With Application Auto Scaling, you can configure automatic scaling for the following\n resources:
\nAmazon AppStream 2.0 fleets
\nAmazon Aurora Replicas
\nAmazon Comprehend document classification and entity recognizer endpoints
\nAmazon DynamoDB tables and global secondary indexes throughput capacity
\nAmazon ECS services
\nAmazon ElastiCache for Redis clusters (replication groups)
\nAmazon EMR clusters
\nAmazon Keyspaces (for Apache Cassandra) tables
\nLambda function provisioned concurrency
\nAmazon Managed Streaming for Apache Kafka broker storage
\nAmazon Neptune clusters
\nAmazon SageMaker endpoint variants
\nSpot Fleets (Amazon EC2)
\nCustom resources provided by your own applications or services
\n\n API Summary\n
\nThe Application Auto Scaling service API includes three key sets of actions:
\nRegister and manage scalable targets - Register Amazon Web Services or custom resources as scalable\n targets (a resource that Application Auto Scaling can scale), set minimum and maximum capacity limits, and\n retrieve information on existing scalable targets.
\nConfigure and manage automatic scaling - Define scaling policies to dynamically scale\n your resources in response to CloudWatch alarms, schedule one-time or recurring scaling actions,\n and retrieve your recent scaling activity history.
\nSuspend and resume scaling - Temporarily suspend and later resume automatic scaling by\n calling the RegisterScalableTarget API action for any Application Auto Scaling scalable target. You can\n suspend and resume (individually or in combination) scale-out activities that are\n triggered by a scaling policy, scale-in activities that are triggered by a scaling policy,\n and scheduled scaling.
\nTo learn more about Application Auto Scaling, including information about granting IAM users required\n permissions for Application Auto Scaling actions, see the Application Auto Scaling User\n Guide.
", + "smithy.api#documentation": "With Application Auto Scaling, you can configure automatic scaling for the following\n resources:
\nAmazon AppStream 2.0 fleets
\nAmazon Aurora Replicas
\nAmazon Comprehend document classification and entity recognizer endpoints
\nAmazon DynamoDB tables and global secondary indexes throughput capacity
\nAmazon ECS services
\nAmazon ElastiCache for Redis clusters (replication groups)
\nAmazon EMR clusters
\nAmazon Keyspaces (for Apache Cassandra) tables
\nLambda function provisioned concurrency
\nAmazon Managed Streaming for Apache Kafka broker storage
\nAmazon Neptune clusters
\nAmazon SageMaker endpoint variants
\nSpot Fleets (Amazon EC2)
\nCustom resources provided by your own applications or services
\nTo learn more about Application Auto Scaling, see the Application Auto Scaling User\n Guide.
\n\n API Summary\n
\nThe Application Auto Scaling service API includes three key sets of actions:
\nRegister and manage scalable targets - Register Amazon Web Services or custom resources as scalable\n targets (a resource that Application Auto Scaling can scale), set minimum and maximum capacity limits, and\n retrieve information on existing scalable targets.
\nConfigure and manage automatic scaling - Define scaling policies to dynamically scale\n your resources in response to CloudWatch alarms, schedule one-time or recurring scaling actions,\n and retrieve your recent scaling activity history.
\nSuspend and resume scaling - Temporarily suspend and later resume automatic scaling by\n calling the RegisterScalableTarget API action for any Application Auto Scaling scalable target. You can\n suspend and resume (individually or in combination) scale-out activities that are\n triggered by a scaling policy, scale-in activities that are triggered by a scaling policy,\n and scheduled scaling.
\nThe name of the metric. To get the exact metric name, namespace, and dimensions, inspect\n the Metric object that is returned by a call to ListMetrics.
", - "smithy.api#required": {} + "smithy.api#documentation": "The name of the metric. To get the exact metric name, namespace, and dimensions, inspect\n the Metric object that is returned by a call to ListMetrics.
" } }, "Namespace": { "target": "com.amazonaws.applicationautoscaling#MetricNamespace", "traits": { - "smithy.api#documentation": "The namespace of the metric.
", - "smithy.api#required": {} + "smithy.api#documentation": "The namespace of the metric.
" } }, "Dimensions": { @@ -1141,8 +1139,7 @@ "Statistic": { "target": "com.amazonaws.applicationautoscaling#MetricStatistic", "traits": { - "smithy.api#documentation": "The statistic of the metric.
", - "smithy.api#required": {} + "smithy.api#documentation": "The statistic of the metric.
" } }, "Unit": { @@ -1150,10 +1147,16 @@ "traits": { "smithy.api#documentation": "The unit of the metric. For a complete list of the units that CloudWatch supports, see the\n MetricDatum data\n type in the Amazon CloudWatch API Reference.
" } + }, + "Metrics": { + "target": "com.amazonaws.applicationautoscaling#TargetTrackingMetricDataQueries", + "traits": { + "smithy.api#documentation": "The metrics to include in the target tracking scaling policy, as a metric data query.\n This can include both raw metric and metric math expressions.
" + } } }, "traits": { - "smithy.api#documentation": "Represents a CloudWatch metric of your choosing for a target tracking scaling policy to use\n with Application Auto Scaling.
\nFor information about the available metrics for a service, see Amazon Web Services\n services that publish CloudWatch metrics in the Amazon CloudWatch User\n Guide.
\nTo create your customized metric specification:
\nAdd values for each required parameter from CloudWatch. You can use an existing metric,\n or a new metric that you create. To use your own metric, you must first publish the\n metric to CloudWatch. For more information, see Publish custom\n metrics in the Amazon CloudWatch User Guide.
\nChoose a metric that changes proportionally with capacity. The value of the metric\n should increase or decrease in inverse proportion to the number of capacity units.\n That is, the value of the metric should decrease when capacity increases, and\n increase when capacity decreases.
\nFor an example of how creating new metrics can be useful, see Scaling\n based on Amazon SQS in the Amazon EC2 Auto Scaling User Guide. This topic\n mentions Auto Scaling groups, but the same scenario for Amazon SQS can apply to the target tracking\n scaling policies that you create for a Spot Fleet by using the Application Auto Scaling API.
\nFor more information about the CloudWatch terminology below, see Amazon CloudWatch\n concepts in the Amazon CloudWatch User Guide.
" + "smithy.api#documentation": "Represents a CloudWatch metric of your choosing for a target tracking scaling policy to use\n with Application Auto Scaling.
\nFor information about the available metrics for a service, see Amazon Web Services\n services that publish CloudWatch metrics in the Amazon CloudWatch User\n Guide.
\nTo create your customized metric specification:
\nAdd values for each required parameter from CloudWatch. You can use an existing metric,\n or a new metric that you create. To use your own metric, you must first publish the\n metric to CloudWatch. For more information, see Publish custom\n metrics in the Amazon CloudWatch User Guide.
\nChoose a metric that changes proportionally with capacity. The value of the metric\n should increase or decrease in inverse proportion to the number of capacity units.\n That is, the value of the metric should decrease when capacity increases, and\n increase when capacity decreases.
\nFor more information about the CloudWatch terminology below, see Amazon CloudWatch\n concepts in the Amazon CloudWatch User Guide.
" } }, "com.amazonaws.applicationautoscaling#DeleteScalingPolicy": { @@ -1747,6 +1750,16 @@ "com.amazonaws.applicationautoscaling#ErrorMessage": { "type": "string" }, + "com.amazonaws.applicationautoscaling#Expression": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 2048 + }, + "smithy.api#pattern": "^[\\u0020-\\uD7FF\\uE000-\\uFFFD\\uD800\\uDC00-\\uDBFF\\uDFFF\\r\\n\\t]*$" + } + }, "com.amazonaws.applicationautoscaling#FailedResourceAccessException": { "type": "structure", "members": { @@ -1764,6 +1777,16 @@ "smithy.api#httpError": 400 } }, + "com.amazonaws.applicationautoscaling#Id": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 255 + }, + "smithy.api#pattern": "^[\\u0020-\\uD7FF\\uE000-\\uFFFD\\uD800\\uDC00-\\uDBFF\\uDFFF\\r\\n\\t]*$" + } + }, "com.amazonaws.applicationautoscaling#IncludeNotScaledActivities": { "type": "boolean" }, @@ -2498,6 +2521,9 @@ } } }, + "com.amazonaws.applicationautoscaling#ReturnData": { + "type": "boolean" + }, "com.amazonaws.applicationautoscaling#ScalableDimension": { "type": "enum", "members": { @@ -2676,7 +2702,10 @@ } }, "SuspendedState": { - "target": "com.amazonaws.applicationautoscaling#SuspendedState" + "target": "com.amazonaws.applicationautoscaling#SuspendedState", + "traits": { + "smithy.api#documentation": "Specifies whether the scaling activities for a scalable target are in a suspended\n state.
" + } } }, "traits": { @@ -3213,6 +3242,183 @@ "smithy.api#documentation": "Specifies whether the scaling activities for a scalable target are in a suspended state.\n
" } }, + "com.amazonaws.applicationautoscaling#TargetTrackingMetric": { + "type": "structure", + "members": { + "Dimensions": { + "target": "com.amazonaws.applicationautoscaling#TargetTrackingMetricDimensions", + "traits": { + "smithy.api#documentation": "The dimensions for the metric. For the list of available dimensions, see the Amazon Web Services\n documentation available from the table in Amazon Web Services\n services that publish CloudWatch metrics in the Amazon CloudWatch User\n Guide.
\nConditional: If you published your metric with dimensions, you must specify the same\n dimensions in your scaling policy.
" + } + }, + "MetricName": { + "target": "com.amazonaws.applicationautoscaling#TargetTrackingMetricName", + "traits": { + "smithy.api#documentation": "The name of the metric.
" + } + }, + "Namespace": { + "target": "com.amazonaws.applicationautoscaling#TargetTrackingMetricNamespace", + "traits": { + "smithy.api#documentation": "The namespace of the metric. For more information, see the table in Amazon Web Services\n services that publish CloudWatch metrics in the Amazon CloudWatch User\n Guide.
" + } + } + }, + "traits": { + "smithy.api#documentation": "Represents a specific metric.
\nMetric is a property of the TargetTrackingMetricStat object.
" + } + }, + "com.amazonaws.applicationautoscaling#TargetTrackingMetricDataQueries": { + "type": "list", + "member": { + "target": "com.amazonaws.applicationautoscaling#TargetTrackingMetricDataQuery" + } + }, + "com.amazonaws.applicationautoscaling#TargetTrackingMetricDataQuery": { + "type": "structure", + "members": { + "Expression": { + "target": "com.amazonaws.applicationautoscaling#Expression", + "traits": { + "smithy.api#documentation": "The math expression to perform on the returned data, if this object is performing a math\n expression. This expression can use the Id of the other metrics to refer to\n those metrics, and can also use the Id of other expressions to use the result\n of those expressions.
Conditional: Within each TargetTrackingMetricDataQuery object, you must\n specify either Expression or MetricStat, but not both.
A short name that identifies the object's results in the response. This name must be\n unique among all MetricDataQuery objects specified for a single scaling\n policy. If you are performing math expressions on this set of data, this name represents\n that data and can serve as a variable in the mathematical expression. The valid characters\n are letters, numbers, and underscores. The first character must be a lowercase letter.\n
A human-readable label for this metric or expression. This is especially useful if this\n is a math expression, so that you know what the value represents.
" + } + }, + "MetricStat": { + "target": "com.amazonaws.applicationautoscaling#TargetTrackingMetricStat", + "traits": { + "smithy.api#documentation": "Information about the metric data to return.
\nConditional: Within each MetricDataQuery object, you must specify either\n Expression or MetricStat, but not both.
Indicates whether to return the timestamps and raw data values of this metric.
\nIf you use any math expressions, specify true for this value for only the\n final math expression that the metric specification is based on. You must specify\n false for ReturnData for all the other metrics and expressions\n used in the metric specification.
If you are only retrieving metrics and not performing any math expressions, do not\n specify anything for ReturnData. This sets it to its default\n (true).
The metric data to return. Also defines whether this call is returning data for one\n metric only, or whether it is performing a math expression on the values of returned metric\n statistics to create a new time series. A time series is a series of data points, each of\n which is associated with a timestamp.
\nFor more information and examples, see Create a target tracking scaling policy for Application Auto Scaling using metric math in the\n Application Auto Scaling User Guide.
" + } + }, + "com.amazonaws.applicationautoscaling#TargetTrackingMetricDimension": { + "type": "structure", + "members": { + "Name": { + "target": "com.amazonaws.applicationautoscaling#TargetTrackingMetricDimensionName", + "traits": { + "smithy.api#documentation": "The name of the dimension.
", + "smithy.api#required": {} + } + }, + "Value": { + "target": "com.amazonaws.applicationautoscaling#TargetTrackingMetricDimensionValue", + "traits": { + "smithy.api#documentation": "The value of the dimension.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "Describes the dimension of a metric.
" + } + }, + "com.amazonaws.applicationautoscaling#TargetTrackingMetricDimensionName": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 255 + }, + "smithy.api#pattern": "^[\\u0020-\\uD7FF\\uE000-\\uFFFD\\uD800\\uDC00-\\uDBFF\\uDFFF\\r\\n\\t]*$" + } + }, + "com.amazonaws.applicationautoscaling#TargetTrackingMetricDimensionValue": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 1024 + }, + "smithy.api#pattern": "^[\\u0020-\\uD7FF\\uE000-\\uFFFD\\uD800\\uDC00-\\uDBFF\\uDFFF\\r\\n\\t]*$" + } + }, + "com.amazonaws.applicationautoscaling#TargetTrackingMetricDimensions": { + "type": "list", + "member": { + "target": "com.amazonaws.applicationautoscaling#TargetTrackingMetricDimension" + } + }, + "com.amazonaws.applicationautoscaling#TargetTrackingMetricName": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 255 + }, + "smithy.api#pattern": "^[\\u0020-\\uD7FF\\uE000-\\uFFFD\\uD800\\uDC00-\\uDBFF\\uDFFF\\r\\n\\t]*$" + } + }, + "com.amazonaws.applicationautoscaling#TargetTrackingMetricNamespace": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 255 + }, + "smithy.api#pattern": "^[\\u0020-\\uD7FF\\uE000-\\uFFFD\\uD800\\uDC00-\\uDBFF\\uDFFF\\r\\n\\t]*$" + } + }, + "com.amazonaws.applicationautoscaling#TargetTrackingMetricStat": { + "type": "structure", + "members": { + "Metric": { + "target": "com.amazonaws.applicationautoscaling#TargetTrackingMetric", + "traits": { + "smithy.api#documentation": "The CloudWatch metric to return, including the metric name, namespace, and dimensions. To get\n the exact metric name, namespace, and dimensions, inspect the Metric object that is\n returned by a call to ListMetrics.
", + "smithy.api#required": {} + } + }, + "Stat": { + "target": "com.amazonaws.applicationautoscaling#XmlString", + "traits": { + "smithy.api#documentation": "The statistic to return. It can include any CloudWatch statistic or extended statistic. For a\n list of valid values, see the table in Statistics in the Amazon CloudWatch User Guide.
\nThe most commonly used metrics for scaling is Average\n
The unit to use for the returned data points. For a complete list of the units that CloudWatch\n supports, see the MetricDatum data\n type in the Amazon CloudWatch API Reference.
" + } + } + }, + "traits": { + "smithy.api#documentation": "This structure defines the CloudWatch metric to return, along with the statistic, period, and\n unit.
\nFor more information about the CloudWatch terminology below, see Amazon CloudWatch\n concepts in the Amazon CloudWatch User Guide.
