diff --git a/apis/auditmanager/2017-07-25/docs-2.json b/apis/auditmanager/2017-07-25/docs-2.json
index 08010e49cb4..79450f442af 100644
--- a/apis/auditmanager/2017-07-25/docs-2.json
+++ b/apis/auditmanager/2017-07-25/docs-2.json
@@ -15,7 +15,7 @@
"DeleteAssessment": " Deletes an assessment in Audit Manager.
",
"DeleteAssessmentFramework": " Deletes a custom framework in Audit Manager.
",
"DeleteAssessmentFrameworkShare": " Deletes a share request for a custom framework in Audit Manager.
",
- "DeleteAssessmentReport": " Deletes an assessment report from an assessment in Audit Manager.
",
+ "DeleteAssessmentReport": "Deletes an assessment report in Audit Manager.
When you run the DeleteAssessmentReport operation, Audit Manager attempts to delete the following data:
-
The specified assessment report that’s stored in your S3 bucket
-
The associated metadata that’s stored in Audit Manager
If Audit Manager can’t access the assessment report in your S3 bucket, the report isn’t deleted. In this event, the DeleteAssessmentReport operation doesn’t fail. Instead, it proceeds to delete the associated metadata only. You must then delete the assessment report from the S3 bucket yourself.
This scenario happens when Audit Manager receives a 403 (Forbidden) or 404 (Not Found) error from Amazon S3. To avoid this, make sure that your S3 bucket is available, and that you configured the correct permissions for Audit Manager to delete resources in your S3 bucket. For an example permissions policy that you can use, see Assessment report destination permissions in the Audit Manager User Guide. For information about the issues that could cause a 403 (Forbidden) or 404 (Not Found) error from Amazon S3, see List of Error Codes in the Amazon Simple Storage Service API Reference.
",
"DeleteControl": " Deletes a custom control in Audit Manager.
",
"DeregisterAccount": " Deregisters an account in Audit Manager.
When you deregister your account from Audit Manager, your data isn’t deleted. If you want to delete your resource data, you must perform that task separately before you deregister your account. Either, you can do this in the Audit Manager console. Or, you can use one of the delete API operations that are provided by Audit Manager.
To delete your Audit Manager resource data, see the following instructions:
At this time, Audit Manager doesn't provide an option to delete evidence. All available delete operations are listed above.
",
"DeregisterOrganizationAdminAccount": "Removes the specified Amazon Web Services account as a delegated administrator for Audit Manager.
When you remove a delegated administrator from your Audit Manager settings, you continue to have access to the evidence that you previously collected under that account. This is also the case when you deregister a delegated administrator from Organizations. However, Audit Manager will stop collecting and attaching evidence to that delegated administrator account moving forward.
When you deregister a delegated administrator account for Audit Manager, the data for that account isn’t deleted. If you want to delete resource data for a delegated administrator account, you must perform that task separately before you deregister the account. Either, you can do this in the Audit Manager console. Or, you can use one of the delete API operations that are provided by Audit Manager.
To delete your Audit Manager resource data, see the following instructions:
At this time, Audit Manager doesn't provide an option to delete evidence. All available delete operations are listed above.
",
@@ -1297,14 +1297,14 @@
"KeywordInputType": {
"base": null,
"refs": {
- "SourceKeyword$keywordInputType": " The method of input for the keyword.
"
+ "SourceKeyword$keywordInputType": " The input method for the keyword.
"
}
},
"KeywordValue": {
"base": null,
"refs": {
"Keywords$member": null,
- "SourceKeyword$keywordValue": " The value of the keyword that's used to search CloudTrail logs, Config rules, Security Hub checks, and Amazon Web Services API names when mapping a control data source.
"
+ "SourceKeyword$keywordValue": " The value of the keyword that's used when mapping a control data source. For example, this can be a CloudTrail event name, a rule name for Config, a Security Hub control, or the name of an Amazon Web Services API call.
If you’re mapping a data source to a rule in Config, the keywordValue that you specify depends on the type of rule:
-
For managed rules, you can use the rule identifier as the keywordValue. You can find the rule identifier from the list of Config managed rules.
-
For custom rules, you form the keywordValue by adding the Custom_ prefix to the rule name. This prefix distinguishes the rule from a managed rule.
-
For service-linked rules, you form the keywordValue by adding the Custom_ prefix to the rule name. In addition, you remove the suffix ID that appears at the end of the rule name.
-
Service-linked rule name: CustomRuleForAccount-conformance-pack-szsm1uv0w
keywordValue: Custom_CustomRuleForAccount-conformance-pack
-
Service-linked rule name: securityhub-api-gw-cache-encrypted-101104e1
keywordValue: Custom_securityhub-api-gw-cache-encrypted
-
Service-linked rule name: OrgConfigRule-s3-bucket-versioning-enabled-dbgzf8ba
keywordValue: Custom_OrgConfigRule-s3-bucket-versioning-enabled
"
}
},
"Keywords": {
diff --git a/apis/braket/2019-09-01/api-2.json b/apis/braket/2019-09-01/api-2.json
index beea86cb123..ac4f3557386 100644
--- a/apis/braket/2019-09-01/api-2.json
+++ b/apis/braket/2019-09-01/api-2.json
@@ -685,10 +685,16 @@
"volumeSizeInGb"
],
"members":{
+ "instanceCount":{"shape":"InstanceConfigInstanceCountInteger"},
"instanceType":{"shape":"InstanceType"},
"volumeSizeInGb":{"shape":"InstanceConfigVolumeSizeInGbInteger"}
}
},
+ "InstanceConfigInstanceCountInteger":{
+ "type":"integer",
+ "box":true,
+ "min":1
+ },
"InstanceConfigVolumeSizeInGbInteger":{
"type":"integer",
"box":true,
diff --git a/apis/braket/2019-09-01/docs-2.json b/apis/braket/2019-09-01/docs-2.json
index 6e14f42c8c4..c660f68027d 100644
--- a/apis/braket/2019-09-01/docs-2.json
+++ b/apis/braket/2019-09-01/docs-2.json
@@ -1,12 +1,12 @@
{
"version": "2.0",
- "service": "The Amazon Braket API Reference provides information about the operations and structures supported in Amazon Braket.
",
+ "service": "The Amazon Braket API Reference provides information about the operations and structures supported in Amazon Braket.
Additional Resources:
",
"operations": {
"CancelJob": "Cancels an Amazon Braket job.
",
"CancelQuantumTask": "Cancels the specified task.
",
"CreateJob": "Creates an Amazon Braket job.
",
"CreateQuantumTask": "Creates a quantum task.
",
- "GetDevice": "Retrieves the devices available in Amazon Braket.
",
+ "GetDevice": "Retrieves the devices available in Amazon Braket.
For backwards compatibility with older versions of BraketSchemas, OpenQASM information is omitted from GetDevice API calls. To get this information the user-agent needs to present a recent version of the BraketSchemas (1.8.0 or later). The Braket SDK automatically reports this for you. If you do not see OpenQASM results in the GetDevice response when using a Braket SDK, you may need to set AWS_EXECUTION_ENV environment variable to configure user-agent. See the code examples provided below for how to do this for the AWS CLI, Boto3, and the Go, Java, and JavaScript/TypeScript SDKs.
",
"GetJob": "Retrieves the specified Amazon Braket job.
",
"GetQuantumTask": "Retrieves the specified quantum task.
",
"ListTagsForResource": "Shows the tags associated with this resource.
",
@@ -264,6 +264,12 @@
"GetJobResponse$instanceConfig": "The resource instances to use while running the hybrid job on Amazon Braket.
"
}
},
+ "InstanceConfigInstanceCountInteger": {
+ "base": null,
+ "refs": {
+ "InstanceConfig$instanceCount": "Configures the number of resource instances to use while running an Amazon Braket job on Amazon Braket. The default value is 1.
