AWS Security Token Service
AWS Security Token Service
Security Token Service (STS) enables you to request temporary, limited-privilege credentials for Identity and Access Management (IAM) users or for users that you authenticate (federated users).
Provides temporary limited-privilege credentials
Check the docs depth and real endpoint shape before assuming production fit.
To start using the Security Token Service, you need to authenticate with AWS credentials. Then you can request temporary credentials for IAM or federated users via the API.
Uptime · 30-day window
GitHub activity
About this API
The AWS Security Token Service (STS) provides a way to request temporary, limited-privilege credentials for users. These credentials can be used to securely access AWS resources without needing to share long-term credentials. STS is particularly useful for scenarios involving federated users or applications that require temporary access.
Developers use STS to generate session-based credentials that expire after a set period, enhancing security by limiting the window of access. This service integrates closely with AWS Identity and Access Management (IAM), allowing fine-grained control over permissions granted to temporary credentials.
STS is relevant for organizations that need to manage access dynamically, such as granting temporary access to third-party users or enabling mobile and web applications to securely interact with AWS resources without embedding permanent credentials.
What you can build
- 1Generate temporary credentials for IAM users
- 2Authenticate federated users with limited privileges
- 3Enable secure access to AWS resources
- 4Manage session-based permissions dynamically
Strengths & limitations
Strengths
- Provides temporary limited-privilege credentials
- Supports federated user authentication
- Integrates with IAM for access control
Example request
curl https://github.com/mermade/aws2openapi/<endpoint>Getting started
To start using the Security Token Service, you need to authenticate with AWS credentials. Then you can request temporary credentials for IAM or federated users via the API.
FAQ
Do I need an API key to use AWS STS?+
You need valid AWS credentials to authenticate and request temporary credentials via STS.
Can I use STS credentials from a browser?+
Yes, but you should handle credentials securely and avoid exposing them publicly.
What kind of credentials does STS provide?+
STS provides temporary security credentials with limited privileges and expiration.
Is HTTPS required to use STS?+
Yes, AWS APIs including STS require HTTPS for secure communication.
Technical details
- Auth type
- unknown
- Pricing
- unknown
- Protocols
- REST
- Response time
- 41 ms
- Last health check
- 5/18/2026, 8:40:28 AM
More from Amazon Web Services
AWS IAM Access Analyzer API analyzes IAM resource policies for over-privileged access or external access — proactively surfaces security risks.
Alexa for Business helps you use Alexa in your organization.
Amazon API Gateway helps developers deliver robust, secure, and scalable mobile and web application back ends.
Use AppConfig, a capability of Amazon Web Services Systems Manager, to create, manage, and quickly deploy application configurations.
Welcome to the Amazon AppFlow API reference.
The Amazon AppIntegrations service enables you to configure and reuse connections to external applications.
Amazon AppStream 2.0 API Reference.
Amazon Athena is an interactive query service that lets you use standard SQL to analyze data directly in Amazon S3.