" + } + }, + "com.amazonaws.applicationautoscaling#TargetTrackingMetricUnit": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 1023 + }, + "smithy.api#pattern": "^[\\u0020-\\uD7FF\\uE000-\\uFFFD\\uD800\\uDC00-\\uDBFF\\uDFFF\\r\\n\\t]*$" + } + }, "com.amazonaws.applicationautoscaling#TargetTrackingScalingPolicyConfiguration": { "type": "structure", "members": { diff --git a/codegen/sdk-codegen/aws-models/dataexchange.json b/codegen/sdk-codegen/aws-models/dataexchange.json index 445c52d8f51..8a1bc7292bb 100644 --- a/codegen/sdk-codegen/aws-models/dataexchange.json +++ b/codegen/sdk-codegen/aws-models/dataexchange.json @@ -1460,8 +1460,8 @@ }, "params": { "Region": "ap-northeast-1", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1473,8 +1473,8 @@ }, "params": { "Region": "ap-northeast-2", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1486,8 +1486,8 @@ }, "params": { "Region": "ap-southeast-1", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1499,8 +1499,8 @@ }, "params": { "Region": "ap-southeast-2", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1512,8 +1512,8 @@ }, "params": { "Region": "eu-central-1", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1525,8 +1525,8 @@ }, "params": { "Region": "eu-west-1", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1538,8 +1538,8 @@ }, "params": { "Region": "eu-west-2", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1551,8 +1551,8 @@ }, "params": { "Region": "us-east-1", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1564,8 +1564,8 @@ }, "params": { "Region": "us-east-2", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1577,8 +1577,8 @@ }, "params": { "Region": "us-west-1", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1590,8 +1590,8 @@ }, "params": { "Region": "us-west-2", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1603,8 +1603,8 @@ }, "params": { "Region": "us-east-1", - "UseDualStack": true, - "UseFIPS": true + "UseFIPS": true, + "UseDualStack": true } }, { @@ -1616,8 +1616,8 @@ }, "params": { "Region": "us-east-1", - "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "UseDualStack": false } }, { @@ -1629,8 +1629,8 @@ }, "params": { "Region": "us-east-1", - "UseDualStack": true, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": true } }, { @@ -1642,8 +1642,8 @@ }, "params": { "Region": "cn-north-1", - "UseDualStack": true, - "UseFIPS": true + "UseFIPS": true, + "UseDualStack": true } }, { @@ -1655,8 +1655,8 @@ }, "params": { "Region": "cn-north-1", - "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "UseDualStack": false } }, { @@ -1668,8 +1668,8 @@ }, "params": { "Region": "cn-north-1", - "UseDualStack": true, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": true } }, { @@ -1681,8 +1681,8 @@ }, "params": { "Region": "cn-north-1", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1694,8 +1694,8 @@ }, "params": { "Region": "us-gov-east-1", - "UseDualStack": true, - "UseFIPS": true + "UseFIPS": true, + "UseDualStack": true } }, { @@ -1707,8 +1707,8 @@ }, "params": { "Region": "us-gov-east-1", - "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "UseDualStack": false } }, { @@ -1720,8 +1720,8 @@ }, "params": { "Region": "us-gov-east-1", - "UseDualStack": true, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": true } }, { @@ -1733,8 +1733,8 @@ }, "params": { "Region": "us-gov-east-1", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1746,8 +1746,8 @@ }, "params": { "Region": "us-iso-east-1", - "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "UseDualStack": false } }, { @@ -1759,8 +1759,8 @@ }, "params": { "Region": "us-iso-east-1", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1772,8 +1772,8 @@ }, "params": { "Region": "us-isob-east-1", - "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "UseDualStack": false } }, { @@ -1785,8 +1785,8 @@ }, "params": { "Region": "us-isob-east-1", - "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "UseDualStack": false } }, { @@ -1798,8 +1798,8 @@ }, "params": { "Region": "us-east-1", - "UseDualStack": false, "UseFIPS": false, + "UseDualStack": false, "Endpoint": "https://example.com" } }, @@ -1811,8 +1811,8 @@ } }, "params": { - "UseDualStack": false, "UseFIPS": false, + "UseDualStack": false, "Endpoint": "https://example.com" } }, @@ -1823,8 +1823,8 @@ }, "params": { "Region": "us-east-1", - "UseDualStack": false, "UseFIPS": true, + "UseDualStack": false, "Endpoint": "https://example.com" } }, @@ -1835,8 +1835,8 @@ }, "params": { "Region": "us-east-1", - "UseDualStack": true, "UseFIPS": false, + "UseDualStack": true, "Endpoint": "https://example.com" } } @@ -3714,6 +3714,30 @@ ] } }, + "com.amazonaws.dataexchange#KmsKeyArn": { + "type": "string", + "traits": { + "smithy.api#length": { + "min": 1, + "max": 2048 + } + } + }, + "com.amazonaws.dataexchange#KmsKeyToGrant": { + "type": "structure", + "members": { + "KmsKeyArn": { + "target": "com.amazonaws.dataexchange#KmsKeyArn", + "traits": { + "smithy.api#documentation": "The AWS KMS CMK (Key Management System Customer Managed Key) used to encrypt S3 objects\n in the shared S3 Bucket. AWS Data exchange will create a KMS grant for each subscriber to\n allow them to access and decrypt their entitled data that is encrypted using this KMS key\n specified.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "The Amazon Resource Name (ARN) of the AWS KMS key used to encrypt the shared S3\n objects.
" + } + }, "com.amazonaws.dataexchange#LFPermission": { "type": "string", "traits": { @@ -4378,6 +4402,19 @@ "target": "com.amazonaws.dataexchange#JobError" } }, + "com.amazonaws.dataexchange#ListOfKmsKeysToGrant": { + "type": "list", + "member": { + "target": "com.amazonaws.dataexchange#KmsKeyToGrant" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 10 + }, + "smithy.api#uniqueItems": {} + } + }, "com.amazonaws.dataexchange#ListOfLFPermissions": { "type": "list", "member": { @@ -5137,6 +5174,12 @@ "traits": { "smithy.api#documentation": "The ARN for your Amazon S3 Access Point. Customers can also access their entitled data using the S3 Access Point ARN.
" } + }, + "KmsKeysToGrant": { + "target": "com.amazonaws.dataexchange#ListOfKmsKeysToGrant", + "traits": { + "smithy.api#documentation": "List of AWS KMS CMKs (Key Management System Customer Managed Keys) and ARNs used to\n encrypt S3 objects being shared in this S3 Data Access asset. Providers must include all\n AWS KMS keys used to encrypt these shared S3 objects.
" + } } }, "traits": { @@ -5164,6 +5207,12 @@ "traits": { "smithy.api#documentation": "The keys used to create the Amazon S3 data access.
" } + }, + "KmsKeysToGrant": { + "target": "com.amazonaws.dataexchange#ListOfKmsKeysToGrant", + "traits": { + "smithy.api#documentation": "List of AWS KMS CMKs (Key Management System Customer Managed Keys) and ARNs used to\n encrypt S3 objects being shared in this S3 Data Access asset.
" + } } }, "traits": { @@ -6204,4 +6253,4 @@ } } } -} +} \ No newline at end of file diff --git a/codegen/sdk-codegen/aws-models/direct-connect.json b/codegen/sdk-codegen/aws-models/direct-connect.json index 91eda159489..c59e195e63a 100644 --- a/codegen/sdk-codegen/aws-models/direct-connect.json +++ b/codegen/sdk-codegen/aws-models/direct-connect.json @@ -85,6 +85,9 @@ "smithy.api#documentation": "Overrides the Amazon VPC prefixes advertised to the Direct Connect gateway.
\nFor information about how to set the prefixes, see Allowed Prefixes in the Direct Connect User Guide.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#AcceptDirectConnectGatewayAssociationProposalResult": { @@ -96,18 +99,20 @@ } }, "com.amazonaws.directconnect#AddressFamily": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "ipv4", - "name": "IPv4" - }, - { - "value": "ipv6", - "name": "IPv6" + "type": "enum", + "members": { + "IPv4": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "ipv4" } - ] + }, + "IPv6": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "ipv6" + } + } } }, "com.amazonaws.directconnect#AgreementList": { @@ -185,6 +190,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#AllocateHostedConnection": { @@ -258,6 +266,9 @@ "smithy.api#documentation": "The tags associated with the connection.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#AllocatePrivateVirtualInterface": { @@ -310,6 +321,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#AllocatePublicVirtualInterface": { @@ -362,6 +376,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#AllocateTransitVirtualInterface": { @@ -414,6 +431,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#AllocateTransitVirtualInterfaceResult": { @@ -464,6 +484,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#AssociateHostedConnection": { @@ -503,6 +526,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#AssociateMacSecKey": { @@ -553,6 +579,9 @@ "smithy.api#documentation": "The MAC Security (MACsec) CAK to associate with the dedicated connection.
\nYou can create the CKN/CAK pair using an industry standard tool.
\nThe valid values are 64 hexadecimal characters (0-9, A-E).
\nIf you use this request parameter, you must use the ckn request parameter and not use the secretARN request parameter.
The MAC Security (MACsec) security keys associated with the dedicated connection.
" } } + }, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.directconnect#AssociateVirtualInterface": { @@ -609,6 +641,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#AssociatedGateway": { @@ -758,49 +793,61 @@ } }, "com.amazonaws.directconnect#BGPPeerState": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "verifying", - "name": "Verifying" - }, - { - "value": "pending", - "name": "Pending" - }, - { - "value": "available", - "name": "Available" - }, - { - "value": "deleting", - "name": "Deleting" - }, - { - "value": "deleted", - "name": "Deleted" + "type": "enum", + "members": { + "Verifying": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "verifying" + } + }, + "Pending": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "pending" + } + }, + "Available": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "available" + } + }, + "Deleting": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "deleting" + } + }, + "Deleted": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "deleted" } - ] + } } }, "com.amazonaws.directconnect#BGPStatus": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "up", - "name": "Up" - }, - { - "value": "down", - "name": "Down" - }, - { - "value": "unknown", - "name": "Unknown" + "type": "enum", + "members": { + "Up": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "up" + } + }, + "Down": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "down" } - ] + }, + "Unknown": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "unknown" + } + } } }, "com.amazonaws.directconnect#Bandwidth": { @@ -851,6 +898,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#ConfirmConnectionResponse": { @@ -862,6 +912,9 @@ "smithy.api#documentation": "The state of the connection. The following are the possible values:
\n\n ordering: The initial state of a hosted connection provisioned on an interconnect. The connection stays in the ordering state until the owner of the hosted connection confirms or declines the connection order.
\n requested: The initial state of a standard connection. The connection stays in the requested state until the Letter of Authorization (LOA) is sent to the customer.
\n pending: The connection has been approved and is being initialized.
\n available: The network link is up and the connection is ready for use.
\n down: The network link is down.
\n deleting: The connection is being deleted.
\n deleted: The connection has been deleted.
\n rejected: A hosted connection in the ordering state enters the rejected state if it is deleted by the customer.
\n unknown: The state of the connection is not available.
\n\n The name of the customer agreement.\n\n
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#ConfirmCustomerAgreementResponse": { @@ -904,6 +960,9 @@ "smithy.api#documentation": "\n The status of the customer agreement when the connection was created. This will be either signed or unsigned.\n
The ID of the Direct Connect gateway.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#ConfirmPrivateVirtualInterfaceResponse": { @@ -956,9 +1018,12 @@ "virtualInterfaceState": { "target": "com.amazonaws.directconnect#VirtualInterfaceState", "traits": { - "smithy.api#documentation": "The state of the virtual interface. The following are the possible values:
\n\n confirming: The creation of the virtual interface is pending confirmation from the virtual interface owner. If the owner of the virtual interface is different from the owner of the connection on which it is provisioned, then the virtual interface will remain in this state until it is confirmed by the virtual interface owner.
\n verifying: This state only applies to public virtual interfaces. Each public virtual interface needs validation before the virtual interface can be created.
\n pending: A virtual interface is in this state from the time that it is created until the virtual interface is ready to forward traffic.
\n available: A virtual interface that is able to forward traffic.
\n down: A virtual interface that is BGP down.
\n deleting: A virtual interface is in this state immediately after calling DeleteVirtualInterface until it can no longer forward traffic.
\n deleted: A virtual interface that cannot forward traffic.
\n rejected: The virtual interface owner has declined creation of the virtual interface. If a virtual interface in the Confirming state is deleted by the virtual interface owner, the virtual interface enters the Rejected state.
\n unknown: The state of the virtual interface is not available.
The state of the virtual interface. The following are the possible values:
\n\n confirming: The creation of the virtual interface is pending confirmation from the virtual interface owner. If the owner of the virtual interface is different from the owner of the connection on which it is provisioned, then the virtual interface will remain in this state until it is confirmed by the virtual interface owner.
\n verifying: This state only applies to public virtual interfaces. Each public virtual interface needs validation before the virtual interface can be created.
\n pending: A virtual interface is in this state from the time that it is created until the virtual interface is ready to forward traffic.
\n available: A virtual interface that is able to forward traffic.
\n down: A virtual interface that is BGP down.
\n deleting: A virtual interface is in this state immediately after calling DeleteVirtualInterface until it can no longer forward traffic.
\n deleted: A virtual interface that cannot forward traffic.
\n rejected: The virtual interface owner has declined creation of the virtual interface. If a virtual interface in the Confirming state is deleted by the virtual interface owner, the virtual interface enters the Rejected state.
\n unknown: The state of the virtual interface is not available.
The state of the virtual interface. The following are the possible values:
\n\n confirming: The creation of the virtual interface is pending confirmation from the virtual interface owner. If the owner of the virtual interface is different from the owner of the connection on which it is provisioned, then the virtual interface will remain in this state until it is confirmed by the virtual interface owner.
\n verifying: This state only applies to public virtual interfaces. Each public virtual interface needs validation before the virtual interface can be created.
\n pending: A virtual interface is in this state from the time that it is created until the virtual interface is ready to forward traffic.
\n available: A virtual interface that is able to forward traffic.
\n down: A virtual interface that is BGP down.
\n deleting: A virtual interface is in this state immediately after calling DeleteVirtualInterface until it can no longer forward traffic.
\n deleted: A virtual interface that cannot forward traffic.
\n rejected: The virtual interface owner has declined creation of the virtual interface. If a virtual interface in the Confirming state is deleted by the virtual interface owner, the virtual interface enters the Rejected state.
\n unknown: The state of the virtual interface is not available.
The state of the virtual interface. The following are the possible values:
\n\n confirming: The creation of the virtual interface is pending confirmation from the virtual interface owner. If the owner of the virtual interface is different from the owner of the connection on which it is provisioned, then the virtual interface will remain in this state until it is confirmed by the virtual interface owner.
\n verifying: This state only applies to public virtual interfaces. Each public virtual interface needs validation before the virtual interface can be created.
\n pending: A virtual interface is in this state from the time that it is created until the virtual interface is ready to forward traffic.
\n available: A virtual interface that is able to forward traffic.
\n down: A virtual interface that is BGP down.
\n deleting: A virtual interface is in this state immediately after calling DeleteVirtualInterface until it can no longer forward traffic.
\n deleted: A virtual interface that cannot forward traffic.
\n rejected: The virtual interface owner has declined creation of the virtual interface. If a virtual interface in the Confirming state is deleted by the virtual interface owner, the virtual interface enters the Rejected state.
\n unknown: The state of the virtual interface is not available.
Accepts ownership of a transit virtual interface created by another Amazon Web Services account.
\n \nAfter the owner of the transit virtual interface makes this call, the specified transit virtual interface is created and made available to handle traffic.
" + "smithy.api#documentation": "Accepts ownership of a transit virtual interface created by another Amazon Web Services account.
\nAfter the owner of the transit virtual interface makes this call, the specified transit virtual interface is created and made available to handle traffic.
" } }, "com.amazonaws.directconnect#ConfirmTransitVirtualInterfaceRequest": { @@ -1041,6 +1112,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#ConfirmTransitVirtualInterfaceResponse": { @@ -1049,9 +1123,12 @@ "virtualInterfaceState": { "target": "com.amazonaws.directconnect#VirtualInterfaceState", "traits": { - "smithy.api#documentation": "The state of the virtual interface. The following are the possible values:
\n\n confirming: The creation of the virtual interface is pending confirmation from the virtual interface owner. If the owner of the virtual interface is different from the owner of the connection on which it is provisioned, then the virtual interface will remain in this state until it is confirmed by the virtual interface owner.
\n verifying: This state only applies to public virtual interfaces. Each public virtual interface needs validation before the virtual interface can be created.
\n pending: A virtual interface is in this state from the time that it is created until the virtual interface is ready to forward traffic.
\n available: A virtual interface that is able to forward traffic.
\n down: A virtual interface that is BGP down.
\n deleting: A virtual interface is in this state immediately after calling DeleteVirtualInterface until it can no longer forward traffic.
\n deleted: A virtual interface that cannot forward traffic.
\n rejected: The virtual interface owner has declined creation of the virtual interface. If a virtual interface in the Confirming state is deleted by the virtual interface owner, the virtual interface enters the Rejected state.
\n unknown: The state of the virtual interface is not available.
The state of the virtual interface. The following are the possible values:
\n\n confirming: The creation of the virtual interface is pending confirmation from the virtual interface owner. If the owner of the virtual interface is different from the owner of the connection on which it is provisioned, then the virtual interface will remain in this state until it is confirmed by the virtual interface owner.
\n verifying: This state only applies to public virtual interfaces. Each public virtual interface needs validation before the virtual interface can be created.
\n pending: A virtual interface is in this state from the time that it is created until the virtual interface is ready to forward traffic.
\n available: A virtual interface that is able to forward traffic.
\n down: A virtual interface that is BGP down.
\n deleting: A virtual interface is in this state immediately after calling DeleteVirtualInterface until it can no longer forward traffic.
\n deleted: A virtual interface that cannot forward traffic.
\n rejected: The virtual interface owner has declined creation of the virtual interface. If a virtual interface in the Confirming state is deleted by the virtual interface owner, the virtual interface enters the Rejected state.
\n unknown: The state of the virtual interface is not available.
Creates a BGP peer on the specified virtual interface.
\nYou must create a BGP peer for the corresponding address family (IPv4/IPv6) in order to access Amazon Web Services resources that also use that address family.
\nIf logical redundancy is not supported by the connection, interconnect, or LAG, the BGP peer cannot \n be in the same address family as an existing BGP peer on the virtual interface.
\nWhen creating a IPv6 BGP peer, omit the Amazon address and customer address. IPv6 addresses are automatically assigned from\n the Amazon pool of IPv6 addresses; you cannot specify custom IPv6 addresses.
