-
Notifications
You must be signed in to change notification settings - Fork 1.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Permissions Boundary Not Included in ListUsers Operation #1902
Comments
I think this is because the IAM API isn't including the data in the response, contrary to the documentation. Here's what I used to reproduce: import botocore
import botocore.session
import botocore.hooks
def postcall(*args, **kwargs):
print(kwargs['http_response'].text)
h = botocore.hooks.HierarchicalEmitter()
h.register(event_name='after-call.*', handler=postcall)
session = botocore.session.Session(profile='...', event_hooks=h)
iamclient = session.create_client('iam')
response = iamclient.list_users() After calling |
its sort of related to how all the sdks get constructed from the service team descriptions and models. the model thats being provided for user is the same across those two api calls, however the list api call doesn't include the full representation. the service team could have used a separate model that would have been included in the list operation, but in this case they reused same model across both, however its only on the get user operation that the full model response is included. obviously this can cause some confusion around the docs, but afaics its really on the service team to include in their api metadata a correct model for a given operation, the sdks just consume and expose that metadata for a given language implementation. |
Okay, then the solution seems to be to pivot to using |
@ncc-erik-steringer - Thank you for your post. I can confirm that |
To add to this, the botocore documentation also says a list of |
Greetings! It looks like this issue hasn’t been active in longer than one year. We encourage you to check if this is still an issue in the latest release. In the absence of more information, we will be closing this issue soon. If you find that this is still a problem, please feel free to provide a comment or upvote with a reaction on the initial post to prevent automatic closure. If the issue is already closed, please feel free to open a new one. |
I am calling the
ListUsers
operation to list out the IAM Users in my account. Among the elements in the response, I was looking forPermissionsBoundary
. Per my reading of the documentation, it seems like it should be present in the response data:When I call
ListUsers
, with or without pagination, the response did not includePermissionsBoundary
for the IAM User I set it for. I do see the element when I callGetUser
for that same user.This is with version 1.13.27 installed via
pip
, Python 3.5, Ubuntu 16.04.The text was updated successfully, but these errors were encountered: