【Upgrade】Notification of Request Parameters Length Constraints Upgrade of STS APIs
Sep 19, 2022
Resource Access Management
Upgrade window: From September 26, 2022 10:00 to September 30, 2022 23:59, Beijing time
Upgrade content:
The Security Token Service (STS) AssumeRole operation will adjust the length constraints of the request parameter "Policy" from "1~1024 characters" to "1~2048 characters".
When you programmatically create a temporary session for a role, the maximum number of characters allowed for the Session policy is increased to 2048.
Involved OpenAPIs: AssumeRole, AssumeRoleWithSAML, AssumeRoleWithOIDC
Upgrade impact:
The size of the STS Token will increase with the length of the Session Policy, the maximum size can exceed 2K. Please do the corresponding test work when adjusting the Session Policy to avoid business risks caused by the change of the STS Token size.
We apologize for the inconvenience this upgrade will cause you. If you have any questions, please feel free to contact us through the ticket or service hotline.
Upgrade content:
The Security Token Service (STS) AssumeRole operation will adjust the length constraints of the request parameter "Policy" from "1~1024 characters" to "1~2048 characters".
When you programmatically create a temporary session for a role, the maximum number of characters allowed for the Session policy is increased to 2048.
Involved OpenAPIs: AssumeRole, AssumeRoleWithSAML, AssumeRoleWithOIDC
Upgrade impact:
The size of the STS Token will increase with the length of the Session Policy, the maximum size can exceed 2K. Please do the corresponding test work when adjusting the Session Policy to avoid business risks caused by the change of the STS Token size.
We apologize for the inconvenience this upgrade will cause you. If you have any questions, please feel free to contact us through the ticket or service hotline.