Updated API models and rebuilt service gems.

apis/cloudformation/2010-05-15/api-2.json

@@ -1442,7 +1442,8 @@
         "Description":{"shape":"Description"},
         "ChangeSetType":{"shape":"ChangeSetType"},
         "ResourcesToImport":{"shape":"ResourcesToImport"},
-        "IncludeNestedStacks":{"shape":"IncludeNestedStacks"}
+        "IncludeNestedStacks":{"shape":"IncludeNestedStacks"},
+        "OnStackFailure":{"shape":"OnStackFailure"}
       }
     },
     "CreateChangeSetOutput":{
@@ -1731,7 +1732,8 @@
         "NextToken":{"shape":"NextToken"},
         "IncludeNestedStacks":{"shape":"IncludeNestedStacks"},
         "ParentChangeSetId":{"shape":"ChangeSetId"},
-        "RootChangeSetId":{"shape":"ChangeSetId"}
+        "RootChangeSetId":{"shape":"ChangeSetId"},
+        "OnStackFailure":{"shape":"OnStackFailure"}
       }
     },
     "DescribeOrganizationsAccessInput":{
@@ -2677,6 +2679,14 @@
         "DELETE"
       ]
     },
+    "OnStackFailure":{
+      "type":"string",
+      "enum":[
+        "DO_NOTHING",
+        "ROLLBACK",
+        "DELETE"
+      ]
+    },
     "OperationIdAlreadyExistsException":{
       "type":"structure",
       "members":{

apis/cloudformation/2010-05-15/docs-2.json

@@ -877,7 +877,7 @@
       "base": null,
       "refs": {
         "CreateStackInput$DisableRollback": "<p>Set to <code>true</code> to disable rollback of the stack if stack creation failed. You can specify either <code>DisableRollback</code> or <code>OnFailure</code>, but not both.</p> <p>Default: <code>false</code> </p>",
-        "ExecuteChangeSetInput$DisableRollback": "<p>Preserves the state of previously provisioned resources when an operation fails.</p> <p>Default: <code>True</code> </p>",
+        "ExecuteChangeSetInput$DisableRollback": "<p>Preserves the state of previously provisioned resources when an operation fails. This parameter can't be specified when the <code>OnStackFailure</code> parameter to the <a href=\"https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_CreateChangeSet.html\">CreateChangeSet</a> API operation was specified.</p> <ul> <li> <p> <code>True</code> - if the stack creation fails, do nothing. This is equivalent to specifying <code>DO_NOTHING</code> for the <code>OnStackFailure</code> parameter to the <a href=\"https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_CreateChangeSet.html\">CreateChangeSet</a> API operation.</p> </li> <li> <p> <code>False</code> - if the stack creation fails, roll back the stack. This is equivalent to specifying <code>ROLLBACK</code> for the <code>OnStackFailure</code> parameter to the <a href=\"https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_CreateChangeSet.html\">CreateChangeSet</a> API operation.</p> </li> </ul> <p>Default: <code>True</code> </p>",
         "Stack$DisableRollback": "<p>Boolean to enable or disable rollback on stack creation failures:</p> <ul> <li> <p> <code>true</code>: disable rollback.</p> </li> <li> <p> <code>false</code>: enable rollback.</p> </li> </ul>",
         "UpdateStackInput$DisableRollback": "<p>Preserve the state of previously provisioned resources when an operation fails.</p> <p>Default: <code>False</code> </p>"
       }
@@ -1529,6 +1529,13 @@
         "CreateStackInput$OnFailure": "<p>Determines what action will be taken if stack creation fails. This must be one of: <code>DO_NOTHING</code>, <code>ROLLBACK</code>, or <code>DELETE</code>. You can specify either <code>OnFailure</code> or <code>DisableRollback</code>, but not both.</p> <p>Default: <code>ROLLBACK</code> </p>"
       }
     },
+    "OnStackFailure": {
+      "base": null,
+      "refs": {