"
+ }
+ },
"InstanceConfigVolumeSizeInGbInteger": {
"base": null,
"refs": {
diff --git a/apis/connect/2017-08-08/api-2.json b/apis/connect/2017-08-08/api-2.json
index 23b8e49d324..49c8b5a3f77 100644
--- a/apis/connect/2017-08-08/api-2.json
+++ b/apis/connect/2017-08-08/api-2.json
@@ -1541,6 +1541,23 @@
{"shape":"InternalServiceException"}
]
},
+ "PutUserStatus":{
+ "name":"PutUserStatus",
+ "http":{
+ "method":"PUT",
+ "requestUri":"/users/{InstanceId}/{UserId}/status"
+ },
+ "input":{"shape":"PutUserStatusRequest"},
+ "output":{"shape":"PutUserStatusResponse"},
+ "errors":[
+ {"shape":"InvalidRequestException"},
+ {"shape":"InvalidParameterException"},
+ {"shape":"ResourceNotFoundException"},
+ {"shape":"ThrottlingException"},
+ {"shape":"AccessDeniedException"},
+ {"shape":"InternalServiceException"}
+ ]
+ },
"ReleasePhoneNumber":{
"name":"ReleasePhoneNumber",
"http":{
@@ -6385,6 +6402,32 @@
"type":"list",
"member":{"shape":"PromptSummary"}
},
+ "PutUserStatusRequest":{
+ "type":"structure",
+ "required":[
+ "UserId",
+ "InstanceId",
+ "AgentStatusId"
+ ],
+ "members":{
+ "UserId":{
+ "shape":"UserId",
+ "location":"uri",
+ "locationName":"UserId"
+ },
+ "InstanceId":{
+ "shape":"InstanceId",
+ "location":"uri",
+ "locationName":"InstanceId"
+ },
+ "AgentStatusId":{"shape":"AgentStatusId"}
+ }
+ },
+ "PutUserStatusResponse":{
+ "type":"structure",
+ "members":{
+ }
+ },
"Queue":{
"type":"structure",
"members":{
diff --git a/apis/connect/2017-08-08/docs-2.json b/apis/connect/2017-08-08/docs-2.json
index da3af899c8f..975ec25fee0 100644
--- a/apis/connect/2017-08-08/docs-2.json
+++ b/apis/connect/2017-08-08/docs-2.json
@@ -97,6 +97,7 @@
"ListUseCases": "Lists the use cases for the integration association.
",
"ListUserHierarchyGroups": "Provides summary information about the hierarchy groups for the specified Amazon Connect instance.
For more information about agent hierarchies, see Set Up Agent Hierarchies in the Amazon Connect Administrator Guide.
",
"ListUsers": "Provides summary information about the users for the specified Amazon Connect instance.
",
+ "PutUserStatus": "Changes the current status of a user or agent in Amazon Connect. If the agent is currently handling a contact, this sets the agent's next status.
For more information, see Agent status and Set your next status in the Amazon Connect Administrator Guide.
",
"ReleasePhoneNumber": "Releases a phone number previously claimed to an Amazon Connect instance.
",
"ResumeContactRecording": "When a contact is being recorded, and the recording has been suspended using SuspendContactRecording, this API resumes recording the call.
Only voice recordings are supported at this time.
",
"SearchAvailablePhoneNumbers": "Searches for available phone numbers that you can claim to your Amazon Connect instance.
",
@@ -277,6 +278,7 @@
"AgentStatusSummary$Id": "The identifier for an agent status.
",
"CreateAgentStatusResponse$AgentStatusId": "The identifier of the agent status.
",
"DescribeAgentStatusRequest$AgentStatusId": "The identifier for the agent status.
",
+ "PutUserStatusRequest$AgentStatusId": "The identifier of the agent status.
",
"UpdateAgentStatusRequest$AgentStatusId": "The identifier of the agent status.
"
}
},
@@ -1863,6 +1865,7 @@
"ListUseCasesRequest$InstanceId": "The identifier of the Amazon Connect instance. You can find the instanceId in the ARN of the instance.
",
"ListUserHierarchyGroupsRequest$InstanceId": "The identifier of the Amazon Connect instance. You can find the instanceId in the ARN of the instance.
",
"ListUsersRequest$InstanceId": "The identifier of the Amazon Connect instance. You can find the instanceId in the ARN of the instance.
",
+ "PutUserStatusRequest$InstanceId": "The identifier of the Amazon Connect instance. You can find the instanceId in the ARN of the instance.
",
"ResumeContactRecordingRequest$InstanceId": "The identifier of the Amazon Connect instance. You can find the instanceId in the ARN of the instance.
",
"RoutingProfile$InstanceId": "The identifier of the Amazon Connect instance. You can find the instanceId in the ARN of the instance.
",
"SearchUsersRequest$InstanceId": "The identifier of the Amazon Connect instance. You can find the instanceId in the ARN of the instance.
",
@@ -2844,6 +2847,16 @@
"ListPromptsResponse$PromptSummaryList": "Information about the prompts.
"
}
},
+ "PutUserStatusRequest": {
+ "base": null,
+ "refs": {
+ }
+ },
+ "PutUserStatusResponse": {
+ "base": null,
+ "refs": {
+ }
+ },
"Queue": {
"base": "Contains information about a queue.
",
"refs": {
@@ -3887,6 +3900,7 @@
"CreateUserResponse$UserId": "The identifier of the user account.
",
"DeleteUserRequest$UserId": "The identifier of the user.
",
"DescribeUserRequest$UserId": "The identifier of the user account.
",
+ "PutUserStatusRequest$UserId": "The identifier of the user.
",
"UpdateUserHierarchyRequest$UserId": "The identifier of the user account.
",
"UpdateUserIdentityInfoRequest$UserId": "The identifier of the user account.
",
"UpdateUserPhoneConfigRequest$UserId": "The identifier of the user account.
",
diff --git a/apis/ec2/2016-11-15/api-2.json b/apis/ec2/2016-11-15/api-2.json
index 26c6b12f5a3..80781a275ef 100644
--- a/apis/ec2/2016-11-15/api-2.json
+++ b/apis/ec2/2016-11-15/api-2.json
@@ -9354,7 +9354,8 @@
"TagSpecifications":{
"shape":"TagSpecificationList",
"locationName":"TagSpecification"
- }
+ },
+ "KeyFormat":{"shape":"KeyFormat"}
}
},
"CreateLaunchTemplateRequest":{
@@ -14155,7 +14156,8 @@
"DryRun":{
"shape":"Boolean",
"locationName":"dryRun"
- }
+ },
+ "IncludePublicKey":{"shape":"Boolean"}
}
},
"DescribeKeyPairsResult":{
@@ -25328,6 +25330,13 @@
]
},
"KernelId":{"type":"string"},
+ "KeyFormat":{
+ "type":"string",
+ "enum":[
+ "pem",
+ "ppk"
+ ]
+ },
"KeyNameStringList":{
"type":"list",
"member":{
@@ -25390,6 +25399,14 @@
"Tags":{
"shape":"TagList",
"locationName":"tagSet"
+ },
+ "PublicKey":{
+ "shape":"String",
+ "locationName":"publicKey"
+ },
+ "CreateTime":{
+ "shape":"MillisecondDateTime",
+ "locationName":"createTime"
}
}
},
diff --git a/apis/ec2/2016-11-15/docs-2.json b/apis/ec2/2016-11-15/docs-2.json
index ccfae13b22c..e65400e74cb 100644
--- a/apis/ec2/2016-11-15/docs-2.json
+++ b/apis/ec2/2016-11-15/docs-2.json
@@ -69,7 +69,7 @@
"CreateIpam": "Create an IPAM. Amazon VPC IP Address Manager (IPAM) is a VPC feature that you can use to automate your IP address management workflows including assigning, tracking, troubleshooting, and auditing IP addresses across Amazon Web Services Regions and accounts throughout your Amazon Web Services Organization.
For more information, see Create an IPAM in the Amazon VPC IPAM User Guide.
",
"CreateIpamPool": "Create an IP address pool for Amazon VPC IP Address Manager (IPAM). In IPAM, a pool is a collection of contiguous IP addresses CIDRs. Pools enable you to organize your IP addresses according to your routing and security needs. For example, if you have separate routing and security needs for development and production applications, you can create a pool for each.
For more information, see Create a top-level pool in the Amazon VPC IPAM User Guide.
",
"CreateIpamScope": "Create an IPAM scope. In IPAM, a scope is the highest-level container within IPAM. An IPAM contains two default scopes. Each scope represents the IP space for a single network. The private scope is intended for all private IP address space. The public scope is intended for all public IP address space. Scopes enable you to reuse IP addresses across multiple unconnected networks without causing IP address overlap or conflict.
For more information, see Add a scope in the Amazon VPC IPAM User Guide.
",
- "CreateKeyPair": "Creates an ED25519 or 2048-bit RSA key pair with the specified name. Amazon EC2 stores the public key and displays the private key for you to save to a file. The private key is returned as an unencrypted PEM encoded PKCS#1 private key. If a key with the specified name already exists, Amazon EC2 returns an error.
