Skip to main content


No description

type AWSIAMRole {
arn: String!
assumeRoleRawPolicyDocument: String!
createdAt: DateTime
description: String!
maximumSessionDuration: Int64!
path: String!
permissionsBoundary: AWSIAMRoleAttachedPermissionsBoundary
id: String!
lastUsed: AWSIAMRoleLastUsed
name: String!
tags: [AWSTag!]!
policies: [AWSIAMRolePolicy!]


AWSIAMRole.arn ● String! non-null scalar

The Amazon Resource Name (ARN) specifying the role. For more information, see IAM identifiers ( The minimum length: 20

AWSIAMRole.assumeRoleRawPolicyDocument ● String! non-null scalar

The policy that grants an entity permission to assume the role

AWSIAMRole.createdAt ● DateTime scalar

The created date/time

AWSIAMRole.description ● String! non-null scalar

The description

AWSIAMRole.maximumSessionDuration ● Int64! non-null scalar

The maximum session duration (in seconds) for the specified role The minimum: 3600

AWSIAMRole.path ● String! non-null scalar

The path to the role. For more information, see IAM identifiers (

AWSIAMRole.permissionsBoundary ● AWSIAMRoleAttachedPermissionsBoundary object

The ARN of the policy used to set the permissions boundary for the role. For more information, see Permissions boundaries for IAM identities ( ● String! non-null scalar

The stable and unique string identifying the role. For more information, see IAM identifiers ( The minimum length: 16

AWSIAMRole.lastUsed ● AWSIAMRoleLastUsed object

Contains information about the last time that an IAM role was used. For more information, see Regions where data is tracked ( ● String! non-null scalar

The name

AWSIAMRole.tags ● [AWSTag!]! non-null object

The list of tags that are attached to the role

AWSIAMRole.policies ● [AWSIAMRolePolicy!] list union

The attached policies on the role

Member of

AWSConfigRecorder object ● AWSEC2InstanceIAMInstanceProfile object ● AWSECSService object ● AWSECSTaskDefinition object ● AWSECSTaskOverride object ● AWSRDSDatabaseInstanceRole object