From 5ef61b5f0516e319ce8b89ba22c3d6e3ae79a1e8 Mon Sep 17 00:00:00 2001 From: awstools Date: Mon, 18 Dec 2023 19:20:38 +0000 Subject: [PATCH] feat(client-route53resolver): Add DOH protocols in resolver endpoints. --- .../AssociateFirewallRuleGroupCommand.ts | 2 +- ...sociateResolverEndpointIpAddressCommand.ts | 5 +- .../CreateFirewallDomainListCommand.ts | 2 +- .../src/commands/CreateFirewallRuleCommand.ts | 2 +- .../CreateFirewallRuleGroupCommand.ts | 2 +- .../commands/CreateOutpostResolverCommand.ts | 4 +- .../commands/CreateResolverEndpointCommand.ts | 15 +- .../src/commands/CreateResolverRuleCommand.ts | 7 +- .../DeleteFirewallRuleGroupCommand.ts | 2 +- .../commands/DeleteOutpostResolverCommand.ts | 2 +- .../commands/DeleteResolverEndpointCommand.ts | 5 +- .../src/commands/DeleteResolverRuleCommand.ts | 1 + .../DisassociateFirewallRuleGroupCommand.ts | 2 +- ...sociateResolverEndpointIpAddressCommand.ts | 5 +- .../src/commands/GetFirewallConfigCommand.ts | 2 +- .../GetFirewallRuleGroupPolicyCommand.ts | 2 +- .../src/commands/GetOutpostResolverCommand.ts | 2 +- .../src/commands/GetResolverConfigCommand.ts | 2 +- .../commands/GetResolverEndpointCommand.ts | 5 +- .../src/commands/GetResolverRuleCommand.ts | 1 + .../commands/ImportFirewallDomainsCommand.ts | 2 +- .../commands/ListFirewallConfigsCommand.ts | 2 +- .../ListFirewallDomainListsCommand.ts | 2 +- .../commands/ListFirewallDomainsCommand.ts | 2 +- ...istFirewallRuleGroupAssociationsCommand.ts | 2 +- .../commands/ListFirewallRuleGroupsCommand.ts | 2 +- .../src/commands/ListFirewallRulesCommand.ts | 2 +- .../commands/ListOutpostResolversCommand.ts | 2 +- .../commands/ListResolverConfigsCommand.ts | 2 +- .../commands/ListResolverEndpointsCommand.ts | 5 +- .../src/commands/ListResolverRulesCommand.ts | 1 + .../PutFirewallRuleGroupPolicyCommand.ts | 2 +- .../commands/UpdateFirewallConfigCommand.ts | 2 +- .../commands/UpdateFirewallDomainsCommand.ts | 2 +- .../src/commands/UpdateFirewallRuleCommand.ts | 2 +- ...dateFirewallRuleGroupAssociationCommand.ts | 2 +- .../commands/UpdateOutpostResolverCommand.ts | 2 +- .../commands/UpdateResolverConfigCommand.ts | 2 +- .../commands/UpdateResolverEndpointCommand.ts | 13 +- .../src/commands/UpdateResolverRuleCommand.ts | 5 + .../src/models/models_0.ts | 243 ++++++++++++++++-- .../src/protocols/Aws_json1_1.ts | 17 ++ .../aws-models/route53resolver.json | 118 +++++++-- 43 files changed, 420 insertions(+), 84 deletions(-) diff --git a/clients/client-route53resolver/src/commands/AssociateFirewallRuleGroupCommand.ts b/clients/client-route53resolver/src/commands/AssociateFirewallRuleGroupCommand.ts index 113ad4f93f8f..54d025c1289b 100644 --- a/clients/client-route53resolver/src/commands/AssociateFirewallRuleGroupCommand.ts +++ b/clients/client-route53resolver/src/commands/AssociateFirewallRuleGroupCommand.ts @@ -107,7 +107,7 @@ export interface AssociateFirewallRuleGroupCommandOutput extends AssociateFirewa *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/AssociateResolverEndpointIpAddressCommand.ts b/clients/client-route53resolver/src/commands/AssociateResolverEndpointIpAddressCommand.ts index ea8fc4447f5b..4966f817b382 100644 --- a/clients/client-route53resolver/src/commands/AssociateResolverEndpointIpAddressCommand.ts +++ b/clients/client-route53resolver/src/commands/AssociateResolverEndpointIpAddressCommand.ts @@ -83,9 +83,12 @@ export interface AssociateResolverEndpointIpAddressCommandOutput * // StatusMessage: "STRING_VALUE", * // CreationTime: "STRING_VALUE", * // ModificationTime: "STRING_VALUE", - * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", * // OutpostArn: "STRING_VALUE", * // PreferredInstanceType: "STRING_VALUE", + * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", + * // Protocols: [ // ProtocolList + * // "DoH" || "Do53" || "DoH-FIPS", + * // ], * // }, * // }; * diff --git a/clients/client-route53resolver/src/commands/CreateFirewallDomainListCommand.ts b/clients/client-route53resolver/src/commands/CreateFirewallDomainListCommand.ts index c5a49ec0600c..15a45a24c7f2 100644 --- a/clients/client-route53resolver/src/commands/CreateFirewallDomainListCommand.ts +++ b/clients/client-route53resolver/src/commands/CreateFirewallDomainListCommand.ts @@ -92,7 +92,7 @@ export interface CreateFirewallDomainListCommandOutput extends CreateFirewallDom *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/CreateFirewallRuleCommand.ts b/clients/client-route53resolver/src/commands/CreateFirewallRuleCommand.ts index 282b18fe1b94..398d4f7cf08e 100644 --- a/clients/client-route53resolver/src/commands/CreateFirewallRuleCommand.ts +++ b/clients/client-route53resolver/src/commands/CreateFirewallRuleCommand.ts @@ -99,7 +99,7 @@ export interface CreateFirewallRuleCommandOutput extends CreateFirewallRuleRespo *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/CreateFirewallRuleGroupCommand.ts b/clients/client-route53resolver/src/commands/CreateFirewallRuleGroupCommand.ts index 716a312b2b63..bef433be08a6 100644 --- a/clients/client-route53resolver/src/commands/CreateFirewallRuleGroupCommand.ts +++ b/clients/client-route53resolver/src/commands/CreateFirewallRuleGroupCommand.ts @@ -94,7 +94,7 @@ export interface CreateFirewallRuleGroupCommandOutput extends CreateFirewallRule *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/CreateOutpostResolverCommand.ts b/clients/client-route53resolver/src/commands/CreateOutpostResolverCommand.ts index 3b016437bb0f..2fb350cb81d3 100644 --- a/clients/client-route53resolver/src/commands/CreateOutpostResolverCommand.ts +++ b/clients/client-route53resolver/src/commands/CreateOutpostResolverCommand.ts @@ -37,7 +37,7 @@ export interface CreateOutpostResolverCommandOutput extends CreateOutpostResolve /** * @public - *

Creates an Route 53 Resolver on an Outpost.