The key pair returned to you is available only in the Amazon Web Services Region in which you create it. If you prefer, you can create your own key pair using a third-party tool and upload it to any Region using ImportKeyPair.
You can have up to 5,000 key pairs per Amazon Web Services Region.
For more information, see Amazon EC2 key pairs in the Amazon Elastic Compute Cloud User Guide.
",
+ "CreateKeyPair": "Creates an ED25519 or 2048-bit RSA key pair with the specified name and in the specified PEM or PPK format. Amazon EC2 stores the public key and displays the private key for you to save to a file. The private key is returned as an unencrypted PEM encoded PKCS#1 private key or an unencrypted PPK formatted private key for use with PuTTY. If a key with the specified name already exists, Amazon EC2 returns an error.
The key pair returned to you is available only in the Amazon Web Services Region in which you create it. If you prefer, you can create your own key pair using a third-party tool and upload it to any Region using ImportKeyPair.
You can have up to 5,000 key pairs per Amazon Web Services Region.
For more information, see Amazon EC2 key pairs in the Amazon Elastic Compute Cloud User Guide.
",
"CreateLaunchTemplate": "Creates a launch template.
A launch template contains the parameters to launch an instance. When you launch an instance using RunInstances, you can specify a launch template instead of providing the launch parameters in the request. For more information, see Launching an instance from a launch template in the Amazon Elastic Compute Cloud User Guide.
If you want to clone an existing launch template as the basis for creating a new launch template, you can use the Amazon EC2 console. The API, SDKs, and CLI do not support cloning a template. For more information, see Create a launch template from an existing launch template in the Amazon Elastic Compute Cloud User Guide.
",
"CreateLaunchTemplateVersion": "Creates a new version for a launch template. You can specify an existing version of launch template from which to base the new version.
Launch template versions are numbered in the order in which they are created. You cannot specify, change, or replace the numbering of launch template versions.
For more information, see Managing launch template versionsin the Amazon Elastic Compute Cloud User Guide.
",
"CreateLocalGatewayRoute": "Creates a static route for the specified local gateway route table.
",
@@ -1917,6 +1917,7 @@
"DescribeIpamsRequest$DryRun": "A check for whether you have the required permissions for the action without actually making the request and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
",
"DescribeIpv6PoolsRequest$DryRun": "Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
",
"DescribeKeyPairsRequest$DryRun": "Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
",
+ "DescribeKeyPairsRequest$IncludePublicKey": "If true, the public key material is included in the response.
Default: false
",
"DescribeLaunchTemplateVersionsRequest$DryRun": "Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
",
"DescribeLaunchTemplatesRequest$DryRun": "Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
",
"DescribeLocalGatewayRouteTableVirtualInterfaceGroupAssociationsRequest$DryRun": "Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.
",
@@ -11212,6 +11213,12 @@
"ScheduledInstancesLaunchSpecification$KernelId": "The ID of the kernel.
"
}
},
+ "KeyFormat": {
+ "base": null,
+ "refs": {
+ "CreateKeyPairRequest$KeyFormat": "The format of the key pair.
Default: pem
"
+ }
+ },
"KeyNameStringList": {
"base": null,
"refs": {
@@ -12307,6 +12314,7 @@
"Instance$UsageOperationUpdateTime": "The time that the usage operation was last updated.
",
"IpamAddressHistoryRecord$SampledStartTime": "Sampled start time of the resource-to-CIDR association within the IPAM scope. Changes are picked up in periodic snapshots, so the start time may have occurred before this specific time.
",
"IpamAddressHistoryRecord$SampledEndTime": "Sampled end time of the resource-to-CIDR association within the IPAM scope. Changes are picked up in periodic snapshots, so the end time may have occurred before this specific time.
",
+ "KeyPairInfo$CreateTime": "If you used Amazon EC2 to create the key pair, this is the date and time when the key was created, in ISO 8601 date-time format, in the UTC time zone.
If you imported an existing key pair to Amazon EC2, this is the date and time the key was imported, in ISO 8601 date-time format, in the UTC time zone.
",
"ModifyCapacityReservationFleetRequest$EndDate": "The date and time at which the Capacity Reservation Fleet expires. When the Capacity Reservation Fleet expires, its state changes to expired and all of the Capacity Reservations in the Fleet expire.
The Capacity Reservation Fleet expires within an hour after the specified time. For example, if you specify 5/31/2019, 13:30:55, the Capacity Reservation Fleet is guaranteed to expire between 13:30:55 and 14:30:55 on 5/31/2019.
You can't specify EndDate and RemoveEndDate in the same request.
",
"ModifySnapshotTierResult$TieringStartTime": "The date and time when the archive process was started.
",
"NetworkInsightsAccessScope$CreatedDate": "The creation date.
",
@@ -17354,6 +17362,7 @@
"KeyPairInfo$KeyPairId": "The ID of the key pair.
",
"KeyPairInfo$KeyFingerprint": "If you used CreateKeyPair to create the key pair:
-
For RSA key pairs, the key fingerprint is the SHA-1 digest of the DER encoded private key.
-
For ED25519 key pairs, the key fingerprint is the base64-encoded SHA-256 digest, which is the default for OpenSSH, starting with OpenSSH 6.8.
If you used ImportKeyPair to provide Amazon Web Services the public key:
-
For RSA key pairs, the key fingerprint is the MD5 public key fingerprint as specified in section 4 of RFC4716.
-
For ED25519 key pairs, the key fingerprint is the base64-encoded SHA-256 digest, which is the default for OpenSSH, starting with OpenSSH 6.8.
",
"KeyPairInfo$KeyName": "The name of the key pair.
",
+ "KeyPairInfo$PublicKey": "The public key material.
",
"LastError$Message": "The error message for the VPC endpoint error.
",
"LastError$Code": "The error code for the VPC endpoint error.
",
"LaunchPermission$UserId": "The Amazon Web Services account ID.
Constraints: Up to 10 000 account IDs can be specified in a single request.
",
diff --git a/apis/guardduty/2017-11-28/docs-2.json b/apis/guardduty/2017-11-28/docs-2.json
index 2e21e37d915..fbe3095735b 100644
--- a/apis/guardduty/2017-11-28/docs-2.json
+++ b/apis/guardduty/2017-11-28/docs-2.json
@@ -23,7 +23,7 @@
"DescribePublishingDestination": "Returns information about the publishing destination specified by the provided destinationId.
",
"DisableOrganizationAdminAccount": "Disables an Amazon Web Services account within the Organization as the GuardDuty delegated administrator.
",
"DisassociateFromMasterAccount": "Disassociates the current GuardDuty member account from its administrator account.
",
- "DisassociateMembers": "Disassociates GuardDuty member accounts (to the current GuardDuty administrator account) specified by the account IDs.
",
+ "DisassociateMembers": "Disassociates GuardDuty member accounts (to the current GuardDuty administrator account) specified by the account IDs. Member accounts added through Invitation get deleted from the current GuardDuty administrator account after 30 days of disassociation.
",
"EnableOrganizationAdminAccount": "Enables an Amazon Web Services account within the organization as the GuardDuty delegated administrator.
",
"GetDetector": "Retrieves an Amazon GuardDuty detector specified by the detectorId.
",
"GetFilter": "Returns the details of the filter specified by the filter name.
",
@@ -750,7 +750,7 @@
"FindingCriteria": {
"base": "Contains information about the criteria used for querying findings.
",
"refs": {
- "CreateFilterRequest$FindingCriteria": "Represents the criteria to be used in the filter for querying findings.
