Amazon IAM Identity Center · Capability

AWS Single Sign-On Admin

AWS Single Sign-On Admin. 37 operations. Lead operation: Amazon IAM Identity Center Attach Customer Managed Policy Reference to Permission Set. Self-contained Naftiko capability covering one Amazon Iam Identity Center business surface.

Run with Naftiko Amazon Iam Identity CenterAWS Single Sign-On Admin

What You Can Do

POST

Attachcustomermanagedpolicyreferencetopermissionset — Amazon IAM Identity Center Attach Customer Managed Policy Reference to Permission Set

/v1/x-amz-target-swbexternalservice-attachcustomermanagedpolicyreferencetopermissionset

POST

Attachmanagedpolicytopermissionset — Amazon IAM Identity Center Attach Managed Policy to Permission Set

/v1/x-amz-target-swbexternalservice-attachmanagedpolicytopermissionset

POST

Createaccountassignment — Amazon IAM Identity Center Create Account Assignment

/v1/x-amz-target-swbexternalservice-createaccountassignment

POST

Createinstanceaccesscontrolattributeconfiguration — Amazon IAM Identity Center Create Instance Access Control Attribute Configuration

/v1/x-amz-target-swbexternalservice-createinstanceaccesscontrolattributeconfiguration

POST

Createpermissionset — Amazon IAM Identity Center Create Permission Set

/v1/x-amz-target-swbexternalservice-createpermissionset

POST

Deleteaccountassignment — Amazon IAM Identity Center Delete Account Assignment

/v1/x-amz-target-swbexternalservice-deleteaccountassignment

POST

Deleteinlinepolicyfrompermissionset — Amazon IAM Identity Center Delete Inline Policy from Permission Set

/v1/x-amz-target-swbexternalservice-deleteinlinepolicyfrompermissionset

POST

Deleteinstanceaccesscontrolattributeconfiguration — Amazon IAM Identity Center Delete Instance Access Control Attribute Configuration

/v1/x-amz-target-swbexternalservice-deleteinstanceaccesscontrolattributeconfiguration

POST

Deletepermissionset — Amazon IAM Identity Center Delete Permission Set

/v1/x-amz-target-swbexternalservice-deletepermissionset

POST

Deletepermissionsboundaryfrompermissionset — Amazon IAM Identity Center Delete Permissions Boundary from Permission Set

/v1/x-amz-target-swbexternalservice-deletepermissionsboundaryfrompermissionset

POST

Describeaccountassignmentcreationstatus — Amazon IAM Identity Center Describe Account Assignment Creation Status

/v1/x-amz-target-swbexternalservice-describeaccountassignmentcreationstatus

POST

Describeaccountassignmentdeletionstatus — Amazon IAM Identity Center Describe Account Assignment Deletion Status

/v1/x-amz-target-swbexternalservice-describeaccountassignmentdeletionstatus

POST

Describeinstanceaccesscontrolattributeconfiguration — Amazon IAM Identity Center Describe Instance Access Control Attribute Configuration

/v1/x-amz-target-swbexternalservice-describeinstanceaccesscontrolattributeconfiguration

POST

Describepermissionset — Amazon IAM Identity Center Describe Permission Set

/v1/x-amz-target-swbexternalservice-describepermissionset

POST

Describepermissionsetprovisioningstatus — Amazon IAM Identity Center Describe Permission Set Provisioning Status

/v1/x-amz-target-swbexternalservice-describepermissionsetprovisioningstatus

POST

Detachcustomermanagedpolicyreferencefrompermissionset — Amazon IAM Identity Center Detach Customer Managed Policy Reference from Permission Set

/v1/x-amz-target-swbexternalservice-detachcustomermanagedpolicyreferencefrompermissionset

POST

Detachmanagedpolicyfrompermissionset — Amazon IAM Identity Center Detach Managed Policy from Permission Set

/v1/x-amz-target-swbexternalservice-detachmanagedpolicyfrompermissionset

POST

Getinlinepolicyforpermissionset — Amazon IAM Identity Center Get Inline Policy for Permission Set