+ *

Creates a Route 53 Resolver on an Outpost.

* @example * Use a bare-bones client and the command you need to make an API call. * ```javascript @@ -99,7 +99,7 @@ export interface CreateOutpostResolverCommandOutput extends CreateOutpostResolve *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/CreateResolverEndpointCommand.ts b/clients/client-route53resolver/src/commands/CreateResolverEndpointCommand.ts index 4a6305935554..ad4651390de9 100644 --- a/clients/client-route53resolver/src/commands/CreateResolverEndpointCommand.ts +++ b/clients/client-route53resolver/src/commands/CreateResolverEndpointCommand.ts @@ -68,6 +68,8 @@ export interface CreateResolverEndpointCommandOutput extends CreateResolverEndpo * Ipv6: "STRING_VALUE", * }, * ], + * OutpostArn: "STRING_VALUE", + * PreferredInstanceType: "STRING_VALUE", * Tags: [ // TagList * { // Tag * Key: "STRING_VALUE", // required @@ -75,8 +77,9 @@ export interface CreateResolverEndpointCommandOutput extends CreateResolverEndpo * }, * ], * ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", - * OutpostArn: "STRING_VALUE", - * PreferredInstanceType: "STRING_VALUE", + * Protocols: [ // ProtocolList + * "DoH" || "Do53" || "DoH-FIPS", + * ], * }; * const command = new CreateResolverEndpointCommand(input); * const response = await client.send(command); @@ -96,9 +99,12 @@ export interface CreateResolverEndpointCommandOutput extends CreateResolverEndpo * // StatusMessage: "STRING_VALUE", * // CreationTime: "STRING_VALUE", * // ModificationTime: "STRING_VALUE", - * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", * // OutpostArn: "STRING_VALUE", * // PreferredInstanceType: "STRING_VALUE", + * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", + * // Protocols: [ // ProtocolList + * // "DoH" || "Do53" || "DoH-FIPS", + * // ], * // }, * // }; * @@ -110,6 +116,9 @@ export interface CreateResolverEndpointCommandOutput extends CreateResolverEndpo * @see {@link CreateResolverEndpointCommandOutput} for command's `response` shape. * @see {@link Route53ResolverClientResolvedConfig | config} for Route53ResolverClient's `config` shape. * + * @throws {@link AccessDeniedException} (client fault) + *

The current account doesn't have the IAM permissions required to perform the specified Resolver operation.

+ * * @throws {@link InternalServiceErrorException} (client fault) *

We encountered an unknown error. Try again in a few minutes.

* diff --git a/clients/client-route53resolver/src/commands/CreateResolverRuleCommand.ts b/clients/client-route53resolver/src/commands/CreateResolverRuleCommand.ts index 19635de4e245..af27c4d7fee8 100644 --- a/clients/client-route53resolver/src/commands/CreateResolverRuleCommand.ts +++ b/clients/client-route53resolver/src/commands/CreateResolverRuleCommand.ts @@ -49,12 +49,13 @@ export interface CreateResolverRuleCommandOutput extends CreateResolverRuleRespo * CreatorRequestId: "STRING_VALUE", // required * Name: "STRING_VALUE", * RuleType: "FORWARD" || "SYSTEM" || "RECURSIVE", // required - * DomainName: "STRING_VALUE", // required + * DomainName: "STRING_VALUE", * TargetIps: [ // TargetList * { // TargetAddress * Ip: "STRING_VALUE", * Port: Number("int"), * Ipv6: "STRING_VALUE", + * Protocol: "DoH" || "Do53" || "DoH-FIPS", * }, * ], * ResolverEndpointId: "STRING_VALUE", @@ -82,6 +83,7 @@ export interface CreateResolverRuleCommandOutput extends CreateResolverRuleRespo * // Ip: "STRING_VALUE", * // Port: Number("int"), * // Ipv6: "STRING_VALUE", + * // Protocol: "DoH" || "Do53" || "DoH-FIPS", * // }, * // ], * // ResolverEndpointId: "STRING_VALUE", @@ -100,6 +102,9 @@ export interface CreateResolverRuleCommandOutput extends CreateResolverRuleRespo * @see {@link CreateResolverRuleCommandOutput} for command's `response` shape. * @see {@link Route53ResolverClientResolvedConfig | config} for Route53ResolverClient's `config` shape. * + * @throws {@link AccessDeniedException} (client fault) + *

The current account doesn't have the IAM permissions required to perform the specified Resolver operation.

+ * * @throws {@link InternalServiceErrorException} (client fault) *

We encountered an unknown error. Try again in a few minutes.