You can only use the following attributes to query findings:
-
accountId
-
region
-
confidence
-
id
-
resource.accessKeyDetails.accessKeyId
-
resource.accessKeyDetails.principalId
-
resource.accessKeyDetails.userName
-
resource.accessKeyDetails.userType
-
resource.instanceDetails.iamInstanceProfile.id
-
resource.instanceDetails.imageId
-
resource.instanceDetails.instanceId
-
resource.instanceDetails.outpostArn
-
resource.instanceDetails.networkInterfaces.ipv6Addresses
-
resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress
-
resource.instanceDetails.networkInterfaces.publicDnsName
-
resource.instanceDetails.networkInterfaces.publicIp
-
resource.instanceDetails.networkInterfaces.securityGroups.groupId
-
resource.instanceDetails.networkInterfaces.securityGroups.groupName
-
resource.instanceDetails.networkInterfaces.subnetId
-
resource.instanceDetails.networkInterfaces.vpcId
-
resource.instanceDetails.tags.key
-
resource.instanceDetails.tags.value
-
resource.resourceType
-
service.action.actionType
-
service.action.awsApiCallAction.api
-
service.action.awsApiCallAction.callerType
-
service.action.awsApiCallAction.errorCode
-
service.action.awsApiCallAction.remoteIpDetails.city.cityName
-
service.action.awsApiCallAction.remoteIpDetails.country.countryName
-
service.action.awsApiCallAction.remoteIpDetails.ipAddressV4
-
service.action.awsApiCallAction.remoteIpDetails.organization.asn
-
service.action.awsApiCallAction.remoteIpDetails.organization.asnOrg
-
service.action.awsApiCallAction.serviceName
-
service.action.dnsRequestAction.domain
-
service.action.networkConnectionAction.blocked
-
service.action.networkConnectionAction.connectionDirection
-
service.action.networkConnectionAction.localPortDetails.port
-
service.action.networkConnectionAction.protocol
-
service.action.networkConnectionAction.localIpDetails.ipAddressV4
-
service.action.networkConnectionAction.remoteIpDetails.city.cityName
-
service.action.networkConnectionAction.remoteIpDetails.country.countryName
-
service.action.networkConnectionAction.remoteIpDetails.ipAddressV4
-
service.action.networkConnectionAction.remoteIpDetails.organization.asn
-
service.action.networkConnectionAction.remoteIpDetails.organization.asnOrg
-
service.action.networkConnectionAction.remotePortDetails.port
-
service.additionalInfo.threatListName
-
resource.s3BucketDetails.publicAccess.effectivePermissions
-
resource.s3BucketDetails.name
-
resource.s3BucketDetails.tags.key
-
resource.s3BucketDetails.tags.value
-
resource.s3BucketDetails.type
-
service.archived
When this attribute is set to TRUE, only archived findings are listed. When it's set to FALSE, only unarchived findings are listed. When this attribute is not set, all existing findings are listed.
-
service.resourceRole
-
severity
-
type
-
updatedAt
Type: ISO 8601 string format: YYYY-MM-DDTHH:MM:SS.SSSZ or YYYY-MM-DDTHH:MM:SSZ depending on whether the value contains milliseconds.
",
+ "CreateFilterRequest$FindingCriteria": "Represents the criteria to be used in the filter for querying findings.
You can only use the following attributes to query findings:
-
accountId
-
region
-
confidence
-
id
-
resource.accessKeyDetails.accessKeyId
-
resource.accessKeyDetails.principalId
-
resource.accessKeyDetails.userName
-
resource.accessKeyDetails.userType
-
resource.instanceDetails.iamInstanceProfile.id
-
resource.instanceDetails.imageId
-
resource.instanceDetails.instanceId
-
resource.instanceDetails.outpostArn
-
resource.instanceDetails.networkInterfaces.ipv6Addresses
-
resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress
-
resource.instanceDetails.networkInterfaces.publicDnsName
-
resource.instanceDetails.networkInterfaces.publicIp
-
resource.instanceDetails.networkInterfaces.securityGroups.groupId
-
resource.instanceDetails.networkInterfaces.securityGroups.groupName
-
resource.instanceDetails.networkInterfaces.subnetId
-
resource.instanceDetails.networkInterfaces.vpcId
-
resource.instanceDetails.tags.key
-
resource.instanceDetails.tags.value
-
resource.resourceType
-
service.action.actionType
-
service.action.awsApiCallAction.api
-
service.action.awsApiCallAction.callerType
-
service.action.awsApiCallAction.errorCode
-
service.action.awsApiCallAction.userAgent
-
service.action.awsApiCallAction.remoteIpDetails.city.cityName
-
service.action.awsApiCallAction.remoteIpDetails.country.countryName
-
service.action.awsApiCallAction.remoteIpDetails.ipAddressV4
-
service.action.awsApiCallAction.remoteIpDetails.organization.asn
-
service.action.awsApiCallAction.remoteIpDetails.organization.asnOrg
-
service.action.awsApiCallAction.serviceName
-
service.action.dnsRequestAction.domain
-
service.action.networkConnectionAction.blocked
-
service.action.networkConnectionAction.connectionDirection
-
service.action.networkConnectionAction.localPortDetails.port
-
service.action.networkConnectionAction.protocol
-
service.action.networkConnectionAction.localIpDetails.ipAddressV4
-
service.action.networkConnectionAction.remoteIpDetails.city.cityName
-
service.action.networkConnectionAction.remoteIpDetails.country.countryName
-
service.action.networkConnectionAction.remoteIpDetails.ipAddressV4
-
service.action.networkConnectionAction.remoteIpDetails.organization.asn
-
service.action.networkConnectionAction.remoteIpDetails.organization.asnOrg
-
service.action.networkConnectionAction.remotePortDetails.port
-
service.additionalInfo.threatListName
-
resource.s3BucketDetails.publicAccess.effectivePermissions
-
resource.s3BucketDetails.name
-
resource.s3BucketDetails.tags.key
-
resource.s3BucketDetails.tags.value
-
resource.s3BucketDetails.type
-
service.archived
When this attribute is set to TRUE, only archived findings are listed. When it's set to FALSE, only unarchived findings are listed. When this attribute is not set, all existing findings are listed.
-
service.resourceRole
-
severity
-
type
-
updatedAt
Type: ISO 8601 string format: YYYY-MM-DDTHH:MM:SS.SSSZ or YYYY-MM-DDTHH:MM:SSZ depending on whether the value contains milliseconds.
",
"GetFilterResponse$FindingCriteria": "Represents the criteria to be used in the filter for querying findings.
",
"GetFindingsStatisticsRequest$FindingCriteria": "Represents the criteria that is used for querying findings.
",
"ListFindingsRequest$FindingCriteria": "Represents the criteria used for querying findings. Valid values include:
-
JSON field name
-
accountId
-
region
-
confidence
-
id
-
resource.accessKeyDetails.accessKeyId
-
resource.accessKeyDetails.principalId
-
resource.accessKeyDetails.userName
-
resource.accessKeyDetails.userType
-
resource.instanceDetails.iamInstanceProfile.id
-
resource.instanceDetails.imageId
-
resource.instanceDetails.instanceId
-
resource.instanceDetails.networkInterfaces.ipv6Addresses
-
resource.instanceDetails.networkInterfaces.privateIpAddresses.privateIpAddress
-
resource.instanceDetails.networkInterfaces.publicDnsName
-
resource.instanceDetails.networkInterfaces.publicIp
-
resource.instanceDetails.networkInterfaces.securityGroups.groupId
-
resource.instanceDetails.networkInterfaces.securityGroups.groupName
-
resource.instanceDetails.networkInterfaces.subnetId
-
resource.instanceDetails.networkInterfaces.vpcId
-
resource.instanceDetails.tags.key
-
resource.instanceDetails.tags.value
-
resource.resourceType
-
service.action.actionType
-
service.action.awsApiCallAction.api
-
service.action.awsApiCallAction.callerType
-
service.action.awsApiCallAction.remoteIpDetails.city.cityName
-
service.action.awsApiCallAction.remoteIpDetails.country.countryName
-
service.action.awsApiCallAction.remoteIpDetails.ipAddressV4
-
service.action.awsApiCallAction.remoteIpDetails.organization.asn
-
service.action.awsApiCallAction.remoteIpDetails.organization.asnOrg
-
service.action.awsApiCallAction.serviceName
-
service.action.dnsRequestAction.domain
-
service.action.networkConnectionAction.blocked
-
service.action.networkConnectionAction.connectionDirection
-
service.action.networkConnectionAction.localPortDetails.port
-
service.action.networkConnectionAction.protocol
-
service.action.networkConnectionAction.remoteIpDetails.country.countryName
-
service.action.networkConnectionAction.remoteIpDetails.ipAddressV4
-
service.action.networkConnectionAction.remoteIpDetails.organization.asn
-
service.action.networkConnectionAction.remoteIpDetails.organization.asnOrg
-
service.action.networkConnectionAction.remotePortDetails.port
-
service.additionalInfo.threatListName
-
service.archived
When this attribute is set to 'true', only archived findings are listed. When it's set to 'false', only unarchived findings are listed. When this attribute is not set, all existing findings are listed.
-
service.resourceRole
-
severity
-
type
-
updatedAt
Type: Timestamp in Unix Epoch millisecond format: 1486685375000
",
@@ -1564,7 +1564,7 @@
"AwsApiCallAction$Api": "The Amazon Web Services API name.
