource.', 'type' => 'string', 'docRequired' => true, 'required' => true, 'example' => 'role1', 'title' => ''], 'required' => false, + 'title' => '', + 'example' => '', ], ], [ @@ -6654,62 +5170,131 @@ 'in' => 'query', 'style' => 'json', 'schema' => [ - 'description' => 'The tags. You can specify up to 20 tags.'."\n", + 'description' => 'The tags. You can specify up to 20 tags.', 'type' => 'array', 'items' => [ - 'description' => 'The tag.'."\n", + 'description' => 'The tag.', 'type' => 'object', 'properties' => [ - 'Key' => [ - 'description' => 'The key of the tag. The tag key can be up to 128 characters in length.'."\n", - 'type' => 'string', - 'required' => true, - 'docRequired' => true, - 'example' => 'k1', - ], - 'Value' => [ - 'description' => 'The value of the tag. The tag value can be up to 256 characters in length.'."\n", - 'type' => 'string', - 'required' => true, - 'docRequired' => true, - 'example' => 'v1', - ], + 'Key' => ['description' => 'The key of the tag. The tag key can be up to 128 characters in length.', 'type' => 'string', 'docRequired' => true, 'required' => true, 'example' => 'k1', 'title' => ''], + 'Value' => ['description' => 'The value of the tag. The tag value can be up to 256 characters in length.', 'type' => 'string', 'docRequired' => true, 'required' => true, 'example' => 'v1', 'title' => ''], ], 'required' => true, 'docRequired' => true, + 'title' => '', + 'example' => '', ], 'required' => true, 'docRequired' => true, + 'title' => '', + 'example' => '', ], ], ], 'responses' => [ 200 => [ 'schema' => [ - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '697852FB-50D7-44D9-9774-530C31EAC572', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"697852FB-50D7-44D9-9774-530C31EAC572\\"\\n}","type":"json"}]', 'title' => 'TagResources', + 'changeSet' => [], + 'ramActions' => [ + [ + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:TagResources', + 'authLevel' => 'operate', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + ], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'TagResources'], + ], + ], ], - 'UntagResources' => [ - 'summary' => 'Removes tags from cloud resources that are Resource Access Management (RAM) roles and policies.', - 'methods' => [ - 'post', - 'get', + 'UnbindMFADevice' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], + 'security' => [ + [ + 'AK' => [], + ], ], - 'schemes' => [ - 'https', + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'update', 'riskType' => 'none', 'chargeType' => 'free', 'autoTest' => false, 'notSupportAutoTestReason' => 'MFA相关API依赖设备返回的随机验证码,自动化测试中取不到'], + 'parameters' => [ + [ + 'name' => 'UserName', + 'in' => 'query', + 'schema' => ['description' => 'Specifies the username.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], + ], ], + 'responses' => [ + 200 => [ + 'schema' => [ + 'description' => 'The response parameters.', + 'type' => 'object', + 'properties' => [ + 'MFADevice' => [ + 'description' => 'The information about the MFA device.', + 'type' => 'object', + 'properties' => [ + 'SerialNumber' => ['description' => 'The serial number of the MFA device.', 'type' => 'string', 'example' => 'acs:ram::123456789012****:mfa/device002', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + ], + ], + 'title' => 'UnbindMFADevice', + 'summary' => 'Unbinds a multi-factor authentication (MFA) device from a Resource Access Management (RAM) user.', + 'requestParamsDescription' => ' ', + 'responseParamsDescription' => ' ', + 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UnbindMFADevice'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UnbindMFADevice', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"MFADevice\\": {\\n \\"SerialNumber\\": \\"acs:ram::123456789012****:mfa/device002\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + ], + 'UntagResources' => [ + 'summary' => 'Removes tags from cloud resources that are Resource Access Management (RAM) roles and policies.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], @@ -6722,9 +5307,7 @@ 'riskType' => 'none', 'chargeType' => 'free', 'abilityTreeCode' => '255085', - 'abilityTreeNodes' => [ - 'FEATUREramGR28GE', - ], + 'abilityTreeNodes' => ['FEATUREramGR28GE'], 'autoTest' => true, 'tenantRelevance' => 'tenant', ], @@ -6737,16 +5320,15 @@ ."\n" .'Enumerated values:'."\n" ."\n" - .'* role: RAM roles.'."\n" - .'* policy: policies.'."\n", + .'- role: RAM roles.'."\n" + ."\n" + .'- policy: policies.', + 'enumValueTitles' => ['role' => 'RAM role', 'policy' => 'policy'], 'type' => 'string', - 'required' => true, 'docRequired' => true, - 'enumValueTitles' => [ - 'role' => 'role', - 'policy' => 'policy', - ], + 'required' => true, 'example' => 'role', + 'title' => '', ], ], [ @@ -6754,17 +5336,13 @@ 'in' => 'query', 'style' => 'json', 'schema' => [ - 'description' => 'The names of the resources. You can specify up to 50 resource names.'."\n", + 'description' => 'The names of the resources. You can specify up to 50 resource names.', 'type' => 'array', - 'items' => [ - 'description' => 'The name of the resource.'."\n", - 'type' => 'string', - 'required' => true, - 'docRequired' => true, - 'example' => 'role1', - ], + 'items' => ['description' => 'The name of the resource.', 'type' => 'string', 'docRequired' => true, 'required' => true, 'example' => 'role1', 'title' => ''], 'required' => true, 'docRequired' => true, + 'title' => '', + 'example' => '', ], ], [ @@ -6772,16 +5350,12 @@ 'in' => 'query', 'style' => 'json', 'schema' => [ - 'description' => 'The keys of the tags. You can specify up to 20 tag keys.'."\n", + 'description' => 'The keys of the tags. You can specify up to 20 tag keys.', 'type' => 'array', - 'items' => [ - 'description' => 'The key of the tag. The tag key can be up to 128 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => false, - 'example' => 't1', - ], + 'items' => ['description' => 'The key of the tag. The tag key can be up to 128 characters in length.', 'type' => 'string', 'docRequired' => false, 'required' => false, 'example' => 't1', 'title' => ''], 'required' => false, + 'title' => '', + 'example' => '', ], ], [ @@ -6792,16 +5366,15 @@ ."\n" .'Enumerated values:'."\n" ."\n" - .'* true'."\n" - .'* false'."\n", + .'- true'."\n" + ."\n" + .'- false', + 'enumValueTitles' => ['true' => 'Unbind all tags', 'false' => 'Do not unbind all tags'], 'type' => 'boolean', - 'required' => false, 'docRequired' => false, - 'enumValueTitles' => [ - 'true' => 'true', - 'false' => 'false', - ], + 'required' => false, 'example' => 'true', + 'title' => '', ], ], ], @@ -6809,302 +5382,1908 @@ 200 => [ 'schema' => [ 'title' => 'Schema of Response', - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'title' => 'Id of the request', - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '9B34724D-54B0-4A51-B34D-4512372FE1BE', - ], + 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.', 'type' => 'string', 'example' => '9B34724D-54B0-4A51-B34D-4512372FE1BE'], ], + 'example' => '', ], ], ], - 'staticInfo' => [ - 'returnType' => 'synchronous', - ], + 'staticInfo' => ['returnType' => 'synchronous'], 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"9B34724D-54B0-4A51-B34D-4512372FE1BE\\"\\n}","type":"json"}]', 'title' => 'UntagResources', - ], - 'ListTagResources' => [ - 'summary' => 'Queries the tags that are added to cloud resources which are Resource Access Management (RAM) roles and policies.', - 'methods' => [ - 'post', - 'get', + 'changeSet' => [], + 'ramActions' => [ + [ + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:UntagResources', + 'authLevel' => 'operate', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], ], - 'schemes' => [ - 'https', + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UntagResources'], + ], ], + ], + 'UpdateAccessKey' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], 'security' => [ [ 'AK' => [], ], ], - 'operationType' => 'read', - 'deprecated' => false, - 'systemTags' => [ - 'operationType' => 'list', - 'riskType' => 'none', - 'chargeType' => 'free', - 'abilityTreeCode' => '255081', - 'abilityTreeNodes' => [ - 'FEATUREramGR28GE', + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'update'], + 'parameters' => [ + [ + 'name' => 'UserName', + 'in' => 'query', + 'schema' => ['description' => 'The name of the RAM user.'."\n", 'type' => 'string', 'required' => false, 'example' => 'zhangq****', 'title' => ''], + ], + [ + 'name' => 'UserAccessKeyId', + 'in' => 'query', + 'schema' => ['description' => 'The AccessKey ID in the AccessKey pair whose status you want to change.``'."\n", 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => '0wNEpMMlzy7s****', 'title' => ''], + ], + [ + 'name' => 'Status', + 'in' => 'query', + 'schema' => ['description' => 'The status of the AccessKey pair. Valid values: `Active` and `Inactive`.'."\n", 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Inactive', 'title' => ''], ], - 'autoTest' => true, - 'tenantRelevance' => 'tenant', ], + 'responses' => [ + 200 => [ + 'schema' => [ + 'description' => 'The response parameters.'."\n", + 'type' => 'object', + 'properties' => [ + 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + ], + ], + 'title' => 'UpdateAccessKey', + 'summary' => 'Changes the status of an AccessKey pair that belongs to a Resource Access Management (RAM) user.', + 'requestParamsDescription' => ' ', + 'responseParamsDescription' => ' ', + 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateAccessKey'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdateAccessKey', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + ], + 'responseDemo' => '[{"type":"json","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","errorExample":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}"},{"type":"xml","example":"<UpdateAccessKeyResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</UpdateAccessKeyResponse>","errorExample":"<UpdateAccessKeyResponse>\\n <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>\\n</UpdateAccessKeyResponse>"}]', + ], + 'UpdateGroup' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], + 'security' => [ + [ + 'AK' => [], + ], + ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'update'], 'parameters' => [ [ - 'name' => 'ResourceType', + 'name' => 'GroupName', 'in' => 'query', + 'schema' => ['description' => 'The name of the RAM user group.'."