* diff --git a/clients/client-route53resolver/src/commands/DeleteFirewallRuleGroupCommand.ts b/clients/client-route53resolver/src/commands/DeleteFirewallRuleGroupCommand.ts index c0399cdfcd86..b0298e293ff8 100644 --- a/clients/client-route53resolver/src/commands/DeleteFirewallRuleGroupCommand.ts +++ b/clients/client-route53resolver/src/commands/DeleteFirewallRuleGroupCommand.ts @@ -91,7 +91,7 @@ export interface DeleteFirewallRuleGroupCommandOutput extends DeleteFirewallRule *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/DeleteOutpostResolverCommand.ts b/clients/client-route53resolver/src/commands/DeleteOutpostResolverCommand.ts index c921062e93cc..fdd0a7a658b3 100644 --- a/clients/client-route53resolver/src/commands/DeleteOutpostResolverCommand.ts +++ b/clients/client-route53resolver/src/commands/DeleteOutpostResolverCommand.ts @@ -91,7 +91,7 @@ export interface DeleteOutpostResolverCommandOutput extends DeleteOutpostResolve *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/DeleteResolverEndpointCommand.ts b/clients/client-route53resolver/src/commands/DeleteResolverEndpointCommand.ts index 0cde587fae76..594e0bb3e1fb 100644 --- a/clients/client-route53resolver/src/commands/DeleteResolverEndpointCommand.ts +++ b/clients/client-route53resolver/src/commands/DeleteResolverEndpointCommand.ts @@ -77,9 +77,12 @@ export interface DeleteResolverEndpointCommandOutput extends DeleteResolverEndpo * // StatusMessage: "STRING_VALUE", * // CreationTime: "STRING_VALUE", * // ModificationTime: "STRING_VALUE", - * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", * // OutpostArn: "STRING_VALUE", * // PreferredInstanceType: "STRING_VALUE", + * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", + * // Protocols: [ // ProtocolList + * // "DoH" || "Do53" || "DoH-FIPS", + * // ], * // }, * // }; * diff --git a/clients/client-route53resolver/src/commands/DeleteResolverRuleCommand.ts b/clients/client-route53resolver/src/commands/DeleteResolverRuleCommand.ts index 761c318e41af..0c4743f6773b 100644 --- a/clients/client-route53resolver/src/commands/DeleteResolverRuleCommand.ts +++ b/clients/client-route53resolver/src/commands/DeleteResolverRuleCommand.ts @@ -66,6 +66,7 @@ export interface DeleteResolverRuleCommandOutput extends DeleteResolverRuleRespo * // Ip: "STRING_VALUE", * // Port: Number("int"), * // Ipv6: "STRING_VALUE", + * // Protocol: "DoH" || "Do53" || "DoH-FIPS", * // }, * // ], * // ResolverEndpointId: "STRING_VALUE", diff --git a/clients/client-route53resolver/src/commands/DisassociateFirewallRuleGroupCommand.ts b/clients/client-route53resolver/src/commands/DisassociateFirewallRuleGroupCommand.ts index 47cc5dcb49e5..b810d0621845 100644 --- a/clients/client-route53resolver/src/commands/DisassociateFirewallRuleGroupCommand.ts +++ b/clients/client-route53resolver/src/commands/DisassociateFirewallRuleGroupCommand.ts @@ -98,7 +98,7 @@ export interface DisassociateFirewallRuleGroupCommandOutput *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/DisassociateResolverEndpointIpAddressCommand.ts b/clients/client-route53resolver/src/commands/DisassociateResolverEndpointIpAddressCommand.ts index 05f8080d6eca..fa6243141774 100644 --- a/clients/client-route53resolver/src/commands/DisassociateResolverEndpointIpAddressCommand.ts +++ b/clients/client-route53resolver/src/commands/DisassociateResolverEndpointIpAddressCommand.ts @@ -84,9 +84,12 @@ export interface DisassociateResolverEndpointIpAddressCommandOutput * // StatusMessage: "STRING_VALUE", * // CreationTime: "STRING_VALUE", * // ModificationTime: "STRING_VALUE", - * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", * // OutpostArn: "STRING_VALUE", * // PreferredInstanceType: "STRING_VALUE", + * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", + * // Protocols: [ // ProtocolList + * // "DoH" || "Do53" || "DoH-FIPS", + * // ], * // }, * // }; * diff --git a/clients/client-route53resolver/src/commands/GetFirewallConfigCommand.ts b/clients/client-route53resolver/src/commands/GetFirewallConfigCommand.ts index 2eaa172157f9..41c46a4aabdc 100644 --- a/clients/client-route53resolver/src/commands/GetFirewallConfigCommand.ts +++ b/clients/client-route53resolver/src/commands/GetFirewallConfigCommand.ts @@ -80,7 +80,7 @@ export interface GetFirewallConfigCommandOutput extends GetFirewallConfigRespons *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/GetFirewallRuleGroupPolicyCommand.ts b/clients/client-route53resolver/src/commands/GetFirewallRuleGroupPolicyCommand.ts index 07c75bbd4d8e..157b3bf260dc 100644 --- a/clients/client-route53resolver/src/commands/GetFirewallRuleGroupPolicyCommand.ts +++ b/clients/client-route53resolver/src/commands/GetFirewallRuleGroupPolicyCommand.ts @@ -75,7 +75,7 @@ export interface GetFirewallRuleGroupPolicyCommandOutput extends GetFirewallRule *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/GetOutpostResolverCommand.ts b/clients/client-route53resolver/src/commands/GetOutpostResolverCommand.ts index 6be49e1d4fe2..37a1e443115d 100644 --- a/clients/client-route53resolver/src/commands/GetOutpostResolverCommand.ts +++ b/clients/client-route53resolver/src/commands/GetOutpostResolverCommand.ts @@ -87,7 +87,7 @@ export interface GetOutpostResolverCommandOutput extends GetOutpostResolverRespo *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/GetResolverConfigCommand.ts b/clients/client-route53resolver/src/commands/GetResolverConfigCommand.ts index d261b6eafe03..a1d2a3917b9d 100644 --- a/clients/client-route53resolver/src/commands/GetResolverConfigCommand.ts +++ b/clients/client-route53resolver/src/commands/GetResolverConfigCommand.ts @@ -83,7 +83,7 @@ export interface GetResolverConfigCommandOutput extends GetResolverConfigRespons *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/GetResolverEndpointCommand.ts b/clients/client-route53resolver/src/commands/GetResolverEndpointCommand.ts index 037a833ba96b..45796ae6758e 100644 --- a/clients/client-route53resolver/src/commands/GetResolverEndpointCommand.ts +++ b/clients/client-route53resolver/src/commands/GetResolverEndpointCommand.ts @@ -66,9 +66,12 @@ export interface GetResolverEndpointCommandOutput extends GetResolverEndpointRes * // StatusMessage: "STRING_VALUE", * // CreationTime: "STRING_VALUE", * // ModificationTime: "STRING_VALUE", - * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", * // OutpostArn: "STRING_VALUE", * // PreferredInstanceType: "STRING_VALUE", + * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", + * // Protocols: [ // ProtocolList + * // "DoH" || "Do53" || "DoH-FIPS", + * // ], * // }, * // }; * diff --git a/clients/client-route53resolver/src/commands/GetResolverRuleCommand.ts b/clients/client-route53resolver/src/commands/GetResolverRuleCommand.ts index c0a550a4a127..ab0fd154644d 100644 --- a/clients/client-route53resolver/src/commands/GetResolverRuleCommand.ts +++ b/clients/client-route53resolver/src/commands/GetResolverRuleCommand.ts @@ -65,6 +65,7 @@ export interface GetResolverRuleCommandOutput extends GetResolverRuleResponse, _ * // Ip: "STRING_VALUE", * // Port: Number("int"), * // Ipv6: "STRING_VALUE", + * // Protocol: "DoH" || "Do53" || "DoH-FIPS", * // }, * // ], * // ResolverEndpointId: "STRING_VALUE", diff --git a/clients/client-route53resolver/src/commands/ImportFirewallDomainsCommand.ts b/clients/client-route53resolver/src/commands/ImportFirewallDomainsCommand.ts index 43b78cfef948..96a30773bdb8 100644 --- a/clients/client-route53resolver/src/commands/ImportFirewallDomainsCommand.ts +++ b/clients/client-route53resolver/src/commands/ImportFirewallDomainsCommand.ts @@ -102,7 +102,7 @@ export interface ImportFirewallDomainsCommandOutput extends ImportFirewallDomain *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/ListFirewallConfigsCommand.ts b/clients/client-route53resolver/src/commands/ListFirewallConfigsCommand.ts index f0ec638d9e78..27e15d39dae9 100644 --- a/clients/client-route53resolver/src/commands/ListFirewallConfigsCommand.ts +++ b/clients/client-route53resolver/src/commands/ListFirewallConfigsCommand.ts @@ -81,7 +81,7 @@ export interface ListFirewallConfigsCommandOutput extends