\nFor a public virtual interface, the Autonomous System Number (ASN) must be private or already on the allow list for the virtual interface.
" + "smithy.api#documentation": "Creates a BGP peer on the specified virtual interface.
\nYou must create a BGP peer for the corresponding address family (IPv4/IPv6) in order to\n access Amazon Web Services resources that also use that address family.
\nIf logical redundancy is not supported by the connection, interconnect, or LAG, the BGP peer cannot \n be in the same address family as an existing BGP peer on the virtual interface.
\nWhen creating a IPv6 BGP peer, omit the Amazon address and customer address. IPv6 addresses are automatically assigned from\n the Amazon pool of IPv6 addresses; you cannot specify custom IPv6 addresses.
\nIf you let Amazon Web Services auto-assign IPv4 addresses, a /30 CIDR will be allocated\n from 169.254.0.0/16. Amazon Web Services does not recommend this option if you intend to use\n the customer router peer IP address as the source and destination for traffic. Instead you\n should use RFC 1918 or other addressing, and specify the address yourself. For more\n information about RFC 1918 see \n Address Allocation for Private Internets.
\nFor a public virtual interface, the Autonomous System Number (ASN) must be private or already on the allow list for the virtual interface.
" } }, "com.amazonaws.directconnect#CreateBGPPeerRequest": { @@ -1302,6 +1395,9 @@ "smithy.api#documentation": "Information about the BGP peer.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#CreateBGPPeerResponse": { @@ -1313,6 +1409,9 @@ "smithy.api#documentation": "The virtual interface.
" } } + }, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.directconnect#CreateConnection": { @@ -1338,7 +1437,7 @@ } ], "traits": { - "smithy.api#documentation": "Creates a connection between a customer network and a specific Direct Connect location.
\n\nA connection links your internal network to an Direct Connect location over a standard Ethernet fiber-optic \n cable. One end of the cable is connected to your router, the other to an Direct Connect router.
\nTo find the locations for your Region, use DescribeLocations.
\nYou can automatically add the new connection to a link aggregation group (LAG) by\n specifying a LAG ID in the request. This ensures that the new connection is allocated on the\n same Direct Connect endpoint that hosts the specified LAG. If there are no available ports on the endpoint, \n the request fails and no connection is created.
" + "smithy.api#documentation": "Creates a connection between a customer network and a specific Direct Connect location.
\nA connection links your internal network to an Direct Connect location over a standard Ethernet fiber-optic \n cable. One end of the cable is connected to your router, the other to an Direct Connect router.
\nTo find the locations for your Region, use DescribeLocations.
\nYou can automatically add the new connection to a link aggregation group (LAG) by\n specifying a LAG ID in the request. This ensures that the new connection is allocated on the\n same Direct Connect endpoint that hosts the specified LAG. If there are no available ports on the endpoint, \n the request fails and no connection is created.
" } }, "com.amazonaws.directconnect#CreateConnectionRequest": { @@ -1389,6 +1488,9 @@ "smithy.api#documentation": "Indicates whether you want the connection to support MAC Security (MACsec).
\nMAC Security (MACsec) is only available on dedicated connections. For information about MAC Security (MACsec) prerequisties, see MACsec prerequisties in the Direct Connect User Guide.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#CreateDirectConnectGateway": { @@ -1487,6 +1589,9 @@ "smithy.api#documentation": "The Amazon VPC prefixes to no longer advertise to the Direct Connect gateway.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#CreateDirectConnectGatewayAssociationProposalResult": { @@ -1528,6 +1633,9 @@ "smithy.api#documentation": "The ID of the virtual private gateway.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#CreateDirectConnectGatewayAssociationResult": { @@ -1557,6 +1665,9 @@ "smithy.api#documentation": "The autonomous system number (ASN) for Border Gateway Protocol (BGP) to be configured\n on the Amazon side of the connection. The ASN must be in the private range of 64,512 to\n 65,534 or 4,200,000,000 to 4,294,967,294. The default is 64512.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#CreateDirectConnectGatewayResult": { @@ -1638,6 +1749,9 @@ "smithy.api#documentation": "The name of the service provider associated with the interconnect.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#CreateLag": { @@ -1663,7 +1777,7 @@ } ], "traits": { - "smithy.api#documentation": "Creates a link aggregation group (LAG) with the specified number of bundled\n physical dedicated connections between the customer network and a specific Direct Connect location.\n A LAG is a logical interface that uses the Link Aggregation Control Protocol\n (LACP) to aggregate multiple interfaces, enabling you to treat them as a single \n interface.
\nAll connections in a LAG must use the same bandwidth (either 1Gbps or 10Gbps) and must terminate at the same Direct Connect endpoint.
\nYou can have up to 10 dedicated connections per LAG. Regardless of this limit, if you\n request more connections for the LAG than Direct Connect can allocate on a single endpoint, no LAG is\n created.
\nYou can specify an existing physical dedicated connection or interconnect to include in\n the LAG (which counts towards the total number of connections). Doing so interrupts the\n current physical dedicated connection, and re-establishes them as a member of the LAG. The LAG\n will be created on the same Direct Connect endpoint to which the dedicated connection terminates. Any\n virtual interfaces associated with the dedicated connection are automatically disassociated\n and re-associated with the LAG. The connection ID does not change.
\nIf the Amazon Web Services account used to create a LAG is a registered Direct Connect Partner, the LAG is \n automatically enabled to host sub-connections. For a LAG owned by a partner, any associated virtual \n interfaces cannot be directly configured.
" + "smithy.api#documentation": "Creates a link aggregation group (LAG) with the specified number of bundled\n physical dedicated connections between the customer network and a specific Direct Connect location.\n A LAG is a logical interface that uses the Link Aggregation Control Protocol\n (LACP) to aggregate multiple interfaces, enabling you to treat them as a single \n interface.
\nAll connections in a LAG must use the same bandwidth (either 1Gbps or 10Gbps) and must terminate at the same Direct Connect endpoint.
\nYou can have up to 10 dedicated connections per LAG. Regardless of this limit, if you\n request more connections for the LAG than Direct Connect can allocate on a single endpoint, no LAG is\n created.
\nYou can specify an existing physical dedicated connection or interconnect to include in\n the LAG (which counts towards the total number of connections). Doing so interrupts the\n current physical dedicated connection, and re-establishes them as a member of the LAG. The LAG\n will be created on the same Direct Connect endpoint to which the dedicated connection terminates. Any\n virtual interfaces associated with the dedicated connection are automatically disassociated\n and re-associated with the LAG. The connection ID does not change.
\nIf the Amazon Web Services account used to create a LAG is a registered Direct Connect Partner, the LAG is \n automatically enabled to host sub-connections. For a LAG owned by a partner, any associated virtual \n interfaces cannot be directly configured.
" } }, "com.amazonaws.directconnect#CreateLagRequest": { @@ -1728,6 +1842,9 @@ "smithy.api#documentation": "Indicates whether the connection will support MAC Security (MACsec).
\nAll connections in the LAG must be capable of supporting MAC Security (MACsec). For information about MAC Security (MACsec) prerequisties, see MACsec prerequisties in the Direct Connect User Guide.
\nCreates a transit virtual interface. A transit virtual interface should be used to access one or more transit gateways associated with Direct Connect gateways. A transit virtual interface enables the connection of multiple VPCs attached to a transit gateway to a Direct Connect gateway.
\nIf you associate your transit gateway with one or more Direct Connect gateways, the Autonomous System Number (ASN) used by the transit gateway and the Direct Connect gateway must be different. For example, if you use the default ASN 64512 for both your the transit gateway and Direct Connect gateway, the association request fails.
\nSetting the MTU of a virtual interface to 8500 (jumbo frames) can cause an update to\n the underlying physical connection if it wasn't updated to support jumbo frames. Updating \n the connection disrupts network connectivity for all virtual interfaces associated with \n the connection for up to 30 seconds. To check whether your connection supports jumbo \n frames, call DescribeConnections. To check whether your virtual \n interface supports jumbo frames, call DescribeVirtualInterfaces.
" + "smithy.api#documentation": "Creates a transit virtual interface. A transit virtual interface should be used to access one or more transit gateways associated with Direct Connect gateways. A transit virtual interface enables the connection of multiple VPCs attached to a transit gateway to a Direct Connect gateway.
\nIf you associate your transit gateway with one or more Direct Connect gateways, the Autonomous System Number (ASN) used by the transit gateway and the Direct Connect gateway must be different. For example, if you use the default ASN 64512 for both your the transit gateway and Direct Connect gateway, the association request fails.
\nA jumbo MTU value must be either 1500 or 8500. No other values will be accepted. Setting\n the MTU of a virtual interface to 8500 (jumbo frames) can cause an update to the underlying\n physical connection if it wasn't updated to support jumbo frames. Updating the connection\n disrupts network connectivity for all virtual interfaces associated with the connection for up\n to 30 seconds. To check whether your connection supports jumbo frames, call DescribeConnections. To check whether your virtual interface supports jumbo\n frames, call DescribeVirtualInterfaces.
" } }, "com.amazonaws.directconnect#CreateTransitVirtualInterfaceRequest": { @@ -1863,6 +1986,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#CreateTransitVirtualInterfaceResult": { @@ -1944,6 +2070,9 @@ "smithy.api#documentation": "The ID of the BGP peer.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DeleteBGPPeerResponse": { @@ -1955,6 +2084,9 @@ "smithy.api#documentation": "The virtual interface.
" } } + }, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.directconnect#DeleteConnection": { @@ -1987,6 +2119,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DeleteDirectConnectGateway": { @@ -2059,6 +2194,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DeleteDirectConnectGatewayAssociationProposalResult": { @@ -2093,6 +2231,9 @@ "smithy.api#documentation": "The ID of the virtual private gateway.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DeleteDirectConnectGatewayAssociationResult": { @@ -2116,6 +2257,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DeleteDirectConnectGatewayResult": { @@ -2159,6 +2303,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DeleteInterconnectResponse": { @@ -2170,6 +2317,9 @@ "smithy.api#documentation": "The state of the interconnect. The following are the possible values:
\n\n requested: The initial state of an interconnect. The interconnect stays in the\n requested state until the Letter of Authorization (LOA) is sent to the customer.
\n pending: The interconnect is approved, and is being initialized.
\n available: The network link is up, and the interconnect is ready for use.
\n down: The network link is down.
\n deleting: The interconnect is being deleted.
\n deleted: The interconnect is deleted.
\n unknown: The state of the interconnect is not available.
The state of the virtual interface. The following are the possible values:
\n\n confirming: The creation of the virtual interface is pending confirmation from the virtual interface owner. If the owner of the virtual interface is different from the owner of the connection on which it is provisioned, then the virtual interface will remain in this state until it is confirmed by the virtual interface owner.
\n verifying: This state only applies to public virtual interfaces. Each public virtual interface needs validation before the virtual interface can be created.
\n pending: A virtual interface is in this state from the time that it is created until the virtual interface is ready to forward traffic.
\n available: A virtual interface that is able to forward traffic.
\n down: A virtual interface that is BGP down.
\n deleting: A virtual interface is in this state immediately after calling DeleteVirtualInterface until it can no longer forward traffic.
\n deleted: A virtual interface that cannot forward traffic.
\n rejected: The virtual interface owner has declined creation of the virtual interface. If a virtual interface in the Confirming state is deleted by the virtual interface owner, the virtual interface enters the Rejected state.
\n unknown: The state of the virtual interface is not available.
The state of the virtual interface. The following are the possible values:
\n\n confirming: The creation of the virtual interface is pending confirmation from the virtual interface owner. If the owner of the virtual interface is different from the owner of the connection on which it is provisioned, then the virtual interface will remain in this state until it is confirmed by the virtual interface owner.
\n verifying: This state only applies to public virtual interfaces. Each public virtual interface needs validation before the virtual interface can be created.
\n pending: A virtual interface is in this state from the time that it is created until the virtual interface is ready to forward traffic.
\n available: A virtual interface that is able to forward traffic.
\n down: A virtual interface that is BGP down.
\n deleting: A virtual interface is in this state immediately after calling DeleteVirtualInterface until it can no longer forward traffic.
\n deleted: A virtual interface that cannot forward traffic.
\n rejected: The virtual interface owner has declined creation of the virtual interface. If a virtual interface in the Confirming state is deleted by the virtual interface owner, the virtual interface enters the Rejected state.
\n unknown: The state of the virtual interface is not available.
The standard media type for the LOA-CFA document. The only supported value is application/pdf.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeConnectionLoaResponse": { @@ -2301,6 +2463,9 @@ "smithy.api#documentation": "The Letter of Authorization - Connecting Facility Assignment (LOA-CFA).
" } } + }, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.directconnect#DescribeConnections": { @@ -2354,6 +2519,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeConnectionsRequest": { @@ -2365,6 +2533,9 @@ "smithy.api#documentation": "The ID of the connection.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeCustomerMetadata": { @@ -2402,6 +2573,9 @@ "smithy.api#documentation": "The type of network-to-network interface (NNI) partner. The partner type will be one of the following:
\nV1: This partner can only allocate 50Mbps, 100Mbps, 200Mbps, 300Mbps, 400Mbps, or 500Mbps subgigabit connections.
\nV2: This partner can only allocate 1GB, 2GB, 5GB, or 10GB hosted connections.
\nnonPartner: The customer is not a partner.
\nThe maximum number of results to return with a single call.\n\tTo retrieve the remaining results, make another call with the returned nextToken value.
If MaxResults is given a value larger than 100, only 100 results are\n returned.
The maximum number of results to return with a single call.\n\tTo retrieve the remaining results, make another call with the returned nextToken value.
If MaxResults is given a value larger than 100, only 100 results are\n returned.
The token for the next page of results.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeDirectConnectGatewayAssociationProposalsResult": { @@ -2520,7 +2697,7 @@ "maxResults": { "target": "com.amazonaws.directconnect#MaxResultSetSize", "traits": { - "smithy.api#documentation": "The maximum number of results to return with a single call.\n\tTo retrieve the remaining results, make another call with the returned nextToken value.
If MaxResults is given a value larger than 100, only 100 results are\n returned.
The maximum number of results to return with a single call.\n\tTo retrieve the remaining results, make another call with the returned nextToken value.
If MaxResults is given a value larger than 100, only 100 results are\n returned.
The ID of the virtual private gateway or transit gateway.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeDirectConnectGatewayAssociationsResult": { @@ -2592,7 +2772,7 @@ "maxResults": { "target": "com.amazonaws.directconnect#MaxResultSetSize", "traits": { - "smithy.api#documentation": "The maximum number of results to return with a single call.\n\tTo retrieve the remaining results, make another call with the returned nextToken value.
If MaxResults is given a value larger than 100, only 100 results are\n returned.
The maximum number of results to return with a single call.\n\tTo retrieve the remaining results, make another call with the returned nextToken value.
If MaxResults is given a value larger than 100, only 100 results are\n returned.
The token provided in the previous call to retrieve the next page.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeDirectConnectGatewayAttachmentsResult": { @@ -2652,7 +2835,7 @@ "maxResults": { "target": "com.amazonaws.directconnect#MaxResultSetSize", "traits": { - "smithy.api#documentation": "The maximum number of results to return with a single call.\n\tTo retrieve the remaining results, make another call with the returned nextToken value.
If MaxResults is given a value larger than 100, only 100 results are\n returned.
The maximum number of results to return with a single call.\n\tTo retrieve the remaining results, make another call with the returned nextToken value.
If MaxResults is given a value larger than 100, only 100 results are\n returned.
The token provided in the previous call to retrieve the next page.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeDirectConnectGatewaysResult": { @@ -2710,6 +2896,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeInterconnectLoa": { @@ -2755,6 +2944,9 @@ "smithy.api#documentation": "The standard media type for the LOA-CFA document. The only supported value is application/pdf.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeInterconnectLoaResponse": { @@ -2766,6 +2958,9 @@ "smithy.api#documentation": "The Letter of Authorization - Connecting Facility Assignment (LOA-CFA).
" } } + }, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.directconnect#DescribeInterconnects": { @@ -2797,6 +2992,9 @@ "smithy.api#documentation": "The ID of the interconnect.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeLags": { @@ -2828,6 +3026,9 @@ "smithy.api#documentation": "The ID of the LAG.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeLoa": { @@ -2872,6 +3073,9 @@ "smithy.api#documentation": "The standard media type for the LOA-CFA document. The only supported value is application/pdf.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeLocations": { @@ -2932,7 +3136,8 @@ } }, "traits": { - "smithy.api#documentation": "Provides the details about a virtual interface's router.
" + "smithy.api#documentation": "Provides the details about a virtual interface's router.
", + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeRouterConfigurationResponse": { @@ -2962,6 +3167,9 @@ "smithy.api#documentation": "Provides the details about a virtual interface's router.
" } } + }, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.directconnect#DescribeTags": { @@ -2994,6 +3202,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DescribeTagsResponse": { @@ -3005,6 +3216,9 @@ "smithy.api#documentation": "Information about the tags.