\n", 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'Dev-Team', 'title' => ''], + ], + [ + 'name' => 'NewGroupName', + 'in' => 'query', + 'schema' => ['description' => 'The new name of the RAM user group.'."\n" + ."\n" + .'The name must be 1 to 64 characters in length and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).'."\n", 'type' => 'string', 'required' => false, 'example' => 'NewDev-Team', 'title' => ''], + ], + [ + 'name' => 'NewComments', + 'in' => 'query', + 'schema' => ['description' => 'The new description of the RAM user group.'."\n" + ."\n" + .'The new description must be 1 to 128 characters in length.'."\n", 'type' => 'string', 'required' => false, 'example' => 'Development team', 'title' => ''], + ], + ], + 'responses' => [ + 200 => [ 'schema' => [ - 'description' => 'The resource type.'."\n" - ."\n" - .'Enumerated values:'."\n" - ."\n" - .'* role: RAM roles.'."\n" - .'* policy: policies.'."\n", - 'type' => 'string', - 'required' => true, - 'docRequired' => true, - 'enumValueTitles' => [ - 'role' => 'role', - 'policy' => 'policy', + 'description' => 'The response parameters.'."\n", + 'type' => 'object', + 'properties' => [ + 'Group' => [ + 'description' => 'The information about the RAM user group.'."\n", + 'type' => 'object', + 'properties' => [ + 'GroupId' => ['description' => 'The ID of the RAM user group.'."\n", 'type' => 'string', 'example' => 'g-FpMEHiMysofp****', 'title' => ''], + 'UpdateDate' => ['description' => 'The modification time.'."\n", 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'GroupName' => ['description' => 'The name of the RAM user group.'."\n", 'type' => 'string', 'example' => 'NewDev-Team', 'title' => ''], + 'Comments' => ['description' => 'The description.'."\n", 'type' => 'string', 'example' => 'Development team', 'title' => ''], + 'CreateDate' => ['description' => 'The creation time.'."\n", 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'RequestId' => ['description' => 'The request ID.'."\n", 'type' => 'string', 'example' => 'EC6647CC-0A36-EC7A-BA72-CC81BF3DE182', 'title' => ''], ], - 'example' => 'role', + 'title' => '', + 'example' => '', ], ], + ], + 'responseDemo' => '[{"type":"json","example":"{\\n \\"Group\\": {\\n \\"GroupId\\": \\"g-FpMEHiMysofp****\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"GroupName\\": \\"NewDev-Team\\",\\n \\"Comments\\": \\"Development team\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\"\\n },\\n \\"RequestId\\": \\"EC6647CC-0A36-EC7A-BA72-CC81BF3DE182\\"\\n}","errorExample":""},{"type":"xml","example":"","errorExample":""}]', + 'title' => 'UpdateGroup', + 'summary' => 'Modifies a Resource Access Management (RAM) user group.', + 'requestParamsDescription' => ' ', + 'responseParamsDescription' => ' ', + 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateGroup'], + ], + ], + 'ramActions' => [ [ - 'name' => 'ResourceNames', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdateGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ], + ], + ], + ], + ], + 'UpdateLoginProfile' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], + 'security' => [ + [ + 'AK' => [], + ], + ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'update'], + 'parameters' => [ + [ + 'name' => 'UserName', 'in' => 'query', - 'style' => 'json', + 'schema' => ['description' => 'The name of the RAM user.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], + ], + [ + 'name' => 'Password', + 'in' => 'query', + 'schema' => ['description' => 'The logon password of the RAM user. The password must meet the password strength requirements.', 'type' => 'string', 'required' => false, 'example' => 'mypassword', 'title' => ''], + ], + [ + 'name' => 'PasswordResetRequired', + 'in' => 'query', + 'schema' => ['description' => 'Specifies whether the RAM user has to change the password upon logon.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], + ], + [ + 'name' => 'MFABindRequired', + 'in' => 'query', + 'schema' => ['description' => 'Specifies whether a multi-factor authentication (MFA) device must be bound to the RAM user upon logon.', 'type' => 'boolean', 'required' => false, 'example' => 'true', 'title' => ''], + ], + ], + 'responses' => [ + 200 => [ 'schema' => [ - 'description' => 'The names of the resources. You can specify up to 50 resource names.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The name of the resource.'."\n", - 'type' => 'string', - 'required' => false, - 'example' => 'role1', + 'description' => 'The response parameters.', + 'type' => 'object', + 'properties' => [ + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], - 'required' => false, + 'title' => '', + 'example' => '', ], ], + ], + 'title' => 'UpdateLoginProfile', + 'summary' => 'Modifies the logon configurations of a Resource Access Management (RAM) user.', + 'requestParamsDescription' => ' ', + 'responseParamsDescription' => ' ', + 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateLoginProfile'], + ], + ], + 'ramActions' => [ [ - 'name' => 'Tag', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdateLoginProfile', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + ], + 'UpdatePolicyDescription' => [ + 'summary' => 'Modifies the description of a custom policy.', + 'methods' => ['post', 'get'], + 'schemes' => ['https'], + 'security' => [ + [ + 'AK' => [], + ], + ], + 'operationType' => 'write', + 'deprecated' => false, + 'systemTags' => ['operationType' => 'update'], + 'parameters' => [ + [ + 'name' => 'PolicyName', 'in' => 'query', - 'style' => 'json', + 'schema' => ['description' => 'The name of the policy.', 'type' => 'string', 'required' => false, 'example' => 'TestPolicy', 'title' => ''], + ], + [ + 'name' => 'NewDescription', + 'in' => 'query', + 'schema' => ['description' => 'The description of the policy.'."\n" + ."\n" + .'The description must be 1 to 1,024 characters in length.', 'type' => 'string', 'required' => false, 'example' => 'This is a test policy.', 'title' => ''], + ], + ], + 'responses' => [ + 200 => [ 'schema' => [ - 'description' => 'The tags. You can specify up to 20 tags.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The tag.'."\n", - 'type' => 'object', - 'properties' => [ - 'Key' => [ - 'description' => 'The key of the tag. The tag key can be up to 128 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => false, - 'example' => 't1', - ], - 'Value' => [ - 'description' => 'The value of the tag. The tag value can be up to 256 characters in length.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => false, - 'example' => 'v1', + 'title' => 'Schema of Response', + 'description' => 'The response parameters.', + 'type' => 'object', + 'properties' => [ + 'RequestId' => ['title' => 'Id of the request', 'description' => 'The request ID.', 'type' => 'string', 'example' => '7572DEBD-0ECE-518E-8682-D8CB82F8FE8E'], + 'Policy' => [ + 'description' => 'The information about the policy.', + 'type' => 'object', + 'properties' => [ + 'PolicyName' => ['description' => 'The name of the policy.', 'type' => 'string', 'example' => 'TestPolicy', 'title' => ''], + 'PolicyType' => ['description' => 'The type of the policy. Valid values:'."\n" + ."\n" + .'- Custom'."\n" + ."\n" + .'- System', 'type' => 'string', 'example' => 'Custom', 'title' => ''], + 'CreateDate' => ['description' => 'The time when the policy was created.', 'type' => 'string', 'example' => '2022-02-28T07:04:15Z', 'title' => ''], + 'UpdateDate' => ['description' => 'The time when the policy was modified.', 'type' => 'string', 'example' => '2022-02-28T07:05:37Z', 'title' => ''], + 'Description' => ['description' => 'The description of the policy.', 'type' => 'string', 'example' => 'This is a test policy.', 'title' => ''], + 'DefaultVersion' => ['description' => 'The version of the policy. Default value: v1.', 'type' => 'string', 'example' => 'v1', 'title' => ''], ], + 'title' => '', + 'example' => '', ], - 'required' => false, - 'docRequired' => false, ], - 'required' => false, - 'docRequired' => false, + 'example' => '', ], ], + ], + 'title' => 'UpdatePolicyDescription', + 'description' => '### [](#)'."\n" + ."\n" + .'You can call this operation to modify only the description of a custom policy. You cannot modify the description of a system policy.', + 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePolicyDescription'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdatePolicyDescription', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], + ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"7572DEBD-0ECE-518E-8682-D8CB82F8FE8E\\",\\n \\"Policy\\": {\\n \\"PolicyName\\": \\"TestPolicy\\",\\n \\"PolicyType\\": \\"Custom\\",\\n \\"CreateDate\\": \\"2022-02-28T07:04:15Z\\",\\n \\"UpdateDate\\": \\"2022-02-28T07:05:37Z\\",\\n \\"Description\\": \\"This is a test policy.\\",\\n \\"DefaultVersion\\": \\"v1\\"\\n }\\n}","type":"json"}]', + ], + 'UpdateRole' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], + 'security' => [ + [ + 'AK' => [], + ], + ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'update'], + 'parameters' => [ [ - 'name' => 'PageSize', + 'name' => 'RoleName', 'in' => 'query', - 'schema' => [ - 'description' => 'The number of entries per page. Valid values: 1 to 100.'."\n", - 'type' => 'integer', - 'format' => 'int32', - 'required' => false, - 'docRequired' => false, - 'example' => '100', - ], + 'schema' => ['description' => 'The name of the RAM role.'."\n" + ."\n" + .'The name must be 1 to 64 characters long and can contain letters, digits, periods (.), and hyphens (-).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'ECSAdmin', 'title' => ''], ], [ - 'name' => 'NextToken', + 'name' => 'NewAssumeRolePolicyDocument', + 'in' => 'query', + 'schema' => ['description' => 'The trust policy of the RAM role.', 'type' => 'string', 'required' => false, 'example' => '{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::12345678901234****:root" } } ], "Version": "1" }', 'title' => ''], + ], + [ + 'name' => 'NewMaxSessionDuration', 'in' => 'query', + 'schema' => ['description' => 'The maximum session duration of the RAM role, in seconds.'."\n" + ."\n" + .'Valid values: 3600 to 43200. The default value is 3600.', 'type' => 'integer', 'format' => 'int64', 'required' => false, 'example' => '3600', 'title' => ''], + ], + [ + 'name' => 'NewDescription', + 'in' => 'query', + 'schema' => ['description' => 'The new description of the RAM role.'."\n" + ."