ListFirewallConfigsRes *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/ListFirewallDomainListsCommand.ts b/clients/client-route53resolver/src/commands/ListFirewallDomainListsCommand.ts index dfda26b11432..836bd1021d5b 100644 --- a/clients/client-route53resolver/src/commands/ListFirewallDomainListsCommand.ts +++ b/clients/client-route53resolver/src/commands/ListFirewallDomainListsCommand.ts @@ -82,7 +82,7 @@ export interface ListFirewallDomainListsCommandOutput extends ListFirewallDomain *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/ListFirewallDomainsCommand.ts b/clients/client-route53resolver/src/commands/ListFirewallDomainsCommand.ts index 0cca07e0d181..36c603ce8c62 100644 --- a/clients/client-route53resolver/src/commands/ListFirewallDomainsCommand.ts +++ b/clients/client-route53resolver/src/commands/ListFirewallDomainsCommand.ts @@ -80,7 +80,7 @@ export interface ListFirewallDomainsCommandOutput extends ListFirewallDomainsRes *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/ListFirewallRuleGroupAssociationsCommand.ts b/clients/client-route53resolver/src/commands/ListFirewallRuleGroupAssociationsCommand.ts index 21fd9aa6e9d6..4b0a1662cb7c 100644 --- a/clients/client-route53resolver/src/commands/ListFirewallRuleGroupAssociationsCommand.ts +++ b/clients/client-route53resolver/src/commands/ListFirewallRuleGroupAssociationsCommand.ts @@ -102,7 +102,7 @@ export interface ListFirewallRuleGroupAssociationsCommandOutput *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/ListFirewallRuleGroupsCommand.ts b/clients/client-route53resolver/src/commands/ListFirewallRuleGroupsCommand.ts index 9caa69d4be44..109a81367d79 100644 --- a/clients/client-route53resolver/src/commands/ListFirewallRuleGroupsCommand.ts +++ b/clients/client-route53resolver/src/commands/ListFirewallRuleGroupsCommand.ts @@ -83,7 +83,7 @@ export interface ListFirewallRuleGroupsCommandOutput extends ListFirewallRuleGro *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/ListFirewallRulesCommand.ts b/clients/client-route53resolver/src/commands/ListFirewallRulesCommand.ts index 2451c9b4237e..cf0cb292b995 100644 --- a/clients/client-route53resolver/src/commands/ListFirewallRulesCommand.ts +++ b/clients/client-route53resolver/src/commands/ListFirewallRulesCommand.ts @@ -95,7 +95,7 @@ export interface ListFirewallRulesCommandOutput extends ListFirewallRulesRespons *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/ListOutpostResolversCommand.ts b/clients/client-route53resolver/src/commands/ListOutpostResolversCommand.ts index a5855e040273..5e28c7f2f971 100644 --- a/clients/client-route53resolver/src/commands/ListOutpostResolversCommand.ts +++ b/clients/client-route53resolver/src/commands/ListOutpostResolversCommand.ts @@ -91,7 +91,7 @@ export interface ListOutpostResolversCommandOutput extends ListOutpostResolversR *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/ListResolverConfigsCommand.ts b/clients/client-route53resolver/src/commands/ListResolverConfigsCommand.ts index 9744297d1323..fb1cf7d20c4c 100644 --- a/clients/client-route53resolver/src/commands/ListResolverConfigsCommand.ts +++ b/clients/client-route53resolver/src/commands/ListResolverConfigsCommand.ts @@ -90,7 +90,7 @@ export interface ListResolverConfigsCommandOutput extends ListResolverConfigsRes *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/ListResolverEndpointsCommand.ts b/clients/client-route53resolver/src/commands/ListResolverEndpointsCommand.ts index d9da9d8a5b28..2f182db6b221 100644 --- a/clients/client-route53resolver/src/commands/ListResolverEndpointsCommand.ts +++ b/clients/client-route53resolver/src/commands/ListResolverEndpointsCommand.ts @@ -77,9 +77,12 @@ export interface ListResolverEndpointsCommandOutput extends ListResolverEndpoint * // StatusMessage: "STRING_VALUE", * // CreationTime: "STRING_VALUE", * // ModificationTime: "STRING_VALUE", - * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", * // OutpostArn: "STRING_VALUE", * // PreferredInstanceType: "STRING_VALUE", + * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", + * // Protocols: [ // ProtocolList + * // "DoH" || "Do53" || "DoH-FIPS", + * // ], * // }, * // ], * // }; diff --git a/clients/client-route53resolver/src/commands/ListResolverRulesCommand.ts b/clients/client-route53resolver/src/commands/ListResolverRulesCommand.ts index b47a76a39a24..b1723eb582ad 100644 --- a/clients/client-route53resolver/src/commands/ListResolverRulesCommand.ts +++ b/clients/client-route53resolver/src/commands/ListResolverRulesCommand.ts @@ -76,6 +76,7 @@ export interface ListResolverRulesCommandOutput extends ListResolverRulesRespons * // Ip: "STRING_VALUE", * // Port: Number("int"), * // Ipv6: "STRING_VALUE", + * // Protocol: "DoH" || "Do53" || "DoH-FIPS", * // }, * // ], * // ResolverEndpointId: "STRING_VALUE", diff --git a/clients/client-route53resolver/src/commands/PutFirewallRuleGroupPolicyCommand.ts b/clients/client-route53resolver/src/commands/PutFirewallRuleGroupPolicyCommand.ts index 21fe4e7340e2..3ec5b8a1e2e7 100644 --- a/clients/client-route53resolver/src/commands/PutFirewallRuleGroupPolicyCommand.ts +++ b/clients/client-route53resolver/src/commands/PutFirewallRuleGroupPolicyCommand.ts @@ -77,7 +77,7 @@ export interface PutFirewallRuleGroupPolicyCommandOutput extends PutFirewallRule *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/UpdateFirewallConfigCommand.ts b/clients/client-route53resolver/src/commands/UpdateFirewallConfigCommand.ts index 4f693fbbe1e2..c0ff85bd04cc 100644 --- a/clients/client-route53resolver/src/commands/UpdateFirewallConfigCommand.ts +++ b/clients/client-route53resolver/src/commands/UpdateFirewallConfigCommand.ts @@ -81,7 +81,7 @@ export interface UpdateFirewallConfigCommandOutput extends UpdateFirewallConfigR *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/UpdateFirewallDomainsCommand.ts b/clients/client-route53resolver/src/commands/UpdateFirewallDomainsCommand.ts index 42712fa58741..449a6d88f53e 100644 --- a/clients/client-route53resolver/src/commands/UpdateFirewallDomainsCommand.ts +++ b/clients/client-route53resolver/src/commands/UpdateFirewallDomainsCommand.ts @@ -89,7 +89,7 @@ export interface UpdateFirewallDomainsCommandOutput extends UpdateFirewallDomain *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/UpdateFirewallRuleCommand.ts b/clients/client-route53resolver/src/commands/UpdateFirewallRuleCommand.ts index 5a83da26b8be..af28260273c6 100644 --- a/clients/client-route53resolver/src/commands/UpdateFirewallRuleCommand.ts +++ b/clients/client-route53resolver/src/commands/UpdateFirewallRuleCommand.ts @@ -100,7 +100,7 @@ export interface UpdateFirewallRuleCommandOutput extends UpdateFirewallRuleRespo *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/UpdateFirewallRuleGroupAssociationCommand.ts b/clients/client-route53resolver/src/commands/UpdateFirewallRuleGroupAssociationCommand.ts index 9712fd2aaf95..3cd68c2ef6c0 100644 --- a/clients/client-route53resolver/src/commands/UpdateFirewallRuleGroupAssociationCommand.ts +++ b/clients/client-route53resolver/src/commands/UpdateFirewallRuleGroupAssociationCommand.ts @@ -104,7 +104,7 @@ export interface UpdateFirewallRuleGroupAssociationCommandOutput *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/UpdateOutpostResolverCommand.ts b/clients/client-route53resolver/src/commands/UpdateOutpostResolverCommand.ts index 20e23886eb78..e04deefd89fe 100644 --- a/clients/client-route53resolver/src/commands/UpdateOutpostResolverCommand.ts +++ b/clients/client-route53resolver/src/commands/UpdateOutpostResolverCommand.ts @@ -97,7 +97,7 @@ export interface UpdateOutpostResolverCommandOutput extends UpdateOutpostResolve *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/UpdateResolverConfigCommand.ts b/clients/client-route53resolver/src/commands/UpdateResolverConfigCommand.ts index fa6ec0725906..e2d90232f184 100644 --- a/clients/client-route53resolver/src/commands/UpdateResolverConfigCommand.ts +++ b/clients/client-route53resolver/src/commands/UpdateResolverConfigCommand.ts @@ -93,7 +93,7 @@ export interface UpdateResolverConfigCommandOutput extends UpdateResolverConfigR *