" } } + }, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.directconnect#DescribeVirtualGateways": { @@ -3062,6 +3276,9 @@ "smithy.api#documentation": "The ID of the virtual interface.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#DirectConnectClientException": { @@ -3106,7 +3323,7 @@ "directConnectGatewayState": { "target": "com.amazonaws.directconnect#DirectConnectGatewayState", "traits": { - "smithy.api#documentation": "The state of the Direct Connect gateway. The following are the possible values:
\n\n pending: The initial state after calling CreateDirectConnectGateway.
\n available: The Direct Connect gateway is ready for use.
\n deleting: The initial state after calling DeleteDirectConnectGateway.
\n deleted: The Direct Connect gateway is deleted and cannot pass traffic.
The state of the Direct Connect gateway. The following are the possible values:
\n\n pending: The initial state after calling CreateDirectConnectGateway.
\n available: The Direct Connect gateway is ready for use.
\n deleting: The initial state after calling DeleteDirectConnectGateway.
\n deleted: The Direct Connect gateway is deleted and cannot pass traffic.
The state of the association. The following are the possible values:
\n\n associating: The initial state after calling CreateDirectConnectGatewayAssociation.
\n associated: The Direct Connect gateway and virtual private gateway or transit gateway are successfully associated and ready to pass traffic.
\n disassociating: The initial state after calling DeleteDirectConnectGatewayAssociation.
\n disassociated: The virtual private gateway or transit gateway is disassociated from the Direct Connect gateway. Traffic flow between the Direct Connect gateway and virtual private gateway or transit gateway is stopped.
The state of the association. The following are the possible values:
\n\n associating: The initial state after calling CreateDirectConnectGatewayAssociation.
\n associated: The Direct Connect gateway and virtual private gateway or transit gateway are successfully associated and ready to pass traffic.
\n disassociating: The initial state after calling DeleteDirectConnectGatewayAssociation.
\n disassociated: The virtual private gateway or transit gateway is disassociated from the Direct Connect gateway. Traffic flow between the Direct Connect gateway and virtual private gateway or transit gateway is stopped.
\n updating: The CIDR blocks for the virtual private gateway or transit gateway are currently being updated. This could\n be new CIDR blocks added or current CIDR blocks removed.
The MAC Security (MACsec) security keys no longer associated with the dedicated connection.
" } } + }, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.directconnect#DuplicateTagKeysException": { @@ -3573,37 +3825,43 @@ "type": "string" }, "com.amazonaws.directconnect#GatewayType": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "virtualPrivateGateway", - "name": "VirtualPrivateGateway" - }, - { - "value": "transitGateway", - "name": "TransitGateway" + "type": "enum", + "members": { + "VirtualPrivateGateway": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "virtualPrivateGateway" + } + }, + "TransitGateway": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "transitGateway" } - ] + } } }, "com.amazonaws.directconnect#HasLogicalRedundancy": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "unknown", - "name": "Unknown" - }, - { - "value": "yes", - "name": "Yes" - }, - { - "value": "no", - "name": "No" + "type": "enum", + "members": { + "Unknown": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "unknown" + } + }, + "Yes": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "yes" + } + }, + "No": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "no" } - ] + } } }, "com.amazonaws.directconnect#Interconnect": { @@ -3717,38 +3975,50 @@ "type": "string" }, "com.amazonaws.directconnect#InterconnectState": { - "type": "string", - "traits": { - "smithy.api#enum": [ - { - "value": "requested", - "name": "requested" - }, - { - "value": "pending", - "name": "pending" - }, - { - "value": "available", - "name": "available" - }, - { - "value": "down", - "name": "down" - }, - { - "value": "deleting", - "name": "deleting" - }, - { - "value": "deleted", - "name": "deleted" - }, - { - "value": "unknown", - "name": "unknown" + "type": "enum", + "members": { + "requested": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "requested" + } + }, + "pending": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "pending" + } + }, + "available": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "available" + } + }, + "down": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "down" + } + }, + "deleting": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "deleting" } - ] + }, + "deleted": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "deleted" + } + }, + "unknown": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "unknown" + } + } } }, "com.amazonaws.directconnect#Interconnects": { @@ -3802,7 +4072,7 @@ "lagState": { "target": "com.amazonaws.directconnect#LagState", "traits": { - "smithy.api#documentation": "The state of the LAG. The following are the possible values:
\n\n requested: The initial state of a LAG. The LAG stays in the\n requested state until the Letter of Authorization (LOA) is available.
\n pending: The LAG has been approved and is being initialized.
\n available: The network link is established and the LAG is ready for use.
\n down: The network link is down.
\n deleting: The LAG is being deleted.
\n deleted: The LAG is deleted.
\n unknown: The state of the LAG is not available.
The state of the LAG. The following are the possible values:
\n\n requested: The initial state of a LAG. The LAG stays in the\n requested state until the Letter of Authorization (LOA) is available.
\n pending: The LAG has been approved and is being initialized.
\n available: The network link is established and the LAG is ready for use.
\n down: The network link is down.
\n deleting: The LAG is being deleted.
\n deleted: The LAG is deleted.
\n unknown: The state of the LAG is not available.
The maximum number of results to return with a single call.\n\tTo retrieve the remaining results, make another call with the returned nextToken value.
If MaxResults is given a value larger than 100, only 100 results are\n returned.
The maximum number of results to return with a single call.\n\tTo retrieve the remaining results, make another call with the returned nextToken value.
If MaxResults is given a value larger than 100, only 100 results are\n returned.
The token for the next page of results.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#ListVirtualInterfaceTestHistoryResponse": { @@ -4036,6 +4321,9 @@ "smithy.api#documentation": "The token to use to retrieve the next page of results. This value is null when there are no more results to return.
Starts the virtual interface failover test that verifies your configuration meets your resiliency requirements by placing the BGP peering session in the DOWN state. You can then send traffic to verify that there are no outages.
\nYou can run the test on public, private, transit, and hosted virtual interfaces.
\nYou can use ListVirtualInterfaceTestHistory to view the virtual interface test history.
\nIf you need to stop the test before the test interval completes, use StopBgpFailoverTest.
" + "smithy.api#documentation": "Starts the virtual interface failover test that verifies your configuration meets your resiliency requirements by placing the BGP peering session in the DOWN state. You can then send traffic to verify that there are no outages.
\nYou can run the test on public, private, transit, and hosted virtual interfaces.
\nYou can use ListVirtualInterfaceTestHistory to view the virtual interface test history.
\nIf you need to stop the test before the test interval completes, use StopBgpFailoverTest.
" } }, "com.amazonaws.directconnect#StartBgpFailoverTestRequest": { @@ -6078,9 +6370,12 @@ "testDurationInMinutes": { "target": "com.amazonaws.directconnect#TestDuration", "traits": { - "smithy.api#documentation": "The time in minutes that the virtual interface failover test will last.
\nMaximum value: 180 minutes (3 hours).
\nDefault: 180 minutes (3 hours).
" + "smithy.api#documentation": "The time in minutes that the virtual interface failover test will last.
\nMaximum value: 4,320 minutes (72 hours).
\nDefault: 180 minutes (3 hours).
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#StartBgpFailoverTestResponse": { @@ -6092,6 +6387,9 @@ "smithy.api#documentation": "Information about the virtual interface failover test.
" } } + }, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.directconnect#StartOnDate": { @@ -6145,6 +6443,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#StopBgpFailoverTestResponse": { @@ -6156,6 +6457,9 @@ "smithy.api#documentation": "Information about the virtual interface failover test.
" } } + }, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.directconnect#Tag": { @@ -6249,11 +6553,17 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#TagResourceResponse": { "type": "structure", - "members": {} + "members": {}, + "traits": { + "smithy.api#output": {} + } }, "com.amazonaws.directconnect#TagValue": { "type": "string", @@ -6320,11 +6630,17 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#UntagResourceResponse": { "type": "structure", - "members": {} + "members": {}, + "traits": { + "smithy.api#output": {} + } }, "com.amazonaws.directconnect#UpdateConnection": { "type": "operation", @@ -6368,6 +6684,9 @@ "smithy.api#documentation": "The connection MAC Security (MACsec) encryption mode.
\nThe valid values are no_encrypt, should_encrypt, and must_encrypt.
The Amazon VPC prefixes to no longer advertise to the Direct Connect gateway.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#UpdateDirectConnectGatewayAssociationResult": { @@ -6458,6 +6780,9 @@ "smithy.api#required": {} } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#UpdateDirectConnectGatewayResponse": { @@ -6466,6 +6791,9 @@ "directConnectGateway": { "target": "com.amazonaws.directconnect#DirectConnectGateway" } + }, + "traits": { + "smithy.api#output": {} } }, "com.amazonaws.directconnect#UpdateLag": { @@ -6517,6 +6845,9 @@ "smithy.api#documentation": "The LAG MAC Security (MACsec) encryption mode.
\nAmazon Web Services applies the value to all connections which are part of the LAG.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#UpdateVirtualInterfaceAttributes": { @@ -6567,6 +6898,9 @@ "smithy.api#documentation": "The name of the virtual private interface.
" } } + }, + "traits": { + "smithy.api#input": {} } }, "com.amazonaws.directconnect#VLAN": { @@ -6713,7 +7047,7 @@ "virtualInterfaceState": { "target": "com.amazonaws.directconnect#VirtualInterfaceState", "traits": { - "smithy.api#documentation": "The state of the virtual interface. The following are the possible values:
\n\n confirming: The creation of the virtual interface is pending confirmation from the virtual interface owner. If the owner of the virtual interface is different from the owner of the connection on which it is provisioned, then the virtual interface will remain in this state until it is confirmed by the virtual interface owner.
\n verifying: This state only applies to public virtual interfaces. Each public virtual interface needs validation before the virtual interface can be created.
\n pending: A virtual interface is in this state from the time that it is created until the virtual interface is ready to forward traffic.
\n available: A virtual interface that is able to forward traffic.
\n down: A virtual interface that is BGP down.
\n deleting: A virtual interface is in this state immediately after calling DeleteVirtualInterface until it can no longer forward traffic.
\n deleted: A virtual interface that cannot forward traffic.
\n rejected: The virtual interface owner has declined creation of the virtual interface. If a virtual interface in the Confirming state is deleted by the virtual interface owner, the virtual interface enters the Rejected state.
\n unknown: The state of the virtual interface is not available.
The state of the virtual interface. The following are the possible values:
\n\n confirming: The creation of the virtual interface is pending confirmation from the virtual interface owner. If the owner of the virtual interface is different from the owner of the connection on which it is provisioned, then the virtual interface will remain in this state until it is confirmed by the virtual interface owner.
\n verifying: This state only applies to public virtual interfaces. Each public virtual interface needs validation before the virtual interface can be created.
\n pending: A virtual interface is in this state from the time that it is created until the virtual interface is ready to forward traffic.
\n available: A virtual interface that is able to forward traffic.
\n down: A virtual interface that is BGP down.
\n deleting: A virtual interface is in this state immediately after calling DeleteVirtualInterface until it can no longer forward traffic.
\n deleted: A virtual interface that cannot forward traffic.
\n rejected: The virtual interface owner has declined creation of the virtual interface. If a virtual interface in the Confirming state is deleted by the virtual interface owner, the virtual interface enters the Rejected state.
\n unknown: The state of the virtual interface is not available.
The DNS records created for the endpoint.
", "smithy.api#xmlName": "dnsRecordIpType" } + }, + "PrivateDnsOnlyForInboundResolverEndpoint": { + "target": "com.amazonaws.ec2#Boolean", + "traits": { + "aws.protocols#ec2QueryName": "PrivateDnsOnlyForInboundResolverEndpoint", + "smithy.api#clientOptional": {}, + "smithy.api#default": false, + "smithy.api#documentation": "Indicates whether to enable private DNS only for inbound endpoints.
", + "smithy.api#xmlName": "privateDnsOnlyForInboundResolverEndpoint" + } } }, "traits": { @@ -40733,6 +40743,14 @@ "traits": { "smithy.api#documentation": "The DNS records created for the endpoint.
" } + }, + "PrivateDnsOnlyForInboundResolverEndpoint": { + "target": "com.amazonaws.ec2#Boolean", + "traits": { + "smithy.api#clientOptional": {}, + "smithy.api#default": false, + "smithy.api#documentation": "Indicates whether to enable private DNS only for inbound endpoints. This option is\n available only for services that support both gateway and interface endpoints. It routes\n traffic that originates from the VPC to the gateway endpoint and traffic that originates\n from on-premises to the interface endpoint.
" + } } }, "traits": { diff --git a/codegen/sdk-codegen/aws-models/iam.json b/codegen/sdk-codegen/aws-models/iam.json index 8479ff44f2c..bd2c1ac793d 100644 --- a/codegen/sdk-codegen/aws-models/iam.json +++ b/codegen/sdk-codegen/aws-models/iam.json @@ -1938,9 +1938,9 @@ } }, "params": { - "Region": "aws-global", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "aws-global" } }, { @@ -1960,9 +1960,9 @@ } }, "params": { - "Region": "aws-global", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "aws-global" } }, { @@ -1973,9 +1973,9 @@ } }, "params": { - "Region": "us-east-1", "UseDualStack": true, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-east-1" } }, { @@ -1995,9 +1995,9 @@ } }, "params": { - "Region": "us-east-1", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-east-1" } }, { @@ -2008,9 +2008,9 @@ } }, "params": { - "Region": "us-east-1", "UseDualStack": true, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-east-1" } }, { @@ -2030,9 +2030,9 @@ } }, "params": { - "Region": "us-east-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-east-1" } }, { @@ -2052,9 +2052,9 @@ } }, "params": { - "Region": "aws-cn-global", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "aws-cn-global" } }, { @@ -2065,9 +2065,9 @@ } }, "params": { - "Region": "cn-north-1", "UseDualStack": true, - "UseFIPS": true + "UseFIPS": true, + "Region": "cn-north-1" } }, { @@ -2078,9 +2078,9 @@ } }, "params": { - "Region": "cn-north-1", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "cn-north-1" } }, { @@ -2091,9 +2091,9 @@ } }, "params": { - "Region": "cn-north-1", "UseDualStack": true, - "UseFIPS": false + "UseFIPS": false, + "Region": "cn-north-1" } }, { @@ -2113,9 +2113,9 @@ } }, "params": { - "Region": "cn-north-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "cn-north-1" } }, { @@ -2135,9 +2135,9 @@ } }, "params": { - "Region": "aws-us-gov-global", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "aws-us-gov-global" } }, { @@ -2157,9 +2157,9 @@ } }, "params": { - "Region": "aws-us-gov-global", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "aws-us-gov-global" } }, { @@ -2170,9 +2170,9 @@ } }, "params": { - "Region": "us-gov-east-1", "UseDualStack": true, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-gov-east-1" } }, { @@ -2192,9 +2192,9 @@ } }, "params": { - "Region": "us-gov-east-1", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-gov-east-1" } }, { @@ -2205,9 +2205,9 @@ } }, "params": { - "Region": "us-gov-east-1", "UseDualStack": true, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-gov-east-1" } }, { @@ -2227,9 +2227,9 @@ } }, "params": { - "Region": "us-gov-east-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-gov-east-1" } }, { @@ -2249,9 +2249,9 @@ } }, "params": { - "Region": "aws-iso-global", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "aws-iso-global" } }, { @@ -2262,9 +2262,9 @@ } }, "params": { - "Region": "us-iso-east-1", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-iso-east-1" } }, { @@ -2284,9 +2284,9 @@ } }, "params": { - "Region": "us-iso-east-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-iso-east-1" } }, { @@ -2306,9 +2306,9 @@ } }, "params": { - "Region": "aws-iso-b-global", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "aws-iso-b-global" } }, { @@ -2319,9 +2319,9 @@ } }, "params": { - "Region": "us-isob-east-1", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-isob-east-1" } }, { @@ -2341,9 +2341,9 @@ } }, "params": { - "Region": "us-isob-east-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-isob-east-1" } }, { @@ -2354,9 +2354,9 @@ } }, "params": { - "Region": "us-east-1", "UseDualStack": false, "UseFIPS": false, + "Region": "us-east-1", "Endpoint": "https://example.com" } }, @@ -2379,9 +2379,9 @@ "error": "Invalid Configuration: FIPS and custom endpoint are not supported" }, "params": { - "Region": "us-east-1", "UseDualStack": false, "UseFIPS": true, + "Region": "us-east-1", "Endpoint": "https://example.com" } }, @@ -2391,9 +2391,9 @@ "error": "Invalid Configuration: Dualstack and custom endpoint are not supported" }, "params": { - "Region": "us-east-1", "UseDualStack": true, "UseFIPS": false, + "Region": "us-east-1", "Endpoint": "https://example.com" } } @@ -2445,7 +2445,7 @@ "EntityPath": { "target": "com.amazonaws.iam#organizationsEntityPathType", "traits": { - "smithy.api#documentation": "The path of the Organizations entity (root, organizational unit, or account) from which an\n authenticated principal last attempted to access the service. Amazon Web Services does not report\n unauthenticated requests.
\nThis field is null if no principals (IAM users, IAM roles, or root users) in the\n reported Organizations entity attempted to access the service within the tracking period.