\n" + .'The description must be 1 to 1,024 characters long.', 'type' => 'string', 'required' => false, 'example' => 'ECS management role', 'title' => ''], + ], + ], + 'responses' => [ + 200 => [ 'schema' => [ - 'description' => 'The pagination token that is used in the next request to retrieve a new page of results.'."\n", - 'type' => 'string', - 'required' => false, - 'docRequired' => false, - 'example' => 'GY/oWREsOP1bPHGcHGrXfYX7UG1k9KqWFYThNDPx1UX26PbWOIu2CMqqiMr68H/K', + 'description' => 'The data returned.', + 'type' => 'object', + 'properties' => [ + 'Role' => [ + 'description' => 'The details of the RAM role.', + 'type' => 'object', + 'properties' => [ + 'AssumeRolePolicyDocument' => ['description' => 'The trust policy of the RAM role.', 'type' => 'string', 'example' => '{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::123456789012****:root" } } ], "Version": "1" }', 'title' => ''], + 'UpdateDate' => ['description' => 'The time the RAM role was last updated.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'Description' => ['description' => 'The description of the RAM role.', 'type' => 'string', 'example' => 'ECS management role', 'title' => ''], + 'MaxSessionDuration' => ['description' => 'The maximum session duration of the RAM role.', 'type' => 'integer', 'format' => 'int64', 'example' => '3600', 'title' => ''], + 'RoleName' => ['description' => 'The name of the RAM role.', 'type' => 'string', 'example' => 'ECSAdmin', 'title' => ''], + 'CreateDate' => ['description' => 'The time the RAM role was created.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'RoleId' => ['description' => 'The ID of the RAM role.', 'type' => 'string', 'example' => '901234567890****', 'title' => ''], + 'Arn' => ['description' => 'The Alibaba Cloud Resource Name (ARN) of the RAM role.', 'type' => 'string', 'example' => 'acs:ram::123456789012****:role/ECSAdmin', 'title' => ''], + ], + 'title' => '', + 'example' => '', + ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], + ], + 'title' => '', + 'example' => '', ], ], ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"Role\\": {\\n \\"AssumeRolePolicyDocument\\": \\"{ \\\\\\"Statement\\\\\\": [ { \\\\\\"Action\\\\\\": \\\\\\"sts:AssumeRole\\\\\\", \\\\\\"Effect\\\\\\": \\\\\\"Allow\\\\\\", \\\\\\"Principal\\\\\\": { \\\\\\"RAM\\\\\\": \\\\\\"acs:ram::123456789012****:root\\\\\\" } } ], \\\\\\"Version\\\\\\": \\\\\\"1\\\\\\" }\\",\\n \\"UpdateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"Description\\": \\"ECS management role\\",\\n \\"MaxSessionDuration\\": 3600,\\n \\"RoleName\\": \\"ECSAdmin\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"RoleId\\": \\"901234567890****\\",\\n \\"Arn\\": \\"acs:ram::123456789012****:role/ECSAdmin\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', + 'title' => 'UpdateRole', + 'summary' => 'Updates a RAM role.', + 'description' => 'This example shows how to update the description of the RAM role `ECSAdmin` to `ECS management role`.', + 'requestParamsDescription' => 'For information about common parameters, see [Common parameters](~~28676~~).', + 'responseParamsDescription' => ' ', + 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateRole'], + ], + ], + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdateRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:TrustedPrincipalTypes', 'validationType' => 'always'], + ['conditionKey' => 'ram:ServiceNames', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ], + ], + ], + ], + ], + 'UpdateUser' => [ + 'methods' => ['post', 'get'], + 'schemes' => ['https'], + 'security' => [ + [ + 'AK' => [], + ], + ], + 'operationType' => 'write', + 'systemTags' => ['operationType' => 'update'], + 'parameters' => [ + [ + 'name' => 'UserName', + 'in' => 'query', + 'schema' => ['description' => 'The username of the RAM user.', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'zhangq****', 'title' => ''], + ], + [ + 'name' => 'NewUserName', + 'in' => 'query', + 'schema' => ['description' => 'The new username of the RAM user.'."\n" + ."\n" + .'The username must be 1 to 64 characters in length, and can contain letters, digits, periods (.), hyphens (-), and underscores (\\_).', 'type' => 'string', 'required' => false, 'docRequired' => true, 'example' => 'xiaoq****', 'title' => ''], + ], + [ + 'name' => 'NewDisplayName', + 'in' => 'query', + 'schema' => ['description' => 'The new display name of the RAM user.'."\n" + ."\n" + .'The name must be 1 to 128 characters in length.', 'type' => 'string', 'required' => false, 'example' => 'xiaoq****', 'title' => ''], + ], + [ + 'name' => 'NewMobilePhone', + 'in' => 'query', + 'schema' => ['description' => 'The new mobile phone number of the RAM user.'."\n" + ."\n" + .'Format: \\<Country code>-\\<Mobile phone number>.'."\n" + ."\n" + .'> This parameter applies only to the China site (aliyun.com).', 'type' => 'string', 'required' => false, 'example' => '86-1860000****', 'title' => ''], + ], + [ + 'name' => 'NewEmail', + 'in' => 'query', + 'schema' => ['description' => 'The new email address of the RAM user.'."\n" + ."\n" + .'> This parameter applies only to the China site (aliyun.com).', 'type' => 'string', 'required' => false, 'example' => 'xiaoq****@example.com', 'title' => ''], + ], + [ + 'name' => 'NewComments', + 'in' => 'query', + 'schema' => ['description' => 'The new description of the RAM user.'."\n" + ."\n" + .'The description must be 1 to 128 characters in length.', 'type' => 'string', 'required' => false, 'example' => 'This is a cloud computing engineer.', 'title' => ''], + ], + ], 'responses' => [ 200 => [ 'schema' => [ - 'title' => 'Schema of Response', - 'description' => 'The response parameters.'."\n", + 'description' => 'The response parameters.', 'type' => 'object', 'properties' => [ - 'RequestId' => [ - 'title' => 'Id of the request', - 'description' => 'The request ID.'."\n", - 'type' => 'string', - 'example' => '5CCE804C-6450-49A7-B1DB-2460F7A97416', - ], - 'TagResources' => [ - 'description' => 'The tags that are added to the cloud resources.'."\n", - 'type' => 'array', - 'items' => [ - 'description' => 'The tag that is added to the cloud resources.'."\n", - 'type' => 'object', - 'properties' => [ - 'ResourceName' => [ - 'description' => 'The name of the resource.'."\n", - 'type' => 'string', - 'example' => 'role1', - ], - 'ResourceType' => [ - 'description' => 'The resource type.'."\n" - ."\n" - .'Enumerated values:'."\n" - ."\n" - .'* role: RAM roles.'."\n" - .'* policy: policies.'."\n", - 'type' => 'string', - 'enumValueTitles' => [ - 'role' => '', - 'policy' => '', - ], - 'example' => 'role', - ], - 'TagKey' => [ - 'description' => 'The key of the tag.'."\n", - 'type' => 'string', - 'example' => 't1', - ], - 'TagValue' => [ - 'description' => 'The value of the tag.'."\n", - 'type' => 'string', - 'example' => 'v1', - ], - ], + 'User' => [ + 'description' => 'The information about the RAM user.', + 'type' => 'object', + 'properties' => [ + 'DisplayName' => ['description' => 'The display name of the RAM user.', 'type' => 'string', 'example' => 'xiaoq****', 'title' => ''], + 'Email' => ['description' => 'The email address of the RAM user.'."\n" + ."\n" + .'> This parameter can be returned only on the China site (aliyun.com).', 'type' => 'string', 'example' => 'xiaoq****@example.com', 'title' => ''], + 'UpdateDate' => ['description' => 'The point in time when the information about the RAM user was last modified. The time is displayed in UTC.', 'type' => 'string', 'example' => '2015-02-11T03:15:21Z', 'title' => ''], + 'MobilePhone' => ['description' => 'The mobile phone number of the RAM user.'."\n" + ."\n" + .'> This parameter can be returned only on the China site (aliyun.com).', 'type' => 'string', 'example' => '86-1860000****', 'title' => ''], + 'UserId' => ['description' => 'The ID of the RAM user.', 'type' => 'string', 'example' => '122748924538****', 'title' => ''], + 'Comments' => ['description' => 'The description of the RAM user.', 'type' => 'string', 'example' => 'This is a cloud computing engineer.', 'title' => ''], + 'CreateDate' => ['description' => 'The point in time when the RAM user was created. The time is displayed in UTC.', 'type' => 'string', 'example' => '2015-01-23T12:33:18Z', 'title' => ''], + 'UserName' => ['description' => 'The username of the RAM user.', 'type' => 'string', 'example' => 'xiaoq****', 'title' => ''], ], + 'title' => '', + 'example' => '', ], - 'NextToken' => [ - 'description' => 'A pagination token. It can be used in the next request to retrieve a new page of results.'."\n", - 'type' => 'string', - 'example' => 'GY/oWREsOP1bPHGcHGrXfYX7UG1k9KqWFYThNDPx1UX26PbWOIu2CMqqiMr68H/K', - ], + 'RequestId' => ['description' => 'The request ID.', 'type' => 'string', 'example' => '04F0F334-1335-436C-A1D7-6C044FE73368', 'title' => ''], ], + 'title' => '', + 'example' => '', ], ], ], - 'staticInfo' => [ - 'returnType' => 'synchronous', + 'title' => 'UpdateUser', + 'summary' => 'Modifies information about a Resource Access Management (RAM) user.', + 'description' => 'This topic provides an example on how to change the name of a RAM user from `zhangq****` to `xiaoq****`.', + 'requestParamsDescription' => 'For more information about common request parameters, see [Common parameters](~~28676~~).', + 'responseParamsDescription' => ' ', + 'extraInfo' => ' ', + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateUser'], + ], ], - 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"RequestId\\": \\"5CCE804C-6450-49A7-B1DB-2460F7A97416\\",\\n \\"TagResources\\": [\\n {\\n \\"ResourceName\\": \\"role1\\",\\n \\"ResourceType\\": \\"role\\",\\n \\"TagKey\\": \\"t1\\",\\n \\"TagValue\\": \\"v1\\"\\n }\\n ],\\n \\"NextToken\\": \\"GY/oWREsOP1bPHGcHGrXfYX7UG1k9KqWFYThNDPx1UX26PbWOIu2CMqqiMr68H/K\\"\\n}","type":"json"}]', - 'title' => 'ListTagResources', + 'ramActions' => [ + [ + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdateUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + ], + 'responseDemo' => '[{"errorExample":"","example":"{\\n \\"User\\": {\\n \\"DisplayName\\": \\"xiaoq****\\",\\n \\"Email\\": \\"xiaoq****@example.com\\",\\n \\"UpdateDate\\": \\"2015-02-11T03:15:21Z\\",\\n \\"MobilePhone\\": \\"86-1860000****\\",\\n \\"UserId\\": \\"122748924538****\\",\\n \\"Comments\\": \\"This is a cloud computing engineer.