+        "CreateChangeSetInput$OnStackFailure": "<p>Determines what action will be taken if stack creation fails. If this parameter is specified, the <code>DisableRollback</code> parameter to the <a href=\"https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_ExecuteChangeSet.html\">ExecuteChangeSet</a> API operation must not be specified. This must be one of these values:</p> <ul> <li> <p> <code>DELETE</code> - Deletes the change set if the stack creation fails. This is only valid when the <code>ChangeSetType</code> parameter is set to <code>CREATE</code>. If the deletion of the stack fails, the status of the stack is <code>DELETE_FAILED</code>.</p> </li> <li> <p> <code>DO_NOTHING</code> - if the stack creation fails, do nothing. This is equivalent to specifying <code>true</code> for the <code>DisableRollback</code> parameter to the <a href=\"https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_ExecuteChangeSet.html\">ExecuteChangeSet</a> API operation.</p> </li> <li> <p> <code>ROLLBACK</code> - if the stack creation fails, roll back the stack. This is equivalent to specifying <code>false</code> for the <code>DisableRollback</code> parameter to the <a href=\"https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_ExecuteChangeSet.html\">ExecuteChangeSet</a> API operation.</p> </li> </ul> <p>For nested stacks, when the <code>OnStackFailure</code> parameter is set to <code>DELETE</code> for the change set for the parent stack, any failure in a child stack will cause the parent stack creation to fail and all stacks to be deleted.</p>",
+        "DescribeChangeSetOutput$OnStackFailure": "<p>Determines what action will be taken if stack creation fails. When this parameter is specified, the <code>DisableRollback</code> parameter to the <a href=\"https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_ExecuteChangeSet.html\">ExecuteChangeSet</a> API operation must not be specified. This must be one of these values:</p> <ul> <li> <p> <code>DELETE</code> - Deletes the change set if the stack creation fails. This is only valid when the <code>ChangeSetType</code> parameter is set to <code>CREATE</code>. If the deletion of the stack fails, the status of the stack is <code>DELETE_FAILED</code>.</p> </li> <li> <p> <code>DO_NOTHING</code> - if the stack creation fails, do nothing. This is equivalent to specifying <code>true</code> for the <code>DisableRollback</code> parameter to the <a href=\"https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_ExecuteChangeSet.html\">ExecuteChangeSet</a> API operation.</p> </li> <li> <p> <code>ROLLBACK</code> - if the stack creation fails, roll back the stack. This is equivalent to specifying <code>false</code> for the <code>DisableRollback</code> parameter to the <a href=\"https://docs.aws.amazon.com/AWSCloudFormation/latest/APIReference/API_ExecuteChangeSet.html\">ExecuteChangeSet</a> API operation.</p> </li> </ul>"
+      }
+    },
     "OperationIdAlreadyExistsException": {
       "base": "<p>The specified operation ID already exists.</p>",
       "refs": {

apis/ec2/2016-11-15/api-2.json

@@ -7592,6 +7592,7 @@
         }
       }
     },
+    "AvailabilityZoneId":{"type":"string"},
     "AvailabilityZoneList":{
       "type":"list",
       "member":{
@@ -9786,8 +9787,8 @@
         "ClientToken":{"shape":"String"},
         "InstanceType":{"shape":"String"},
         "InstancePlatform":{"shape":"CapacityReservationInstancePlatform"},
-        "AvailabilityZone":{"shape":"String"},
-        "AvailabilityZoneId":{"shape":"String"},
+        "AvailabilityZone":{"shape":"AvailabilityZoneName"},
+        "AvailabilityZoneId":{"shape":"AvailabilityZoneId"},
         "Tenancy":{"shape":"CapacityReservationTenancy"},
         "InstanceCount":{"shape":"Integer"},
         "EbsOptimized":{"shape":"Boolean"},
@@ -43447,7 +43448,9 @@
       "members":{
         "S3":{"shape":"VerifiedAccessLogS3DestinationOptions"},
         "CloudWatchLogs":{"shape":"VerifiedAccessLogCloudWatchLogsDestinationOptions"},
-        "KinesisDataFirehose":{"shape":"VerifiedAccessLogKinesisDataFirehoseDestinationOptions"}