/v1/x-amz-target-swbexternalservice-getinlinepolicyforpermissionset

POST

Getpermissionsboundaryforpermissionset — Amazon IAM Identity Center Get Permissions Boundary for Permission Set

/v1/x-amz-target-swbexternalservice-getpermissionsboundaryforpermissionset

POST

Listaccountassignmentcreationstatus — Amazon IAM Identity Center List Account Assignment Creation Status

/v1/x-amz-target-swbexternalservice-listaccountassignmentcreationstatus

POST

Listaccountassignmentdeletionstatus — Amazon IAM Identity Center List Account Assignment Deletion Status

/v1/x-amz-target-swbexternalservice-listaccountassignmentdeletionstatus

POST

Listaccountassignments — Amazon IAM Identity Center List Account Assignments

/v1/x-amz-target-swbexternalservice-listaccountassignments

POST

Listaccountsforprovisionedpermissionset — Amazon IAM Identity Center List Accounts for Provisioned Permission Set

/v1/x-amz-target-swbexternalservice-listaccountsforprovisionedpermissionset

POST

Listcustomermanagedpolicyreferencesinpermissionset — Amazon IAM Identity Center List Customer Managed Policy References in Permission Set

/v1/x-amz-target-swbexternalservice-listcustomermanagedpolicyreferencesinpermissionset

POST

Listinstances — Amazon IAM Identity Center List Instances

/v1/x-amz-target-swbexternalservice-listinstances

POST

Listmanagedpoliciesinpermissionset — Amazon IAM Identity Center List Managed Policies in Permission Set

/v1/x-amz-target-swbexternalservice-listmanagedpoliciesinpermissionset

POST

Listpermissionsetprovisioningstatus — Amazon IAM Identity Center List Permission Set Provisioning Status

/v1/x-amz-target-swbexternalservice-listpermissionsetprovisioningstatus

POST

Listpermissionsets — Amazon IAM Identity Center List Permission Sets

/v1/x-amz-target-swbexternalservice-listpermissionsets

POST

Listpermissionsetsprovisionedtoaccount — Amazon IAM Identity Center List Permission Sets Provisioned to Account

/v1/x-amz-target-swbexternalservice-listpermissionsetsprovisionedtoaccount

POST

Listtagsforresource — Amazon IAM Identity Center List Tags for Resource

/v1/x-amz-target-swbexternalservice-listtagsforresource

POST

Provisionpermissionset — Amazon IAM Identity Center Provision Permission Set

/v1/x-amz-target-swbexternalservice-provisionpermissionset

POST

Putinlinepolicytopermissionset — Amazon IAM Identity Center Put Inline Policy to Permission Set

/v1/x-amz-target-swbexternalservice-putinlinepolicytopermissionset

POST

Putpermissionsboundarytopermissionset — Amazon IAM Identity Center Put Permissions Boundary to Permission Set

/v1/x-amz-target-swbexternalservice-putpermissionsboundarytopermissionset

POST

Tagresource — Amazon IAM Identity Center Tag Resource

/v1/x-amz-target-swbexternalservice-tagresource

POST

Untagresource — Amazon IAM Identity Center Untag Resource

/v1/x-amz-target-swbexternalservice-untagresource

POST

Updateinstanceaccesscontrolattributeconfiguration — Amazon IAM Identity Center Update Instance Access Control Attribute Configuration

/v1/x-amz-target-swbexternalservice-updateinstanceaccesscontrolattributeconfiguration

