이 섹션의 다중 페이지 출력 화면임. 여기를 클릭하여 프린트.

STS

1: APIs

1.1: Acquire temporary role credential

1.1.1: 1.1
1.1.2: 1.0

1.2: Acquire temporary role credential from SAML Assertion

1.2.1: 1.1
1.2.2: 1.0

1.3: Create new Signature based on Session Token

1.3.1: 1.1
1.3.2: 1.0

2: Models

2.1: StsAssumedRoleUser
2.2: StsAssumeRoleRequest
2.3: StsAssumeRoleResponse
2.4: StsAssumeRoleWithSAMLRequest
2.5: StsAssumeRoleWithSAMLResponse
2.6: StsCredentials
2.7: StsObjectStoreAuthRequest
2.8: StsObjectStoreAuthResponse

Overview

SCP에서 제공하는 IaaS/PaaS 상품을 프로그램적으로 이용할 수 있도록 지원하는 응용 프로그램 인터페이스(Application Programming Interface, API)를 제공합니다.

본 가이드는 STS 서비스에 대한 간략한 설명 및 API를 호출하는 방법을 제공합니다. API는 RESTful API 방식으로 제공되며, JSON 형식으로 응답합니다.

Version

Not Before 기간이 도래하거나 만료된 Deprecated 버전은 더 이상 지원하지 않습니다. 최신 버전 사용을 권장합니다.

Version	Status	Not Before
1.1	CURRENT	-
1.0	DEPRECATED	20260531

OpenAPI URL

https://sts.{environment}.samsungsdscloud.com

Environment and Region List

environment	region
s	kr-west1
s	kr-east1
g	kr-south1
g	kr-south2
g	kr-south3
e	kr-west1
e	kr-east1

1 - APIs

1.1 - Acquire temporary role credential

1.1.1 - 1.1

post /v1/assume-role

Description

Acquire temporary role credential

상태 ACTIVE (CURRENT)

버전	최소 지원 보장일
1.1	-

Parameters

Type	Name	Description	Schema	Default
body	body required		StsAssumeRoleRequest

Responses

HTTP Code	Description	Schema
200	OK	StsAssumeRoleResponse
400	Bad Request	None
401	Unauthorized	None
403	Forbidden	None
404	Not Found	None

Example HTTP request

Request path

/v1/assume-role

Request header

"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = sts 1.1"

Request body

{
    "duration_seconds": 900,
    "role_indicator": "dev2:afd580f490394896a6bceabf77683c6bd:role_name",
    "role_session_name": ""
}

Example HTTP response

Response 200

{
    "assumed_role_user": {
        "assumed_role_id": "",
        "srn": ""
    },
    "credentials": {
        "access_key_id": "",
        "expiration": "2026-04-14T15:06:19.929Z",
        "secret_access_key": "",
        "session_token": ""
    }
}

1.1.2 - 1.0

post /v1/assume-role

Description

Acquire temporary role credential

상태 ACTIVE (DEPRECATED)

Not Before 기간이 도래하거나 만료된 Deprecated 버전은 더 이상 지원하지 않습니다. 최신 버전 사용을 권장합니다.

버전	최소 지원 보장일
1.0	20260531

Parameters

Type	Name	Description	Schema	Default
body	body required		StsAssumeRoleRequest

Responses

HTTP Code	Description	Schema
200	OK	StsAssumeRoleResponse
400	Bad Request	None
401	Unauthorized	None
403	Forbidden	None
404	Not Found	None

Example HTTP request

Request path

/v1/assume-role

Request header

"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = sts 1.0"

Request body

{
    "duration_seconds": 900,
    "role_indicator": "dev2:afd580f490394896a6bceabf77683c6bd:role_name",
    "role_session_name": ""
}

Example HTTP response

Response 200

{
    "assumed_role_user": {
        "assumed_role_id": "",
        "srn": ""
    },
    "credentials": {
        "access_key_id": "",
        "expiration": "2026-04-14T15:06:19.929Z",
        "secret_access_key": "",
        "session_token": ""
    }
}