",
"AwsApiCallAction$CallerType": "The Amazon Web Services API caller type.
",
"AwsApiCallAction$ErrorCode": "The error code of the failed Amazon Web Services API action.
",
- "AwsApiCallAction$UserAgent": null,
+ "AwsApiCallAction$UserAgent": "The agent through which the API request was made.
",
"AwsApiCallAction$ServiceName": "The Amazon Web Services service name whose API was invoked.
",
"BadRequestException$Message": "The error message.
",
"BadRequestException$Type": "The error type.
",
diff --git a/apis/network-firewall/2020-11-12/api-2.json b/apis/network-firewall/2020-11-12/api-2.json
index 419ad104b6a..f5779aff4be 100644
--- a/apis/network-firewall/2020-11-12/api-2.json
+++ b/apis/network-firewall/2020-11-12/api-2.json
@@ -684,7 +684,8 @@
"Capacity":{"shape":"RuleCapacity"},
"Tags":{"shape":"TagList"},
"DryRun":{"shape":"Boolean"},
- "EncryptionConfiguration":{"shape":"EncryptionConfiguration"}
+ "EncryptionConfiguration":{"shape":"EncryptionConfiguration"},
+ "SourceMetadata":{"shape":"SourceMetadata"}
}
},
"CreateRuleGroupResponse":{
@@ -849,7 +850,8 @@
"Description":{"shape":"Description"},
"Type":{"shape":"RuleGroupType"},
"Capacity":{"shape":"RuleCapacity"},
- "StatefulRuleOptions":{"shape":"StatefulRuleOptions"}
+ "StatefulRuleOptions":{"shape":"StatefulRuleOptions"},
+ "LastModifiedTime":{"shape":"LastUpdateTime"}
}
},
"DescribeRuleGroupRequest":{
@@ -923,6 +925,7 @@
},
"EncryptionConfiguration":{
"type":"structure",
+ "required":["Type"],
"members":{
"KeyId":{"shape":"KeyId"},
"Type":{"shape":"EncryptionType"}
@@ -1011,7 +1014,8 @@
"ConsumedStatelessRuleCapacity":{"shape":"RuleCapacity"},
"ConsumedStatefulRuleCapacity":{"shape":"RuleCapacity"},
"NumberOfAssociations":{"shape":"NumberOfAssociations"},
- "EncryptionConfiguration":{"shape":"EncryptionConfiguration"}
+ "EncryptionConfiguration":{"shape":"EncryptionConfiguration"},
+ "LastModifiedTime":{"shape":"LastUpdateTime"}
}
},
"FirewallStatus":{
@@ -1148,6 +1152,7 @@
"min":1,
"pattern":".*"
},
+ "LastUpdateTime":{"type":"timestamp"},
"LimitExceededException":{
"type":"structure",
"members":{
@@ -1189,7 +1194,9 @@
"members":{
"NextToken":{"shape":"PaginationToken"},
"MaxResults":{"shape":"PaginationMaxResults"},
- "Scope":{"shape":"ResourceManagedStatus"}
+ "Scope":{"shape":"ResourceManagedStatus"},
+ "ManagedType":{"shape":"ResourceManagedType"},
+ "Type":{"shape":"RuleGroupType"}
}
},
"ListRuleGroupsResponse":{
@@ -1409,6 +1416,13 @@
"ACCOUNT"
]
},
+ "ResourceManagedType":{
+ "type":"string",
+ "enum":[
+ "AWS_MANAGED_THREAT_SIGNATURES",
+ "AWS_MANAGED_DOMAIN_LISTS"
+ ]
+ },
"ResourceName":{
"type":"string",
"max":128,
@@ -1482,7 +1496,10 @@
"Tags":{"shape":"TagList"},
"ConsumedCapacity":{"shape":"RuleCapacity"},
"NumberOfAssociations":{"shape":"NumberOfAssociations"},
- "EncryptionConfiguration":{"shape":"EncryptionConfiguration"}
+ "EncryptionConfiguration":{"shape":"EncryptionConfiguration"},
+ "SourceMetadata":{"shape":"SourceMetadata"},
+ "SnsTopic":{"shape":"ResourceArn"},
+ "LastModifiedTime":{"shape":"LastUpdateTime"}
}
},
"RuleGroupType":{
@@ -1575,6 +1592,13 @@
"min":1,
"pattern":"^.*$"
},
+ "SourceMetadata":{
+ "type":"structure",
+ "members":{
+ "SourceArn":{"shape":"ResourceArn"},
+ "SourceUpdateToken":{"shape":"UpdateToken"}
+ }
+ },
"StatefulAction":{
"type":"string",
"enum":[
@@ -1990,7 +2014,8 @@
"Type":{"shape":"RuleGroupType"},
"Description":{"shape":"Description"},
"DryRun":{"shape":"Boolean"},
- "EncryptionConfiguration":{"shape":"EncryptionConfiguration"}
+ "EncryptionConfiguration":{"shape":"EncryptionConfiguration"},
+ "SourceMetadata":{"shape":"SourceMetadata"}
}
},
"UpdateRuleGroupResponse":{
diff --git a/apis/network-firewall/2020-11-12/docs-2.json b/apis/network-firewall/2020-11-12/docs-2.json
index 5efc7baf443..4a5669f5d03 100644
--- a/apis/network-firewall/2020-11-12/docs-2.json
+++ b/apis/network-firewall/2020-11-12/docs-2.json
@@ -538,6 +538,14 @@
"RuleOption$Keyword": ""
}
},
+ "LastUpdateTime": {
+ "base": null,
+ "refs": {
+ "DescribeRuleGroupMetadataResponse$LastModifiedTime": "The last time that the rule group was changed.
",
+ "FirewallPolicyResponse$LastModifiedTime": "The last time that the firewall policy was changed.
",
+ "RuleGroupResponse$LastModifiedTime": "The last time that the rule group was changed.
"
+ }
+ },
"LimitExceededException": {
"base": "Unable to perform the operation because doing so would violate a limit setting.
",
"refs": {
@@ -793,6 +801,8 @@
"PutResourcePolicyRequest$ResourceArn": "The Amazon Resource Name (ARN) of the account that you want to share rule groups and firewall policies with.
",
"RuleGroupMetadata$Arn": "The Amazon Resource Name (ARN) of the rule group.
",
"RuleGroupResponse$RuleGroupArn": "The Amazon Resource Name (ARN) of the rule group.
If this response is for a create request that had DryRun set to TRUE, then this ARN is a placeholder that isn't attached to a valid resource.
",
+ "RuleGroupResponse$SnsTopic": "The Amazon resource name (ARN) of the Amazon Simple Notification Service SNS topic that's used to record changes to the managed rule group. You can subscribe to the SNS topic to receive notifications when the managed rule group is modified, such as for new versions and for version expiration. For more information, see the Amazon Simple Notification Service Developer Guide..
",
+ "SourceMetadata$SourceArn": "The Amazon Resource Name (ARN) of the rule group that your own rule group is copied from.
",
"StatefulRuleGroupReference$ResourceArn": "The Amazon Resource Name (ARN) of the stateful rule group.
",
"StatelessRuleGroupReference$ResourceArn": "The Amazon Resource Name (ARN) of the stateless rule group.
",
"TagResourceRequest$ResourceArn": "The Amazon Resource Name (ARN) of the resource.
",
@@ -827,6 +837,12 @@
"ListRuleGroupsRequest$Scope": "The scope of the request. The default setting of ACCOUNT or a setting of NULL returns all of the rule groups in your account. A setting of MANAGED returns all available managed rule groups.
"
}
},
+ "ResourceManagedType": {
+ "base": null,
+ "refs": {
+ "ListRuleGroupsRequest$ManagedType": "Indicates the general category of the Amazon Web Services managed rule group.
"
+ }
+ },
"ResourceName": {
"base": null,
"refs": {
@@ -936,6 +952,7 @@
"DescribeRuleGroupMetadataRequest$Type": "Indicates whether the rule group is stateless or stateful. If the rule group is stateless, it contains stateless rules. If it is stateful, it contains stateful rules.
This setting is required for requests that do not include the RuleGroupARN.
",
"DescribeRuleGroupMetadataResponse$Type": "Indicates whether the rule group is stateless or stateful. If the rule group is stateless, it contains stateless rules. If it is stateful, it contains stateful rules.
This setting is required for requests that do not include the RuleGroupARN.