+        "KinesisDataFirehose":{"shape":"VerifiedAccessLogKinesisDataFirehoseDestinationOptions"},
+        "LogVersion":{"shape":"String"},
+        "IncludeTrustContext":{"shape":"Boolean"}
       }
     },
     "VerifiedAccessLogS3Destination":{
@@ -43499,6 +43502,14 @@
         "KinesisDataFirehose":{
           "shape":"VerifiedAccessLogKinesisDataFirehoseDestination",
           "locationName":"kinesisDataFirehose"
+        },
+        "LogVersion":{
+          "shape":"String",
+          "locationName":"logVersion"
+        },
+        "IncludeTrustContext":{
+          "shape":"Boolean",
+          "locationName":"includeTrustContext"
         }
       }
     },

apis/ec2/2016-11-15/docs-2.json

@@ -219,7 +219,7 @@
     "DeregisterInstanceEventNotificationAttributes": "<p>Deregisters tag keys to prevent tags that have the specified tag keys from being included in scheduled event notifications for resources in the Region.</p>",
     "DeregisterTransitGatewayMulticastGroupMembers": "<p>Deregisters the specified members (network interfaces) from the transit gateway multicast group.</p>",
     "DeregisterTransitGatewayMulticastGroupSources": "<p>Deregisters the specified sources (network interfaces) from the transit gateway multicast group.</p>",
-    "DescribeAccountAttributes": "<p>Describes attributes of your Amazon Web Services account. The following are the supported account attributes:</p> <ul> <li> <p> <code>supported-platforms</code>: Indicates whether your account can launch instances into EC2-Classic and EC2-VPC, or only into EC2-VPC.</p> </li> <li> <p> <code>default-vpc</code>: The ID of the default VPC for your account, or <code>none</code>.</p> </li> <li> <p> <code>max-instances</code>: This attribute is no longer supported. The returned value does not reflect your actual vCPU limit for running On-Demand Instances. For more information, see <a href=\"https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-on-demand-instances.html#ec2-on-demand-instances-limits\">On-Demand Instance Limits</a> in the <i>Amazon Elastic Compute Cloud User Guide</i>.</p> </li> <li> <p> <code>vpc-max-security-groups-per-interface</code>: The maximum number of security groups that you can assign to a network interface.</p> </li> <li> <p> <code>max-elastic-ips</code>: The maximum number of Elastic IP addresses that you can allocate for use with EC2-Classic. </p> </li> <li> <p> <code>vpc-max-elastic-ips</code>: The maximum number of Elastic IP addresses that you can allocate for use with EC2-VPC.</p> </li> </ul> <note> <p>We are retiring EC2-Classic on August 15, 2022. We recommend that you migrate from EC2-Classic to a VPC. For more information, see <a href=\"https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/vpc-migrate.html\">Migrate from EC2-Classic to a VPC</a> in the <i>Amazon EC2 User Guide</i>.</p> </note>",
+    "DescribeAccountAttributes": "<p>Describes attributes of your Amazon Web Services account. The following are the supported account attributes:</p> <ul> <li> <p> <code>default-vpc</code>: The ID of the default VPC for your account, or <code>none</code>.</p> </li> <li> <p> <code>max-instances</code>: This attribute is no longer supported. The returned value does not reflect your actual vCPU limit for running On-Demand Instances. For more information, see <a href=\"https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-on-demand-instances.html#ec2-on-demand-instances-limits\">On-Demand Instance Limits</a> in the <i>Amazon Elastic Compute Cloud User Guide</i>.</p> </li> <li> <p> <code>max-elastic-ips</code>: The maximum number of Elastic IP addresses that you can allocate.</p> </li> <li> <p> <code>supported-platforms</code>: This attribute is deprecated.</p> </li> <li> <p> <code>vpc-max-elastic-ips</code>: The maximum number of Elastic IP addresses that you can allocate.</p> </li> <li> <p> <code>vpc-max-security-groups-per-interface</code>: The maximum number of security groups that you can assign to a network interface.</p> </li> </ul>",