" + "smithy.api#documentation": "The path of the Organizations entity (root, organizational unit, or account) from which an\n authenticated principal last attempted to access the service. Amazon Web Services does not report\n unauthenticated requests.
\nThis field is null if no principals (IAM users, IAM roles, or root user) in the\n reported Organizations entity attempted to access the service within the tracking period.
" } }, "LastAuthenticatedTime": { @@ -2457,7 +2457,7 @@ "TotalAuthenticatedEntities": { "target": "com.amazonaws.iam#integerType", "traits": { - "smithy.api#documentation": "The number of accounts with authenticated principals (root users, IAM users, and IAM\n roles) that attempted to access the service in the tracking period.
" + "smithy.api#documentation": "The number of accounts with authenticated principals (root user, IAM users, and IAM\n roles) that attempted to access the service in the tracking period.
" } } }, @@ -2967,7 +2967,7 @@ } ], "traits": { - "smithy.api#documentation": "Changes the password of the IAM user who is calling this operation. This operation\n can be performed using the CLI, the Amazon Web Services API, or the My\n Security Credentials page in the Amazon Web Services Management Console. The Amazon Web Services account root user\n password is not affected by this operation.
\nUse UpdateLoginProfile to use the CLI, the Amazon Web Services API, or the\n Users page in the IAM console to change the\n password for any IAM user. For more information about modifying passwords, see Managing\n passwords in the IAM User Guide.
" + "smithy.api#documentation": "Changes the password of the IAM user who is calling this operation. This operation\n can be performed using the CLI, the Amazon Web Services API, or the My\n Security Credentials page in the Amazon Web Services Management Console. The Amazon Web Services account root user password is\n not affected by this operation.
\nUse UpdateLoginProfile to use the CLI, the Amazon Web Services API, or the\n Users page in the IAM console to change the\n password for any IAM user. For more information about modifying passwords, see Managing\n passwords in the IAM User Guide.
" } }, "com.amazonaws.iam#ChangePasswordRequest": { @@ -3477,7 +3477,7 @@ } ], "traits": { - "smithy.api#documentation": "Creates an IAM entity to describe an identity provider (IdP) that supports OpenID Connect (OIDC).
\nThe OIDC provider that you create with this operation can be used as a principal in a\n role's trust policy. Such a policy establishes a trust relationship between Amazon Web Services and\n the OIDC provider.
\nIf you are using an OIDC identity provider from Google, Facebook, or Amazon Cognito, you don't\n need to create a separate IAM identity provider. These OIDC identity providers are\n already built-in to Amazon Web Services and are available for your use. Instead, you can move directly\n to creating new roles using your identity provider. To learn more, see Creating\n a role for web identity or OpenID connect federation in the IAM\n User Guide.
\nWhen you create the IAM OIDC provider, you specify the following:
\nThe URL of the OIDC identity provider (IdP) to trust
\nA list of client IDs (also known as audiences) that identify the application\n or applications allowed to authenticate using the OIDC provider
\nA list of thumbprints of one or more server certificates that the IdP\n uses
\nYou get all of this information from the OIDC IdP you want to use to access\n Amazon Web Services.
\nAmazon Web Services secures communication with some OIDC identity providers (IdPs) through our\n library of trusted certificate authorities (CAs) instead of using a certificate\n thumbprint to verify your IdP server certificate. These OIDC IdPs include Google, Auth0,\n and those that use an Amazon S3 bucket to host a JSON Web Key Set (JWKS) endpoint. In these\n cases, your legacy thumbprint remains in your configuration, but is no longer used for\n validation.
\nThe trust for the OIDC provider is derived from the IAM provider that this\n operation creates. Therefore, it is best to limit access to the CreateOpenIDConnectProvider operation to highly privileged\n users.
\nCreates an IAM entity to describe an identity provider (IdP) that supports OpenID Connect (OIDC).
\nThe OIDC provider that you create with this operation can be used as a principal in a\n role's trust policy. Such a policy establishes a trust relationship between Amazon Web Services and\n the OIDC provider.
\nIf you are using an OIDC identity provider from Google, Facebook, or Amazon Cognito, you don't\n need to create a separate IAM identity provider. These OIDC identity providers are\n already built-in to Amazon Web Services and are available for your use. Instead, you can move directly\n to creating new roles using your identity provider. To learn more, see Creating\n a role for web identity or OpenID connect federation in the IAM\n User Guide.
\nWhen you create the IAM OIDC provider, you specify the following:
\nThe URL of the OIDC identity provider (IdP) to trust
\nA list of client IDs (also known as audiences) that identify the application\n or applications allowed to authenticate using the OIDC provider
\nA list of tags that are attached to the specified IAM OIDC provider
\nA list of thumbprints of one or more server certificates that the IdP\n uses
\nYou get all of this information from the OIDC IdP you want to use to access\n Amazon Web Services.
\nAmazon Web Services secures communication with some OIDC identity providers (IdPs) through our\n library of trusted certificate authorities (CAs) instead of using a certificate\n thumbprint to verify your IdP server certificate. These OIDC IdPs include Google, Auth0,\n and those that use an Amazon S3 bucket to host a JSON Web Key Set (JWKS) endpoint. In these\n cases, your legacy thumbprint remains in your configuration, but is no longer used for\n validation.
\nThe trust for the OIDC provider is derived from the IAM provider that this\n operation creates. Therefore, it is best to limit access to the CreateOpenIDConnectProvider operation to highly privileged\n users.
\nA list of server certificate thumbprints for the OpenID Connect (OIDC) identity\n provider's server certificates. Typically this list includes only one entry. However,\n IAM lets you have up to five thumbprints for an OIDC provider. This lets you maintain\n multiple thumbprints if the identity provider is rotating certificates.
\nThe server certificate thumbprint is the hex-encoded SHA-1 hash value of the X.509\n certificate used by the domain where the OpenID Connect provider makes its keys\n available. It is always a 40-character string.
\nYou must provide at least one thumbprint when creating an IAM OIDC provider. For\n example, assume that the OIDC provider is server.example.com and the\n provider stores its keys at https://keys.server.example.com/openid-connect. In that\n case, the thumbprint string would be the hex-encoded SHA-1 hash value of the certificate\n used by https://keys.server.example.com.\n
For more information about obtaining the OIDC provider thumbprint, see Obtaining the\n thumbprint for an OpenID Connect provider in the IAM User\n Guide.
", + "smithy.api#documentation": "A list of server certificate thumbprints for the OpenID Connect (OIDC) identity\n provider's server certificates. Typically this list includes only one entry. However,\n IAM lets you have up to five thumbprints for an OIDC provider. This lets you maintain\n multiple thumbprints if the identity provider is rotating certificates.
\nThe server certificate thumbprint is the hex-encoded SHA-1 hash value of the X.509\n certificate used by the domain where the OpenID Connect provider makes its keys\n available. It is always a 40-character string.
\nYou must provide at least one thumbprint when creating an IAM OIDC provider. For\n example, assume that the OIDC provider is server.example.com and the\n provider stores its keys at https://keys.server.example.com/openid-connect. In that\n case, the thumbprint string would be the hex-encoded SHA-1 hash value of the certificate\n used by https://keys.server.example.com.\n
For more information about obtaining the OIDC provider thumbprint, see Obtaining the\n thumbprint for an OpenID Connect provider in the IAM user\n Guide.
", "smithy.api#required": {} } }, @@ -3739,7 +3739,7 @@ "RoleName": { "target": "com.amazonaws.iam#roleNameType", "traits": { - "smithy.api#documentation": "The name of the role to create.
\nIAM user, group, role, and policy names must be unique within the account. Names are\n not distinguished by case. For example, you cannot create resources named both\n \"MyResource\" and \"myresource\".
", + "smithy.api#documentation": "The name of the role to create.
\nIAM user, group, role, and policy names must be unique within the account. Names are\n not distinguished by case. For example, you cannot create resources named both\n \"MyResource\" and \"myresource\".
\nThis parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric \n characters with no spaces. You can also include any of the following characters: _+=,.@-
", "smithy.api#required": {} } }, @@ -4120,7 +4120,7 @@ "VirtualMFADeviceName": { "target": "com.amazonaws.iam#virtualMFADeviceName", "traits": { - "smithy.api#documentation": "The name of the virtual MFA device. Use with path to uniquely identify a virtual MFA\n device.
\nThis parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric \n characters with no spaces. You can also include any of the following characters: _+=,.@-
", + "smithy.api#documentation": "The name of the virtual MFA device, which must be unique. Use with path to uniquely identify a virtual MFA\n device.
\nThis parameter allows (through its regex pattern) a string of characters consisting of upper and lowercase alphanumeric \n characters with no spaces. You can also include any of the following characters: _+=,.@-
", "smithy.api#required": {} } }, @@ -5830,7 +5830,7 @@ } ], "traits": { - "smithy.api#documentation": "Generates a report for service last accessed data for Organizations. You can generate a\n report for any entities (organization root, organizational unit, or account) or policies\n in your organization.
\nTo call this operation, you must be signed in using your Organizations management account\n credentials. You can use your long-term IAM user or root user credentials, or\n temporary credentials from assuming an IAM role. SCPs must be enabled for your\n organization root. You must have the required IAM and Organizations permissions. For more\n information, see Refining permissions using\n service last accessed data in the\n IAM User Guide.
\nYou can generate a service last accessed data report for entities by specifying only\n the entity's path. This data includes a list of services that are allowed by any service\n control policies (SCPs) that apply to the entity.
\nYou can generate a service last accessed data report for a policy by specifying an\n entity's path and an optional Organizations policy ID. This data includes a list of services that\n are allowed by the specified SCP.
\nFor each service in both report types, the data includes the most recent account\n activity that the policy allows to account principals in the entity or the entity's\n children. For important information about the data, reporting period, permissions\n required, troubleshooting, and supported Regions see Reducing permissions using\n service last accessed data in the\n IAM User Guide.
\nThe data includes all attempts to access Amazon Web Services, not just the successful ones. This\n includes all attempts that were made using the Amazon Web Services Management Console, the Amazon Web Services API through any\n of the SDKs, or any of the command line tools. An unexpected entry in the service\n last accessed data does not mean that an account has been compromised, because the\n request might have been denied. Refer to your CloudTrail logs as the authoritative\n source for information about all API calls and whether they were successful or\n denied access. For more information, see Logging IAM events with\n CloudTrail in the IAM User Guide.
\nThis operation returns a JobId. Use this parameter in the \n GetOrganizationsAccessReport\n operation to check the status of\n the report generation. To check the status of this request, use the JobId\n parameter in the \n GetOrganizationsAccessReport\n operation\n and test the JobStatus response parameter. When the job is complete, you\n can retrieve the report.
To generate a service last accessed data report for entities, specify an entity path\n without specifying the optional Organizations policy ID. The type of entity that you specify\n determines the data returned in the report.
\n\n Root – When you specify the\n organizations root as the entity, the resulting report lists all of the services\n allowed by SCPs that are attached to your root. For each service, the report\n includes data for all accounts in your organization except the\n management account, because the management account is not limited by SCPs.
\n\n OU – When you specify an\n organizational unit (OU) as the entity, the resulting report lists all of the\n services allowed by SCPs that are attached to the OU and its parents. For each\n service, the report includes data for all accounts in the OU or its children.\n This data excludes the management account, because the management account is not\n limited by SCPs.
\n\n management account – When you specify the\n management account, the resulting report lists all Amazon Web Services services, because the\n management account is not limited by SCPs. For each service, the report includes\n data for only the management account.
\n\n Account – When you specify another\n account as the entity, the resulting report lists all of the services allowed by\n SCPs that are attached to the account and its parents. For each service, the\n report includes data for only the specified account.
\nTo generate a service last accessed data report for policies, specify an entity path\n and the optional Organizations policy ID. The type of entity that you specify determines the data\n returned for each service.
\n\n Root – When you specify the root\n entity and a policy ID, the resulting report lists all of the services that are\n allowed by the specified SCP. For each service, the report includes data for all\n accounts in your organization to which the SCP applies. This data excludes the\n management account, because the management account is not limited by SCPs. If the\n SCP is not attached to any entities in the organization, then the report will\n return a list of services with no data.
\n\n OU – When you specify an OU entity and\n a policy ID, the resulting report lists all of the services that are allowed by\n the specified SCP. For each service, the report includes data for all accounts\n in the OU or its children to which the SCP applies. This means that other\n accounts outside the OU that are affected by the SCP might not be included in\n the data. This data excludes the management account, because the\n management account is not limited by SCPs. If the SCP is not attached to the OU\n or one of its children, the report will return a list of services with no\n data.
\n\n management account – When you specify the\n management account, the resulting report lists all Amazon Web Services services, because the\n management account is not limited by SCPs. If you specify a policy ID in the CLI\n or API, the policy is ignored. For each service, the report includes data for\n only the management account.
\n\n Account – When you specify another\n account entity and a policy ID, the resulting report lists all of the services\n that are allowed by the specified SCP. For each service, the report includes\n data for only the specified account. This means that other accounts in the\n organization that are affected by the SCP might not be included in the data. If\n the SCP is not attached to the account, the report will return a list of\n services with no data.
\nService last accessed data does not use other policy types when determining\n whether a principal could access a service. These other policy types include\n identity-based policies, resource-based policies, access control lists, IAM\n permissions boundaries, and STS assume role policies. It only applies SCP logic.\n For more about the evaluation of policy types, see Evaluating policies in the\n IAM User Guide.
\nFor more information about service last accessed data, see Reducing policy scope by\n viewing user activity in the IAM User Guide.
" + "smithy.api#documentation": "Generates a report for service last accessed data for Organizations. You can generate a\n report for any entities (organization root, organizational unit, or account) or policies\n in your organization.
\nTo call this operation, you must be signed in using your Organizations management account\n credentials. You can use your long-term IAM user or root user credentials, or temporary\n credentials from assuming an IAM role. SCPs must be enabled for your organization\n root. You must have the required IAM and Organizations permissions. For more information, see\n Refining permissions using service last accessed data in the\n IAM User Guide.
\nYou can generate a service last accessed data report for entities by specifying only\n the entity's path. This data includes a list of services that are allowed by any service\n control policies (SCPs) that apply to the entity.
\nYou can generate a service last accessed data report for a policy by specifying an\n entity's path and an optional Organizations policy ID. This data includes a list of services that\n are allowed by the specified SCP.
\nFor each service in both report types, the data includes the most recent account\n activity that the policy allows to account principals in the entity or the entity's\n children. For important information about the data, reporting period, permissions\n required, troubleshooting, and supported Regions see Reducing permissions using\n service last accessed data in the\n IAM User Guide.
\nThe data includes all attempts to access Amazon Web Services, not just the successful ones. This\n includes all attempts that were made using the Amazon Web Services Management Console, the Amazon Web Services API through any\n of the SDKs, or any of the command line tools. An unexpected entry in the service\n last accessed data does not mean that an account has been compromised, because the\n request might have been denied. Refer to your CloudTrail logs as the authoritative\n source for information about all API calls and whether they were successful or\n denied access. For more information, see Logging IAM events with\n CloudTrail in the IAM User Guide.
\nThis operation returns a JobId. Use this parameter in the \n GetOrganizationsAccessReport\n operation to check the status of\n the report generation. To check the status of this request, use the JobId\n parameter in the \n GetOrganizationsAccessReport\n operation\n and test the JobStatus response parameter. When the job is complete, you\n can retrieve the report.
To generate a service last accessed data report for entities, specify an entity path\n without specifying the optional Organizations policy ID. The type of entity that you specify\n determines the data returned in the report.
\n\n Root – When you specify the\n organizations root as the entity, the resulting report lists all of the services\n allowed by SCPs that are attached to your root. For each service, the report\n includes data for all accounts in your organization except the\n management account, because the management account is not limited by SCPs.
\n\n OU – When you specify an\n organizational unit (OU) as the entity, the resulting report lists all of the\n services allowed by SCPs that are attached to the OU and its parents. For each\n service, the report includes data for all accounts in the OU or its children.\n This data excludes the management account, because the management account is not\n limited by SCPs.
\n\n management account – When you specify the\n management account, the resulting report lists all Amazon Web Services services, because the\n management account is not limited by SCPs. For each service, the report includes\n data for only the management account.
\n\n Account – When you specify another\n account as the entity, the resulting report lists all of the services allowed by\n SCPs that are attached to the account and its parents. For each service, the\n report includes data for only the specified account.
\nTo generate a service last accessed data report for policies, specify an entity path\n and the optional Organizations policy ID. The type of entity that you specify determines the data\n returned for each service.
\n\n Root – When you specify the root\n entity and a policy ID, the resulting report lists all of the services that are\n allowed by the specified SCP. For each service, the report includes data for all\n accounts in your organization to which the SCP applies. This data excludes the\n management account, because the management account is not limited by SCPs. If the\n SCP is not attached to any entities in the organization, then the report will\n return a list of services with no data.
\n\n OU – When you specify an OU entity and\n a policy ID, the resulting report lists all of the services that are allowed by\n the specified SCP. For each service, the report includes data for all accounts\n in the OU or its children to which the SCP applies. This means that other\n accounts outside the OU that are affected by the SCP might not be included in\n the data. This data excludes the management account, because the\n management account is not limited by SCPs. If the SCP is not attached to the OU\n or one of its children, the report will return a list of services with no\n data.
