Yandex Cloud IAM

Yandex Cloud IAM (Identity and Access Management) is the authentication layer for Yandex Cloud services. IAM tokens are short-lived credentials required for all Yandex Cloud API calls. This integration supports three authentication methods: personal OAuth tokens, service account keys, and pre-signed JWTs.

With the Yandex Cloud IAM integration in AACFlow, you can:

OAuth token (personal): Exchange a Yandex Passport OAuth token for an IAM token
Service account key: Generate an IAM token using a service account's private key
Pre-signed JWT: Exchange a pre-signed JWT for an IAM token

Obtained IAM tokens can be passed to other Yandex Cloud integrations (YandexGPT, SpeechKit, Vision, Translate, Object Storage) via variable references.

Usage Instructions

Integrate Yandex Cloud IAM into the workflow to obtain authentication tokens. Use the output IAM token as input to other Yandex Cloud blocks. Service account keys are created in your Yandex Cloud console under Service Accounts.

Tools

`yandex_cloud_iam_oauth`

Exchange OAuth token for IAM token

Input

Parameter	Type	Required	Description
`oauthToken`	string	Yes	Yandex Passport OAuth token

Output

Parameter	Type	Description
`iamToken`	string	IAM token for Yandex Cloud API calls
`expiresAt`	string	Token expiration time

`yandex_cloud_iam_sa_key`

Generate IAM token from service account key

Input

Parameter	Type	Required	Description
`serviceAccountId`	string	Yes	Service account ID
`privateKey`	string	Yes	Service account private key PEM content
`keyId`	string	Yes	Service account key ID

Output

Parameter	Type	Description
`iamToken`	string	IAM token for Yandex Cloud API calls
`expiresAt`	string	Token expiration time

Yandex Cloud IAM

Usage Instructions

Tools

`yandex_cloud_iam_oauth`

Input

Output

`yandex_cloud_iam_sa_key`

Input

Output

Links

On this page