     "DescribeAddressTransfers": "<p>Describes an Elastic IP address transfer. For more information, see <a href=\"https://docs.aws.amazon.com/vpc/latest/userguide/vpc-eips.html#transfer-EIPs-intro\">Transfer Elastic IP addresses</a> in the <i>Amazon Virtual Private Cloud User Guide</i>.</p> <p>When you transfer an Elastic IP address, there is a two-step handshake between the source and transfer Amazon Web Services accounts. When the source account starts the transfer, the transfer account has seven days to accept the Elastic IP address transfer. During those seven days, the source account can view the pending transfer by using this action. After seven days, the transfer expires and ownership of the Elastic IP address returns to the source account. Accepted transfers are visible to the source account for three days after the transfers have been accepted.</p>",
     "DescribeAddresses": "<p>Describes the specified Elastic IP addresses or all of your Elastic IP addresses.</p>",
     "DescribeAddressesAttribute": "<p>Describes the attributes of the specified Elastic IP addresses. For requirements, see <a href=\"https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/elastic-ip-addresses-eip.html#Using_Elastic_Addressing_Reverse_DNS\">Using reverse DNS for email applications</a>.</p>",
@@ -1703,6 +1703,12 @@
         "AvailabilityZoneList$member": null
       }
     },
+    "AvailabilityZoneId": {
+      "base": null,
+      "refs": {
+        "CreateCapacityReservationRequest$AvailabilityZoneId": "<p>The ID of the Availability Zone in which to create the Capacity Reservation.</p>"
+      }
+    },
     "AvailabilityZoneList": {
       "base": null,
       "refs": {
@@ -1724,6 +1730,7 @@
     "AvailabilityZoneName": {
       "base": null,
       "refs": {
+        "CreateCapacityReservationRequest$AvailabilityZone": "<p>The Availability Zone in which to create the Capacity Reservation.</p>",
         "CreateVolumeRequest$AvailabilityZone": "<p>The Availability Zone in which to create the volume.</p>"
       }
     },
@@ -2737,8 +2744,10 @@
         "VerifiedAccessLogCloudWatchLogsDestinationOptions$Enabled": "<p>Indicates whether logging is enabled.</p>",
         "VerifiedAccessLogKinesisDataFirehoseDestination$Enabled": "<p>Indicates whether logging is enabled.</p>",
         "VerifiedAccessLogKinesisDataFirehoseDestinationOptions$Enabled": "<p>Indicates whether logging is enabled.</p>",
+        "VerifiedAccessLogOptions$IncludeTrustContext": "<p> Include trust data sent by trust providers into the logs. </p>",
         "VerifiedAccessLogS3Destination$Enabled": "<p>Indicates whether logging is enabled.</p>",
         "VerifiedAccessLogS3DestinationOptions$Enabled": "<p>Indicates whether logging is enabled.</p>",
+        "VerifiedAccessLogs$IncludeTrustContext": "<p> Describes current setting for including trust data into the logs. </p>",
         "Volume$Encrypted": "<p>Indicates whether the volume is encrypted.</p>",
         "Volume$FastRestored": "<p>Indicates whether the volume was created using fast snapshot restore.</p>",
         "Volume$MultiAttachEnabled": "<p>Indicates whether Amazon EBS Multi-Attach is enabled.</p>",
@@ -18487,8 +18496,6 @@
         "CreateCapacityReservationFleetResult$AllocationStrategy": "<p>The allocation strategy used by the Capacity Reservation Fleet.</p>",
         "CreateCapacityReservationRequest$ClientToken": "<p>Unique, case-sensitive identifier that you provide to ensure the idempotency of the request. For more information, see <a href=\"https://docs.aws.amazon.com/AWSEC2/latest/APIReference/Run_Instance_Idempotency.html\">Ensure Idempotency</a>.</p>",