The request was throttled. Try again in a few minutes.

* * @throws {@link ValidationException} (client fault) - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

* * @throws {@link Route53ResolverServiceException} diff --git a/clients/client-route53resolver/src/commands/UpdateResolverEndpointCommand.ts b/clients/client-route53resolver/src/commands/UpdateResolverEndpointCommand.ts index c5301563b9d0..6095179fd590 100644 --- a/clients/client-route53resolver/src/commands/UpdateResolverEndpointCommand.ts +++ b/clients/client-route53resolver/src/commands/UpdateResolverEndpointCommand.ts @@ -37,7 +37,7 @@ export interface UpdateResolverEndpointCommandOutput extends UpdateResolverEndpo /** * @public - *

Updates the name, or enpoint type for an inbound or an outbound Resolver endpoint. + *

Updates the name, or endpoint type for an inbound or an outbound Resolver endpoint. * You can only update between IPV4 and DUALSTACK, IPV6 endpoint type can't be updated to other type.

* @example * Use a bare-bones client and the command you need to make an API call. @@ -55,6 +55,9 @@ export interface UpdateResolverEndpointCommandOutput extends UpdateResolverEndpo * Ipv6: "STRING_VALUE", // required * }, * ], + * Protocols: [ // ProtocolList + * "DoH" || "Do53" || "DoH-FIPS", + * ], * }; * const command = new UpdateResolverEndpointCommand(input); * const response = await client.send(command); @@ -74,9 +77,12 @@ export interface UpdateResolverEndpointCommandOutput extends UpdateResolverEndpo * // StatusMessage: "STRING_VALUE", * // CreationTime: "STRING_VALUE", * // ModificationTime: "STRING_VALUE", - * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", * // OutpostArn: "STRING_VALUE", * // PreferredInstanceType: "STRING_VALUE", + * // ResolverEndpointType: "IPV6" || "IPV4" || "DUALSTACK", + * // Protocols: [ // ProtocolList + * // "DoH" || "Do53" || "DoH-FIPS", + * // ], * // }, * // }; * @@ -88,6 +94,9 @@ export interface UpdateResolverEndpointCommandOutput extends UpdateResolverEndpo * @see {@link UpdateResolverEndpointCommandOutput} for command's `response` shape. * @see {@link Route53ResolverClientResolvedConfig | config} for Route53ResolverClient's `config` shape. * + * @throws {@link AccessDeniedException} (client fault) + *

The current account doesn't have the IAM permissions required to perform the specified Resolver operation.

+ * * @throws {@link InternalServiceErrorException} (client fault) *

We encountered an unknown error. Try again in a few minutes.

* diff --git a/clients/client-route53resolver/src/commands/UpdateResolverRuleCommand.ts b/clients/client-route53resolver/src/commands/UpdateResolverRuleCommand.ts index 392b237e9110..2a1e483d7088 100644 --- a/clients/client-route53resolver/src/commands/UpdateResolverRuleCommand.ts +++ b/clients/client-route53resolver/src/commands/UpdateResolverRuleCommand.ts @@ -54,6 +54,7 @@ export interface UpdateResolverRuleCommandOutput extends UpdateResolverRuleRespo * Ip: "STRING_VALUE", * Port: Number("int"), * Ipv6: "STRING_VALUE", + * Protocol: "DoH" || "Do53" || "DoH-FIPS", * }, * ], * ResolverEndpointId: "STRING_VALUE", @@ -76,6 +77,7 @@ export interface UpdateResolverRuleCommandOutput extends UpdateResolverRuleRespo * // Ip: "STRING_VALUE", * // Port: Number("int"), * // Ipv6: "STRING_VALUE", + * // Protocol: "DoH" || "Do53" || "DoH-FIPS", * // }, * // ], * // ResolverEndpointId: "STRING_VALUE", @@ -94,6 +96,9 @@ export interface UpdateResolverRuleCommandOutput extends UpdateResolverRuleRespo * @see {@link UpdateResolverRuleCommandOutput} for command's `response` shape. * @see {@link Route53ResolverClientResolvedConfig | config} for Route53ResolverClient's `config` shape. * + * @throws {@link AccessDeniedException} (client fault) + *

The current account doesn't have the IAM permissions required to perform the specified Resolver operation.

+ * * @throws {@link InternalServiceErrorException} (client fault) *

We encountered an unknown error. Try again in a few minutes.

* diff --git a/clients/client-route53resolver/src/models/models_0.ts b/clients/client-route53resolver/src/models/models_0.ts index 5949b333f344..d87a1cda74ab 100644 --- a/clients/client-route53resolver/src/models/models_0.ts +++ b/clients/client-route53resolver/src/models/models_0.ts @@ -373,7 +373,7 @@ export class ThrottlingException extends __BaseException { /** * @public - *

You have provided an invalid command. Supported values are ADD, + *

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD, * REMOVE, or REPLACE a domain.