",
"DescribeRuleGroupRequest$Type": "Indicates whether the rule group is stateless or stateful. If the rule group is stateless, it contains stateless rules. If it is stateful, it contains stateful rules.
This setting is required for requests that do not include the RuleGroupARN.
",
+ "ListRuleGroupsRequest$Type": "Indicates whether the rule group is stateless or stateful. If the rule group is stateless, it contains stateless rules. If it is stateful, it contains stateful rules.
",
"RuleGroupResponse$Type": "Indicates whether the rule group is stateless or stateful. If the rule group is stateless, it contains stateless rules. If it is stateful, it contains stateful rules.
",
"UpdateRuleGroupRequest$Type": "Indicates whether the rule group is stateless or stateful. If the rule group is stateless, it contains stateless rules. If it is stateful, it contains stateful rules.
This setting is required for requests that do not include the RuleGroupARN.
"
}
@@ -1022,6 +1039,14 @@
"Header$Source": "The source IP address or address range to inspect for, in CIDR notation. To match with any address, specify ANY.
Specify an IP address or a block of IP addresses in Classless Inter-Domain Routing (CIDR) notation. Network Firewall supports all address ranges for IPv4.
Examples:
-
To configure Network Firewall to inspect for the IP address 192.0.2.44, specify 192.0.2.44/32.
-
To configure Network Firewall to inspect for IP addresses from 192.0.2.0 to 192.0.2.255, specify 192.0.2.0/24.
For more information about CIDR notation, see the Wikipedia entry Classless Inter-Domain Routing.
"
}
},
+ "SourceMetadata": {
+ "base": "High-level information about the managed rule group that your own rule group is copied from. You can use the the metadata to track version updates made to the originating rule group. You can retrieve all objects for a rule group by calling DescribeRuleGroup.
",
+ "refs": {
+ "CreateRuleGroupRequest$SourceMetadata": "A complex type that contains metadata about the rule group that your own rule group is copied from. You can use the metadata to keep track of updates made to the originating rule group.
",
+ "RuleGroupResponse$SourceMetadata": "A complex type that contains metadata about the rule group that your own rule group is copied from. You can use the metadata to track the version updates made to the originating rule group.
",
+ "UpdateRuleGroupRequest$SourceMetadata": "A complex type that contains metadata about the rule group that your own rule group is copied from. You can use the metadata to keep track of updates made to the originating rule group.
"
+ }
+ },
"StatefulAction": {
"base": null,
"refs": {
@@ -1360,6 +1385,7 @@
"DisassociateSubnetsRequest$UpdateToken": "An optional token that you can use for optimistic locking. Network Firewall returns a token to your requests that access the firewall. The token marks the state of the firewall resource at the time of the request.
To make an unconditional change to the firewall, omit the token in your update request. Without the token, Network Firewall performs your updates regardless of whether the firewall has changed since you last retrieved it.
To make a conditional change to the firewall, provide the token in your update request. Network Firewall uses the token to ensure that the firewall hasn't changed since you last retrieved it. If it has changed, the operation fails with an InvalidTokenException. If this happens, retrieve the firewall again to get a current copy of it with a new token. Reapply your changes as needed, then try the operation again using the new token.
",
"DisassociateSubnetsResponse$UpdateToken": "An optional token that you can use for optimistic locking. Network Firewall returns a token to your requests that access the firewall. The token marks the state of the firewall resource at the time of the request.
To make an unconditional change to the firewall, omit the token in your update request. Without the token, Network Firewall performs your updates regardless of whether the firewall has changed since you last retrieved it.
To make a conditional change to the firewall, provide the token in your update request. Network Firewall uses the token to ensure that the firewall hasn't changed since you last retrieved it. If it has changed, the operation fails with an InvalidTokenException. If this happens, retrieve the firewall again to get a current copy of it with a new token. Reapply your changes as needed, then try the operation again using the new token.
",
"PerObjectStatus$UpdateToken": "The current version of the object that is either in sync or pending synchronization.
",
+ "SourceMetadata$SourceUpdateToken": "The update token of the Amazon Web Services managed rule group that your own rule group is copied from. To determine the update token for the managed rule group, call DescribeRuleGroup.
",
"UpdateFirewallDeleteProtectionRequest$UpdateToken": "An optional token that you can use for optimistic locking. Network Firewall returns a token to your requests that access the firewall. The token marks the state of the firewall resource at the time of the request.
To make an unconditional change to the firewall, omit the token in your update request. Without the token, Network Firewall performs your updates regardless of whether the firewall has changed since you last retrieved it.
To make a conditional change to the firewall, provide the token in your update request. Network Firewall uses the token to ensure that the firewall hasn't changed since you last retrieved it. If it has changed, the operation fails with an InvalidTokenException. If this happens, retrieve the firewall again to get a current copy of it with a new token. Reapply your changes as needed, then try the operation again using the new token.
",
"UpdateFirewallDeleteProtectionResponse$UpdateToken": "An optional token that you can use for optimistic locking. Network Firewall returns a token to your requests that access the firewall. The token marks the state of the firewall resource at the time of the request.
To make an unconditional change to the firewall, omit the token in your update request. Without the token, Network Firewall performs your updates regardless of whether the firewall has changed since you last retrieved it.
To make a conditional change to the firewall, provide the token in your update request. Network Firewall uses the token to ensure that the firewall hasn't changed since you last retrieved it. If it has changed, the operation fails with an InvalidTokenException. If this happens, retrieve the firewall again to get a current copy of it with a new token. Reapply your changes as needed, then try the operation again using the new token.
",
"UpdateFirewallDescriptionRequest$UpdateToken": "An optional token that you can use for optimistic locking. Network Firewall returns a token to your requests that access the firewall. The token marks the state of the firewall resource at the time of the request.
To make an unconditional change to the firewall, omit the token in your update request. Without the token, Network Firewall performs your updates regardless of whether the firewall has changed since you last retrieved it.
To make a conditional change to the firewall, provide the token in your update request. Network Firewall uses the token to ensure that the firewall hasn't changed since you last retrieved it. If it has changed, the operation fails with an InvalidTokenException. If this happens, retrieve the firewall again to get a current copy of it with a new token. Reapply your changes as needed, then try the operation again using the new token.
",
diff --git a/gems/aws-sdk-auditmanager/CHANGELOG.md b/gems/aws-sdk-auditmanager/CHANGELOG.md
index 7bcd17b9685..b6dd21582a8 100644
--- a/gems/aws-sdk-auditmanager/CHANGELOG.md
+++ b/gems/aws-sdk-auditmanager/CHANGELOG.md
@@ -1,6 +1,11 @@
Unreleased Changes
------------------
+1.24.0 (2022-04-28)
+------------------
+
+* Feature - This release adds documentation updates for Audit Manager. We provided examples of how to use the Custom_ prefix for the keywordValue attribute. We also provided more details about the DeleteAssessmentReport operation.
+
1.23.0 (2022-03-31)
------------------
diff --git a/gems/aws-sdk-auditmanager/VERSION b/gems/aws-sdk-auditmanager/VERSION
index a6c2798a482..53cc1a6f929 100644
--- a/gems/aws-sdk-auditmanager/VERSION
+++ b/gems/aws-sdk-auditmanager/VERSION
@@ -1 +1 @@
-1.23.0
+1.24.0
diff --git a/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager.rb b/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager.rb
index 5c964254767..0141ace4788 100644
--- a/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager.rb
+++ b/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager.rb
@@ -48,6 +48,6 @@
# @!group service
module Aws::AuditManager
- GEM_VERSION = '1.23.0'
+ GEM_VERSION = '1.24.0'
end
diff --git a/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager/client.rb b/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager/client.rb
index 120c63dd50f..a2f13c4f50a 100644
--- a/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager/client.rb
+++ b/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager/client.rb
@@ -1063,7 +1063,35 @@ def delete_assessment_framework_share(params = {}, options = {})
req.send_request(options)
end
- # Deletes an assessment report from an assessment in Audit Manager.
+ # Deletes an assessment report in Audit Manager.
+ #
+ # When you run the `DeleteAssessmentReport` operation, Audit Manager
+ # attempts to delete the following data:
+ #
+ # 1. The specified assessment report that’s stored in your S3 bucket
+ #
+ # 2. The associated metadata that’s stored in Audit Manager
+ #
+ # If Audit Manager can’t access the assessment report in your S3 bucket,
+ # the report isn’t deleted. In this event, the `DeleteAssessmentReport`
+ # operation doesn’t fail. Instead, it proceeds to delete the associated
+ # metadata only. You must then delete the assessment report from the S3
+ # bucket yourself.