\\",\\n \\"CreateDate\\": \\"2015-01-23T12:33:18Z\\",\\n \\"UserName\\": \\"xiaoq****\\"\\n },\\n \\"RequestId\\": \\"04F0F334-1335-436C-A1D7-6C044FE73368\\"\\n}","type":"json"}]', ], ], 'endpoints' => [ - [ - 'regionId' => 'ap-northeast-1', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'ap-southeast-1', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'ap-southeast-3', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'ap-southeast-5', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'cn-beijing', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'cn-chengdu', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'cn-hangzhou', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'cn-hongkong', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'cn-huhehaote', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'cn-qingdao', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'cn-shanghai', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'cn-shenzhen', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'cn-zhangjiakou', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'us-west-1', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'us-east-1', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'eu-west-1', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'eu-central-1', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'me-east-1', - 'endpoint' => 'ram.aliyuncs.com', - ], - [ - 'regionId' => 'cn-shenzhen-finance-1', - 'endpoint' => 'ram.aliyuncs.com', + ['regionId' => 'cn-beijing', 'regionName' => 'China (Beijing)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'cn-qingdao', 'regionName' => 'China (Qingdao)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'cn-shanghai', 'regionName' => 'China (Shanghai)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'cn-hongkong', 'regionName' => 'China (Hong Kong)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'cn-zhangjiakou', 'regionName' => 'China (Zhangjiakou)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'cn-shenzhen', 'regionName' => 'China (Shenzhen)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'ap-northeast-1', 'regionName' => 'Japan (Tokyo)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'cn-chengdu', 'regionName' => 'China (Chengdu)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'ap-southeast-1', 'regionName' => 'Singapore', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'ap-southeast-3', 'regionName' => 'Malaysia (Kuala Lumpur)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'cn-huhehaote', 'regionName' => 'China (Hohhot)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'ap-southeast-5', 'regionName' => 'Indonesia (Jakarta)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'cn-hangzhou', 'regionName' => 'China (Hangzhou)', 'areaId' => 'asiaPacific', 'areaName' => 'Asia Pacific', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'us-east-1', 'regionName' => 'US (Virginia)', 'areaId' => 'europeAmerica', 'areaName' => 'Europe & Americas', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'eu-west-1', 'regionName' => 'UK (London)', 'areaId' => 'europeAmerica', 'areaName' => 'Europe & Americas', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'us-west-1', 'regionName' => 'US (Silicon Valley)', 'areaId' => 'europeAmerica', 'areaName' => 'Europe & Americas', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'eu-central-1', 'regionName' => 'Germany (Frankfurt)', 'areaId' => 'europeAmerica', 'areaName' => 'Europe & Americas', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'me-east-1', 'regionName' => 'UAE (Dubai)', 'areaId' => 'middleEast', 'areaName' => 'Middle East', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'cn-shenzhen-finance-1', 'regionName' => 'China South 1 Finance', 'areaId' => 'industryCloud', 'areaName' => 'Industry Cloud', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'cn-shanghai-finance-1', 'regionName' => 'China East 2 Finance', 'areaId' => 'industryCloud', 'areaName' => 'Industry Cloud', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => 'ram.vpc-proxy.aliyuncs.com'], + ['regionId' => 'cn-beijing-finance-1', 'regionName' => 'China North 2 Finance (Preview)', 'areaId' => 'industryCloud', 'areaName' => 'Industry Cloud', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => ''], + ['regionId' => 'cn-hangzhou-finance', 'regionName' => 'China East 1 Finance', 'areaId' => 'industryCloud', 'areaName' => 'Industry Cloud', 'public' => 'ram.aliyuncs.com', 'endpoint' => 'ram.aliyuncs.com', 'vpc' => ''], + ], + 'errorCodes' => [ + ['code' => 'AuthenticationFail', 'message' => 'Authentication failed.', 'http_code' => 403, 'description' => 'Authentication failed.'], + ['code' => 'AuthorizationFail.AkProxy', 'message' => 'The AkProxy is not allowed to do action.', 'http_code' => 403, 'description' => 'The AK agent is not allowed to execute the Action.'], + ['code' => 'CheckAuthenticationCodeFail', 'message' => 'The parameter - "AuthenticationCode" is inccorrect.', 'http_code' => null, 'description' => 'MFA code verification failed.'], + ['code' => 'DeleteConflict.Group.Policy', 'message' => 'The entity CAN NOT has any attached policy while deleting the group.', 'http_code' => null, 'description' => ' Before deleting the group, it may not have any authorization policies.'], + ['code' => 'DeleteConflict.Group.User', 'message' => 'The group CAN NOT has any user member while deleting the group.', 'http_code' => null, 'description' => ' Before deleting the group, you must remove all its users.'], + ['code' => 'DeleteConflict.Policy.Group', 'message' => 'The policy CAN NOT been attached to any group while deleting the policy.', 'http_code' => null, 'description' => ' Before deleting the authorization policy, it may not be attached to any groups.'], + ['code' => 'DeleteConflict.Policy.Role', 'message' => 'The policy is attached by some role.', 'http_code' => 409, 'description' => 'The authorization policy has been attached to the role.'], + ['code' => 'DeleteConflict.Policy.User', 'message' => 'The policy CAN NOT been attached to any user while deleting the policy.', 'http_code' => null, 'description' => ' Before deleting the authorization policy, it may not be attached to any users.'], + ['code' => 'DeleteConflict.Policy.Version', 'message' => 'The policy CAN NOT has any version except the defaul version.', 'http_code' => null, 'description' => ' Before deleting the authorization policy, you must delete all its non-default versions.'], + ['code' => 'DeleteConflict.Policy.Version.Default', 'message' => 'The default policy version CAN NOT been deleted directly.', 'http_code' => null, 'description' => 'You cannot delete the default policy version.'], + ['code' => 'DeleteConflict.Role.Policy', 'message' => 'The role CAN NOT has any attached policy while deleting the role.', 'http_code' => null, 'description' => 'The role must have not any attched policies'], + ['code' => 'DeleteConflict.User.AccessKey', 'message' => 'The user CAN NOT has any access key while deleting the user.', 'http_code' => null, 'description' => ' Before deleting the user, you must delete the user\'s AccessKey.'], + ['code' => 'DeleteConflict.User.Group', 'message' => 'The user CAN NOT be in any group while deleting the user.', 'http_code' => null, 'description' => ' Before deleting the user, you must remove the user from the group.'], + ['code' => 'DeleteConflict.User.LoginProfile', 'message' => 'The user CAN NOT has any login profile while deleting the user.', 'http_code' => null, 'description' => ' Before deleting the user, you must disable the user\'s Web logon function.'], + ['code' => 'DeleteConflict.User.MFADevice', 'message' => 'The user CAN NOT has any mfa device while deleting the user.', 'http_code' => null, 'description' => ' Before deleting the user, you must unbind the user\'s MFA device.'], + ['code' => 'DeleteConflict.User.Policy', 'message' => 'The user CAN NOT has any attached policy while deleting the user.', 'http_code' => null, 'description' => ' Before deleting the user, the user may not have any authorization policies.'], + ['code' => 'DeleteConflict.VirtualMFADevice.User', 'message' => 'The virtual mfa device CAN NOT been bound to any user while deleting it.', 'http_code' => null, 'description' => 'The virtual MFA device is associated with a user. You must remove the dependency before deleting the virtual MFA device.'], + ['code' => 'EntityAlreadyExists.AccountAlias', 'message' => 'The account alias does already exist.', 'http_code' => null, 'description' => 'Account alias already in use.'], + ['code' => 'EntityAlreadyExists.Group', 'message' => 'The group does already EXIST.', 'http_code' => null, 'description' => 'Group already exists.'], + ['code' => 'EntityAlreadyExists.Group.Policy', 'message' => 'The group has already been attached this policy.', 'http_code' => null, 'description' => 'This authorization policy is already attached to this group.'], + ['code' => 'EntityAlreadyExists.Policy', 'message' => 'The group does already EXIST.', 'http_code' => null, 'description' => 'Authorization policy already exists.'], + ['code' => 'EntityAlreadyExists.Role', 'message' => 'The role does already EXIST.', 'http_code' => null, 'description' => 'The role already exists.'], + ['code' => 'EntityAlreadyExists.Role.Policy', 'message' => 'The role has already been attached this policy.', 'http_code' => null, 'description' => 'The role has already been attached this policy.'], + ['code' => 'EntityAlreadyExists.User', 'message' => 'The user does already EXIST.', 'http_code' => null, 'description' => 'User already exists.'], + ['code' => 'EntityAlreadyExists.User.Group', 'message' => 'The user has already joined the group.', 'http_code' => null, 'description' => 'User already added to this group.'], + ['code' => 'EntityAlreadyExists.User.LoginProfile', 'message' => 'The user login profile does already EXIST.', 'http_code' => null, 'description' => 'User logon profile already exists.'], + ['code' => 'EntityAlreadyExists.User.MFADevice', 'message' => 'The user has already bound a MFA device.', 'http_code' => null, 'description' => 'User already bound to an MFA device.'], + ['code' => 'EntityAlreadyExists.User.Policy', 'message' => 'The user has already been attached this policy.', 'http_code' => null, 'description' => 'This authorization policy is already attached to the user.'], + ['code' => 