feat(client-elastic-load-balancing-v2): This release expands ALB Authentication to support JWT verification and adds support for a new JWT validation action in listener rule.

Author: awstools

clients/client-elastic-load-balancing-v2/src/commands/CreateListenerCommand.ts

@@ -77,7 +77,7 @@ export interface CreateListenerCommandOutput extends CreateListenerOutput, __Met
  *   ],
  *   DefaultActions: [ // Actions // required
  *     { // Action
- *       Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response", // required
+ *       Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response" || "jwt-validation", // required
  *       TargetGroupArn: "STRING_VALUE",
  *       AuthenticateOidcConfig: { // AuthenticateOidcActionConfig
  *         Issuer: "STRING_VALUE", // required
@@ -133,6 +133,19 @@ export interface CreateListenerCommandOutput extends CreateListenerOutput, __Met
  *           DurationSeconds: Number("int"),
  *         },
  *       },
+ *       JwtValidationConfig: { // JwtValidationActionConfig
+ *         JwksEndpoint: "STRING_VALUE", // required
+ *         Issuer: "STRING_VALUE", // required
+ *         AdditionalClaims: [ // JwtValidationActionAdditionalClaims
+ *           { // JwtValidationActionAdditionalClaim
+ *             Format: "single-string" || "string-array" || "space-separated-values", // required
+ *             Name: "STRING_VALUE", // required
+ *             Values: [ // JwtValidationActionAdditionalClaimValues // required
+ *               "STRING_VALUE",
+ *             ],
+ *           },
+ *         ],
+ *       },
  *     },
  *   ],
  *   AlpnPolicy: [ // AlpnPolicyName
@@ -170,7 +183,7 @@ export interface CreateListenerCommandOutput extends CreateListenerOutput, __Met
  * //       SslPolicy: "STRING_VALUE",
  * //       DefaultActions: [ // Actions
  * //         { // Action
- * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response", // required
+ * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response" || "jwt-validation", // required
  * //           TargetGroupArn: "STRING_VALUE",
  * //           AuthenticateOidcConfig: { // AuthenticateOidcActionConfig
  * //             Issuer: "STRING_VALUE", // required
@@ -226,6 +239,19 @@ export interface CreateListenerCommandOutput extends CreateListenerOutput, __Met
  * //               DurationSeconds: Number("int"),
  * //             },
  * //           },
+ * //           JwtValidationConfig: { // JwtValidationActionConfig
+ * //             JwksEndpoint: "STRING_VALUE", // required
+ * //             Issuer: "STRING_VALUE", // required
+ * //             AdditionalClaims: [ // JwtValidationActionAdditionalClaims
+ * //               { // JwtValidationActionAdditionalClaim
+ * //                 Format: "single-string" || "string-array" || "space-separated-values", // required
+ * //                 Name: "STRING_VALUE", // required
+ * //                 Values: [ // JwtValidationActionAdditionalClaimValues // required
+ * //                   "STRING_VALUE",
+ * //                 ],
+ * //               },
+ * //             ],
+ * //           },
  * //         },
  * //       ],
  * //       AlpnPolicy: [ // AlpnPolicyName

