chore(swift): add AWSTemporaryCredentials callout (#6685)

thisisabhash · web-flow · commit eecf3ec762aa · 2025-09-04T10:48:33.000-07:00
diff --git a/docs/src/pages/[platform]/connected-components/liveness/quick-start-pull.swift.mdx b/docs/src/pages/[platform]/connected-components/liveness/quick-start-pull.swift.mdx
@@ -93,17 +93,76 @@ When initially configuring Amplify (assuming you are using no pieces of Amplify
 
 By default, FaceLivenessDetector uses Amplify Auth to authorize users to perform the Face Liveness check. You can use your own credentials provider to retrieve credentials from [Amazon Cognito](https://aws.amazon.com/cognito/) or assume a role with [Amazon STS](https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRole.html), for example:
 
+For long lived credentials, you may retrieve `AWSCredentials` by implementing your custom `AWSCredentialsProvider`.
+
+```swift
+/**
+ Represents AWS credentials.
+
+ Typically refers to long-term credentials that do not expire unless manually rotated or deactivated.
+ These credentials are generally associated with an IAM (Identity and Access Management) user and are used to authenticate API requests to AWS services.
+
+ - Properties:
+ - accessKeyId: A unique identifier.
+ - secretAccessKey: A secret key used to sign requests cryptographically.
+ */
+
+public protocol AWSCredentials {
+
+    /// A unique identifier.
+    var accessKeyId: String { get }
+
+    /// A secret key used to sign requests cryptographically.
+    var secretAccessKey: String { get }
+}
+```
 
 ```swift
 import Amplify
 
 struct MyCredentialsProvider: AWSCredentialsProvider {
     func fetchAWSCredentials() async throws -> AWSCredentials { 
-        // Fetch the credentials
+        // Return `AWSCredentials` object instance
     }
 }
 ```
 
+If you're providing temporary credentials, make sure that your `AWSCredentials` object conforms to `AWSTemporaryCredentials`, which must include `sessionToken`.
+
+```swift
+/**
+ Represents temporary AWS credentials.
+
+ Refers to short-term credentials generated by AWS STS (Security Token Service).
+ These credentials are used for temporary access, often for applications, temporary roles, federated users, or scenarios requiring limited-time access.
+
+ - Inherits: AWSCredentials
+
+ - Properties:
+ - sessionToken: A token that is required when using temporary security credentials to sign requests.
+ - expiration: The expiration date and time of the temporary credentials.
+ */
+public protocol AWSTemporaryCredentials: AWSCredentials {
+
+    /// A token that is required when using temporary security credentials to sign requests.
+    var sessionToken: String { get }
+
+    /// The expiration date and time of the temporary credentials.
+    var expiration: Date { get }
+}
+```
+
+```swift
+import Amplify
+
+struct MyCredentialsProvider: AWSCredentialsProvider {
+    func fetchAWSCredentials() async throws -> AWSCredentials { 
+        // Return `AWSTemporaryCredentials` object instance
+    }
+}
+```
+
+
 ```swift
 import SwiftUI
 import FaceLiveness