1.2 - Acquire temporary role credential from SAML Assertion

1.2.1 - 1.1

post /v1/assume-role-with-saml

Description

Acquire temporary role credential from SAML Assertion

상태 ACTIVE (CURRENT)

버전	최소 지원 보장일
1.1	-

Parameters

Type	Name	Description	Schema	Default
body	body required		StsAssumeRoleWithSAMLRequest

Responses

HTTP Code	Description	Schema
200	OK	StsAssumeRoleWithSAMLResponse
400	Bad Request	None
401	Unauthorized	None
403	Forbidden	None
404	Not Found	None

Example HTTP request

Request path

/v1/assume-role-with-saml

Request header

"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = sts 1.1"

Request body

{
    "duration_seconds": 900,
    "principal_indicator": "dev2:afd580f490394896a6bceabf77683c6bd:principal_name",
    "role_indicator": "dev2:afd580f490394896a6bceabf77683c6bd:role_name",
    "saml_assertion": ""
}

Example HTTP response

Response 200

{
    "assumed_role_user": {
        "assumed_role_id": "",
        "srn": ""
    },
    "audience": "",
    "credentials": {
        "access_key_id": "",
        "expiration": "2026-04-14T15:06:19.929Z",
        "secret_access_key": "",
        "session_token": ""
    },
    "issuer": "",
    "subject": "",
    "subject_type": ""
}

1.2.2 - 1.0

post /v1/assume-role-with-saml

Description

Acquire temporary role credential from SAML Assertion

상태 ACTIVE (DEPRECATED)

Not Before 기간이 도래하거나 만료된 Deprecated 버전은 더 이상 지원하지 않습니다. 최신 버전 사용을 권장합니다.

버전	최소 지원 보장일
1.0	20260531

Parameters

Type	Name	Description	Schema	Default
body	body required		StsAssumeRoleWithSAMLRequest

Responses

HTTP Code	Description	Schema
200	OK	StsAssumeRoleWithSAMLResponse
400	Bad Request	None
401	Unauthorized	None
403	Forbidden	None
404	Not Found	None

Example HTTP request

Request path

/v1/assume-role-with-saml

Request header

"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = sts 1.0"

Request body

{
    "duration_seconds": 900,
    "principal_indicator": "dev2:afd580f490394896a6bceabf77683c6bd:principal_name",
    "role_indicator": "dev2:afd580f490394896a6bceabf77683c6bd:role_name",
    "saml_assertion": ""
}

Example HTTP response

Response 200

{
    "assumed_role_user": {
        "assumed_role_id": "",
        "srn": ""
    },
    "audience": "",
    "credentials": {
        "access_key_id": "",
        "expiration": "2026-04-14T15:06:19.929Z",
        "secret_access_key": "",
        "session_token": ""
    },
    "issuer": "",
    "subject": "",
    "subject_type": ""
}

1.3 - Create new Signature based on Session Token

1.3.1 - 1.1

post /v1/object-store-authorization

Description

Create new Signature based on Session Token

상태 ACTIVE (CURRENT)

버전	최소 지원 보장일
1.1	-

Parameters

Type	Name	Description	Schema	Default
body	body required		StsObjectStoreAuthRequest

Responses

HTTP Code	Description	Schema
200	OK	StsObjectStoreAuthResponse
400	Bad Request	None
401	Unauthorized	None
403	Forbidden	None

Example HTTP request

Request path

/v1/object-store-authorization

Request header

"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = sts 1.1"

Request body

{
    "method": "",
    "region": "kr-west1",
    "service": "s3",
    "url": "",
    "x_amz_content_sha256": "",
    "x_amz_date": ""
}

Example HTTP response

Response 200

{
    "Authorization": ""
}

1.3.2 - 1.0

post /v1/object-store-authorization

Description

Create new Signature based on Session Token

상태 ACTIVE (DEPRECATED)

Not Before 기간이 도래하거나 만료된 Deprecated 버전은 더 이상 지원하지 않습니다. 최신 버전 사용을 권장합니다.