clients/client-elastic-load-balancing-v2/src/commands/CreateRuleCommand.ts

@@ -95,7 +95,7 @@ export interface CreateRuleCommandOutput extends CreateRuleOutput, __MetadataBea
  *   Priority: Number("int"), // required
  *   Actions: [ // Actions // required
  *     { // Action
- *       Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response", // required
+ *       Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response" || "jwt-validation", // required
  *       TargetGroupArn: "STRING_VALUE",
  *       AuthenticateOidcConfig: { // AuthenticateOidcActionConfig
  *         Issuer: "STRING_VALUE", // required
@@ -151,6 +151,19 @@ export interface CreateRuleCommandOutput extends CreateRuleOutput, __MetadataBea
  *           DurationSeconds: Number("int"),
  *         },
  *       },
+ *       JwtValidationConfig: { // JwtValidationActionConfig
+ *         JwksEndpoint: "STRING_VALUE", // required
+ *         Issuer: "STRING_VALUE", // required
+ *         AdditionalClaims: [ // JwtValidationActionAdditionalClaims
+ *           { // JwtValidationActionAdditionalClaim
+ *             Format: "single-string" || "string-array" || "space-separated-values", // required
+ *             Name: "STRING_VALUE", // required
+ *             Values: [ // JwtValidationActionAdditionalClaimValues // required
+ *               "STRING_VALUE",
+ *             ],
+ *           },
+ *         ],
+ *       },
  *     },
  *   ],
  *   Tags: [ // TagList
@@ -234,7 +247,7 @@ export interface CreateRuleCommandOutput extends CreateRuleOutput, __MetadataBea
  * //       ],
  * //       Actions: [ // Actions
  * //         { // Action
- * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response", // required
+ * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response" || "jwt-validation", // required
  * //           TargetGroupArn: "STRING_VALUE",
  * //           AuthenticateOidcConfig: { // AuthenticateOidcActionConfig
  * //             Issuer: "STRING_VALUE", // required
@@ -290,6 +303,19 @@ export interface CreateRuleCommandOutput extends CreateRuleOutput, __MetadataBea
  * //               DurationSeconds: Number("int"),
  * //             },
  * //           },
+ * //           JwtValidationConfig: { // JwtValidationActionConfig
+ * //             JwksEndpoint: "STRING_VALUE", // required
+ * //             Issuer: "STRING_VALUE", // required
+ * //             AdditionalClaims: [ // JwtValidationActionAdditionalClaims
+ * //               { // JwtValidationActionAdditionalClaim
+ * //                 Format: "single-string" || "string-array" || "space-separated-values", // required
+ * //                 Name: "STRING_VALUE", // required
+ * //                 Values: [ // JwtValidationActionAdditionalClaimValues // required
+ * //                   "STRING_VALUE",
+ * //                 ],
+ * //               },
+ * //             ],
+ * //           },
  * //         },
  * //       ],
  * //       IsDefault: true || false,

clients/client-elastic-load-balancing-v2/src/commands/DescribeListenersCommand.ts

@@ -68,7 +68,7 @@ export interface DescribeListenersCommandOutput extends DescribeListenersOutput,
  * //       SslPolicy: "STRING_VALUE",
  * //       DefaultActions: [ // Actions
  * //         { // Action
- * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response", // required
+ * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response" || "jwt-validation", // required
  * //           TargetGroupArn: "STRING_VALUE",
  * //           AuthenticateOidcConfig: { // AuthenticateOidcActionConfig
  * //             Issuer: "STRING_VALUE", // required
@@ -124,6 +124,19 @@ export interface DescribeListenersCommandOutput extends DescribeListenersOutput,
  * //               DurationSeconds: Number("int"),
  * //             },
  * //           },
+ * //           JwtValidationConfig: { // JwtValidationActionConfig
+ * //             JwksEndpoint: "STRING_VALUE", // required
+ * //             Issuer: "STRING_VALUE", // required
+ * //             AdditionalClaims: [ // JwtValidationActionAdditionalClaims
+ * //               { // JwtValidationActionAdditionalClaim
+ * //                 Format: "single-string" || "string-array" || "space-separated-values", // required
+ * //                 Name: "STRING_VALUE", // required
+ * //                 Values: [ // JwtValidationActionAdditionalClaimValues // required
+ * //                   "STRING_VALUE",
+ * //                 ],
+ * //               },
+ * //             ],
+ * //           },
  * //         },
  * //       ],
  * //       AlpnPolicy: [ // AlpnPolicyName

clients/client-elastic-load-balancing-v2/src/commands/DescribeRulesCommand.ts

@@ -32,7 +32,7 @@ export interface DescribeRulesCommandOutput extends DescribeRulesOutput, __Metad
 
