2025/11/21 - AWS Transfer Family - 4 updated api methods
Changes Adds support for creating Webapps accessible from a VPC.
{'EndpointDetails': {'Vpc': {'SecurityGroupIds': ['string'],
'SubnetIds': ['string'],
'VpcId': 'string'}}}
Creates a web app based on specified parameters, and returns the ID for the new web app. You can configure the web app to be publicly accessible or hosted within a VPC.
For more information about using VPC endpoints with Transfer Family, see Create a Transfer Family web app in a VPC.
See also: AWS API Documentation
Request Syntax
client.create_web_app(
IdentityProviderDetails={
'IdentityCenterConfig': {
'InstanceArn': 'string',
'Role': 'string'
}
},
AccessEndpoint='string',
WebAppUnits={
'Provisioned': 123
},
Tags=[
{
'Key': 'string',
'Value': 'string'
},
],
WebAppEndpointPolicy='FIPS'|'STANDARD',
EndpointDetails={
'Vpc': {
'SubnetIds': [
'string',
],
'VpcId': 'string',
'SecurityGroupIds': [
'string',
]
}
}
)
dict
[REQUIRED]
You can provide a structure that contains the details for the identity provider to use with your web app.
For more details about this parameter, see Configure your identity provider for Transfer Family web apps.
IdentityCenterConfig (dict) --
A structure that describes the values to use for the IAM Identity Center settings when you create a web app.
InstanceArn (string) --
The Amazon Resource Name (ARN) for the IAM Identity Center used for the web app.
Role (string) --
The IAM role in IAM Identity Center used for the web app.
string
The AccessEndpoint is the URL that you provide to your users for them to interact with the Transfer Family web app. You can specify a custom URL or use the default value.
Before you enter a custom URL for this parameter, follow the steps described in Update your access endpoint with a custom URL.
dict
A union that contains the value for number of concurrent connections or the user sessions on your web app.
Provisioned (integer) --
An integer that represents the number of units for your desired number of concurrent connections, or the number of user sessions on your web app at the same time.
Each increment allows an additional 250 concurrent sessions: a value of 1 sets the number of concurrent sessions to 250; 2 sets a value of 500, and so on.
list
Key-value pairs that can be used to group and search for web apps.
(dict) --
Creates a key-value pair for a specific resource. Tags are metadata that you can use to search for and group a resource for various purposes. You can apply tags to servers, users, and roles. A tag key can take more than one value. For example, to group servers for accounting purposes, you might create a tag called Group and assign the values Research and Accounting to that group.
Key (string) -- [REQUIRED]
The name assigned to the tag that you create.
Value (string) -- [REQUIRED]
Contains one or more values that you assigned to the key name you create.
string
Setting for the type of endpoint policy for the web app. The default value is STANDARD.
If you are creating the web app in an Amazon Web Services GovCloud (US) Region, you can set this parameter to FIPS.
dict
The endpoint configuration for the web app. You can specify whether the web app endpoint is publicly accessible or hosted within a VPC.
Vpc (dict) --
The VPC configuration for hosting the web app endpoint within a VPC.
SubnetIds (list) --
The list of subnet IDs within the VPC where the web app endpoint will be deployed. These subnets must be in the same VPC specified in the VpcId parameter.
(string) --
VpcId (string) --
The identifier of the VPC where the web app endpoint will be hosted.
SecurityGroupIds (list) --
The list of security group IDs that control access to the web app endpoint. These security groups determine which sources can access the endpoint based on IP addresses and port configurations.
(string) --
dict
Response Syntax
{
'WebAppId': 'string'
}
Response Structure
(dict) --
WebAppId (string) --
Returns a unique identifier for the web app.
{'WebApp': {'DescribedEndpointDetails': {'Vpc': {'SubnetIds': ['string'],
'VpcEndpointId': 'string',
'VpcId': 'string'}},
'EndpointType': 'PUBLIC | VPC'}}
Describes the web app that's identified by WebAppId. The response includes endpoint configuration details such as whether the web app is publicly accessible or VPC hosted.