\n\n management account – When you specify the\n management account, the resulting report lists all Amazon Web Services services, because the\n management account is not limited by SCPs. If you specify a policy ID in the CLI\n or API, the policy is ignored. For each service, the report includes data for\n only the management account.
\n\n Account – When you specify another\n account entity and a policy ID, the resulting report lists all of the services\n that are allowed by the specified SCP. For each service, the report includes\n data for only the specified account. This means that other accounts in the\n organization that are affected by the SCP might not be included in the data. If\n the SCP is not attached to the account, the report will return a list of\n services with no data.
\nService last accessed data does not use other policy types when determining\n whether a principal could access a service. These other policy types include\n identity-based policies, resource-based policies, access control lists, IAM\n permissions boundaries, and STS assume role policies. It only applies SCP logic.\n For more about the evaluation of policy types, see Evaluating policies in the\n IAM User Guide.
\nFor more information about service last accessed data, see Reducing policy scope by\n viewing user activity in the IAM User Guide.
" } }, "com.amazonaws.iam#GenerateOrganizationsAccessReportRequest": { @@ -6651,7 +6651,7 @@ } ], "traits": { - "smithy.api#documentation": "Retrieves the service last accessed data report for Organizations that was previously\n generated using the \n GenerateOrganizationsAccessReport\n \n operation. This operation retrieves the status of your report job and the report\n contents.
Depending on the parameters that you passed when you generated the report, the data\n returned could include different information. For details, see GenerateOrganizationsAccessReport.
\nTo call this operation, you must be signed in to the management account in your\n organization. SCPs must be enabled for your organization root. You must have permissions\n to perform this operation. For more information, see Refining permissions using\n service last accessed data in the\n IAM User Guide.
\nFor each service that principals in an account (root users, IAM users, or IAM\n roles) could access using SCPs, the operation returns details about the most recent\n access attempt. If there was no attempt, the service is listed without details about the\n most recent attempt to access the service. If the operation fails, it returns the reason\n that it failed.
\nBy default, the list is sorted by service namespace.
" + "smithy.api#documentation": "Retrieves the service last accessed data report for Organizations that was previously\n generated using the \n GenerateOrganizationsAccessReport\n \n operation. This operation retrieves the status of your report job and the report\n contents.
Depending on the parameters that you passed when you generated the report, the data\n returned could include different information. For details, see GenerateOrganizationsAccessReport.
\nTo call this operation, you must be signed in to the management account in your\n organization. SCPs must be enabled for your organization root. You must have permissions\n to perform this operation. For more information, see Refining permissions using\n service last accessed data in the\n IAM User Guide.
\nFor each service that principals in an account (root user, IAM users, or IAM roles)\n could access using SCPs, the operation returns details about the most recent access\n attempt. If there was no attempt, the service is listed without details about the most\n recent attempt to access the service. If the operation fails, it returns the reason that\n it failed.
\nBy default, the list is sorted by service namespace.
" } }, "com.amazonaws.iam#GetOrganizationsAccessReportRequest": { @@ -7895,7 +7895,7 @@ "code": "LimitExceeded", "httpResponseCode": 409 }, - "smithy.api#documentation": "The request was rejected because it attempted to create resources beyond the current Amazon Web Services\n account limits. The error message describes the limit exceeded.
", + "smithy.api#documentation": "The request was rejected because it attempted to create resources beyond the current\n Amazon Web Services account limits. The error message describes the limit exceeded.
", "smithy.api#error": "client", "smithy.api#httpError": 409 } @@ -7923,7 +7923,7 @@ } ], "traits": { - "smithy.api#documentation": "Returns information about the access key IDs associated with the specified IAM user.\n If there is none, the operation returns an empty list.
\nAlthough each user is limited to a small number of keys, you can still paginate the\n results using the MaxItems and Marker parameters.
If the UserName is not specified, the user name is determined implicitly\n based on the Amazon Web Services access key ID used to sign the request. If a temporary access key is\n used, then UserName is required. If a long-term key is assigned to the\n user, then UserName is not required. This operation works for access keys\n under the Amazon Web Services account. Consequently, you can use this operation to manage\n Amazon Web Services account root user credentials even if the Amazon Web Services account has no associated\n users.
To ensure the security of your Amazon Web Services account, the secret access key is accessible\n only during key and user creation.
\nReturns information about the access key IDs associated with the specified IAM user.\n If there is none, the operation returns an empty list.
\nAlthough each user is limited to a small number of keys, you can still paginate the\n results using the MaxItems and Marker parameters.
If the UserName is not specified, the user name is determined implicitly\n based on the Amazon Web Services access key ID used to sign the request. If a temporary access key is\n used, then UserName is required. If a long-term key is assigned to the\n user, then UserName is not required. This operation works for access keys\n under the Amazon Web Services account. Consequently, you can use this operation to manage Amazon Web Services account root user\n credentials even if the Amazon Web Services account has no associated users.
To ensure the security of your Amazon Web Services account, the secret access key is accessible\n only during key and user creation.
\nReturns information about the signing certificates associated with the specified IAM\n user. If none exists, the operation returns an empty list.
\nAlthough each user is limited to a small number of signing certificates, you can still\n paginate the results using the MaxItems and Marker\n parameters.
If the UserName field is not specified, the user name is determined\n implicitly based on the Amazon Web Services access key ID used to sign the request for this operation.\n This operation works for access keys under the Amazon Web Services account. Consequently, you can use\n this operation to manage Amazon Web Services account root user credentials even if the Amazon Web Services account\n has no associated users.
Returns information about the signing certificates associated with the specified IAM\n user. If none exists, the operation returns an empty list.
\nAlthough each user is limited to a small number of signing certificates, you can still\n paginate the results using the MaxItems and Marker\n parameters.
If the UserName field is not specified, the user name is determined\n implicitly based on the Amazon Web Services access key ID used to sign the request for this operation.\n This operation works for access keys under the Amazon Web Services account. Consequently, you can use\n this operation to manage Amazon Web Services account root user credentials even if the Amazon Web Services account has no\n associated users.
Adds or updates the policy that is specified as the IAM user's permissions boundary.\n You can use an Amazon Web Services managed policy or a customer managed policy to set the boundary for\n a user. Use the boundary to control the maximum permissions that the user can have.\n Setting a permissions boundary is an advanced feature that can affect the permissions\n for the user.
\nPolicies that are used as permissions boundaries do not provide permissions. You\n must also attach a permissions policy to the user. To learn how the effective\n permissions for a user are evaluated, see IAM JSON policy\n evaluation logic in the IAM User Guide.
\nAdds or updates the policy that is specified as the IAM user's permissions\n boundary. You can use an Amazon Web Services managed policy or a customer managed policy to set the\n boundary for a user. Use the boundary to control the maximum permissions that the user\n can have. Setting a permissions boundary is an advanced feature that can affect the\n permissions for the user.
\nPolicies that are used as permissions boundaries do not provide permissions. You\n must also attach a permissions policy to the user. To learn how the effective\n permissions for a user are evaluated, see IAM JSON policy\n evaluation logic in the IAM User Guide.
\nContains information about the last time that an IAM role was used. This includes the\n date and time and the Region in which the role was last used. Activity is only reported for\n the trailing 400 days. This period can be shorter if your Region began supporting these\n features within the last year. The role might have been used more than 400 days ago. For\n more information, see Regions where data is tracked in the IAM User\n Guide.
" + "smithy.api#documentation": "Contains information about the last time that an IAM role was used. This includes the\n date and time and the Region in which the role was last used. Activity is only reported for\n the trailing 400 days. This period can be shorter if your Region began supporting these\n features within the last year. The role might have been used more than 400 days ago. For\n more information, see Regions where data is tracked in the IAM user\n Guide.
" } } }, @@ -12148,7 +12148,7 @@ "RoleLastUsed": { "target": "com.amazonaws.iam#RoleLastUsed", "traits": { - "smithy.api#documentation": "Contains information about the last time that an IAM role was used. This includes the\n date and time and the Region in which the role was last used. Activity is only reported for\n the trailing 400 days. This period can be shorter if your Region began supporting these\n features within the last year. The role might have been used more than 400 days ago. For\n more information, see Regions where data is tracked in the IAM User\n Guide.
" + "smithy.api#documentation": "Contains information about the last time that an IAM role was used. This includes the\n date and time and the Region in which the role was last used. Activity is only reported for\n the trailing 400 days. This period can be shorter if your Region began supporting these\n features within the last year. The role might have been used more than 400 days ago. For\n more information, see Regions where data is tracked in the IAM User Guide.
" } } }, @@ -12173,7 +12173,7 @@ } }, "traits": { - "smithy.api#documentation": "Contains information about the last time that an IAM role was used. This includes the\n date and time and the Region in which the role was last used. Activity is only reported for\n the trailing 400 days. This period can be shorter if your Region began supporting these\n features within the last year. The role might have been used more than 400 days ago. For\n more information, see Regions where data is tracked in the IAM User\n Guide.
\nThis data type is returned as a response element in the GetRole and\n GetAccountAuthorizationDetails operations.
" + "smithy.api#documentation": "Contains information about the last time that an IAM role was used. This includes the\n date and time and the Region in which the role was last used. Activity is only reported for\n the trailing 400 days. This period can be shorter if your Region began supporting these\n features within the last year. The role might have been used more than 400 days ago. For\n more information, see Regions where data is tracked in the IAM user\n Guide.
\nThis data type is returned as a response element in the GetRole and\n GetAccountAuthorizationDetails operations.
" } }, "com.amazonaws.iam#RoleUsageListType": { @@ -13187,7 +13187,7 @@ } ], "traits": { - "smithy.api#documentation": "Adds one or more tags to an OpenID Connect (OIDC)-compatible identity provider. For\n more information about these providers, see About web identity federation. If\n a tag with the same key name already exists, then that tag is overwritten with the new\n value.
\nA tag consists of a key name and an associated value. By assigning tags to your\n resources, you can do the following:
\n\n Administrative grouping and discovery - Attach\n tags to resources to aid in organization and search. For example, you could search for all\n resources with the key name Project and the value\n MyImportantProject. Or search for all resources with the key name\n Cost Center and the value 41200.
\n\n Access control - Include tags in IAM user-based\n and resource-based policies. You can use tags to restrict access to only an OIDC provider\n that has a specified tag attached. For examples of policies that show how to use tags to\n control access, see Control access using IAM tags in the\n IAM User Guide.
\nIf any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request \n fails and the resource is not created. For more information about tagging, see Tagging IAM resources in the\n IAM User Guide.
\nAmazon Web Services always interprets the tag Value as a single string. If you\n need to store an array, you can store comma-separated values in the string. However, you\n must interpret the value in your code.
Adds one or more tags to an OpenID Connect (OIDC)-compatible identity provider. For\n more information about these providers, see About web identity federation. If\n a tag with the same key name already exists, then that tag is overwritten with the new\n value.
\nA tag consists of a key name and an associated value. By assigning tags to your\n resources, you can do the following:
\n\n Administrative grouping and discovery - Attach\n tags to resources to aid in organization and search. For example, you could search for all\n resources with the key name Project and the value\n MyImportantProject. Or search for all resources with the key name\n Cost Center and the value 41200.
\n\n Access control - Include tags in IAM identity-based\n and resource-based policies. You can use tags to restrict access to only an OIDC provider\n that has a specified tag attached. For examples of policies that show how to use tags to\n control access, see Control access using IAM tags in the\n IAM User Guide.
\nIf any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request \n fails and the resource is not created. For more information about tagging, see Tagging IAM resources in the\n IAM User Guide.
\nAmazon Web Services always interprets the tag Value as a single string. If you\n need to store an array, you can store comma-separated values in the string. However, you\n must interpret the value in your code.
Adds one or more tags to an IAM user. If a tag with the same key name already exists,\n then that tag is overwritten with the new value.
\nA tag consists of a key name and an associated value. By assigning tags to your\n resources, you can do the following:
\n\n Administrative grouping and discovery - Attach\n tags to resources to aid in organization and search. For example, you could search for all\n resources with the key name Project and the value\n MyImportantProject. Or search for all resources with the key name\n Cost Center and the value 41200.
\n\n Access control - Include tags in IAM user-based\n and resource-based policies. You can use tags to restrict access to only an IAM\n requesting user that has a specified tag attached. You can also restrict access to only\n those resources that have a certain tag attached. For examples of policies that show how\n to use tags to control access, see Control access using IAM tags in the\n IAM User Guide.
\n\n Cost allocation - Use tags to help track which\n individuals and teams are using which Amazon Web Services resources.
\nIf any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request \n fails and the resource is not created. For more information about tagging, see Tagging IAM resources in the\n IAM User Guide.
\nAmazon Web Services always interprets the tag Value as a single string. If you\n need to store an array, you can store comma-separated values in the string. However, you\n must interpret the value in your code.
For more information about tagging, see Tagging IAM identities in the\n IAM User Guide.
" + "smithy.api#documentation": "Adds one or more tags to an IAM user. If a tag with the same key name already exists,\n then that tag is overwritten with the new value.
\nA tag consists of a key name and an associated value. By assigning tags to your\n resources, you can do the following:
\n\n Administrative grouping and discovery - Attach\n tags to resources to aid in organization and search. For example, you could search for all\n resources with the key name Project and the value\n MyImportantProject. Or search for all resources with the key name\n Cost Center and the value 41200.
\n\n Access control - Include tags in IAM identity-based\n and resource-based policies. You can use tags to restrict access to only an IAM\n requesting user that has a specified tag attached. You can also restrict access to only\n those resources that have a certain tag attached. For examples of policies that show how\n to use tags to control access, see Control access using IAM tags in the\n IAM User Guide.
\n\n Cost allocation - Use tags to help track which\n individuals and teams are using which Amazon Web Services resources.
\nIf any one of the tags is invalid or if you exceed the allowed maximum number of tags, then the entire request \n fails and the resource is not created. For more information about tagging, see Tagging IAM resources in the\n IAM User Guide.
\nAmazon Web Services always interprets the tag Value as a single string. If you\n need to store an array, you can store comma-separated values in the string. However, you\n must interpret the value in your code.
For more information about tagging, see Tagging IAM identities in the\n IAM User Guide.
" } }, "com.amazonaws.iam#TagUserRequest": { @@ -13934,7 +13934,7 @@ } ], "traits": { - "smithy.api#documentation": "Changes the status of the specified access key from Active to Inactive, or vice versa.\n This operation can be used to disable a user's key as part of a key rotation\n workflow.
\nIf the UserName is not specified, the user name is determined implicitly\n based on the Amazon Web Services access key ID used to sign the request. If a temporary access key is\n used, then UserName is required. If a long-term key is assigned to the\n user, then UserName is not required. This operation works for access keys\n under the Amazon Web Services account. Consequently, you can use this operation to manage\n Amazon Web Services account root user credentials even if the Amazon Web Services account has no associated\n users.
For information about rotating keys, see Managing keys and certificates\n in the IAM User Guide.
" + "smithy.api#documentation": "Changes the status of the specified access key from Active to Inactive, or vice versa.\n This operation can be used to disable a user's key as part of a key rotation\n workflow.
\nIf the UserName is not specified, the user name is determined implicitly\n based on the Amazon Web Services access key ID used to sign the request. If a temporary access key is\n used, then UserName is required. If a long-term key is assigned to the\n user, then UserName is not required. This operation works for access keys\n under the Amazon Web Services account. Consequently, you can use this operation to manage Amazon Web Services account root user\n credentials even if the Amazon Web Services account has no associated users.
For information about rotating keys, see Managing keys and certificates\n in the IAM User Guide.
" } }, "com.amazonaws.iam#UpdateAccessKeyRequest": { @@ -14606,7 +14606,7 @@ } ], "traits": { - "smithy.api#documentation": "Changes the status of the specified user signing certificate from active to disabled,\n or vice versa. This operation can be used to disable an IAM user's signing certificate\n as part of a certificate rotation work flow.
\nIf the UserName field is not specified, the user name is determined\n implicitly based on the Amazon Web Services access key ID used to sign the request. This operation\n works for access keys under the Amazon Web Services account. Consequently, you can use this operation\n to manage Amazon Web Services account root user credentials even if the Amazon Web Services account has no\n associated users.
Changes the status of the specified user signing certificate from active to disabled,\n or vice versa. This operation can be used to disable an IAM user's signing\n certificate as part of a certificate rotation work flow.
\nIf the UserName field is not specified, the user name is determined\n implicitly based on the Amazon Web Services access key ID used to sign the request. This operation\n works for access keys under the Amazon Web Services account. Consequently, you can use this operation\n to manage Amazon Web Services account root user credentials even if the Amazon Web Services account has no associated\n users.
Updates the name and/or the path of the specified IAM user.
\nYou should understand the implications of changing an IAM user's path or name.\n For more information, see Renaming an IAM\n user and Renaming an IAM\n group in the IAM User Guide.