 /**
  * <p>Describes the specified rules or the rules for the specified listener. You must specify
- *       either a listener or one or more rules.</p>
+ *       either a listener or rules.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -102,7 +102,7 @@ export interface DescribeRulesCommandOutput extends DescribeRulesOutput, __Metad
  * //       ],
  * //       Actions: [ // Actions
  * //         { // Action
- * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response", // required
+ * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response" || "jwt-validation", // required
  * //           TargetGroupArn: "STRING_VALUE",
  * //           AuthenticateOidcConfig: { // AuthenticateOidcActionConfig
  * //             Issuer: "STRING_VALUE", // required
@@ -158,6 +158,19 @@ export interface DescribeRulesCommandOutput extends DescribeRulesOutput, __Metad
  * //               DurationSeconds: Number("int"),
  * //             },
  * //           },
+ * //           JwtValidationConfig: { // JwtValidationActionConfig
+ * //             JwksEndpoint: "STRING_VALUE", // required
+ * //             Issuer: "STRING_VALUE", // required
+ * //             AdditionalClaims: [ // JwtValidationActionAdditionalClaims
+ * //               { // JwtValidationActionAdditionalClaim
+ * //                 Format: "single-string" || "string-array" || "space-separated-values", // required
+ * //                 Name: "STRING_VALUE", // required
+ * //                 Values: [ // JwtValidationActionAdditionalClaimValues // required
+ * //                   "STRING_VALUE",
+ * //                 ],
+ * //               },
+ * //             ],
+ * //           },
  * //         },
  * //       ],
  * //       IsDefault: true || false,

clients/client-elastic-load-balancing-v2/src/commands/ModifyListenerCommand.ts

@@ -60,7 +60,7 @@ export interface ModifyListenerCommandOutput extends ModifyListenerOutput, __Met
  *   ],
  *   DefaultActions: [ // Actions
  *     { // Action
- *       Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response", // required
+ *       Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response" || "jwt-validation", // required
  *       TargetGroupArn: "STRING_VALUE",
  *       AuthenticateOidcConfig: { // AuthenticateOidcActionConfig
  *         Issuer: "STRING_VALUE", // required
@@ -116,6 +116,19 @@ export interface ModifyListenerCommandOutput extends ModifyListenerOutput, __Met
  *           DurationSeconds: Number("int"),
  *         },
  *       },
+ *       JwtValidationConfig: { // JwtValidationActionConfig
+ *         JwksEndpoint: "STRING_VALUE", // required
+ *         Issuer: "STRING_VALUE", // required
+ *         AdditionalClaims: [ // JwtValidationActionAdditionalClaims
+ *           { // JwtValidationActionAdditionalClaim
+ *             Format: "single-string" || "string-array" || "space-separated-values", // required
+ *             Name: "STRING_VALUE", // required
+ *             Values: [ // JwtValidationActionAdditionalClaimValues // required
+ *               "STRING_VALUE",
+ *             ],
+ *           },
+ *         ],
+ *       },
  *     },
  *   ],
  *   AlpnPolicy: [ // AlpnPolicyName
@@ -147,7 +160,7 @@ export interface ModifyListenerCommandOutput extends ModifyListenerOutput, __Met
  * //       SslPolicy: "STRING_VALUE",
  * //       DefaultActions: [ // Actions
  * //         { // Action
- * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response", // required
+ * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response" || "jwt-validation", // required
  * //           TargetGroupArn: "STRING_VALUE",
  * //           AuthenticateOidcConfig: { // AuthenticateOidcActionConfig
  * //             Issuer: "STRING_VALUE", // required
@@ -203,6 +216,19 @@ export interface ModifyListenerCommandOutput extends ModifyListenerOutput, __Met
  * //               DurationSeconds: Number("int"),
  * //             },
  * //           },
+ * //           JwtValidationConfig: { // JwtValidationActionConfig
+ * //             JwksEndpoint: "STRING_VALUE", // required
+ * //             Issuer: "STRING_VALUE", // required
+ * //             AdditionalClaims: [ // JwtValidationActionAdditionalClaims
+ * //               { // JwtValidationActionAdditionalClaim
+ * //                 Format: "single-string" || "string-array" || "space-separated-values", // required
+ * //                 Name: "STRING_VALUE", // required
+ * //                 Values: [ // JwtValidationActionAdditionalClaimValues // required
+ * //                   "STRING_VALUE",
+ * //                 ],
+ * //               },
+ * //             ],
+ * //           },
  * //         },
  * //       ],
  * //       AlpnPolicy: [ // AlpnPolicyName