POST

Updatepermissionset — Amazon IAM Identity Center Update Permission Set

/v1/x-amz-target-swbexternalservice-updatepermissionset

MCP Tools

amazon-iam-identity-center-attach

Amazon IAM Identity Center Attach Customer Managed Policy Reference to Permission Set

amazon-iam-identity-center-attach-2

Amazon IAM Identity Center Attach Managed Policy to Permission Set

amazon-iam-identity-center-create

Amazon IAM Identity Center Create Account Assignment

amazon-iam-identity-center-create-2

Amazon IAM Identity Center Create Instance Access Control Attribute Configuration

amazon-iam-identity-center-create-3

Amazon IAM Identity Center Create Permission Set

amazon-iam-identity-center-delete

Amazon IAM Identity Center Delete Account Assignment

amazon-iam-identity-center-delete-2

Amazon IAM Identity Center Delete Inline Policy from Permission Set

amazon-iam-identity-center-delete-3

Amazon IAM Identity Center Delete Instance Access Control Attribute Configuration

amazon-iam-identity-center-delete-4

Amazon IAM Identity Center Delete Permission Set

amazon-iam-identity-center-delete-5

Amazon IAM Identity Center Delete Permissions Boundary from Permission Set

amazon-iam-identity-center-describe

Amazon IAM Identity Center Describe Account Assignment Creation Status

amazon-iam-identity-center-describe-2

Amazon IAM Identity Center Describe Account Assignment Deletion Status

amazon-iam-identity-center-describe-3

Amazon IAM Identity Center Describe Instance Access Control Attribute Configuration

amazon-iam-identity-center-describe-4

Amazon IAM Identity Center Describe Permission Set

amazon-iam-identity-center-describe-5

Amazon IAM Identity Center Describe Permission Set Provisioning Status

amazon-iam-identity-center-detach

Amazon IAM Identity Center Detach Customer Managed Policy Reference from Permission Set

amazon-iam-identity-center-detach-2

Amazon IAM Identity Center Detach Managed Policy from Permission Set

amazon-iam-identity-center-get

Amazon IAM Identity Center Get Inline Policy for Permission Set

read-only

amazon-iam-identity-center-get-2

Amazon IAM Identity Center Get Permissions Boundary for Permission Set

read-only

amazon-iam-identity-center-list

Amazon IAM Identity Center List Account Assignment Creation Status

read-only

amazon-iam-identity-center-list-2

Amazon IAM Identity Center List Account Assignment Deletion Status

read-only

amazon-iam-identity-center-list-3

Amazon IAM Identity Center List Account Assignments

read-only

amazon-iam-identity-center-list-4

Amazon IAM Identity Center List Accounts for Provisioned Permission Set

read-only

amazon-iam-identity-center-list-5

Amazon IAM Identity Center List Customer Managed Policy References in Permission Set

read-only

amazon-iam-identity-center-list-6

Amazon IAM Identity Center List Instances

read-only

amazon-iam-identity-center-list-7

Amazon IAM Identity Center List Managed Policies in Permission Set

read-only

amazon-iam-identity-center-list-8

Amazon IAM Identity Center List Permission Set Provisioning Status

read-only

amazon-iam-identity-center-list-9

Amazon IAM Identity Center List Permission Sets

read-only

amazon-iam-identity-center-list-10

Amazon IAM Identity Center List Permission Sets Provisioned to Account

read-only

amazon-iam-identity-center-list-11

Amazon IAM Identity Center List Tags for Resource

read-only

amazon-iam-identity-center-provision

Amazon IAM Identity Center Provision Permission Set

amazon-iam-identity-center-put

Amazon IAM Identity Center Put Inline Policy to Permission Set

amazon-iam-identity-center-put-2

Amazon IAM Identity Center Put Permissions Boundary to Permission Set

amazon-iam-identity-center-tag

Amazon IAM Identity Center Tag Resource

amazon-iam-identity-center-untag

Amazon IAM Identity Center Untag Resource

amazon-iam-identity-center-update

Amazon IAM Identity Center Update Instance Access Control Attribute Configuration