'EntityAlreadyExists.VirtualMFADevice', 'message' => 'The virtual mfa device does already EXIST.', 'http_code' => null, 'description' => 'VMFA device already exists.'], + ['code' => 'EntityAlreadyExists.VirtualMFADevice.User', 'message' => 'The virtual mfa device does already been bound to a user.', 'http_code' => null, 'description' => 'This virtual MFA device is already associated with a user.'], + ['code' => 'EntityNotExist', 'message' => 'Entity does not exist.', 'http_code' => 404, 'description' => 'Entity does not exist.'], + ['code' => 'EntityNotExist.Group', 'message' => 'The group does not exist.', 'http_code' => null, 'description' => 'Group does not exist.'], + ['code' => 'EntityNotExist.Group.Policy', 'message' => 'The indicate policy attached to the group does not exist.', 'http_code' => null, 'description' => 'This authorization policy is not attached to the group.'], + ['code' => 'EntityNotExist.Policy', 'message' => 'The policy does not exist.', 'http_code' => null, 'description' => 'Authorization policy does not exist.'], + ['code' => 'EntityNotExist.Policy.Version', 'message' => 'The policy version does not exist.', 'http_code' => null, 'description' => 'Authorization policy version does not exist.'], + ['code' => 'EntityNotExist.Role', 'message' => 'The role does not exist.', 'http_code' => null, 'description' => 'The role does not exist.'], + ['code' => 'EntityNotExist.Role.Policy', 'message' => 'The indicate policy attached to the role does not exist.', 'http_code' => null, 'description' => 'The role is not attached the specified policy.'], + ['code' => 'EntityNotExist.User', 'message' => 'The user does not exist.', 'http_code' => null, 'description' => 'User does not exist.'], + ['code' => 'EntityNotExist.User.AccessKey', 'message' => 'The user access key does not exist.', 'http_code' => null, 'description' => 'User AccessKey does not exist.'], + ['code' => 'EntityNotExist.User.Group', 'message' => 'The user has not joined the group.', 'http_code' => null, 'description' => 'User not added to this group.'], + ['code' => 'EntityNotExist.User.LoginProfile', 'message' => 'The user login profile does not exist.', 'http_code' => null, 'description' => 'User logon profile does not exist.'], + ['code' => 'EntityNotExist.User.MFADevice', 'message' => 'The user has not bound any MFA device.', 'http_code' => null, 'description' => 'User not bound to an MFA device.'], + ['code' => 'EntityNotExist.User.Policy', 'message' => 'The indicate policy of the user does not exist.', 'http_code' => null, 'description' => 'This policy is not attached to the user.'], + ['code' => 'EntityNotExist.VirtualMFADevice', 'message' => 'The virtual mfa device does not exist.', 'http_code' => null, 'description' => 'VMFA device does not exist.'], + ['code' => 'Inactive', 'message' => 'Your ram service is inactive, please activate it.', 'http_code' => null, 'description' => 'You have not activated the RAM service.'], + ['code' => 'InternalError', 'message' => 'An internal error occurred.', 'http_code' => null, 'description' => 'Internal server error'], + ['code' => 'InternalError', 'message' => 'Internal Error.', 'http_code' => 500, 'description' => ''], + ['code' => 'InvalidParameter', 'message' => 'The request has Invalid parameters.', 'http_code' => 400, 'description' => 'The request contains illegal parameters.'], + ['code' => 'InvalidParameter.AccountAlias.Format', 'message' => 'The format of parameter - "AccountAlias" is incorrect.', 'http_code' => null, 'description' => ' Incorrect enterprise alias format. Enterprise aliases can only contain lowercase letters, numbers, and hyphens. They cannot start or end with a hyphen and may not have two hyphens in a row.'], + ['code' => 'InvalidParameter.AccountAlias.Length', 'message' => 'The parameter - "AccountAlias" MUST be in the range of 3 and 63.', 'http_code' => null, 'description' => 'Invalid enterprise alias length. Enterprise aliases must be 3-63 characters long.'], + ['code' => 'InvalidParameter.Arn', 'message' => 'Arn is invalid.', 'http_code' => 400, 'description' => 'Invalid ARN'], + ['code' => 'InvalidParameter.AssumeRolePolicyDocument.Length', 'message' => 'The parameter - “AssumeRolePolicyDocument” beyond the length limit.', 'http_code' => null, 'description' => 'The specified policy name is too long.'], + ['code' => 'InvalidParameter.AuthenticationCode.Format', 'message' => 'The parameter - "AuthenticationCode" MUST be 6 numbers.', 'http_code' => null, 'description' => 'Incorrect MFA code format. The MFA code must be a 6-digit number.'], + ['code' => 'InvalidParameter.Comments.Length', 'message' => 'The parameter - "Comments" beyond the length limit.', 'http_code' => null, 'description' => 'The remarks length is too long.'], + ['code' => 'InvalidParameter.Description.Length', 'message' => 'The length of description does not comply with restrictions.', 'http_code' => 400, 'description' => 'The description length does not meet the limit.'], + ['code' => 'InvalidParameter.DisplayName.InvalidChars', 'message' => 'The parameter - "DisplayName" contains invalid chars.', 'http_code' => null, 'description' => ' Display name contains illegal characters. Display names can only contain uppercase/lowercase letters, numbers, ".@-" and Chinese characters.'], + ['code' => 'InvalidParameter.DisplayName.Length', 'message' => 'The parameter - "DisplayName" beyond the length limit.', 'http_code' => null, 'description' => 'Invalid display name length. Display names must be 1-12 characters long.'], + ['code' => 'InvalidParameter.Email.Format', 'message' => 'The format of the parameter - "Email" is incorrect.', 'http_code' => null, 'description' => 'The specified email address is invalid.'], + ['code' => 'InvalidParameter.Granularity', 'message' => 'Granularity is invalid.', 'http_code' => 400, 'description' => 'Invalid parameter Granularity'], + ['code' => 'InvalidParameter.GroupName.InvalidChars', 'message' => 'The parameter - "GroupName" contains invalid chars.', 'http_code' => null, 'description' => ' Group name contains illegal characters. Group names can only contain uppercase/lowercase letters, numbers and \'-\'.'], + ['code' => 'InvalidParameter.GroupName.Length', 'message' => 'The parameter - "GroupName" beyond the length limit.', 'http_code' => null, 'description' => 'Invalid group name length. Group names must be 1-64 characters long.'], + ['code' => 'InvalidParameter.LoginNetworkMasks.Format', 'message' => 'The format of parameter - "LoginNetworkMasks" is incorrect.', 'http_code' => 400, 'description' => 'Login network mask format error.'], + ['code' => 'InvalidParameter.Marker', 'message' => 'Marker is invalid.', 'http_code' => 400, 'description' => 'The Marker parameter is invalid. may be due to expired, or invalid'], + ['code' => 'InvalidParameter.MaxSessionDuration', 'message' => 'The MaxSessionDuration parameter is invalid.', 'http_code' => 400, 'description' => 'The maximum session time parameter is incorrect.'], + ['code' => 'InvalidParameter.MinimumPasswordLength.Range', 'message' => 'The parameter - "MinimumPasswordLength" MUST be in the range of 8 and 32.', 'http_code' => null, 'description' => 'Invalid minimum password length. The minimum password length must be 8-32 characters.'], + ['code' => 'InvalidParameter.MobilePhone.Format', 'message' => 'The format of the parameter - "MobilePhone" is incorrect.', 'http_code' => null, 'description' => 'The specified phone number is invalid.'], + ['code' => 'InvalidParameter.NewAssumeRolePolicyDocument.Length', 'message' => 'The parameter - "NewAssumeRolePolicyDocument" beyond the length limit.', 'http_code' => null, 'description' => 'The specified role policy is invalid.'], + ['code' => 'InvalidParameter.NewComments.Length', 'message' => 'The parameter - "NewComments" beyond the length limit.', 'http_code' => null, 'description' => 'The remarks length is too long.'], + ['code' => 'InvalidParameter.NewDisplayName.InvalidChars', 'message' => 'The parameter - "NewDisplayName" contains invalid chars.', 'http_code' => null, 'description' => ' New display name contains illegal characters.Display names can only contain uppercase/lowercase letters, numbers, ".@-" and Chinese characters.'], + ['code' => 'InvalidParameter.NewDisplayName.Length', 'message' => 'The parameter - "NewDisplayName" beyond the length limit.', 'http_code' => null, 'description' => 'Invalid display name length.Display names must be 1-12 characters long.'], + ['code' => 'InvalidParameter.NewEmail.Format', 'message' => 'The format of the parameter - "NewEmail" is incorrect.', 'http_code' => null, 'description' => 'The specified email address is invalid.'], + ['code' => 'InvalidParameter.NewGroupName.InvalidChars', 'message' => 'The parameter - "NewGroupName" contains invalid chars.', 'http_code' => null, 'description' => ' Group name contains illegal characters.Group names can only contain uppercase/lowercase letters, numbers and \'-\'.'], + ['code' => 'InvalidParameter.NewGroupName.Length', 'message' => 'The parameter - "NewGroupName" beyond the length limit.', 'http_code' => null, 'description' => 'Invalid group name length.Group names must be 1-64 characters long.'], + ['code' => 'InvalidParameter.NewMobilePhone.Format', 'message' => 'The format of the parameter - "NewMobilePhone" is incorrect.', 'http_code' => null, 'description' => 'The specified phone number is invalid.'], + ['code' => 'InvalidParameter.NewPassword.ReusePrevention', 'message' => 'The parameter - “NewPassword” is not compliant with the reuse prevention password policy.', 'http_code' => null, 'description' => 'The administrators prohibit the use of old passwords'], + ['code' => 'InvalidParameter.NewPassword.TooWeak', 'message' => 'The parameter - “NewPassword” is not compliant with the password policy.', 'http_code' => 400, 'description' => 'The new password does not comply with the password security policy set by the administrators'], + ['code' => 'InvalidParameter.NewUserName.InvalidChars', 'message' => 'The parameter - "NewUserName" contains invalid chars.', 'http_code' => null, 'description' => ' The new username contains illegal characters.Usernames can only contain uppercase/lowercase letters, numbers, and ".@-".'], + ['code' => 'InvalidParameter.NewUserName.Length', 'message' => 'The parameter - "NewUserName" beyond the length limit.', 'http_code' => null, 'description' => 'Invalid new username length. Usernames must be 1-64 characters long.'], + ['code' => 'InvalidParameter.OldPassword.Incorrect', 'message' => 'The parameter - “OldPassword” is incorrect.', 'http_code' => null, 'description' => 'Incorrect old password'], + ['code' => 'InvalidParameter.Password.TooWeak', 'message' => 'The parameter - “Password” is not compliant with the password policy.', 'http_code' => null, 'description' => 'The password complexity does not comply with the password policy.'], + ['code' => 'InvalidParameter.Policy.%s', 'message' => 'The attached Policy: %s is invalid.', 'http_code' => 400, 'description' => 'Associated permissions policy error'], + ['code' => 'InvalidParameter.PolicyDocument.Length', 'message' => 'The parameter - PolicyDocument beyond the length limit.', 'http_code' => 400, 'description' => 'The maximum length of the permission policy is exceeded. It cannot exceed 2,048 characters.'], + ['code' => 'InvalidParameter.PolicyName.InvalidChars', 'message' => 'The parameter - "PolicyNam" contains invalid chars.', 'http_code' => null, 'description' => ' Policy name contains illegal characters. Policy names can only contain uppercase/lowercase letters, numbers and \'-\'.'], + ['code' => 'InvalidParameter.PolicyName.Length', 'message' => 'The maximum length of the parameter PolicyName is exceeded. The maximum length is 1-128 characters.', 'http_code' => 400, 'description' => 'The maximum length of the parameter PolicyName is exceeded. It must be 1 to 128 characters in length.'], + ['code' => 'InvalidParameter.PolicyType', 'message' => 'The parameter - "PolicyType" is incorrect.', 'http_code' => null, 'description' => 'The specified policy type is invalid.'], + ['code' => 'InvalidParameter.Role.InvalidChars', 'message' => 'The RoleName contains invalid chars.', 'http_code' => 400, 'description' => ''], + ['code' => 'InvalidParameter.RoleName.InvalidChars', 'message' => 'The parameter - “RoleName” contains invalid chars.', 'http_code' => null, 'description' => 'The specified role name contains invalid characters.'], + ['code' => 'InvalidParameter.RoleName.Length', 'message' => 'The parameter - “RoleName” beyond the length limit.', 'http_code' => null, 'description' => 'The specified role name is too long.'], + ['code' => 'InvalidParameter.RoleName.Prefix', 'message' => 'Role name prefix AliyunServiceRoleFor can only be used for Service Linked Roles.', 'http_code' => 400, 'description' => 'The role name prefix "AliyunServiceRoleFor" can only be used for service-associated roles.'], + ['code' => 'InvalidParameter.ServiceNamespace', 'message' => 'ServiceNamespace is Invalid.', 'http_code' => 400, 'description' => 'Invalid parameter ServiceNamespace'], + ['code' => 'InvalidParameter.UserAccessKeyId.Empty', 'message' => 'The AccessKeyId is empty.', 'http_code' => 400, 'description' => 'AccessKeyId is empty.'], + ['code' => 'InvalidParameter.UserName.Empty', 'message' => 'The UserName is empty.', 'http_code' => 400, 'description' => 'The user name is empty.'], + ['code' => 'InvalidParameter.UserName.InvalidChars', 'message' => 'The parameter - "UserName" contains invalid chars.', 'http_code' => null, 'description' => 'Username contains illegal characters. Usernames can only contain uppercase/lowercase letters, numbers, and".@-".'], + ['code' => 'InvalidParameter.UserName.Length', 'message' => 'The parameter - "UserName" beyond the length limit.', 'http_code' => null, 'description' => 'Invalid username length. Usernames must be 1-64 characters long.'], + ['code' => 'InvalidParameter.VersionId.Format', 'message' => 'The format of the parameter - "VersionId" is incorrect.', 'http_code' => null, 'description' => 'The specified version ID is invalid.'], + ['code' => 'InvalidParameter.VirtualMFADeviceName.InvalidChars', 'message' => 'The parameter - "VirtualMFADeviceName" contains invalid chars.', 'http_code' => null, 'description' => ' The VMFA device name contains illegal characters. VMFA device names can only contain uppercase/lowercase letters, numbers and \'-\'.'], + ['code' => 'InvalidParameter.VirtualMFADeviceName.Length', 'message' => 'The parameter - "VirtualMFADeviceName" beyond the length limit.', 'http_code' => null, 'description' => 'Invalid VMFA device name length. VMFA device names must be 1-64 characters long.'], + ['code' => 'LimitExceeded.Group', 'message' => 'The count of groups beyond the current limits.', 'http_code' => null, 'description' => 'The maximum number of groups has been exceeded.'], + ['code' => 'LimitExceeded.Group.Policy', 'message' => 'The policy count of the group beyond the current limits.', 'http_code' => null, 'description' => 'More than the maximum number of authorization policies has been attached to this group.'], + ['code' => 'LimitExceeded.Policy', 'message' => 'The count of policy beyond the current limits.', 'http_code' => null, 'description' => 'The maximum number of authorization policies has been exceeded.'], + ['code' => 'LimitExceeded.Policy.Version', 'message' => 'The count of policy version beyond the current limits.', 'http_code' => null, 'description' => 'The maximum number of authorization policy versions has been exceeded.'], + ['code' => 'LimitExceeded.Role', 'message' => 'The count of roles beyond the current limits.', 'http_code' => null, 'description' => 'The maximum number of roles is exceeded.'], + ['code' => 'LimitExceeded.Role.Policy', 'message' => 'The policy count of the role beyond the current limits.', 'http_code' => null, 'description' => 'The maximum number of policies for a role is exceeded.'], + ['code' => 'LimitExceeded.User', 'message' => 'The count of users beyond the current limits.', 'http_code' => null, 'description' => 'Maximum number of users allowed has been exceeded.'], + ['code' => 'LimitExceeded.User.AccessKey', 'message' => 'The access key count of the user access keys beyond the current limits.', 'http_code' => null, 'description' => 'Maximum number of AccessKeys allowed for a user has been exceeded.'], + ['code' => 'LimitExceeded.User.Group', 'message' => 'The count of groups the target user joined beyond the current limits.', 'http_code' => null, 'description' => 'This user has been added to more than the maximum number of groups allowed.'], + ['code' => 'LimitExceeded.User.Policy', 'message' => 'The policy count of the user attached policies beyond the current limits.', 'http_code' => null, 'description' => 'More than the maximum number of authorization policies allowed has been attached to this user.'], + ['code' => 'LimitExceeded.VirtualMFADevice', 'message' => 'The count of virtual mfa devices beyond the current limits.', 'http_code' => null, 'description' => 'You have created more than the maximum number of VMFA devices allowed.'], + ['code' => 'MalformedPolicyDocument', 'message' => '{The error details}', 'http_code' => null, 'description' => 'Incorrect policy format.'], + ['code' => 'MissingParameter', 'message' => 'The parameter is missing.', 'http_code' => 400, 'description' => 'Missing parameter.'], + ['code' => 'NoPermission', 'message' => 'You are not authorized to do this action.', 'http_code' => null, 'description' => 'No permission.'], + ['code' => 'NoSuchEntity.Arn', 'message' => 'No such entity for Arn.', 'http_code' => 400, 'description' => 'No entity for Arn'], + ['code' => 'NoSuchEntity.Job', 'message' => 'No such job.', 'http_code' => 400, 'description' => 'No corresponding task'], + ['code' => 'NotSupport.Account', 'message' => 'This method can be only invoked by sub user.', 'http_code' => null, 'description' => 'You can only perform this operation for a sub-user.'], + ['code' => 'NotSupport.Account.Site', 'message' => 'This site not support the account.', 'http_code' => 400, 'description' => 'This site does not support this account.'], + ['code' => 'NotSupport.AliyunReservedPolicy', 'message' => 'The policy is reserved for Alibaba Cloud services.', 'http_code' => 400, 'description' => 'The authorization policy is reserved for Alibaba Cloud services.'], + ['code' => 'NotSupport.Policy', 'message' => 'The policy can only be attached to Service Linked Role.', 'http_code' => 400, 'description' => 'Authorization policies can only be attached to service association roles.'], + ['code' => 'NotSupport.ServiceLinkedRole', 'message' => 'Cannot perform the operation on this service linked role.', 'http_code' => 400, 'description' => 'The service-associated role cannot be operated.'], + ['code' => 'NotSupport.SLR', 'message' => 'Not Support SLR as ARN.', 'http_code' => 400, 'description' => 'SLR is not supported for parsing as an ARN '], + ['code' => 'Throttling.%s', 'message' => 'Request was denied due to user flow control.', 'http_code' => 503, 'description' => 'Access denied due to user throttling'], + ['code' => 'Throttling.User', 'message' => 'Access denied due to flow control.', 'http_code' => 429, 'description' => 'Access denied due to flow control.'], + ['code' => 'InvalidParameter.RamCodes', 'message' => 'The parameter RamCodes contains unsupported ramcode.', 'http_code' => 400, 'description' => 'The parameter RamCodes contains unsupported ramcode.'], + ], + 'changeSet' => [], + 'flowControl' => [ + 'flowControlList' => [ + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreatePolicy'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListTagResources'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUsers'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetUserMFAInfo'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UnbindMFADevice'], + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UntagResources'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'BindMFADevice'], + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AddUserToGroup'], + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AttachPolicyToRole'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAccountAlias'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetLoginProfile'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListEntitiesForPolicy'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPoliciesForUser'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetSecurityPreference'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateLoginProfile'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListUsersForGroup'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetPolicyVersion'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteRole'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetUser'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteVirtualMFADevice'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeletePolicyVersion'], + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DecodeDiagnosticMessage'], + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'RemoveUserFromGroup'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetAccessKeyLastUsed'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateAccessKey'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetGroup'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateAccessKey'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetAccountAlias'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPoliciesForGroup'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ChangePassword'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListGroupsForUser'], + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AttachPolicyToUser'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateVirtualMFADevice'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteUser'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListGroups'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeletePolicy'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteGroup'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ClearAccountAlias'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateRole'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPolicies'], + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'AttachPolicyToGroup'], + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DetachPolicyFromRole'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListRoles'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetDefaultPolicyVersion'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateRole'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPolicyVersions'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreatePolicyVersion'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListPoliciesForRole'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateGroup'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateUser'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetPasswordPolicy'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListAccessKeys'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdatePolicyDescription'], + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DetachPolicyFromGroup'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'SetPasswordPolicy'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteAccessKey'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetRole'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetSecurityPreference'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DeleteLoginProfile'], + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'TagResources'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateUser'], + ['threshold' => '10', 'countWindow' => 1, 'regionId' => '*', 'api' => 'DetachPolicyFromUser'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'CreateLoginProfile'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'ListVirtualMFADevices'], + ['threshold' => '100', 'countWindow' => 1, 'regionId' => '*', 'api' => 'GetPolicy'], + ['threshold' => '20', 'countWindow' => 1, 'regionId' => '*', 'api' => 'UpdateGroup'], ], - [ - 'regionId' => 'cn-shanghai-finance-1', - 'endpoint' => 'ram.aliyuncs.com', + ], + 'ram' => [ + 'productCode' => 'RAM', + 'productName' => 'Resource Access Management', + 'ramCodes' => ['ram'], + 'ramLevel' => 'RESOURCE', + 'ramConditions' => [ + [ + 'name' => 'acs:Service', + 'schema' => ['type' => 'String', 'description' => 'Specifies the service principal which a role can be passed. This condition key applies to only the PassRole action in a policy. Example: actiontrail.aliyuncs.com'], + ], + [ + 'name' => 'ram:ServiceNames', + 'schema' => ['type' => 'Array<String>', 'description' => 'Specifies the trusted service principals for service role. Multivalued. Example: [\\"ecs.aliyun.com\\",\\"rds.aliyuncs.com\\"]'], + ], + [ + 'name' => 'ram:TrustedPrincipalTypes', + 'schema' => [ + 'type' => 'Array<String>', + 'description' => 'Specifies the type of trusted entities for the role. Multivalued.', + 'enums' => ['RAM', 'Service', 'Federated-SAMLProvider', 'Federated-OIDCProvider'], + ], + ], ], - [ - 'regionId' => 'cn-hangzhou-finance', - 'endpoint' => 'ram.aliyuncs.com', + 'ramActions' => [ + [ + 'apiName' => 'ClearAccountAlias', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:ClearAccountAlias', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'ListPublicKeys', + 'description' => '', + 'operationType' => 'list', + 'ramAction' => [ + 'action' => 'ram:ListPublicKeys', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram::{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'UploadPublicKey', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:UploadPublicKey', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'SetSecurityPreference', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:SetSecurityPreference', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'ListVirtualMFADevices', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListVirtualMFADevices', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'MFADevice', 'arn' => 'acs:ram:*:{#accountId}:mfa/*'], + ], + ], + ], + [ + 'apiName' => 'GetPolicy', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetPolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'CreatePolicy', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreatePolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'DeleteGroup', + 'description' => '', + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ], + ], + ], + [ + 'apiName' => 'SetAccountAlias', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:SetAccountAlias', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'GetPolicyVersion', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetPolicyVersion', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'CreateAccessKey', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateAccessKey', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'ListPoliciesForRole', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListPoliciesForRole', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ], + ], + ], + [ + 'apiName' => 'DeactivateService', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:DeactivateService', + 'authLevel' => 'operate', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'BindMFADevice', + 'description' => '', + 'operationType' => '', + 'ramAction' => [ + 'action' => 'ram:BindMFADevice', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'ListRoles', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListRoles', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/*'], + ], + ], + ], + [ + 'apiName' => 'GetSecurityPreference', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetSecurityPreference', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'ListUsers', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListUsers', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/*'], + ], + ], + ], + [ + 'apiName' => 'UpdateAccessKey', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdateAccessKey', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'AttachPolicyToUser', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:AttachPolicyToUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'DeleteRole', + 'description' => '', + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:TrustedPrincipalTypes', 'validationType' => 'always'], + ['conditionKey' => 'ram:ServiceNames', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ], + ], + ], + [ + 'apiName' => 'GetServiceLinkedRoleDeletionStatus', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetServiceLinkedRoleDeletionStatus', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:ServiceName', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'ServiceLinkedRole', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ], + ], + ], + [ + 'apiName' => 'CreateRole', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:TrustedPrincipalTypes', 'validationType' => 'always'], + ['conditionKey' => 'ram:ServiceNames', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ], + ], + ], + [ + 'apiName' => 'DeleteLoginProfile', + 'description' => '', + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteLoginProfile', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'ListGroupsForUser', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListGroupsForUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'UpdateUser', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdateUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'ActivateService', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:ActivateService', + 'authLevel' => 'operate', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'DetachPolicyFromGroup', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:DetachPolicyFromGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'DecodeDiagnosticMessage', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:DecodeDiagnosticMessage', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'ListEntitiesForPolicy', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListEntitiesForPolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'GetServiceLastAccessedDetails', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetServiceLastAccessedDetails', + 'authLevel' => 'operate', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'GetUser', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'GetGroup', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ], + ], + ], + [ + 'apiName' => 'ListPolicies', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListPolicies', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/*'], + ], + ], + ], + [ + 'apiName' => 'UpdateRole', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdateRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:TrustedPrincipalTypes', 'validationType' => 'always'], + ['conditionKey' => 'ram:ServiceNames', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ], + ], + ], + [ + 'apiName' => 