+ #
+ # This scenario happens when Audit Manager receives a `403 (Forbidden)`
+ # or `404 (Not Found)` error from Amazon S3. To avoid this, make sure
+ # that your S3 bucket is available, and that you configured the correct
+ # permissions for Audit Manager to delete resources in your S3 bucket.
+ # For an example permissions policy that you can use, see [Assessment
+ # report destination permissions][1] in the *Audit Manager User Guide*.
+ # For information about the issues that could cause a `403 (Forbidden)`
+ # or `404 (Not Found`) error from Amazon S3, see [List of Error
+ # Codes][2] in the *Amazon Simple Storage Service API Reference*.
+ #
+ #
+ #
+ # [1]: https://docs.aws.amazon.com/audit-manager/latest/userguide/security_iam_id-based-policy-examples.html#full-administrator-access-assessment-report-destination
+ # [2]: https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html#ErrorCodeList
#
# @option params [required, String] :assessment_id
# The unique identifier for the assessment.
@@ -3623,7 +3651,7 @@ def build_request(operation_name, params = {})
params: params,
config: config)
context[:gem_name] = 'aws-sdk-auditmanager'
- context[:gem_version] = '1.23.0'
+ context[:gem_version] = '1.24.0'
Seahorse::Client::Request.new(handlers, context)
end
diff --git a/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager/types.rb b/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager/types.rb
index ca35ec7b615..cb6a086ff12 100644
--- a/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager/types.rb
+++ b/gems/aws-sdk-auditmanager/lib/aws-sdk-auditmanager/types.rb
@@ -4321,13 +4321,61 @@ class Settings < Struct.new(
# }
#
# @!attribute [rw] keyword_input_type
- # The method of input for the keyword.
+ # The input method for the keyword.
# @return [String]
#
# @!attribute [rw] keyword_value
- # The value of the keyword that's used to search CloudTrail logs,
- # Config rules, Security Hub checks, and Amazon Web Services API names
- # when mapping a control data source.
+ # The value of the keyword that's used when mapping a control data
+ # source. For example, this can be a CloudTrail event name, a rule
+ # name for Config, a Security Hub control, or the name of an Amazon
+ # Web Services API call.
+ #
+ # If you’re mapping a data source to a rule in Config, the
+ # `keywordValue` that you specify depends on the type of rule:
+ #
+ # * For [managed rules][1], you can use the rule identifier as the
+ # `keywordValue`. You can find the rule identifier from the [list of
+ # Config managed rules][2].
+ #
+ # * Managed rule name: [s3-bucket-acl-prohibited][3]
+ #
+ # `keywordValue`\: `S3_BUCKET_ACL_PROHIBITED`
+ #
+ # * For [custom rules][4], you form the `keywordValue` by adding the
+ # `Custom_` prefix to the rule name. This prefix distinguishes the
+ # rule from a managed rule.
+ #
+ # * Custom rule name: my-custom-config-rule
+ #
+ # `keywordValue`\: `Custom_my-custom-config-rule`
+ #
+ # * For [service-linked rules][5], you form the `keywordValue` by
+ # adding the `Custom_` prefix to the rule name. In addition, you
+ # remove the suffix ID that appears at the end of the rule name.
+ #
+ # * Service-linked rule name:
+ # CustomRuleForAccount-conformance-pack-szsm1uv0w
+ #
+ # `keywordValue`\: `Custom_CustomRuleForAccount-conformance-pack`
+ #
+ # * Service-linked rule name:
+ # securityhub-api-gw-cache-encrypted-101104e1
+ #
+ # `keywordValue`\: `Custom_securityhub-api-gw-cache-encrypted`
+ #
+ # * Service-linked rule name:
+ # OrgConfigRule-s3-bucket-versioning-enabled-dbgzf8ba
+ #
+ # `keywordValue`\:
+ # `Custom_OrgConfigRule-s3-bucket-versioning-enabled`
+ #
+ #
+ #
+ # [1]: https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_use-managed-rules.html
+ # [2]: https://docs.aws.amazon.com/config/latest/developerguide/managed-rules-by-aws-config.html
+ # [3]: https://docs.aws.amazon.com/config/latest/developerguide/s3-bucket-acl-prohibited.html
+ # [4]: https://docs.aws.amazon.com/config/latest/developerguide/evaluate-config_develop-rules.html
+ # [5]: https://docs.aws.amazon.com/config/latest/developerguide/service-linked-awsconfig-rules.html
# @return [String]
#
# @see http://docs.aws.amazon.com/goto/WebAPI/auditmanager-2017-07-25/SourceKeyword AWS API Documentation
diff --git a/gems/aws-sdk-braket/CHANGELOG.md b/gems/aws-sdk-braket/CHANGELOG.md
index bc303d3ca86..8090e490074 100644
--- a/gems/aws-sdk-braket/CHANGELOG.md
+++ b/gems/aws-sdk-braket/CHANGELOG.md
@@ -1,6 +1,11 @@
Unreleased Changes
------------------
+1.19.0 (2022-04-28)
+------------------
+
+* Feature - This release enables Braket Hybrid Jobs with Embedded Simulators to have multiple instances.
+
1.18.0 (2022-02-24)
------------------
diff --git a/gems/aws-sdk-braket/VERSION b/gems/aws-sdk-braket/VERSION
index 84cc529467b..815d5ca06d5 100644
--- a/gems/aws-sdk-braket/VERSION
+++ b/gems/aws-sdk-braket/VERSION
@@ -1 +1 @@
-1.18.0
+1.19.0
diff --git a/gems/aws-sdk-braket/lib/aws-sdk-braket.rb b/gems/aws-sdk-braket/lib/aws-sdk-braket.rb
index 599db73120c..40a77bffadc 100644
--- a/gems/aws-sdk-braket/lib/aws-sdk-braket.rb
+++ b/gems/aws-sdk-braket/lib/aws-sdk-braket.rb
@@ -48,6 +48,6 @@
# @!group service
module Aws::Braket
- GEM_VERSION = '1.18.0'
+ GEM_VERSION = '1.19.0'
end
diff --git a/gems/aws-sdk-braket/lib/aws-sdk-braket/client.rb b/gems/aws-sdk-braket/lib/aws-sdk-braket/client.rb
index 4cd65f62978..e29e2f747bf 100644
--- a/gems/aws-sdk-braket/lib/aws-sdk-braket/client.rb
+++ b/gems/aws-sdk-braket/lib/aws-sdk-braket/client.rb
@@ -513,6 +513,7 @@ def cancel_quantum_task(params = {}, options = {})
# },
# ],
# instance_config: { # required
+ # instance_count: 1,
# instance_type: "ml.m4.xlarge", # required, accepts ml.m4.xlarge, ml.m4.2xlarge, ml.m4.4xlarge, ml.m4.10xlarge, ml.m4.16xlarge, ml.g4dn.xlarge, ml.g4dn.2xlarge, ml.g4dn.4xlarge, ml.g4dn.8xlarge, ml.g4dn.12xlarge, ml.g4dn.16xlarge, ml.m5.large, ml.m5.xlarge, ml.m5.2xlarge, ml.m5.4xlarge, ml.m5.12xlarge, ml.m5.24xlarge, ml.c4.xlarge, ml.c4.2xlarge, ml.c4.4xlarge, ml.c4.8xlarge, ml.p2.xlarge, ml.p2.8xlarge, ml.p2.16xlarge, ml.p3.2xlarge, ml.p3.8xlarge, ml.p3.16xlarge, ml.p3dn.24xlarge, ml.p4d.24xlarge, ml.c5.xlarge, ml.c5.2xlarge, ml.c5.4xlarge, ml.c5.9xlarge, ml.c5.18xlarge, ml.c5n.xlarge, ml.c5n.2xlarge, ml.c5n.4xlarge, ml.c5n.9xlarge, ml.c5n.18xlarge
# volume_size_in_gb: 1, # required
# },
@@ -620,6 +621,18 @@ def create_quantum_task(params = {}, options = {})
# Retrieves the devices available in Amazon Braket.
#
+ # For backwards compatibility with older versions of BraketSchemas,
+ # OpenQASM information is omitted from GetDevice API calls. To get this
+ # information the user-agent needs to present a recent version of the
+ # BraketSchemas (1.8.0 or later). The Braket SDK automatically reports
+ # this for you. If you do not see OpenQASM results in the GetDevice
+ # response when using a Braket SDK, you may need to set
+ # AWS\_EXECUTION\_ENV environment variable to configure user-agent. See
+ # the code examples provided below for how to do this for the AWS CLI,
+ # Boto3, and the Go, Java, and JavaScript/TypeScript SDKs.