\nTo change a user name, the requester must have appropriate permissions on both\n the source object and the target object. For example, to change Bob to Robert, the\n entity making the request must have permission on Bob and Robert, or must have\n permission on all (*). For more information about permissions, see Permissions and policies.
\nUpdates the name and/or the path of the specified IAM user.
\nYou should understand the implications of changing an IAM user's path or\n name. For more information, see Renaming an IAM\n user and Renaming an IAM\n group in the IAM User Guide.
\nTo change a user name, the requester must have appropriate permissions on both\n the source object and the target object. For example, to change Bob to Robert, the\n entity making the request must have permission on Bob and Robert, or must have\n permission on all (*). For more information about permissions, see Permissions and policies.
\nUploads an X.509 signing certificate and associates it with the specified IAM user.\n Some Amazon Web Services services require you to use certificates to validate requests that are signed\n with a corresponding private key. When you upload the certificate, its default status is\n Active.
For information about when you would use an X.509 signing certificate, see Managing\n server certificates in IAM in the\n IAM User Guide.
\nIf the UserName is not specified, the IAM user name is determined\n implicitly based on the Amazon Web Services access key ID used to sign the request. This operation\n works for access keys under the Amazon Web Services account. Consequently, you can use this operation\n to manage Amazon Web Services account root user credentials even if the Amazon Web Services account has no\n associated users.
Because the body of an X.509 certificate can be large, you should use POST rather\n than GET when calling UploadSigningCertificate. For information about\n setting up signatures and authorization through the API, see Signing\n Amazon Web Services API requests in the Amazon Web Services General Reference. For\n general information about using the Query API with IAM, see Making query\n requests in the IAM User Guide.
Uploads an X.509 signing certificate and associates it with the specified IAM user.\n Some Amazon Web Services services require you to use certificates to validate requests that are signed\n with a corresponding private key. When you upload the certificate, its default status is\n Active.
For information about when you would use an X.509 signing certificate, see Managing\n server certificates in IAM in the\n IAM User Guide.
\nIf the UserName is not specified, the IAM user name is determined\n implicitly based on the Amazon Web Services access key ID used to sign the request. This operation\n works for access keys under the Amazon Web Services account. Consequently, you can use this operation\n to manage Amazon Web Services account root user credentials even if the Amazon Web Services account has no associated\n users.
Because the body of an X.509 certificate can be large, you should use POST rather\n than GET when calling UploadSigningCertificate. For information about\n setting up signatures and authorization through the API, see Signing\n Amazon Web Services API requests in the Amazon Web Services General Reference. For\n general information about using the Query API with IAM, see Making query\n requests in the IAM User Guide.
The read/write throughput capacity mode for a table. The options are:
\n• throughputMode:PAY_PER_REQUEST and
• throughputMode:PROVISIONED - Provisioned capacity mode requires\n readCapacityUnits and writeCapacityUnits as input.
The default is throughput_mode:PAY_PER_REQUEST.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
", + "smithy.api#documentation": "The read/write throughput capacity mode for a table. The options are:
\n\n throughputMode:PAY_PER_REQUEST and
\n throughputMode:PROVISIONED - Provisioned capacity mode requires\n readCapacityUnits and writeCapacityUnits as input.
The default is throughput_mode:PAY_PER_REQUEST.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
", "smithy.api#required": {} } }, @@ -52,7 +52,7 @@ } }, "traits": { - "smithy.api#documentation": "Amazon Keyspaces has two read/write capacity modes for processing reads and writes on your tables:
\n• On-demand (default)
\n• Provisioned
\nThe read/write capacity mode that you choose controls how you are charged for read and\n write throughput and how table throughput capacity is managed.
\nFor more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Amazon Keyspaces has two read/write capacity modes for processing reads and writes on your tables:
\nOn-demand (default)
\nProvisioned
\nThe read/write capacity mode that you choose controls how you are charged for read and\n write throughput and how table throughput capacity is managed.
\nFor more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
" } }, "com.amazonaws.keyspaces#CapacitySpecificationSummary": { @@ -61,7 +61,7 @@ "throughputMode": { "target": "com.amazonaws.keyspaces#ThroughputMode", "traits": { - "smithy.api#documentation": "The read/write throughput capacity mode for a table. The options are:
\n• throughputMode:PAY_PER_REQUEST and
• throughputMode:PROVISIONED - Provisioned capacity mode requires\n readCapacityUnits and writeCapacityUnits as input.
The default is throughput_mode:PAY_PER_REQUEST.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
", + "smithy.api#documentation": "The read/write throughput capacity mode for a table. The options are:
\n\n throughputMode:PAY_PER_REQUEST and
\n throughputMode:PROVISIONED - Provisioned capacity mode requires\n readCapacityUnits and writeCapacityUnits as input.
The default is throughput_mode:PAY_PER_REQUEST.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
", "smithy.api#required": {} } }, @@ -85,7 +85,7 @@ } }, "traits": { - "smithy.api#documentation": "The read/write throughput capacity mode for a table. The options are:
\n• throughputMode:PAY_PER_REQUEST and
• throughputMode:PROVISIONED.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "The read/write throughput capacity mode for a table. The options are:
\n\n throughputMode:PAY_PER_REQUEST and
\n throughputMode:PROVISIONED.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
" } }, "com.amazonaws.keyspaces#CapacityUnits": { @@ -96,6 +96,32 @@ } } }, + "com.amazonaws.keyspaces#ClientSideTimestamps": { + "type": "structure", + "members": { + "status": { + "target": "com.amazonaws.keyspaces#ClientSideTimestampsStatus", + "traits": { + "smithy.api#documentation": "Shows how to enable client-side timestamps settings for the specified table.
", + "smithy.api#required": {} + } + } + }, + "traits": { + "smithy.api#documentation": "The client-side timestamp setting of the table.
\nFor more information, see How it works: Amazon Keyspaces client-side timestamps in the Amazon Keyspaces Developer\n Guide.
" + } + }, + "com.amazonaws.keyspaces#ClientSideTimestampsStatus": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "ENABLED", + "name": "ENABLED" + } + ] + } + }, "com.amazonaws.keyspaces#ClusteringKey": { "type": "structure", "members": { @@ -300,7 +326,7 @@ "schemaDefinition": { "target": "com.amazonaws.keyspaces#SchemaDefinition", "traits": { - "smithy.api#documentation": "The schemaDefinition consists of the\n following parameters.
For each column to be created:
\n• name - The name\n of the column.
• type - An Amazon Keyspaces\n data type. For more information, see Data types in the Amazon Keyspaces Developer\n Guide.
The primary key of the table consists of the\n following columns:
\n• partitionKeys - The partition key can be a single column, or it can be a\n compound value composed of two or more columns. The partition\n key portion of the primary key is required and determines how\n Amazon Keyspaces stores your data.
• name - The name of each partition key column.
• clusteringKeys - The optional clustering column portion of your primary key\n determines how the data is clustered and sorted within each\n partition.
• name - The name of the clustering column.
• orderBy - Sets the\n ascendant (ASC) or descendant (DESC) order modifier.
To define a column as static use staticColumns - \n Static columns store values that are shared by all rows in the same partition:
• name - The name\n of the column.
• type - An Amazon Keyspaces\n data type.
The schemaDefinition consists of the\n following parameters.
For each column to be created:
\n\n name - The name\n of the column.
\n type - An Amazon Keyspaces\n data type. For more information, see Data types in the Amazon Keyspaces Developer\n Guide.
The primary key of the table consists of the\n following columns:
\n\n partitionKeys - The partition key can be a single column, or it can be a\n compound value composed of two or more columns. The partition\n key portion of the primary key is required and determines how\n Amazon Keyspaces stores your data.
\n name - The name of each partition key column.
\n clusteringKeys - The optional clustering column portion of your primary key\n determines how the data is clustered and sorted within each\n partition.
\n name - The name of the clustering column.
\n orderBy - Sets the\n ascendant (ASC) or descendant (DESC) order modifier.
To define a column as static use staticColumns - \n Static columns store values that are shared by all rows in the same partition:
\n name - The name\n of the column.
\n type - An Amazon Keyspaces\n data type.
Specifies the read/write throughput capacity mode for the table. The options are:
\n• throughputMode:PAY_PER_REQUEST and
• throughputMode:PROVISIONED - Provisioned capacity mode requires\n readCapacityUnits and writeCapacityUnits as input.
The default is\n throughput_mode:PAY_PER_REQUEST.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Specifies the read/write throughput capacity mode for the table. The options are:
\n\n throughputMode:PAY_PER_REQUEST and
\n throughputMode:PROVISIONED - Provisioned capacity mode requires\n readCapacityUnits and writeCapacityUnits as input.
The default is\n throughput_mode:PAY_PER_REQUEST.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
" } }, "encryptionSpecification": { "target": "com.amazonaws.keyspaces#EncryptionSpecification", "traits": { - "smithy.api#documentation": "Specifies how the encryption key for encryption at rest is managed for the table. \n You can choose one of the following KMS key (KMS key):
\n• type:AWS_OWNED_KMS_KEY - This key is owned by Amazon Keyspaces.
• type:CUSTOMER_MANAGED_KMS_KEY - This key is stored in your account and is created, owned, and managed by you. \n This option \n requires the kms_key_identifier of the KMS key in Amazon Resource Name (ARN) format as input.
The default is type:AWS_OWNED_KMS_KEY.
For more information, see Encryption at rest in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Specifies how the encryption key for encryption at rest is managed for the table. \n You can choose one of the following KMS key (KMS key):
\n\n type:AWS_OWNED_KMS_KEY - This key is owned by Amazon Keyspaces.
\n type:CUSTOMER_MANAGED_KMS_KEY - This key is stored in your account and is created, owned, and managed by you. \n This option \n requires the kms_key_identifier of the KMS key in Amazon Resource Name (ARN) format as input.
The default is type:AWS_OWNED_KMS_KEY.
For more information, see Encryption at rest in the Amazon Keyspaces Developer\n Guide.
" } }, "pointInTimeRecovery": { "target": "com.amazonaws.keyspaces#PointInTimeRecovery", "traits": { - "smithy.api#documentation": "Specifies if pointInTimeRecovery is enabled or disabled for the\n table. The options are:
• ENABLED\n
• DISABLED\n
If it's not specified, the \n default is DISABLED.
For more information, see Point-in-time recovery in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Specifies if pointInTimeRecovery is enabled or disabled for the\n table. The options are:
\n status=ENABLED\n
\n status=DISABLED\n
If it's not specified, the \n default is status=DISABLED.
For more information, see Point-in-time recovery in the Amazon Keyspaces Developer\n Guide.
" } }, "ttl": { "target": "com.amazonaws.keyspaces#TimeToLive", "traits": { - "smithy.api#documentation": "Enables Time to Live custom settings for the\n table. The options are:
\n• status:enabled\n
• status:disabled\n
The default is status:disabled. After\n ttl is enabled, you can't disable it\n for the table.
For more information, see Expiring data by using Amazon Keyspaces Time to Live (TTL) in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Enables Time to Live custom settings for the\n table. The options are:
\n\n status:enabled\n
\n status:disabled\n
The default is status:disabled. After\n ttl is enabled, you can't disable it\n for the table.
For more information, see Expiring data by using Amazon Keyspaces Time to Live (TTL) in the Amazon Keyspaces Developer\n Guide.
" } }, "defaultTimeToLive": { @@ -345,6 +371,12 @@ "traits": { "smithy.api#documentation": "A list of key-value pair tags to be\n attached to the resource.
\nFor more information, see Adding tags and labels to Amazon Keyspaces resources in the Amazon Keyspaces Developer\n Guide.
" } + }, + "clientSideTimestamps": { + "target": "com.amazonaws.keyspaces#ClientSideTimestamps", + "traits": { + "smithy.api#documentation": "\n Enables client-side timestamps for the table. By default, the setting is disabled. You can enable \n client-side timestamps with the following option:
\n\n status: \"enabled\"\n
Once client-side timestamps are enabled for a table, this setting cannot be disabled.
" + } } } }, @@ -478,7 +510,7 @@ "type": { "target": "com.amazonaws.keyspaces#EncryptionType", "traits": { - "smithy.api#documentation": "The encryption option specified for the table. You can choose one of the following KMS keys (KMS keys):
\n• type:AWS_OWNED_KMS_KEY - This key is owned by Amazon Keyspaces.
• type:CUSTOMER_MANAGED_KMS_KEY - This key is stored in your account and is created, owned, and managed by you. \n This option \n requires the kms_key_identifier of the KMS key in Amazon Resource Name (ARN) format as input.
The default is type:AWS_OWNED_KMS_KEY.
For more information, see Encryption at rest in the Amazon Keyspaces Developer\n Guide.
", + "smithy.api#documentation": "The encryption option specified for the table. You can choose one of the following KMS keys (KMS keys):
\n\n type:AWS_OWNED_KMS_KEY - This key is owned by Amazon Keyspaces.
\n type:CUSTOMER_MANAGED_KMS_KEY - This key is stored in your account and is created, owned, and managed by you. \n This option \n requires the kms_key_identifier of the KMS key in Amazon Resource Name (ARN) format as input.
The default is type:AWS_OWNED_KMS_KEY.
For more information, see Encryption at rest in the Amazon Keyspaces Developer\n Guide.
", "smithy.api#required": {} } }, @@ -490,7 +522,7 @@ } }, "traits": { - "smithy.api#documentation": "Amazon Keyspaces encrypts and decrypts the table data at rest transparently and integrates with Key Management Service for storing and managing the encryption key. \n You can choose one of the following KMS keys (KMS keys):
\n• Amazon Web Services owned key - This is the default encryption type. The key is owned by Amazon Keyspaces (no additional charge).
\n• Customer managed key - This key is stored in your account and is created, owned, and managed by you. You have full control over the customer \n managed key (KMS charges apply).
\nFor more information about encryption at rest in Amazon Keyspaces, see Encryption at rest in the Amazon Keyspaces Developer\n Guide.
\nFor more information about KMS, see KMS management service concepts in the Key Management Service Developer Guide.
" + "smithy.api#documentation": "Amazon Keyspaces encrypts and decrypts the table data at rest transparently and integrates with Key Management Service for storing and managing the encryption key. \n You can choose one of the following KMS keys (KMS keys):
\nAmazon Web Services owned key - This is the default encryption type. The key is owned by Amazon Keyspaces (no additional charge).
\nCustomer managed key - This key is stored in your account and is created, owned, and managed by you. You have full control over the customer \n managed key (KMS charges apply).
\nFor more information about encryption at rest in Amazon Keyspaces, see Encryption at rest in the Amazon Keyspaces Developer\n Guide.
\nFor more information about KMS, see KMS management service concepts in the Key Management Service Developer Guide.
" } }, "com.amazonaws.keyspaces#EncryptionType": { @@ -664,7 +696,7 @@ "capacitySpecification": { "target": "com.amazonaws.keyspaces#CapacitySpecificationSummary", "traits": { - "smithy.api#documentation": "The read/write throughput capacity mode for a table. The options are:
\n• throughputMode:PAY_PER_REQUEST\n
• throughputMode:PROVISIONED\n
The read/write throughput capacity mode for a table. The options are:
\n\n throughputMode:PAY_PER_REQUEST\n
\n throughputMode:PROVISIONED\n
The default Time to Live settings of the specified table.
" + "smithy.api#documentation": "The default Time to Live settings in seconds of the specified table.
" } }, "comment": { @@ -696,6 +728,12 @@ "traits": { "smithy.api#documentation": "The the description of the specified table.
" } + }, + "clientSideTimestamps": { + "target": "com.amazonaws.keyspaces#ClientSideTimestamps", + "traits": { + "smithy.api#documentation": "\n The client-side timestamps setting of the table.
" + } } } }, @@ -810,7 +848,7 @@ "name": "cassandra" }, "aws.protocols#awsJson1_0": {}, - "smithy.api#documentation": "Amazon Keyspaces (for Apache Cassandra) is a scalable,\n highly available, and managed Apache Cassandra-compatible database service. Amazon Keyspaces makes it easy to migrate,\n run, and scale Cassandra workloads in the Amazon Web Services Cloud. With just a few clicks on the Amazon Web Services Management Console or a few lines of code, \n you can create keyspaces and tables in Amazon Keyspaces, without deploying any infrastructure or installing software.
\nIn addition to supporting Cassandra Query Language (CQL) requests via open-source Cassandra drivers, \n Amazon Keyspaces supports data definition language (DDL) operations to manage keyspaces and tables using the Amazon Web Services SDK and CLI. This API reference describes\n the supported DDL operations in detail.
\nFor the list of all supported CQL APIs, see Supported Cassandra APIs, operations, and data types \n in Amazon Keyspaces in the Amazon Keyspaces Developer\n Guide.
\nTo learn how Amazon Keyspaces API actions are recorded with CloudTrail, see Amazon Keyspaces information in CloudTrail in the Amazon Keyspaces Developer\n Guide.
\nFor more information about Amazon Web Services APIs, for example how to implement retry logic or how to sign Amazon Web Services API requests, see Amazon Web Services APIs in the General Reference.