amazon-iam-identity-center-update-2

Amazon IAM Identity Center Update Permission Set

Capability Spec

naftiko: 1.0.0-alpha2
info:
  label: AWS Single Sign-On Admin
  description: 'AWS Single Sign-On Admin. 37 operations. Lead operation: Amazon IAM Identity Center Attach Customer Managed
    Policy Reference to Permission Set. Self-contained Naftiko capability covering one Amazon Iam Identity Center business
    surface.'
  tags:
  - Amazon Iam Identity Center
  - AWS Single Sign-On Admin
  created: '2026-05-19'
  modified: '2026-05-19'
binds:
- namespace: env
  keys:
    AMAZON_IAM_IDENTITY_CENTER_API_KEY: AMAZON_IAM_IDENTITY_CENTER_API_KEY
capability:
  consumes:
  - type: http
    namespace: sso-admin
    baseUri: http://sso.{region}.amazonaws.com
    description: AWS Single Sign-On Admin business capability. Self-contained, no shared references.
    resources:
    - name: '#X-Amz-Target=SWBExternalService.AttachCustomerManagedPolicyReferenceToPermissio'
      path: /#X-Amz-Target=SWBExternalService.AttachCustomerManagedPolicyReferenceToPermissionSet
      operations:
      - name: attachcustomermanagedpolicyreferencetopermissionset
        method: POST
        description: Amazon IAM Identity Center Attach Customer Managed Policy Reference to Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.AttachManagedPolicyToPermissionSet'
      path: /#X-Amz-Target=SWBExternalService.AttachManagedPolicyToPermissionSet
      operations:
      - name: attachmanagedpolicytopermissionset
        method: POST
        description: Amazon IAM Identity Center Attach Managed Policy to Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.CreateAccountAssignment'
      path: /#X-Amz-Target=SWBExternalService.CreateAccountAssignment
      operations:
      - name: createaccountassignment
        method: POST
        description: Amazon IAM Identity Center Create Account Assignment
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.CreateInstanceAccessControlAttributeConfigurati'
      path: /#X-Amz-Target=SWBExternalService.CreateInstanceAccessControlAttributeConfiguration
      operations:
      - name: createinstanceaccesscontrolattributeconfiguration
        method: POST
        description: Amazon IAM Identity Center Create Instance Access Control Attribute Configuration
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.CreatePermissionSet'
      path: /#X-Amz-Target=SWBExternalService.CreatePermissionSet
      operations:
      - name: createpermissionset
        method: POST
        description: Amazon IAM Identity Center Create Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DeleteAccountAssignment'
      path: /#X-Amz-Target=SWBExternalService.DeleteAccountAssignment
      operations:
      - name: deleteaccountassignment
        method: POST
        description: Amazon IAM Identity Center Delete Account Assignment
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DeleteInlinePolicyFromPermissionSet'
      path: /#X-Amz-Target=SWBExternalService.DeleteInlinePolicyFromPermissionSet
      operations:
      - name: deleteinlinepolicyfrompermissionset
        method: POST
        description: Amazon IAM Identity Center Delete Inline Policy from Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DeleteInstanceAccessControlAttributeConfigurati'
      path: /#X-Amz-Target=SWBExternalService.DeleteInstanceAccessControlAttributeConfiguration
      operations:
      - name: deleteinstanceaccesscontrolattributeconfiguration
        method: POST
        description: Amazon IAM Identity Center Delete Instance Access Control Attribute Configuration
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DeletePermissionSet'
      path: /#X-Amz-Target=SWBExternalService.DeletePermissionSet
      operations:
      - name: deletepermissionset
        method: POST
        description: Amazon IAM Identity Center Delete Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DeletePermissionsBoundaryFromPermissionSet'
      path: /#X-Amz-Target=SWBExternalService.DeletePermissionsBoundaryFromPermissionSet
      operations:
      - name: deletepermissionsboundaryfrompermissionset
        method: POST
        description: Amazon IAM Identity Center Delete Permissions Boundary from Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DescribeAccountAssignmentCreationStatus'
      path: /#X-Amz-Target=SWBExternalService.DescribeAccountAssignmentCreationStatus
      operations:
      - name: describeaccountassignmentcreationstatus
        method: POST
        description: Amazon IAM Identity Center Describe Account Assignment Creation Status
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DescribeAccountAssignmentDeletionStatus'
      path: /#X-Amz-Target=SWBExternalService.DescribeAccountAssignmentDeletionStatus
      operations:
      - name: describeaccountassignmentdeletionstatus
        method: POST