         "CreateCapacityReservationRequest$InstanceType": "<p>The instance type for which to reserve capacity. For more information, see <a href=\"https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html\">Instance types</a> in the <i>Amazon EC2 User Guide</i>.</p>",
-        "CreateCapacityReservationRequest$AvailabilityZone": "<p>The Availability Zone in which to create the Capacity Reservation.</p>",
-        "CreateCapacityReservationRequest$AvailabilityZoneId": "<p>The ID of the Availability Zone in which to create the Capacity Reservation.</p>",
         "CreateCarrierGatewayRequest$ClientToken": "<p>Unique, case-sensitive identifier that you provide to ensure the idempotency of the request. For more information, see <a href=\"https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Run_Instance_Idempotency.html\">How to ensure idempotency</a>.</p>",
         "CreateClientVpnEndpointRequest$ClientCidrBlock": "<p>The IPv4 address range, in CIDR notation, from which to assign client IP addresses. The address range cannot overlap with the local CIDR of the VPC in which the associated subnet is located, or the routes that you add manually. The address range cannot be changed after the Client VPN endpoint has been created. Client CIDR range must have a size of at least /22 and must not be greater than /12.</p>",
         "CreateClientVpnEndpointRequest$ServerCertificateArn": "<p>The ARN of the server certificate. For more information, see the <a href=\"https://docs.aws.amazon.com/acm/latest/userguide/\">Certificate Manager User Guide</a>.</p>",
@@ -20151,12 +20158,14 @@
         "VerifiedAccessLogDeliveryStatus$Message": "<p>The status message.</p>",
         "VerifiedAccessLogKinesisDataFirehoseDestination$DeliveryStream": "<p>The ID of the delivery stream.</p>",
         "VerifiedAccessLogKinesisDataFirehoseDestinationOptions$DeliveryStream": "<p>The ID of the delivery stream.</p>",
+        "VerifiedAccessLogOptions$LogVersion": "<p> The logging version to use. </p> <p>Valid values: <code>ocsf-0.1</code> | <code>ocsf-1.0.0-rc.2</code> </p>",
         "VerifiedAccessLogS3Destination$BucketName": "<p>The bucket name.</p>",
         "VerifiedAccessLogS3Destination$Prefix": "<p>The bucket prefix.</p>",
         "VerifiedAccessLogS3Destination$BucketOwner": "<p>The Amazon Web Services account number that owns the bucket.</p>",
         "VerifiedAccessLogS3DestinationOptions$BucketName": "<p>The bucket name.</p>",
         "VerifiedAccessLogS3DestinationOptions$Prefix": "<p>The bucket prefix.</p>",
         "VerifiedAccessLogS3DestinationOptions$BucketOwner": "<p>The ID of the Amazon Web Services account that owns the Amazon S3 bucket.</p>",
+        "VerifiedAccessLogs$LogVersion": "<p> Describes current setting for the logging version. </p>",
         "VerifiedAccessTrustProvider$VerifiedAccessTrustProviderId": "<p>The ID of the Amazon Web Services Verified Access trust provider.</p>",
         "VerifiedAccessTrustProvider$Description": "<p>A description for the Amazon Web Services Verified Access trust provider.</p>",
         "VerifiedAccessTrustProvider$PolicyReferenceName": "<p>The identifier to be used when working with policy rules.</p>",
@@ -22463,7 +22472,7 @@
       }
     },
     "VerifiedAccessLogOptions": {
-      "base": "<p>Describes the destinations for Verified Access logs.</p>",
+      "base": "<p>Options for Verified Access logs.</p>",
       "refs": {
         "ModifyVerifiedAccessInstanceLoggingConfigurationRequest$AccessLogs": "<p>The configuration options for Verified Access instances.</p>"
       }
@@ -22481,7 +22490,7 @@
       }
     },
     "VerifiedAccessLogs": {
-      "base": "<p>Describes the destinations for Verified Access logs.</p>",
+      "base": "<p>Describes the options for Verified Access logs.</p>",
       "refs": {
         "VerifiedAccessInstanceLoggingConfiguration$AccessLogs": "<p>Details about the logging options.</p>"
       }