버전	최소 지원 보장일
1.0	20260531

Parameters

Type	Name	Description	Schema	Default
body	body required		StsObjectStoreAuthRequest

Responses

HTTP Code	Description	Schema
200	OK	StsObjectStoreAuthResponse
400	Bad Request	None
401	Unauthorized	None
403	Forbidden	None

Example HTTP request

Request path

/v1/object-store-authorization

Request header

"Scp-Accesskey = 2sd2gg=2agbdSD26svcD",
"Scp-Signature = fsfsdf235f9U35sdgf35Xsf/qgsdgsdg326=sfsdr23rsef=",
"Scp-Timestamp = 1605290625682",
"Scp-ClientType = Openapi",
"Accept-Language = ko-KR",
"Scp-Api-Version = sts 1.0"

Request body

{
    "method": "",
    "region": "kr-west1",
    "service": "s3",
    "url": "",
    "x_amz_content_sha256": "",
    "x_amz_date": ""
}

Example HTTP response

Response 200

{
    "Authorization": ""
}

2 - Models

2.1 - StsAssumedRoleUser

Name	Description	Schema	Default
assumed_role_id required	Assumed Role ID Example :	string
srn required	Temporary Credentials SRN Example :	string

2.2 - StsAssumeRoleRequest

Name	Description	Schema	Default
duration_seconds optional	Duration of seconds of the role session Example : `900`	integer	900
role_indicator required	Identifier of the role to assume. [offering:account_id:role_name] Example : `dev2:afd580f490394896a6bceabf77683c6bd:role_name` Pattern : `^[^:]+:[^:]+:[^:]+$` Minimum length : `32`	string
role_session_name required	Role Session Name Example : Minimum length : `1` Maximum length : `64`	string

2.3 - StsAssumeRoleResponse

Name	Description	Schema	Default
assumed_role_user required	Assumed Role ID	StsAssumedRoleUser
credentials required	Temporary Credentials	StsCredentials

2.4 - StsAssumeRoleWithSAMLRequest

Name	Description	Schema	Default
duration_seconds optional	Duration of seconds of the role session Example : `900`	integer	900
principal_indicator required	SAML Provider Indicator Example : `dev2:afd580f490394896a6bceabf77683c6bd:principal_name` Pattern : `^[^:]+:[^:]+:[^:]+$` Minimum length : `32`	string
role_indicator required	Identifier of the role to assume. [offering:account_id:role_name] Example : `dev2:afd580f490394896a6bceabf77683c6bd:role_name` Pattern : `^[^:]+:[^:]+:[^:]+$` Minimum length : `32`	string
saml_assertion required	SAML Assertion Example : Minimum length : `1`	string

2.5 - StsAssumeRoleWithSAMLResponse

Name	Description	Schema
assumed_role_user required	Assumed Role ID	StsAssumedRoleUser
audience required	Recipient Value Example :	string
credentials required	Temporary Credentials	StsCredentials
issuer required	Issuer Value Example :	string
subject required	Name ID Value Example :	string
subject_type required	Name ID Format Example :	string

2.6 - StsCredentials

Name	Description	Schema
access_key_id required	Temporary Access Key ID Example :	string
expiration required	Temporary Credentials Expiration Example : `2026-04-14T15:06:19.929Z`	string (date-time)
secret_access_key required	Secret Access Key Example :	string
session_token required	Token that user must pass to use temporary credentials Example :	string

2.7 - StsObjectStoreAuthRequest

Name	Description	Schema	Default
method required	HTTP Method Example : Minimum length : `1`	string
region optional	Region Example : `kr-west1`	string	kr-west1
service optional	Service Example : `s3`	string	s3
url required	The URL of the request Example : Minimum length : `1`	string
x_amz_content_sha256 required	AMZ Content SHA256 Example : Minimum length : `1`	string
x_amz_date required	AMZ Date Example : Minimum length : `1`	string

2.8 - StsObjectStoreAuthResponse

Name	Description	Schema	Default
Authorization required	Authorization Header Example :	string