*/ export class ValidationException extends __BaseException { @@ -464,6 +464,21 @@ export const ResolverEndpointDirection = { */ export type ResolverEndpointDirection = (typeof ResolverEndpointDirection)[keyof typeof ResolverEndpointDirection]; +/** + * @public + * @enum + */ +export const Protocol = { + DO53: "Do53", + DOH: "DoH", + DOHFIPS: "DoH-FIPS", +} as const; + +/** + * @public + */ +export type Protocol = (typeof Protocol)[keyof typeof Protocol]; + /** * @public * @enum @@ -640,27 +655,71 @@ export interface ResolverEndpoint { */ ModificationTime?: string; + /** + * @public + *

The ARN (Amazon Resource Name) for the Outpost.

+ */ + OutpostArn?: string; + /** * @public *

- * The Resolver endpoint IP address type. + * The Amazon EC2 instance type. *

*/ - ResolverEndpointType?: ResolverEndpointType; + PreferredInstanceType?: string; /** * @public - *

The ARN (Amazon Resource Name) for the Outpost.

+ *

+ * The Resolver endpoint IP address type. + *

*/ - OutpostArn?: string; + ResolverEndpointType?: ResolverEndpointType; /** * @public *

- * The Amazon EC2 instance type. + * Protocols used for the endpoint. DoH-FIPS is applicable for inbound endpoints only. *

+ *

For an inbound endpoint you can apply the protocols as follows:

+ * + *

For an outbound endpoint you can apply the protocols as follows:

+ * */ - PreferredInstanceType?: string; + Protocols?: Protocol[]; } /** @@ -1193,8 +1252,7 @@ export interface FirewallDomainList { export interface CreateFirewallDomainListResponse { /** * @public - *

The - * domain list that you just created.

+ *

The domain list that you just created.

*/ FirewallDomainList?: FirewallDomainList; } @@ -1819,9 +1877,25 @@ export interface CreateResolverEndpointRequest { * @public *

The subnets and IP addresses in your VPC that DNS queries originate from (for outbound endpoints) or that you forward * DNS queries to (for inbound endpoints). The subnet ID uniquely identifies a VPC.

+ * + *

Even though the minimum is 1, Route 53 requires that you create at least two.

+ * */ IpAddresses: IpAddressRequest[] | undefined; + /** + * @public + *

The Amazon Resource Name (ARN) of the Outpost. If you specify this, you must also specify a + * value for the PreferredInstanceType.

+ */ + OutpostArn?: string; + + /** + * @public + *

The instance type. If you specify this, you must also specify a value for the OutpostArn.

+ */ + PreferredInstanceType?: string; + /** * @public *

A list of the tag keys and values that you want to associate with the endpoint.

@@ -1840,16 +1914,47 @@ export interface CreateResolverEndpointRequest { /** * @public - *

The Amazon Resource Name (ARN) of the Outpost. If you specify this, you must also specify a - * value for the PreferredInstanceType.

- */ - OutpostArn?: string; - - /** - * @public - *

The instance type. If you specify this, you must also specify a value for the OutpostArn.

+ *

+ * The protocols you want to use for the endpoint. DoH-FIPS is applicable for inbound endpoints only. + *

+ *

For an inbound endpoint you can apply the protocols as follows:

+ * + *

For an outbound endpoint you can apply the protocols as follows:

+ * */ - PreferredInstanceType?: string; + Protocols?: Protocol[]; } /** @@ -2095,6 +2200,51 @@ export interface TargetAddress { *

*/ Ipv6?: string; + + /** + * @public + *

+ * The protocols for the Resolver endpoints. DoH-FIPS is applicable for inbound endpoints only. + * + *

+ *

For an inbound endpoint you can apply the protocols as follows:

+ * + *

For an outbound endpoint you can apply the protocols as follows:

+ * + */ + Protocol?: Protocol; } /** @@ -2133,7 +2283,7 @@ export interface CreateResolverRuleRequest { * multiple Resolver rules (example.com and www.example.com), outbound DNS queries are routed using the Resolver rule that contains * the most specific domain name (www.example.com).

*/ - DomainName: string | undefined; + DomainName?: string; /** * @public @@ -4193,7 +4343,8 @@ export interface ListResolverDnssecConfigsResponse { * @public *

An array that contains one * ResolverDnssecConfig element - * for each configuration for DNSSEC validation that is associated with the current Amazon Web Services account.

+ * for each configuration for DNSSEC validation that is associated with the current Amazon Web Services account. + * It doesn't contain disabled DNSSEC configurations for the resource.

*/ ResolverDnssecConfigs?: ResolverDnssecConfig[]; } @@ -5512,6 +5663,58 @@ export interface UpdateResolverEndpointRequest { *

*/ UpdateIpAddresses?: UpdateIpAddress[]; + + /** + * @public + *

+ * The protocols you want to use for the endpoint. DoH-FIPS is applicable for inbound endpoints only. + *

+ *

For an inbound endpoint you can apply the protocols as follows:

+ * + *

For an outbound endpoint you can apply the protocols as follows:

+ * + * + *

You can't change the protocol of an inbound endpoint directly from only Do53 to only DoH, or DoH-FIPS. + * This is to prevent a sudden disruption to incoming traffic that + * relies on Do53. To change the protocol from Do53 to DoH, or DoH-FIPS, you must + * first enable both Do53 and DoH, or Do53 and DoH-FIPS, to make sure that all incoming traffic + * has transferred to using the DoH protocol, or DoH-FIPS, and then remove the + * Do53.

