Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

awssts

package

Go to main page

Versions in this module

v0

v0.9.2

Feb 6, 2026

Changes in this version

+ const MaxSessionDuration

+ const MinSessionDuration

+ var ErrInvalidMatcher = errors.New("invalid CEL matcher expression")

+ var ErrInvalidRoleArn = errors.New("invalid IAM role ARN format")

+ var ErrInvalidRoleMapping = errors.New("invalid role mapping configuration")

+ var ErrMissingRegion = errors.New("AWS region is required")

+ var ErrMissingRoleConfig = errors.New("either role_arn or role_mappings must be configured")

+ var ErrNoRoleMapping = errors.New("no role mapping found for JWT claims")

+ func ValidateConfig(cfg *Config) error

+ func ValidateRoleArn(roleArn string) error

+ type Config struct

+ FallbackRoleArn string

+ Region string

+ RoleClaim string

+ RoleMappings []RoleMapping

+ Service string

+ SessionDuration int32

+ SessionNameClaim string

+ func (c *Config) GetRoleClaim() string

+ type RoleMapper struct

+ func NewRoleMapper(cfg *Config) (*RoleMapper, error)

+ func (rm *RoleMapper) SelectRole(claims map[string]any) (string, error)

+ type RoleMapping struct

+ Claim string

+ Matcher string

+ Priority int

+ RoleArn string