import { STSClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../STSClient"; import { GetAccessKeyInfoRequest, GetAccessKeyInfoResponse } from "../models/models_0"; import { deserializeAws_queryGetAccessKeyInfoCommand, serializeAws_queryGetAccessKeyInfoCommand, } from "../protocols/Aws_query"; import { getSerdePlugin } from "@aws-sdk/middleware-serde"; import { getAwsAuthPlugin } from "@aws-sdk/middleware-signing"; import { HttpRequest as __HttpRequest, HttpResponse as __HttpResponse } from "@aws-sdk/protocol-http"; import { Command as $Command } from "@aws-sdk/smithy-client"; import { FinalizeHandlerArguments, Handler, HandlerExecutionContext, MiddlewareStack, HttpHandlerOptions as __HttpHandlerOptions, MetadataBearer as __MetadataBearer, SerdeContext as __SerdeContext, } from "@aws-sdk/types"; export interface GetAccessKeyInfoCommandInput extends GetAccessKeyInfoRequest {} export interface GetAccessKeyInfoCommandOutput extends GetAccessKeyInfoResponse, __MetadataBearer {} /** *
Returns the account identifier for the specified access key ID.
*Access keys consist of two parts: an access key ID (for example,
* AKIAIOSFODNN7EXAMPLE
) and a secret access key (for example,
* wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY
). For more information about
* access keys, see Managing Access Keys for IAM
* Users in the IAM User Guide.
When you pass an access key ID to this operation, it returns the ID of the Amazon Web Services
* account to which the keys belong. Access key IDs beginning with AKIA
are
* long-term credentials for an IAM user or the Amazon Web Services account root user. Access key IDs
* beginning with ASIA
are temporary credentials that are created using STS
* operations. If the account in the response belongs to you, you can sign in as the root
* user and review your root user access keys. Then, you can pull a credentials report to learn which IAM user owns the keys. To learn who
* requested the temporary credentials for an ASIA
access key, view the STS
* events in your CloudTrail logs in the
* IAM User Guide.
This operation does not indicate the state of the access key. The key might be active, * inactive, or deleted. Active keys might not have permissions to perform an operation. * Providing a deleted access key might return an error that the key doesn't exist.
* @example * Use a bare-bones client and the command you need to make an API call. * ```javascript * import { STSClient, GetAccessKeyInfoCommand } from "@aws-sdk/client-sts"; // ES Modules import * // const { STSClient, GetAccessKeyInfoCommand } = require("@aws-sdk/client-sts"); // CommonJS import * const client = new STSClient(config); * const command = new GetAccessKeyInfoCommand(input); * const response = await client.send(command); * ``` * * @see {@link GetAccessKeyInfoCommandInput} for command's `input` shape. * @see {@link GetAccessKeyInfoCommandOutput} for command's `response` shape. * @see {@link STSClientResolvedConfig | config} for command's `input` shape. * */ export class GetAccessKeyInfoCommand extends $Command< GetAccessKeyInfoCommandInput, GetAccessKeyInfoCommandOutput, STSClientResolvedConfig > { // Start section: command_properties // End section: command_properties constructor(readonly input: GetAccessKeyInfoCommandInput) { // Start section: command_constructor super(); // End section: command_constructor } /** * @internal */ resolveMiddleware( clientStack: MiddlewareStack