+ * + */ + Protocols?: Protocol[]; } /** diff --git a/clients/client-route53resolver/src/protocols/Aws_json1_1.ts b/clients/client-route53resolver/src/protocols/Aws_json1_1.ts index 7c12aeada35b..8f235ae591c9 100644 --- a/clients/client-route53resolver/src/protocols/Aws_json1_1.ts +++ b/clients/client-route53resolver/src/protocols/Aws_json1_1.ts @@ -312,6 +312,7 @@ import { ListResolverRuleAssociationsRequest, ListResolverRulesRequest, ListTagsForResourceRequest, + Protocol, PutFirewallRuleGroupPolicyRequest, PutResolverQueryLogConfigPolicyRequest, PutResolverRulePolicyRequest, @@ -1758,6 +1759,9 @@ const de_CreateResolverEndpointCommandError = async ( }; const errorCode = loadRestJsonErrorCode(output, parsedOutput.body); switch (errorCode) { + case "AccessDeniedException": + case "com.amazonaws.route53resolver#AccessDeniedException": + throw await de_AccessDeniedExceptionRes(parsedOutput, context); case "InternalServiceErrorException": case "com.amazonaws.route53resolver#InternalServiceErrorException": throw await de_InternalServiceErrorExceptionRes(parsedOutput, context); @@ -1889,6 +1893,9 @@ const de_CreateResolverRuleCommandError = async ( }; const errorCode = loadRestJsonErrorCode(output, parsedOutput.body); switch (errorCode) { + case "AccessDeniedException": + case "com.amazonaws.route53resolver#AccessDeniedException": + throw await de_AccessDeniedExceptionRes(parsedOutput, context); case "InternalServiceErrorException": case "com.amazonaws.route53resolver#InternalServiceErrorException": throw await de_InternalServiceErrorExceptionRes(parsedOutput, context); @@ -5203,6 +5210,9 @@ const de_UpdateResolverEndpointCommandError = async ( }; const errorCode = loadRestJsonErrorCode(output, parsedOutput.body); switch (errorCode) { + case "AccessDeniedException": + case "com.amazonaws.route53resolver#AccessDeniedException": + throw await de_AccessDeniedExceptionRes(parsedOutput, context); case "InternalServiceErrorException": case "com.amazonaws.route53resolver#InternalServiceErrorException": throw await de_InternalServiceErrorExceptionRes(parsedOutput, context); @@ -5261,6 +5271,9 @@ const de_UpdateResolverRuleCommandError = async ( }; const errorCode = loadRestJsonErrorCode(output, parsedOutput.body); switch (errorCode) { + case "AccessDeniedException": + case "com.amazonaws.route53resolver#AccessDeniedException": + throw await de_AccessDeniedExceptionRes(parsedOutput, context); case "InternalServiceErrorException": case "com.amazonaws.route53resolver#InternalServiceErrorException": throw await de_InternalServiceErrorExceptionRes(parsedOutput, context); @@ -5737,6 +5750,8 @@ const se_CreateResolverQueryLogConfigRequest = ( // se_ListTagsForResourceRequest omitted. +// se_ProtocolList omitted. + // se_PutFirewallRuleGroupPolicyRequest omitted. // se_PutResolverQueryLogConfigPolicyRequest omitted. @@ -5943,6 +5958,8 @@ const se_CreateResolverQueryLogConfigRequest = ( // de_OutpostResolverList omitted. +// de_ProtocolList omitted. + // de_PutFirewallRuleGroupPolicyResponse omitted. // de_PutResolverQueryLogConfigPolicyResponse omitted. diff --git a/codegen/sdk-codegen/aws-models/route53resolver.json b/codegen/sdk-codegen/aws-models/route53resolver.json index 85954f7ee379..8d3dd8715a2d 100644 --- a/codegen/sdk-codegen/aws-models/route53resolver.json +++ b/codegen/sdk-codegen/aws-models/route53resolver.json @@ -575,7 +575,7 @@ "FirewallDomainList": { "target": "com.amazonaws.route53resolver#FirewallDomainList", "traits": { - "smithy.api#documentation": "

The\n\t\t\tdomain list that you just created.

" + "smithy.api#documentation": "

The domain list that you just created.

" } } }, @@ -805,7 +805,7 @@ } ], "traits": { - "smithy.api#documentation": "

Creates an Route 53 Resolver on an Outpost.

" + "smithy.api#documentation": "

Creates a Route 53 Resolver on an Outpost.

" } }, "com.amazonaws.route53resolver#CreateOutpostResolverRequest": { @@ -879,6 +879,9 @@ "target": "com.amazonaws.route53resolver#CreateResolverEndpointResponse" }, "errors": [ + { + "target": "com.amazonaws.route53resolver#AccessDeniedException" + }, { "target": "com.amazonaws.route53resolver#InternalServiceErrorException" }, @@ -938,10 +941,22 @@ "IpAddresses": { "target": "com.amazonaws.route53resolver#IpAddressesRequest", "traits": { - "smithy.api#documentation": "

The subnets and IP addresses in your VPC that DNS queries originate from (for outbound endpoints) or that you forward \n\t\t\tDNS queries to (for inbound endpoints). The subnet ID uniquely identifies a VPC.

", + "smithy.api#documentation": "

The subnets and IP addresses in your VPC that DNS queries originate from (for outbound endpoints) or that you forward \n\t\t\tDNS queries to (for inbound endpoints). The subnet ID uniquely identifies a VPC.

\n \n

Even though the minimum is 1, Route 53 requires that you create at least two.

\n ", "smithy.api#required": {} } }, + "OutpostArn": { + "target": "com.amazonaws.route53resolver#OutpostArn", + "traits": { + "smithy.api#documentation": "

The Amazon Resource Name (ARN) of the Outpost. If you specify this, you must also specify a\n\t\t\tvalue for the PreferredInstanceType.

" + } + }, + "PreferredInstanceType": { + "target": "com.amazonaws.route53resolver#OutpostInstanceType", + "traits": { + "smithy.api#documentation": "

The instance type. If you specify this, you must also specify a value for the OutpostArn.

" + } + }, "Tags": { "target": "com.amazonaws.route53resolver#TagList", "traits": { @@ -954,16 +969,10 @@ "smithy.api#documentation": "

\n\t\t\tFor the endpoint type you can choose either IPv4, IPv6, or dual-stack.\n\t\t\tA dual-stack endpoint means that it will resolve via both IPv4 and IPv6. This\n\t\t\tendpoint type is applied to all IP addresses.\n\t\t

" } }, - "OutpostArn": { - "target": "com.amazonaws.route53resolver#OutpostArn", + "Protocols": { + "target": "com.amazonaws.route53resolver#ProtocolList", "traits": { - "smithy.api#documentation": "

The Amazon Resource Name (ARN) of the Outpost. If you specify this, you must also specify a\n\t\t\tvalue for the PreferredInstanceType.

" - } - }, - "PreferredInstanceType": { - "target": "com.amazonaws.route53resolver#OutpostInstanceType", - "traits": { - "smithy.api#documentation": "

The instance type. If you specify this, you must also specify a value for the OutpostArn.

" + "smithy.api#documentation": "

\n\t\t\tThe protocols you want to use for the endpoint. DoH-FIPS is applicable for inbound endpoints only.\n\t\t

\n

For an inbound endpoint you can apply the protocols as follows:

\n \n

For an outbound endpoint you can apply the protocols as follows:

\n " } } }, @@ -1082,6 +1091,9 @@ "target": "com.amazonaws.route53resolver#CreateResolverRuleResponse" }, "errors": [ + { + "target": "com.amazonaws.route53resolver#AccessDeniedException" + }, { "target": "com.amazonaws.route53resolver#InternalServiceErrorException" }, @@ -1137,8 +1149,7 @@ "DomainName": { "target": "com.amazonaws.route53resolver#DomainName", "traits": { - "smithy.api#documentation": "

DNS queries for this domain name are forwarded to the IP addresses that you specify in TargetIps. If a query matches \n\t\t\tmultiple Resolver rules (example.com and www.example.com), outbound DNS queries are routed using the Resolver rule that contains \n\t\t\tthe most specific domain name (www.example.com).