'AttachPolicyToRole', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:AttachPolicyToRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:TrustedPrincipalTypes', 'validationType' => 'always'], + ['conditionKey' => 'ram:ServiceNames', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'GetPasswordPolicy', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetPasswordPolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'AttachPolicyToGroup', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:AttachPolicyToGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'DeleteServiceLinkedRole', + 'description' => '', + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteServiceLinkedRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:ServiceName', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'ServiceLinkedRole', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ], + ], + ], + [ + 'apiName' => 'DetachPolicyFromRole', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:DetachPolicyFromRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:TrustedPrincipalTypes', 'validationType' => 'always'], + ['conditionKey' => 'ram:ServiceNames', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'UpdatePolicyDescription', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdatePolicyDescription', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'ListRolesForService', + 'description' => '', + 'operationType' => 'list', + 'ramAction' => [ + 'action' => 'ram:ListRoles', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/*'], + ], + ], + ], + [ + 'apiName' => 'CreateLoginProfile', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateLoginProfile', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'UpdateLoginProfile', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdateLoginProfile', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'DeletePolicyVersion', + 'description' => '', + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeletePolicyVersion', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'UntagResources', + 'description' => '', + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:UntagResources', + 'authLevel' => 'operate', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'RemoveUserFromGroup', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:RemoveUserFromGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'ListTagResources', + 'description' => '', + 'operationType' => 'list', + 'ramAction' => [ + 'action' => 'ram:ListTagResources', + 'authLevel' => 'operate', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'GetRole', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetRole', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ], + ], + ], + [ + 'apiName' => 'GetLoginProfile', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetLoginProfile', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'CreateServiceLinkedRole', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateServiceLinkedRole', + 'authLevel' => 'resource', + 'actionConditions' => [ + ['conditionKey' => 'ram:ServiceName', 'validationType' => 'always'], + ], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'ListUsersForGroup', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListUsersForGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ], + ], + ], + [ + 'apiName' => 'GenerateServiceLastAccessedDetails', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:GenerateServiceLastAccessedDetails', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'TagResources', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:TagResources', + 'authLevel' => 'operate', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'DeleteUser', + 'description' => '', + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'DeletePolicy', + 'description' => '', + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeletePolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'AddUserToGroup', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:AddUserToGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'GetAccountAlias', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetAccountAlias', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'UnbindMFADevice', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UnbindMFADevice', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'DeleteVirtualMFADevice', + 'description' => '', + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteVirtualMFADevice', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'MFADevice', 'arn' => 'acs:ram:*:{#accountId}:mfa/{#SerialNumber}'], + ], + ], + ], + [ + 'apiName' => 'CreateUser', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/*'], + ], + ], + ], + [ + 'apiName' => 'DeletePublicKey', + 'description' => '', + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeletePublicKey', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'CreateGroup', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/*'], + ], + ], + ], + [ + 'apiName' => 'UpdateGroup', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdateGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ], + ], + ], + [ + 'apiName' => 'ListAccessKeys', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListAccessKeys', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'GetAccountSummary', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetAccountSummary', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'ListPolicyVersions', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListPolicyVersions', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'CreateVirtualMFADevice', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreateVirtualMFADevice', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'MFADevice', 'arn' => 'acs:ram:*:{#accountId}:mfa/*'], + ], + ], + ], + [ + 'apiName' => 'SetDefaultPolicyVersion', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:SetDefaultPolicyVersion', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'ListPoliciesForGroup', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListPoliciesForGroup', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ], + ], + ], + [ + 'apiName' => 'GetPublicKey', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetPublicKey', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'DeleteAccessKey', + 'description' => '', + 'operationType' => 'delete', + 'ramAction' => [ + 'action' => 'ram:DeleteAccessKey', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'GetServiceStatus', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetServiceStatus', + 'authLevel' => 'operate', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'ChangePassword', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:ChangePassword', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'DetachPolicyFromUser', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:DetachPolicyFromUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ['validationType' => 'conditional', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'ListPoliciesForUser', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListPoliciesForUser', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'GetUserMFAInfo', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetUserMFAInfo', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'CreatePolicyVersion', + 'description' => '', + 'operationType' => 'create', + 'ramAction' => [ + 'action' => 'ram:CreatePolicyVersion', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ], + ], + ], + [ + 'apiName' => 'SetPasswordPolicy', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:SetPasswordPolicy', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'All Resource', 'arn' => '*'], + ], + ], + ], + [ + 'apiName' => 'GetAccessKeyLastUsed', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:GetAccessKeyLastUsed', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'UpdatePublicKey', + 'description' => '', + 'operationType' => 'update', + 'ramAction' => [ + 'action' => 'ram:UpdatePublicKey', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ], + ], + ], + [ + 'apiName' => 'ListGroups', + 'description' => '', + 'operationType' => 'get', + 'ramAction' => [ + 'action' => 'ram:ListGroups', + 'authLevel' => 'resource', + 'actionConditions' => [], + 'resources' => [ + ['validationType' => 'always', 'product' => 'RAM', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/*'], + ], + ], + ], ], - [ - 'regionId' => 'cn-beijing-finance-1', - 'endpoint' => 'ram.aliyuncs.com', + 'resourceTypes' => [ + ['validationType' => 'always', 'resourceType' => 'Unrestricted', 'arn' => 'acs:ram:*:{#accountId}:*'], + ['validationType' => 'always', 'resourceType' => 'User', 'arn' => 'acs:ram::{#accountId}:user/{#UserName}'], + ['validationType' => 'always', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/{#UserName}'], + ['validationType' => 'always', 'resourceType' => 'MFADevice', 'arn' => 'acs:ram:*:{#accountId}:mfa/*'], + ['validationType' => 'conditional', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:system:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'always', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/{#GroupName}'], + ['validationType' => 'always', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ['validationType' => 'always', 'resourceType' => 'Role', 'arn' => 'acs:ram:*:{#accountId}:role/*'], + ['validationType' => 'always', 'resourceType' => 'User', 'arn' => 'acs:ram:*:{#accountId}:user/*'], + ['validationType' => 'always', 'resourceType' => 'ServiceLinkedRole', 'arn' => 'acs:ram:*:{#accountId}:role/{#RoleName}'], + ['validationType' => 'always', 'resourceType' => 'Policy', 'arn' => 'acs:ram:*:{#accountId}:policy/*'], + ['validationType' => 'conditional', 'resourceType' => 'Policy', 'arn' => 'acs:ram::{#accountId}:policy/{#PolicyName}'], + ['validationType' => 'conditional', 'resourceType' => 'Role', 'arn' => 'acs:ram::{#accountId}:role/{#RoleName}'], + ['validationType' => 'always', 'resourceType' => 'ServiceLinkedRole', 'arn' => 'acs:ram:*:{#accountId}:role/*'], + ['validationType' => 'always', 'resourceType' => 'User', 'arn' => '{#Arn}'], + ['validationType' => 'always', 'resourceType' => 'MFADevice', 'arn' => 'acs:ram:*:{#accountId}:mfa/{#SerialNumber}'], + ['validationType' => 'always', 'resourceType' => 'Group', 'arn' => 'acs:ram:*:{#accountId}:group/*'], ], ], ]; |
