Updates the information of a RAM role.

Debugging

OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer. OpenAPI Explorer dynamically generates the sample code of the operation for different SDKs.

Request parameters

Parameter Type Required Example Description
Action String Yes UpdateRole

The operation that you want to perform. Set the value to UpdateRole.

NewAssumeRolePolicyDocument String Yes { "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::12345678901234****:root" } } ], "Version": "1" }

The new content of the policy that specifies the trusted entity to assume the RAM role.

RoleName String Yes ECSAdmin

The name of the RAM role.

The name must be 1 to 64 characters in length and can contain letters, digits, periods (.), and hyphens (-).

NewMaxSessionDuration Long No 3600

The maximum session duration of the RAM role.

Unit: seconds. Valid values: 3600 to 43200. Default value: 3600.

If you do not specify this parameter, the default value is used.

Response parameters

Parameter Type Example Description
RequestId String 04F0F334-1335-436C-A1D7-6C044FE73368

The ID of the request.

Role Struct

The information of the RAM role.

Arn String acs:ram::123456789012****:role/ECSAdmin

The Alibaba Cloud Resource Name (ARN) of the RAM role.

AssumeRolePolicyDocument String { \"Statement\": [ { \"Action\": \"sts:AssumeRole\", \"Effect\": \"Allow\", \"Principal\": { \"RAM\": \"acs:ram::12345678901234****:root\" } } ], \"Version\": \"1\" }

The content of the policy that specifies the trusted entity to assume the RAM role.

CreateDate String 2015-01-23T12:33:18Z

The time when the RAM role was created.

Description String ECS administrator

The description of the RAM role.

MaxSessionDuration Long 3600

The maximum session duration of the RAM role.

RoleId String 90123456789****

The ID of the RAM role.

RoleName String ECSAdmin

The name of the RAM role.

RolePrincipalName String ECSAdmin@role.123456.onaliyunservice.com

The name of the authorized RAM role.

UpdateDate String 2016-01-23T12:33:18Z

The time when the RAM role was updated.

Examples

Sample requests

https://resourcemanager.aliyuncs.com/?Action=UpdateRole
&NewAssumeRolePolicyDocument={ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::12345678901234****:root" } } ], "Version": "1" }
&RoleName=ECSAdmin
&<Common request parameters>

Sample success responses

XML format

<UpdateRoleResponse>
	  <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>
	  <Role>
		    <RoleId>90123456789****</RoleId>
		    <RoleName>ECSAdmin</RoleName>
		    <RolePrincipalName>ECSAdmin@role.123456.onaliyunservice.com</RolePrincipalName>
		    <Arn>acs:ram::123456789012****:role/ECSAdmin</Arn>
		    <Description>ECS administrator</Description>
            <MaxSessionDuration>3600</MaxSessionDuration>
		    <AssumeRolePolicyDocument>{ "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "RAM": "acs:ram::12345678901234****:root" } } ], "Version": "1" }</AssumeRolePolicyDocument>
		    <CreateDate>2015-01-23T12:33:18Z</CreateDate>
		    <UpdateDate>2016-01-23T12:33:18Z</UpdateDate>
	  </Role>
</UpdateRoleResponse>

JSON format

{
    "RequestId": "04F0F334-1335-436C-A1D7-6C044FE73368",
    "Role": {
        "RoleId": "90123456789****",
        "RoleName": "ECSAdmin",
        "RolePrincipalName": "ECSAdmin@role.123456.onaliyunservice.com",
        "Arn": "acs:ram::123456789012****:role/ECSAdmin",
        "Description": "ECS administrator",
        "MaxSessionDuration": 3600,
        "AssumeRolePolicyDocument": "{ \"Statement\": [ { \"Action\": \"sts:AssumeRole\", \"Effect\": \"Allow\", \"Principal\": { \"RAM\": \"acs:ram::12345678901234****:root\" } } ], \"Version\": \"1\" }",
        "CreateDate": "2015-01-23T12:33:18Z",
        "UpdateDate": "2016-01-23T12:33:18Z"
    }
}

Error codes

HTTP status code Error code Error message Description
400 InvalidParameter.RoleName.InvalidChars The specified role name contains invalid characters. The error message returned because the RAM role name contains invalid characters.
400 InvalidParameter.RoleName.Length The maximum length of the role name is exceeded. The error message returned because the length of the RAM role name has exceeded the upper limit.
400 InvalidParameter.NewAssumeRolePolicyDocument.Length The maximum length of the new trust policy document of the role is exceeded. The error message returned because the length of the value specified for the NewAssumeRolePolicyDocument parameter has exceeded the upper limit.
404 EntityNotExist.Role The role does not exist. The error message returned because the RAM role does not exist.
409 MalformedPolicyDocument The policy format is invalid. The error message returned because the policy format is invalid.

For a list of error codes, visit the API Error Center.