clients/client-elastic-load-balancing-v2/src/commands/ModifyRuleCommand.ts

@@ -92,7 +92,7 @@ export interface ModifyRuleCommandOutput extends ModifyRuleOutput, __MetadataBea
  *   ],
  *   Actions: [ // Actions
  *     { // Action
- *       Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response", // required
+ *       Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response" || "jwt-validation", // required
  *       TargetGroupArn: "STRING_VALUE",
  *       AuthenticateOidcConfig: { // AuthenticateOidcActionConfig
  *         Issuer: "STRING_VALUE", // required
@@ -148,6 +148,19 @@ export interface ModifyRuleCommandOutput extends ModifyRuleOutput, __MetadataBea
  *           DurationSeconds: Number("int"),
  *         },
  *       },
+ *       JwtValidationConfig: { // JwtValidationActionConfig
+ *         JwksEndpoint: "STRING_VALUE", // required
+ *         Issuer: "STRING_VALUE", // required
+ *         AdditionalClaims: [ // JwtValidationActionAdditionalClaims
+ *           { // JwtValidationActionAdditionalClaim
+ *             Format: "single-string" || "string-array" || "space-separated-values", // required
+ *             Name: "STRING_VALUE", // required
+ *             Values: [ // JwtValidationActionAdditionalClaimValues // required
+ *               "STRING_VALUE",
+ *             ],
+ *           },
+ *         ],
+ *       },
  *     },
  *   ],
  *   Transforms: [ // RuleTransformList
@@ -226,7 +239,7 @@ export interface ModifyRuleCommandOutput extends ModifyRuleOutput, __MetadataBea
  * //       ],
  * //       Actions: [ // Actions
  * //         { // Action
- * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response", // required
+ * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response" || "jwt-validation", // required
  * //           TargetGroupArn: "STRING_VALUE",
  * //           AuthenticateOidcConfig: { // AuthenticateOidcActionConfig
  * //             Issuer: "STRING_VALUE", // required
@@ -282,6 +295,19 @@ export interface ModifyRuleCommandOutput extends ModifyRuleOutput, __MetadataBea
  * //               DurationSeconds: Number("int"),
  * //             },
  * //           },
+ * //           JwtValidationConfig: { // JwtValidationActionConfig
+ * //             JwksEndpoint: "STRING_VALUE", // required
+ * //             Issuer: "STRING_VALUE", // required
+ * //             AdditionalClaims: [ // JwtValidationActionAdditionalClaims
+ * //               { // JwtValidationActionAdditionalClaim
+ * //                 Format: "single-string" || "string-array" || "space-separated-values", // required
+ * //                 Name: "STRING_VALUE", // required
+ * //                 Values: [ // JwtValidationActionAdditionalClaimValues // required
+ * //                   "STRING_VALUE",
+ * //                 ],
+ * //               },
+ * //             ],
+ * //           },
  * //         },
  * //       ],
  * //       IsDefault: true || false,

clients/client-elastic-load-balancing-v2/src/commands/SetRulePrioritiesCommand.ts

@@ -103,7 +103,7 @@ export interface SetRulePrioritiesCommandOutput extends SetRulePrioritiesOutput,
  * //       ],
  * //       Actions: [ // Actions
  * //         { // Action
- * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response", // required
+ * //           Type: "forward" || "authenticate-oidc" || "authenticate-cognito" || "redirect" || "fixed-response" || "jwt-validation", // required
  * //           TargetGroupArn: "STRING_VALUE",
  * //           AuthenticateOidcConfig: { // AuthenticateOidcActionConfig
  * //             Issuer: "STRING_VALUE", // required
@@ -159,6 +159,19 @@ export interface SetRulePrioritiesCommandOutput extends SetRulePrioritiesOutput,
  * //               DurationSeconds: Number("int"),
  * //             },
  * //           },
+ * //           JwtValidationConfig: { // JwtValidationActionConfig
+ * //             JwksEndpoint: "STRING_VALUE", // required
+ * //             Issuer: "STRING_VALUE", // required
+ * //             AdditionalClaims: [ // JwtValidationActionAdditionalClaims
+ * //               { // JwtValidationActionAdditionalClaim
+ * //                 Format: "single-string" || "string-array" || "space-separated-values", // required
+ * //                 Name: "STRING_VALUE", // required
+ * //                 Values: [ // JwtValidationActionAdditionalClaimValues // required
+ * //                   "STRING_VALUE",
+ * //                 ],
+ * //               },
+ * //             ],
+ * //           },
  * //         },
  * //       ],
  * //       IsDefault: true || false,