For more information about using VPC endpoints with Transfer Family, see Create a Transfer Family web app in a VPC.
See also: AWS API Documentation
Request Syntax
client.describe_web_app(
WebAppId='string'
)
string
[REQUIRED]
Provide the unique identifier for the web app.
dict
Response Syntax
{
'WebApp': {
'Arn': 'string',
'WebAppId': 'string',
'DescribedIdentityProviderDetails': {
'IdentityCenterConfig': {
'ApplicationArn': 'string',
'InstanceArn': 'string',
'Role': 'string'
}
},
'AccessEndpoint': 'string',
'WebAppEndpoint': 'string',
'WebAppUnits': {
'Provisioned': 123
},
'Tags': [
{
'Key': 'string',
'Value': 'string'
},
],
'WebAppEndpointPolicy': 'FIPS'|'STANDARD',
'EndpointType': 'PUBLIC'|'VPC',
'DescribedEndpointDetails': {
'Vpc': {
'SubnetIds': [
'string',
],
'VpcId': 'string',
'VpcEndpointId': 'string'
}
}
}
}
Response Structure
(dict) --
WebApp (dict) --
Returns a structure that contains the details of the web app.
Arn (string) --
The Amazon Resource Name (ARN) of the web app.
WebAppId (string) --
The unique identifier for the web app.
DescribedIdentityProviderDetails (dict) --
A structure that contains the details for the identity provider used by the web app.
IdentityCenterConfig (dict) --
Returns a structure for your identity provider details. This structure contains the instance ARN and role being used for the web app.
ApplicationArn (string) --
The Amazon Resource Name (ARN) for the IAM Identity Center application: this value is set automatically when you create your web app.
InstanceArn (string) --
The Amazon Resource Name (ARN) for the IAM Identity Center used for the web app.
Role (string) --
The IAM role in IAM Identity Center used for the web app.
AccessEndpoint (string) --
The AccessEndpoint is the URL that you provide to your users for them to interact with the Transfer Family web app. You can specify a custom URL or use the default value.
WebAppEndpoint (string) --
The WebAppEndpoint is the unique URL for your Transfer Family web app. This is the value that you use when you configure Origins on CloudFront.
WebAppUnits (dict) --
A union that contains the value for number of concurrent connections or the user sessions on your web app.
Provisioned (integer) --
An integer that represents the number of units for your desired number of concurrent connections, or the number of user sessions on your web app at the same time.
Each increment allows an additional 250 concurrent sessions: a value of 1 sets the number of concurrent sessions to 250; 2 sets a value of 500, and so on.
Tags (list) --
Key-value pairs that can be used to group and search for web apps. Tags are metadata attached to web apps for any purpose.
(dict) --
Creates a key-value pair for a specific resource. Tags are metadata that you can use to search for and group a resource for various purposes. You can apply tags to servers, users, and roles. A tag key can take more than one value. For example, to group servers for accounting purposes, you might create a tag called Group and assign the values Research and Accounting to that group.
Key (string) --
The name assigned to the tag that you create.
Value (string) --
Contains one or more values that you assigned to the key name you create.
WebAppEndpointPolicy (string) --
Setting for the type of endpoint policy for the web app. The default value is STANDARD.
If your web app was created in an Amazon Web Services GovCloud (US) Region, the value of this parameter can be FIPS, which indicates the web app endpoint is FIPS-compliant.
EndpointType (string) --
The type of endpoint hosting the web app. Valid values are PUBLIC for publicly accessible endpoints and VPC for VPC-hosted endpoints that provide network isolation.
DescribedEndpointDetails (dict) --
The endpoint configuration details for the web app, including VPC settings if the endpoint is hosted within a VPC.
Vpc (dict) --
The VPC configuration details when the web app endpoint is hosted within a VPC. This includes the VPC ID, subnet IDs, and VPC endpoint ID.
SubnetIds (list) --
The list of subnet IDs within the VPC where the web app endpoint is deployed. These subnets must be in the same VPC and provide network connectivity for the endpoint.
