class Aws::STS::Types::AssumeRootRequest

@!attribute [rw] target_principal

The member account principal ARN or account ID.
@return [String]

@!attribute [rw] task_policy_arn

The identity based policy that scopes the session to the privileged
tasks that can be performed. You can use one of following Amazon Web
Services managed policies to scope root session actions. You can add
additional customer managed policies to further limit the
permissions for the root session.

* [IAMAuditRootUserCredentials][1]

* [IAMCreateRootUserPassword][2]

* [IAMDeleteRootUserCredentials][3]

* [S3UnlockBucketPolicy][4]

* [SQSUnlockQueuePolicy][5]

[1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/security-iam-awsmanpol.html#security-iam-awsmanpol-IAMAuditRootUserCredentials
[2]: https://docs.aws.amazon.com/IAM/latest/UserGuide/security-iam-awsmanpol.html#security-iam-awsmanpol-IAMCreateRootUserPassword
[3]: https://docs.aws.amazon.com/IAM/latest/UserGuide/security-iam-awsmanpol.html#security-iam-awsmanpol-IAMDeleteRootUserCredentials
[4]: https://docs.aws.amazon.com/IAM/latest/UserGuide/security-iam-awsmanpol.html#security-iam-awsmanpol-S3UnlockBucketPolicy
[5]: https://docs.aws.amazon.com/IAM/latest/UserGuide/security-iam-awsmanpol.html#security-iam-awsmanpol-SQSUnlockQueuePolicy
@return [Types::PolicyDescriptorType]

@!attribute [rw] duration_seconds

The duration, in seconds, of the privileged session. The value can
range from 0 seconds up to the maximum session duration of 900
seconds (15 minutes). If you specify a value higher than this
setting, the operation fails.

By default, the value is set to `900` seconds.
@return [Integer]

@see docs.aws.amazon.com/goto/WebAPI/sts-2011-06-15/AssumeRootRequest AWS API Documentation

Constants

SENSITIVE