        description: Amazon IAM Identity Center Describe Account Assignment Deletion Status
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DescribeInstanceAccessControlAttributeConfigura'
      path: /#X-Amz-Target=SWBExternalService.DescribeInstanceAccessControlAttributeConfiguration
      operations:
      - name: describeinstanceaccesscontrolattributeconfiguration
        method: POST
        description: Amazon IAM Identity Center Describe Instance Access Control Attribute Configuration
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DescribePermissionSet'
      path: /#X-Amz-Target=SWBExternalService.DescribePermissionSet
      operations:
      - name: describepermissionset
        method: POST
        description: Amazon IAM Identity Center Describe Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DescribePermissionSetProvisioningStatus'
      path: /#X-Amz-Target=SWBExternalService.DescribePermissionSetProvisioningStatus
      operations:
      - name: describepermissionsetprovisioningstatus
        method: POST
        description: Amazon IAM Identity Center Describe Permission Set Provisioning Status
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DetachCustomerManagedPolicyReferenceFromPermiss'
      path: /#X-Amz-Target=SWBExternalService.DetachCustomerManagedPolicyReferenceFromPermissionSet
      operations:
      - name: detachcustomermanagedpolicyreferencefrompermissionset
        method: POST
        description: Amazon IAM Identity Center Detach Customer Managed Policy Reference from Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.DetachManagedPolicyFromPermissionSet'
      path: /#X-Amz-Target=SWBExternalService.DetachManagedPolicyFromPermissionSet
      operations:
      - name: detachmanagedpolicyfrompermissionset
        method: POST
        description: Amazon IAM Identity Center Detach Managed Policy from Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.GetInlinePolicyForPermissionSet'
      path: /#X-Amz-Target=SWBExternalService.GetInlinePolicyForPermissionSet
      operations:
      - name: getinlinepolicyforpermissionset
        method: POST
        description: Amazon IAM Identity Center Get Inline Policy for Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.GetPermissionsBoundaryForPermissionSet'
      path: /#X-Amz-Target=SWBExternalService.GetPermissionsBoundaryForPermissionSet
      operations:
      - name: getpermissionsboundaryforpermissionset
        method: POST
        description: Amazon IAM Identity Center Get Permissions Boundary for Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ListAccountAssignmentCreationStatus'
      path: /#X-Amz-Target=SWBExternalService.ListAccountAssignmentCreationStatus
      operations:
      - name: listaccountassignmentcreationstatus
        method: POST
        description: Amazon IAM Identity Center List Account Assignment Creation Status
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: MaxResults
          in: query
          type: string
          description: Pagination limit
        - name: NextToken
          in: query
          type: string
          description: Pagination token
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ListAccountAssignmentDeletionStatus'
      path: /#X-Amz-Target=SWBExternalService.ListAccountAssignmentDeletionStatus
      operations:
      - name: listaccountassignmentdeletionstatus
        method: POST
        description: Amazon IAM Identity Center List Account Assignment Deletion Status
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: MaxResults
          in: query
          type: string
          description: Pagination limit
        - name: NextToken
          in: query
          type: string
          description: Pagination token
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ListAccountAssignments'
      path: /#X-Amz-Target=SWBExternalService.ListAccountAssignments
      operations:
      - name: listaccountassignments
        method: POST
        description: Amazon IAM Identity Center List Account Assignments
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: MaxResults
          in: query
          type: string
          description: Pagination limit
        - name: NextToken
          in: query
          type: string
          description: Pagination token
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ListAccountsForProvisionedPermissionSet'
      path: /#X-Amz-Target=SWBExternalService.ListAccountsForProvisionedPermissionSet
      operations:
      - name: listaccountsforprovisionedpermissionset
        method: POST
        description: Amazon IAM Identity Center List Accounts for Provisioned Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: MaxResults
          in: query
          type: string
          description: Pagination limit
        - name: NextToken
          in: query
          type: string
          description: Pagination token