", + "smithy.api#documentation": "Amazon Keyspaces (for Apache Cassandra) is a scalable,\n highly available, and managed Apache Cassandra-compatible database service. Amazon Keyspaces makes it easy to migrate,\n run, and scale Cassandra workloads in the Amazon Web Services Cloud. With just a few clicks on the Amazon Web Services Management Console or a few lines of code, \n you can create keyspaces and tables in Amazon Keyspaces, without deploying any infrastructure or installing software.
\nIn addition to supporting Cassandra Query Language (CQL) requests via open-source Cassandra drivers, \n Amazon Keyspaces supports data definition language (DDL) operations to manage keyspaces and tables using the Amazon Web Services SDK and CLI, as well as\n infrastructure as code (IaC) services and tools such as CloudFormation and Terraform. This API reference describes\n the supported DDL operations in detail.
\nFor the list of all supported CQL APIs, see Supported Cassandra APIs, operations, and data types \n in Amazon Keyspaces in the Amazon Keyspaces Developer\n Guide.
\nTo learn how Amazon Keyspaces API actions are recorded with CloudTrail, see Amazon Keyspaces information in CloudTrail in the Amazon Keyspaces Developer\n Guide.
\nFor more information about Amazon Web Services APIs, for example how to implement retry logic or how to sign Amazon Web Services API requests, see Amazon Web Services APIs in the General Reference.
", "smithy.api#title": "Amazon Keyspaces", "smithy.rules#endpointRuleSet": { "version": "1.0", @@ -1197,9 +1235,9 @@ } }, "params": { - "Region": "ap-east-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "ap-east-1" } }, { @@ -1210,9 +1248,9 @@ } }, "params": { - "Region": "ap-northeast-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "ap-northeast-1" } }, { @@ -1223,9 +1261,9 @@ } }, "params": { - "Region": "ap-northeast-2", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "ap-northeast-2" } }, { @@ -1236,9 +1274,9 @@ } }, "params": { - "Region": "ap-south-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "ap-south-1" } }, { @@ -1249,9 +1287,9 @@ } }, "params": { - "Region": "ap-southeast-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "ap-southeast-1" } }, { @@ -1262,9 +1300,9 @@ } }, "params": { - "Region": "ap-southeast-2", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "ap-southeast-2" } }, { @@ -1275,9 +1313,9 @@ } }, "params": { - "Region": "ca-central-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "ca-central-1" } }, { @@ -1288,9 +1326,9 @@ } }, "params": { - "Region": "eu-central-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "eu-central-1" } }, { @@ -1301,9 +1339,9 @@ } }, "params": { - "Region": "eu-north-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "eu-north-1" } }, { @@ -1314,9 +1352,9 @@ } }, "params": { - "Region": "eu-west-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "eu-west-1" } }, { @@ -1327,9 +1365,9 @@ } }, "params": { - "Region": "eu-west-2", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "eu-west-2" } }, { @@ -1340,9 +1378,9 @@ } }, "params": { - "Region": "eu-west-3", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "eu-west-3" } }, { @@ -1353,9 +1391,9 @@ } }, "params": { - "Region": "me-south-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "me-south-1" } }, { @@ -1366,9 +1404,9 @@ } }, "params": { - "Region": "sa-east-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "sa-east-1" } }, { @@ -1379,9 +1417,9 @@ } }, "params": { - "Region": "us-east-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-east-1" } }, { @@ -1392,9 +1430,9 @@ } }, "params": { - "Region": "us-east-1", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-east-1" } }, { @@ -1405,9 +1443,9 @@ } }, "params": { - "Region": "us-east-2", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-east-2" } }, { @@ -1418,9 +1456,9 @@ } }, "params": { - "Region": "us-west-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-west-1" } }, { @@ -1431,9 +1469,9 @@ } }, "params": { - "Region": "us-west-2", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-west-2" } }, { @@ -1444,9 +1482,9 @@ } }, "params": { - "Region": "us-west-2", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-west-2" } }, { @@ -1457,9 +1495,9 @@ } }, "params": { - "Region": "us-east-1", "UseDualStack": true, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-east-1" } }, { @@ -1470,9 +1508,9 @@ } }, "params": { - "Region": "us-east-1", "UseDualStack": true, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-east-1" } }, { @@ -1483,9 +1521,9 @@ } }, "params": { - "Region": "cn-north-1", "UseDualStack": true, - "UseFIPS": true + "UseFIPS": true, + "Region": "cn-north-1" } }, { @@ -1496,9 +1534,9 @@ } }, "params": { - "Region": "cn-north-1", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "cn-north-1" } }, { @@ -1509,9 +1547,9 @@ } }, "params": { - "Region": "cn-north-1", "UseDualStack": true, - "UseFIPS": false + "UseFIPS": false, + "Region": "cn-north-1" } }, { @@ -1522,9 +1560,9 @@ } }, "params": { - "Region": "cn-north-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "cn-north-1" } }, { @@ -1535,9 +1573,9 @@ } }, "params": { - "Region": "us-gov-east-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-gov-east-1" } }, { @@ -1548,9 +1586,9 @@ } }, "params": { - "Region": "us-gov-east-1", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-gov-east-1" } }, { @@ -1561,9 +1599,9 @@ } }, "params": { - "Region": "us-gov-west-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-gov-west-1" } }, { @@ -1574,9 +1612,9 @@ } }, "params": { - "Region": "us-gov-west-1", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-gov-west-1" } }, { @@ -1587,9 +1625,9 @@ } }, "params": { - "Region": "us-gov-east-1", "UseDualStack": true, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-gov-east-1" } }, { @@ -1600,9 +1638,9 @@ } }, "params": { - "Region": "us-gov-east-1", "UseDualStack": true, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-gov-east-1" } }, { @@ -1613,9 +1651,9 @@ } }, "params": { - "Region": "us-iso-east-1", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-iso-east-1" } }, { @@ -1626,9 +1664,9 @@ } }, "params": { - "Region": "us-iso-east-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-iso-east-1" } }, { @@ -1639,9 +1677,9 @@ } }, "params": { - "Region": "us-isob-east-1", "UseDualStack": false, - "UseFIPS": true + "UseFIPS": true, + "Region": "us-isob-east-1" } }, { @@ -1652,9 +1690,9 @@ } }, "params": { - "Region": "us-isob-east-1", "UseDualStack": false, - "UseFIPS": false + "UseFIPS": false, + "Region": "us-isob-east-1" } }, { @@ -1665,9 +1703,9 @@ } }, "params": { - "Region": "us-east-1", "UseDualStack": false, "UseFIPS": false, + "Region": "us-east-1", "Endpoint": "https://example.com" } }, @@ -1690,9 +1728,9 @@ "error": "Invalid Configuration: FIPS and custom endpoint are not supported" }, "params": { - "Region": "us-east-1", "UseDualStack": false, "UseFIPS": true, + "Region": "us-east-1", "Endpoint": "https://example.com" } }, @@ -1702,9 +1740,9 @@ "error": "Invalid Configuration: Dualstack and custom endpoint are not supported" }, "params": { - "Region": "us-east-1", "UseDualStack": true, "UseFIPS": false, + "Region": "us-east-1", "Endpoint": "https://example.com" } } @@ -1985,7 +2023,7 @@ "status": { "target": "com.amazonaws.keyspaces#PointInTimeRecoveryStatus", "traits": { - "smithy.api#documentation": "The options are:
\n• ENABLED\n
• DISABLED\n
The options are:
\n\n status=ENABLED\n
\n status=DISABLED\n
Restores the specified table to the specified point in time within the\n earliest_restorable_timestamp and the current time. For more information about restore points, see \n \n Time window for PITR continuous backups in the Amazon Keyspaces Developer Guide. \n
Any number of users can execute up to 4 concurrent restores (any type of restore) in a given account.
\nWhen you restore using point in time recovery,\n Amazon Keyspaces restores your source table's schema and data to the state \n based on the selected timestamp (day:hour:minute:second) to a new table. The Time to Live (TTL) settings\n are also restored to the state based on the selected timestamp.
In addition to the table's schema, data, and TTL settings,\n RestoreTable restores the capacity mode, encryption, and\n point-in-time recovery settings from the source table. \n Unlike the table's schema data and TTL settings, which are restored based on the selected timestamp, \n these settings are always restored based on the table's settings as of the current time or when the table was deleted.
You can also overwrite\n these settings during restore:
\n• Read/write capacity mode
\n• Provisioned throughput capacity settings
\n• Point-in-time (PITR) settings
\n• Tags
\nFor more \n information, see PITR restore settings in the Amazon Keyspaces Developer\n Guide.
\nNote that the following settings are not restored, and you must configure them manually for\n the new table:
\n• Automatic scaling policies (for tables that use provisioned capacity\n mode)
\n• Identity and Access Management (IAM) policies
\n• Amazon CloudWatch metrics and alarms
" + "smithy.api#documentation": "Restores the specified table to the specified point in time within the\n earliest_restorable_timestamp and the current time. For more information about restore points, see \n \n Time window for PITR continuous backups in the Amazon Keyspaces Developer Guide.
Any number of users can execute up to 4 concurrent restores (any type of restore) in a given account.
\nWhen you restore using point in time recovery,\n Amazon Keyspaces restores your source table's schema and data to the state \n based on the selected timestamp (day:hour:minute:second) to a new table. The Time to Live (TTL) settings\n are also restored to the state based on the selected timestamp.
In addition to the table's schema, data, and TTL settings,\n RestoreTable restores the capacity mode, encryption, and\n point-in-time recovery settings from the source table. \n Unlike the table's schema data and TTL settings, which are restored based on the selected timestamp, \n these settings are always restored based on the table's settings as of the current time or when the table was deleted.
You can also overwrite\n these settings during restore:
\nRead/write capacity mode
\nProvisioned throughput capacity settings
\nPoint-in-time (PITR) settings
\nTags
\nFor more \n information, see PITR restore settings in the Amazon Keyspaces Developer\n Guide.
\nNote that the following settings are not restored, and you must configure them manually for\n the new table:
\nAutomatic scaling policies (for tables that use provisioned capacity\n mode)
\nIdentity and Access Management (IAM) policies
\nAmazon CloudWatch metrics and alarms
\nSpecifies the read/write throughput capacity mode for the target table. The options are:
\n• throughputMode:PAY_PER_REQUEST\n
• throughputMode:PROVISIONED - Provisioned capacity mode requires\n readCapacityUnits and writeCapacityUnits as input.
The default is throughput_mode:PAY_PER_REQUEST.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Specifies the read/write throughput capacity mode for the target table. The options are:
\n\n throughputMode:PAY_PER_REQUEST\n
\n throughputMode:PROVISIONED - Provisioned capacity mode requires\n readCapacityUnits and writeCapacityUnits as input.
The default is throughput_mode:PAY_PER_REQUEST.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
" } }, "encryptionSpecificationOverride": { "target": "com.amazonaws.keyspaces#EncryptionSpecification", "traits": { - "smithy.api#documentation": "Specifies the encryption settings for the target table. You can choose one of the following KMS key (KMS key):
\n• type:AWS_OWNED_KMS_KEY - This key is owned by Amazon Keyspaces.
• type:CUSTOMER_MANAGED_KMS_KEY - This key is stored in your account and is created, owned, and managed by you. \n This option \n requires the kms_key_identifier of the KMS key in Amazon Resource Name (ARN) format as input.
The default is type:AWS_OWNED_KMS_KEY.
For more information, see Encryption at rest in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Specifies the encryption settings for the target table. You can choose one of the following KMS key (KMS key):
\n\n type:AWS_OWNED_KMS_KEY - This key is owned by Amazon Keyspaces.
\n type:CUSTOMER_MANAGED_KMS_KEY - This key is stored in your account and is created, owned, and managed by you. \n This option \n requires the kms_key_identifier of the KMS key in Amazon Resource Name (ARN) format as input.
The default is type:AWS_OWNED_KMS_KEY.
For more information, see Encryption at rest in the Amazon Keyspaces Developer\n Guide.
" } }, "pointInTimeRecoveryOverride": { "target": "com.amazonaws.keyspaces#PointInTimeRecovery", "traits": { - "smithy.api#documentation": "Specifies the pointInTimeRecovery settings for the target\n table. The options are:
• ENABLED \n
• DISABLED\n
If it's not specified, the default is DISABLED.
For more information, see Point-in-time recovery in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Specifies the pointInTimeRecovery settings for the target\n table. The options are:
\n status=ENABLED \n
\n status=DISABLED\n
If it's not specified, the default is status=DISABLED.
For more information, see Point-in-time recovery in the Amazon Keyspaces Developer\n Guide.
" } }, "tagsOverride": { @@ -2582,31 +2620,31 @@ "addColumns": { "target": "com.amazonaws.keyspaces#ColumnDefinitionList", "traits": { - "smithy.api#documentation": "For each column to be added to the specified table:
\n• name - The name\n of the column.
• type - An Amazon Keyspaces\n data type. For more information, see Data types in the Amazon Keyspaces Developer\n Guide.
For each column to be added to the specified table:
\n\n name - The name\n of the column.
\n type - An Amazon Keyspaces\n data type. For more information, see Data types in the Amazon Keyspaces Developer\n Guide.
Modifies the read/write throughput capacity mode for the table. The options are:
\n• throughputMode:PAY_PER_REQUEST and
• throughputMode:PROVISIONED - Provisioned capacity mode requires\n readCapacityUnits and writeCapacityUnits as input.
The default is throughput_mode:PAY_PER_REQUEST.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Modifies the read/write throughput capacity mode for the table. The options are:
\n\n throughputMode:PAY_PER_REQUEST and
\n throughputMode:PROVISIONED - Provisioned capacity mode requires\n readCapacityUnits and writeCapacityUnits as input.
The default is throughput_mode:PAY_PER_REQUEST.
For more information, see Read/write capacity modes in the Amazon Keyspaces Developer\n Guide.
" } }, "encryptionSpecification": { "target": "com.amazonaws.keyspaces#EncryptionSpecification", "traits": { - "smithy.api#documentation": "Modifies the encryption settings of the table. You can choose one of the following KMS key (KMS key):
\n• type:AWS_OWNED_KMS_KEY - This key is owned by Amazon Keyspaces.
• type:CUSTOMER_MANAGED_KMS_KEY - This key is stored in your account and is created, owned, and managed by you. \n This option \n requires the kms_key_identifier of the KMS key in Amazon Resource Name (ARN) format as input.
The default is AWS_OWNED_KMS_KEY.
For more information, see Encryption at rest in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Modifies the encryption settings of the table. You can choose one of the following KMS key (KMS key):
\n\n type:AWS_OWNED_KMS_KEY - This key is owned by Amazon Keyspaces.
\n type:CUSTOMER_MANAGED_KMS_KEY - This key is stored in your account and is created, owned, and managed by you. \n This option \n requires the kms_key_identifier of the KMS key in Amazon Resource Name (ARN) format as input.
The default is AWS_OWNED_KMS_KEY.
For more information, see Encryption at rest in the Amazon Keyspaces Developer\n Guide.
" } }, "pointInTimeRecovery": { "target": "com.amazonaws.keyspaces#PointInTimeRecovery", "traits": { - "smithy.api#documentation": "Modifies the pointInTimeRecovery settings of the table. The options are:
• ENABLED \n
• DISABLED \n
If it's not specified, the default is DISABLED.
For more information, see Point-in-time recovery in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Modifies the pointInTimeRecovery settings of the table. The options are:
\n status=ENABLED \n
\n status=DISABLED \n
If it's not specified, the default is status=DISABLED.
For more information, see Point-in-time recovery in the Amazon Keyspaces Developer\n Guide.
" } }, "ttl": { "target": "com.amazonaws.keyspaces#TimeToLive", "traits": { - "smithy.api#documentation": "Modifies Time to Live custom settings for the table. The options are:
\n• status:enabled \n
• status:disabled \n
The default is status:disabled. After\n ttl is enabled, you can't disable it\n for the table.
For more information, see Expiring data by using Amazon Keyspaces Time to Live (TTL) in the Amazon Keyspaces Developer\n Guide.
" + "smithy.api#documentation": "Modifies Time to Live custom settings for the table. The options are:
\n\n status:enabled \n
\n status:disabled \n
The default is status:disabled. After\n ttl is enabled, you can't disable it\n for the table.
For more information, see Expiring data by using Amazon Keyspaces Time to Live (TTL) in the Amazon Keyspaces Developer\n Guide.
" } }, "defaultTimeToLive": { @@ -2614,6 +2652,12 @@ "traits": { "smithy.api#documentation": "The default Time to Live setting in seconds for the table.
\nFor more information, see Setting the default TTL value for a table in the Amazon Keyspaces Developer\n Guide.
" } + }, + "clientSideTimestamps": { + "target": "com.amazonaws.keyspaces#ClientSideTimestamps", + "traits": { + "smithy.api#documentation": "Enables client-side timestamps for the table. By default, the setting is disabled. You can enable \n client-side timestamps with the following option:
\n\n status: \"enabled\"\n
Once client-side timestamps are enabled for a table, this setting cannot be disabled.
" + } } } }, @@ -2655,4 +2699,4 @@ } } } -} +} \ No newline at end of file