", - "smithy.api#required": {} + "smithy.api#documentation": "

DNS queries for this domain name are forwarded to the IP addresses that you specify in TargetIps. If a query matches \n\t\t\tmultiple Resolver rules (example.com and www.example.com), outbound DNS queries are routed using the Resolver rule that contains \n\t\t\tthe most specific domain name (www.example.com).

" } }, "TargetIps": { @@ -3811,7 +3822,7 @@ }, "traits": { "smithy.api#length": { - "min": 1, + "min": 2, "max": 20 } } @@ -4602,7 +4613,7 @@ "ResolverDnssecConfigs": { "target": "com.amazonaws.route53resolver#ResolverDnssecConfigList", "traits": { - "smithy.api#documentation": "

An array that contains one \n\t\t\tResolverDnssecConfig element \n\t\t\tfor each configuration for DNSSEC validation that is associated with the current Amazon Web Services account.

" + "smithy.api#documentation": "

An array that contains one \n\t\t\tResolverDnssecConfig element \n\t\t\tfor each configuration for DNSSEC validation that is associated with the current Amazon Web Services account. \n\t\t\t It doesn't contain disabled DNSSEC configurations for the resource.

" } } }, @@ -5479,6 +5490,41 @@ "com.amazonaws.route53resolver#Priority": { "type": "integer" }, + "com.amazonaws.route53resolver#Protocol": { + "type": "enum", + "members": { + "DOH": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "DoH" + } + }, + "DO53": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "Do53" + } + }, + "DOHFIPS": { + "target": "smithy.api#Unit", + "traits": { + "smithy.api#enumValue": "DoH-FIPS" + } + } + } + }, + "com.amazonaws.route53resolver#ProtocolList": { + "type": "list", + "member": { + "target": "com.amazonaws.route53resolver#Protocol" + }, + "traits": { + "smithy.api#length": { + "min": 1, + "max": 2 + } + } + }, "com.amazonaws.route53resolver#PutFirewallRuleGroupPolicy": { "type": "operation", "input": { @@ -5915,12 +5961,6 @@ "smithy.api#documentation": "

The date and time that the endpoint was last modified, in Unix time format and Coordinated Universal Time (UTC).

" } }, - "ResolverEndpointType": { - "target": "com.amazonaws.route53resolver#ResolverEndpointType", - "traits": { - "smithy.api#documentation": "

\n\t\t\tThe Resolver endpoint IP address type.\n\t\t

" - } - }, "OutpostArn": { "target": "com.amazonaws.route53resolver#OutpostArn", "traits": { @@ -5932,6 +5972,18 @@ "traits": { "smithy.api#documentation": "

\n\t\t\tThe Amazon EC2 instance type.\n\t\t

" } + }, + "ResolverEndpointType": { + "target": "com.amazonaws.route53resolver#ResolverEndpointType", + "traits": { + "smithy.api#documentation": "

\n\t\t\tThe Resolver endpoint IP address type.\n\t\t

" + } + }, + "Protocols": { + "target": "com.amazonaws.route53resolver#ProtocolList", + "traits": { + "smithy.api#documentation": "

\n\t\t\tProtocols used for the endpoint. DoH-FIPS is applicable for inbound endpoints only.\n\t\t

\n

For an inbound endpoint you can apply the protocols as follows:

\n \n

For an outbound endpoint you can apply the protocols as follows:

\n " + } } }, "traits": { @@ -8079,6 +8131,12 @@ "traits": { "smithy.api#documentation": "

\n\t\t\tOne IPv6 address that you want to forward DNS queries to.\n\t\t

" } + }, + "Protocol": { + "target": "com.amazonaws.route53resolver#Protocol", + "traits": { + "smithy.api#documentation": "

\n\t\t\tThe protocols for the Resolver endpoints. DoH-FIPS is applicable for inbound endpoints only.\n\t\t\t\n\t\t

\n

For an inbound endpoint you can apply the protocols as follows:

\n \n

For an outbound endpoint you can apply the protocols as follows:

\n " + } } }, "traits": { @@ -8801,6 +8859,9 @@ "target": "com.amazonaws.route53resolver#UpdateResolverEndpointResponse" }, "errors": [ + { + "target": "com.amazonaws.route53resolver#AccessDeniedException" + }, { "target": "com.amazonaws.route53resolver#InternalServiceErrorException" }, @@ -8818,7 +8879,7 @@ } ], "traits": { - "smithy.api#documentation": "

Updates the name, or enpoint type for an inbound or an outbound Resolver endpoint. \n\t\t\tYou can only update between IPV4 and DUALSTACK, IPV6 endpoint type can't be updated to other type.

" + "smithy.api#documentation": "

Updates the name, or endpoint type for an inbound or an outbound Resolver endpoint. \n\t\t\tYou can only update between IPV4 and DUALSTACK, IPV6 endpoint type can't be updated to other type.

" } }, "com.amazonaws.route53resolver#UpdateResolverEndpointRequest": { @@ -8848,6 +8909,12 @@ "traits": { "smithy.api#documentation": "

\n\t\t\tSpecifies the IPv6 address when you update the Resolver endpoint from IPv4 to dual-stack. \n\t\t\tIf you don't specify an IPv6 address, one will be automatically chosen from your subnet.\n\t\t

" } + }, + "Protocols": { + "target": "com.amazonaws.route53resolver#ProtocolList", + "traits": { + "smithy.api#documentation": "

\n\t\t\tThe protocols you want to use for the endpoint. DoH-FIPS is applicable for inbound endpoints only.\n\t\t

\n

For an inbound endpoint you can apply the protocols as follows:

\n \n

For an outbound endpoint you can apply the protocols as follows:

\n \n \n

You can't change the protocol of an inbound endpoint directly from only Do53 to only DoH, or DoH-FIPS.\n\t\t\tThis is to prevent a sudden disruption to incoming traffic that\n\t\t\trelies on Do53. To change the protocol from Do53 to DoH, or DoH-FIPS, you must\n\t\t\tfirst enable both Do53 and DoH, or Do53 and DoH-FIPS, to make sure that all incoming traffic\n\t\t\thas transferred to using the DoH protocol, or DoH-FIPS, and then remove the\n\t\t\tDo53.

\n " + } } }, "traits": { @@ -8877,6 +8944,9 @@ "target": "com.amazonaws.route53resolver#UpdateResolverRuleResponse" }, "errors": [ + { + "target": "com.amazonaws.route53resolver#AccessDeniedException" + }, { "target": "com.amazonaws.route53resolver#InternalServiceErrorException" }, @@ -8970,7 +9040,7 @@ } }, "traits": { - "smithy.api#documentation": "

You have provided an invalid command. Supported values are ADD,\n\t\t\tREMOVE, or REPLACE a domain.

", + "smithy.api#documentation": "

You have provided an invalid command. If you ran the UpdateFirewallDomains request. supported values are ADD,\n\t\t\tREMOVE, or REPLACE a domain.

", "smithy.api#error": "client" } }