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ListCustomerManagedPolicyReferencesInPermission'
      path: /#X-Amz-Target=SWBExternalService.ListCustomerManagedPolicyReferencesInPermissionSet
      operations:
      - name: listcustomermanagedpolicyreferencesinpermissionset
        method: POST
        description: Amazon IAM Identity Center List Customer Managed Policy References in Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: MaxResults
          in: query
          type: string
          description: Pagination limit
        - name: NextToken
          in: query
          type: string
          description: Pagination token
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ListInstances'
      path: /#X-Amz-Target=SWBExternalService.ListInstances
      operations:
      - name: listinstances
        method: POST
        description: Amazon IAM Identity Center List Instances
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: MaxResults
          in: query
          type: string
          description: Pagination limit
        - name: NextToken
          in: query
          type: string
          description: Pagination token
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ListManagedPoliciesInPermissionSet'
      path: /#X-Amz-Target=SWBExternalService.ListManagedPoliciesInPermissionSet
      operations:
      - name: listmanagedpoliciesinpermissionset
        method: POST
        description: Amazon IAM Identity Center List Managed Policies in Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: MaxResults
          in: query
          type: string
          description: Pagination limit
        - name: NextToken
          in: query
          type: string
          description: Pagination token
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ListPermissionSetProvisioningStatus'
      path: /#X-Amz-Target=SWBExternalService.ListPermissionSetProvisioningStatus
      operations:
      - name: listpermissionsetprovisioningstatus
        method: POST
        description: Amazon IAM Identity Center List Permission Set Provisioning Status
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: MaxResults
          in: query
          type: string
          description: Pagination limit
        - name: NextToken
          in: query
          type: string
          description: Pagination token
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ListPermissionSets'
      path: /#X-Amz-Target=SWBExternalService.ListPermissionSets
      operations:
      - name: listpermissionsets
        method: POST
        description: Amazon IAM Identity Center List Permission Sets
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: MaxResults
          in: query
          type: string
          description: Pagination limit
        - name: NextToken
          in: query
          type: string
          description: Pagination token
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ListPermissionSetsProvisionedToAccount'
      path: /#X-Amz-Target=SWBExternalService.ListPermissionSetsProvisionedToAccount
      operations:
      - name: listpermissionsetsprovisionedtoaccount
        method: POST
        description: Amazon IAM Identity Center List Permission Sets Provisioned to Account
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: MaxResults
          in: query
          type: string
          description: Pagination limit
        - name: NextToken
          in: query
          type: string
          description: Pagination token
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ListTagsForResource'
      path: /#X-Amz-Target=SWBExternalService.ListTagsForResource
      operations:
      - name: listtagsforresource
        method: POST
        description: Amazon IAM Identity Center List Tags for Resource
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: NextToken
          in: query
          type: string
          description: Pagination token
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.ProvisionPermissionSet'
      path: /#X-Amz-Target=SWBExternalService.ProvisionPermissionSet
      operations:
      - name: provisionpermissionset
        method: POST
        description: Amazon IAM Identity Center Provision Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.PutInlinePolicyToPermissionSet'
      path: /#X-Amz-Target=SWBExternalService.PutInlinePolicyToPermissionSet
      operations:
      - name: putinlinepolicytopermissionset
        method: POST
        description: Amazon IAM Identity Center Put Inline Policy to Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.PutPermissionsBoundaryToPermissionSet'
      path: /#X-Amz-Target=SWBExternalService.PutPermissionsBoundaryToPermissionSet
      operations:
      - name: putpermissionsboundarytopermissionset
        method: POST
        description: Amazon IAM Identity Center Put Permissions Boundary to Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.TagResource'
      path: /#X-Amz-Target=SWBExternalService.TagResource
      operations:
      - name: tagresource
        method: POST
        description: Amazon IAM Identity Center Tag Resource
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.UntagResource'
      path: /#X-Amz-Target=SWBExternalService.UntagResource
      operations:
      - name: untagresource
        method: POST
        description: Amazon IAM Identity Center Untag Resource
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.UpdateInstanceAccessControlAttributeConfigurati'
      path: /#X-Amz-Target=SWBExternalService.UpdateInstanceAccessControlAttributeConfiguration
      operations:
      - name: updateinstanceaccesscontrolattributeconfiguration
        method: POST
        description: Amazon IAM Identity Center Update Instance Access Control Attribute Configuration
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    - name: '#X-Amz-Target=SWBExternalService.UpdatePermissionSet'
      path: /#X-Amz-Target=SWBExternalService.UpdatePermissionSet
      operations:
      - name: updatepermissionset
        method: POST
        description: Amazon IAM Identity Center Update Permission Set
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
        inputParameters:
        - name: X-Amz-Target
          in: header
          type: string
          required: true
        - name: body
          in: body
          type: object
          description: Request body (JSON).
          required: true
    authentication:
      type: apikey
      key: Authorization
      value: '{{env.AMAZON_IAM_IDENTITY_CENTER_API_KEY}}'
      placement: header
  exposes:
  - type: rest
    namespace: sso-admin-rest
    port: 8080
    description: REST adapter for AWS Single Sign-On Admin. One Spectral-compliant resource per consumed operation, prefixed
      with /v1.
    resources:
    - path: /v1/x-amz-target-swbexternalservice-attachcustomermanagedpolicyreferencetopermissionset
      name: x-amz-target-swbexternalservice-attachcustomermanagedpolicyreferencetopermissio
      description: 'REST surface for #X-Amz-Target=SWBExternalService.AttachCustomerManagedPolicyReferenceToPermissio.'
      operations:
      - method: POST
        name: attachcustomermanagedpolicyreferencetopermissionset
        description: Amazon IAM Identity Center Attach Customer Managed Policy Reference to Permission Set
        call: sso-admin.attachcustomermanagedpolicyreferencetopermissionset
        with:
          X-Amz-Target: rest.X-Amz-Target
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/x-amz-target-swbexternalservice-attachmanagedpolicytopermissionset
      name: x-amz-target-swbexternalservice-attachmanagedpolicytopermissionset
      description: 'REST surface for #X-Amz-Target=SWBExternalService.AttachManagedPolicyToPermissionSet.'
      operations:
      - method: POST
        name: attachmanagedpolicytopermissionset
        description: Amazon IAM Identity Center Attach Managed Policy to Permission Set
        call: sso-admin.attachmanagedpolicytopermissionset
        with:
          X-Amz-Target: rest.X-Amz-Target
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/x-amz-target-swbexternalservice-createaccountassignment
      name: x-amz-target-swbexternalservice-createaccountassignment
      description: 'REST surface for #X-Amz-Target=SWBExternalService.CreateAccountAssignment.'
      operations:
      - method: POST
        name: createaccountassignment
        description: Amazon IAM Identity Center Create Account Assignment
        call: sso-admin.createaccountassignment
        with:
          X-Amz-Target: rest.X-Amz-Target
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/x-amz-target-swbexternalservice-createinstanceaccesscontrolattributeconfiguration
      name: x-amz-target-swbexternalservice-createinstanceaccesscontrolattributeconfigurati
      description: 'REST surface for #X-Amz-Target=SWBExternalService.CreateInstanceAccessControlAttributeConfigurati.'
      operations:
      - method: POST
        name: createinstanceaccesscontrolattributeconfiguration
        description: Amazon IAM Identity Center Create Instance Access Control Attribute Configuration
        call: sso-admin.createinstanceaccesscontrolattributeconfiguration
        with:
          X-Amz-Target: rest.X-Amz-Target
          body: rest.body
        outputParameters:
        - type: object
          mapping: $.
    - path: /v1/x-amz-target-swbexternalservice-createpermissionset
      name: x-amz-target-swbexternalservice-createpermissionset
      description: 'REST surface for #X-Amz-Target=SWBExternalService.CreatePermissionSet.'
      operations:
      - method: POST
        name: createpermissionset
        description: Amazon IAM Identity Center 

# --- truncated at 32 KB (69 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/amazon-iam-identity-center/refs/heads/main/capabilities/sso-admin.yaml