(string) --
VpcId (string) --
The identifier of the VPC where the web app endpoint is hosted.
VpcEndpointId (string) --
The identifier of the VPC endpoint created for the web app.
{'WebApps': {'EndpointType': 'PUBLIC | VPC'}}
Lists all web apps associated with your Amazon Web Services account for your current region. The response includes the endpoint type for each web app, showing whether it is publicly accessible or VPC hosted.
For more information about using VPC endpoints with Transfer Family, see Create a Transfer Family web app in a VPC.
See also: AWS API Documentation
Request Syntax
client.list_web_apps(
MaxResults=123,
NextToken='string'
)
integer
The maximum number of items to return.
string
Returns the NextToken parameter in the output. You can then pass the NextToken parameter in a subsequent command to continue listing additional web apps.
dict
Response Syntax
{
'NextToken': 'string',
'WebApps': [
{
'Arn': 'string',
'WebAppId': 'string',
'AccessEndpoint': 'string',
'WebAppEndpoint': 'string',
'EndpointType': 'PUBLIC'|'VPC'
},
]
}
Response Structure
(dict) --
NextToken (string) --
Provide this value for the NextToken parameter in a subsequent command to continue listing additional web apps.
WebApps (list) --
Returns, for each listed web app, a structure that contains details for the web app.
(dict) --
a structure that contains details for the web app.
Arn (string) --
The Amazon Resource Name (ARN) for the web app.
WebAppId (string) --
The unique identifier for the web app.
AccessEndpoint (string) --
The AccessEndpoint is the URL that you provide to your users for them to interact with the Transfer Family web app. You can specify a custom URL or use the default value.
WebAppEndpoint (string) --
The WebAppEndpoint is the unique URL for your Transfer Family web app. This is the value that you use when you configure Origins on CloudFront.
EndpointType (string) --
The type of endpoint hosting the web app. Valid values are PUBLIC for publicly accessible endpoints and VPC for VPC-hosted endpoints.
{'EndpointDetails': {'Vpc': {'SubnetIds': ['string']}}}
Assigns new properties to a web app. You can modify the access point, identity provider details, endpoint configuration, and the web app units.
For more information about using VPC endpoints with Transfer Family, see Create a Transfer Family web app in a VPC.
See also: AWS API Documentation
Request Syntax
client.update_web_app(
WebAppId='string',
IdentityProviderDetails={
'IdentityCenterConfig': {
'Role': 'string'
}
},
AccessEndpoint='string',
WebAppUnits={
'Provisioned': 123
},
EndpointDetails={
'Vpc': {
'SubnetIds': [
'string',
]
}
}
)
string
[REQUIRED]
Provide the identifier of the web app that you are updating.
dict
Provide updated identity provider values in a WebAppIdentityProviderDetails object.
IdentityCenterConfig (dict) --
A structure that describes the values to use for the IAM Identity Center settings when you update a web app.
Role (string) --
The IAM role used to access IAM Identity Center.
string
The AccessEndpoint is the URL that you provide to your users for them to interact with the Transfer Family web app. You can specify a custom URL or use the default value.
dict
A union that contains the value for number of concurrent connections or the user sessions on your web app.
Provisioned (integer) --
An integer that represents the number of units for your desired number of concurrent connections, or the number of user sessions on your web app at the same time.
Each increment allows an additional 250 concurrent sessions: a value of 1 sets the number of concurrent sessions to 250; 2 sets a value of 500, and so on.
dict
The updated endpoint configuration for the web app. You can modify the endpoint type and VPC configuration settings.
Vpc (dict) --
The VPC configuration details for updating a web app endpoint hosted within a VPC. This includes the subnet IDs for endpoint deployment.
SubnetIds (list) --
The list of subnet IDs within the VPC where the web app endpoint should be deployed during the update operation.
(string) --
dict
Response Syntax
{
'WebAppId': 'string'
}
Response Structure
(dict) --
WebAppId (string) --
Returns the unique identifier for the web app being updated.