+ #
+ #
+ #
# @option params [required, String] :device_arn
# The ARN of the device to retrieve.
#
@@ -712,6 +725,7 @@ def get_device(params = {}, options = {})
# resp.input_data_config[0].channel_name #=> String
# resp.input_data_config[0].content_type #=> String
# resp.input_data_config[0].data_source.s3_data_source.s3_uri #=> String
+ # resp.instance_config.instance_count #=> Integer
# resp.instance_config.instance_type #=> String, one of "ml.m4.xlarge", "ml.m4.2xlarge", "ml.m4.4xlarge", "ml.m4.10xlarge", "ml.m4.16xlarge", "ml.g4dn.xlarge", "ml.g4dn.2xlarge", "ml.g4dn.4xlarge", "ml.g4dn.8xlarge", "ml.g4dn.12xlarge", "ml.g4dn.16xlarge", "ml.m5.large", "ml.m5.xlarge", "ml.m5.2xlarge", "ml.m5.4xlarge", "ml.m5.12xlarge", "ml.m5.24xlarge", "ml.c4.xlarge", "ml.c4.2xlarge", "ml.c4.4xlarge", "ml.c4.8xlarge", "ml.p2.xlarge", "ml.p2.8xlarge", "ml.p2.16xlarge", "ml.p3.2xlarge", "ml.p3.8xlarge", "ml.p3.16xlarge", "ml.p3dn.24xlarge", "ml.p4d.24xlarge", "ml.c5.xlarge", "ml.c5.2xlarge", "ml.c5.4xlarge", "ml.c5.9xlarge", "ml.c5.18xlarge", "ml.c5n.xlarge", "ml.c5n.2xlarge", "ml.c5n.4xlarge", "ml.c5n.9xlarge", "ml.c5n.18xlarge"
# resp.instance_config.volume_size_in_gb #=> Integer
# resp.job_arn #=> String
@@ -1051,7 +1065,7 @@ def build_request(operation_name, params = {})
params: params,
config: config)
context[:gem_name] = 'aws-sdk-braket'
- context[:gem_version] = '1.18.0'
+ context[:gem_version] = '1.19.0'
Seahorse::Client::Request.new(handlers, context)
end
diff --git a/gems/aws-sdk-braket/lib/aws-sdk-braket/client_api.rb b/gems/aws-sdk-braket/lib/aws-sdk-braket/client_api.rb
index 1c30ab79abb..d9be159e2fe 100644
--- a/gems/aws-sdk-braket/lib/aws-sdk-braket/client_api.rb
+++ b/gems/aws-sdk-braket/lib/aws-sdk-braket/client_api.rb
@@ -55,6 +55,7 @@ module ClientApi
InputFileConfig = Shapes::StructureShape.new(name: 'InputFileConfig')
InputFileConfigChannelNameString = Shapes::StringShape.new(name: 'InputFileConfigChannelNameString')
InstanceConfig = Shapes::StructureShape.new(name: 'InstanceConfig')
+ InstanceConfigInstanceCountInteger = Shapes::IntegerShape.new(name: 'InstanceConfigInstanceCountInteger')
InstanceConfigVolumeSizeInGbInteger = Shapes::IntegerShape.new(name: 'InstanceConfigVolumeSizeInGbInteger')
InstanceType = Shapes::StringShape.new(name: 'InstanceType')
Integer = Shapes::IntegerShape.new(name: 'Integer')
@@ -268,6 +269,7 @@ module ClientApi
InputFileConfig.add_member(:data_source, Shapes::ShapeRef.new(shape: DataSource, required: true, location_name: "dataSource"))
InputFileConfig.struct_class = Types::InputFileConfig
+ InstanceConfig.add_member(:instance_count, Shapes::ShapeRef.new(shape: InstanceConfigInstanceCountInteger, location_name: "instanceCount"))
InstanceConfig.add_member(:instance_type, Shapes::ShapeRef.new(shape: InstanceType, required: true, location_name: "instanceType"))
InstanceConfig.add_member(:volume_size_in_gb, Shapes::ShapeRef.new(shape: InstanceConfigVolumeSizeInGbInteger, required: true, location_name: "volumeSizeInGb"))
InstanceConfig.struct_class = Types::InstanceConfig
diff --git a/gems/aws-sdk-braket/lib/aws-sdk-braket/types.rb b/gems/aws-sdk-braket/lib/aws-sdk-braket/types.rb
index 2050a24b9f4..8966e131452 100644
--- a/gems/aws-sdk-braket/lib/aws-sdk-braket/types.rb
+++ b/gems/aws-sdk-braket/lib/aws-sdk-braket/types.rb
@@ -211,6 +211,7 @@ class ContainerImage < Struct.new(
# },
# ],
# instance_config: { # required
+ # instance_count: 1,
# instance_type: "ml.m4.xlarge", # required, accepts ml.m4.xlarge, ml.m4.2xlarge, ml.m4.4xlarge, ml.m4.10xlarge, ml.m4.16xlarge, ml.g4dn.xlarge, ml.g4dn.2xlarge, ml.g4dn.4xlarge, ml.g4dn.8xlarge, ml.g4dn.12xlarge, ml.g4dn.16xlarge, ml.m5.large, ml.m5.xlarge, ml.m5.2xlarge, ml.m5.4xlarge, ml.m5.12xlarge, ml.m5.24xlarge, ml.c4.xlarge, ml.c4.2xlarge, ml.c4.4xlarge, ml.c4.8xlarge, ml.p2.xlarge, ml.p2.8xlarge, ml.p2.16xlarge, ml.p3.2xlarge, ml.p3.8xlarge, ml.p3.16xlarge, ml.p3dn.24xlarge, ml.p4d.24xlarge, ml.c5.xlarge, ml.c5.2xlarge, ml.c5.4xlarge, ml.c5.9xlarge, ml.c5.18xlarge, ml.c5n.xlarge, ml.c5n.2xlarge, ml.c5n.4xlarge, ml.c5n.9xlarge, ml.c5n.18xlarge
# volume_size_in_gb: 1, # required
# },
@@ -842,10 +843,16 @@ class InputFileConfig < Struct.new(
# data as a hash:
#
# {
+ # instance_count: 1,
# instance_type: "ml.m4.xlarge", # required, accepts ml.m4.xlarge, ml.m4.2xlarge, ml.m4.4xlarge, ml.m4.10xlarge, ml.m4.16xlarge, ml.g4dn.xlarge, ml.g4dn.2xlarge, ml.g4dn.4xlarge, ml.g4dn.8xlarge, ml.g4dn.12xlarge, ml.g4dn.16xlarge, ml.m5.large, ml.m5.xlarge, ml.m5.2xlarge, ml.m5.4xlarge, ml.m5.12xlarge, ml.m5.24xlarge, ml.c4.xlarge, ml.c4.2xlarge, ml.c4.4xlarge, ml.c4.8xlarge, ml.p2.xlarge, ml.p2.8xlarge, ml.p2.16xlarge, ml.p3.2xlarge, ml.p3.8xlarge, ml.p3.16xlarge, ml.p3dn.24xlarge, ml.p4d.24xlarge, ml.c5.xlarge, ml.c5.2xlarge, ml.c5.4xlarge, ml.c5.9xlarge, ml.c5.18xlarge, ml.c5n.xlarge, ml.c5n.2xlarge, ml.c5n.4xlarge, ml.c5n.9xlarge, ml.c5n.18xlarge
# volume_size_in_gb: 1, # required
# }
#
+ # @!attribute [rw] instance_count
+ # Configures the number of resource instances to use while running an
+ # Amazon Braket job on Amazon Braket. The default value is 1.
+ # @return [Integer]
+ #
# @!attribute [rw] instance_type
# Configures the type resource instances to use while running an
# Amazon Braket hybrid job.
@@ -858,6 +865,7 @@ class InputFileConfig < Struct.new(
# @see http://docs.aws.amazon.com/goto/WebAPI/braket-2019-09-01/InstanceConfig AWS API Documentation
#
class InstanceConfig < Struct.new(
+ :instance_count,
:instance_type,
:volume_size_in_gb)
SENSITIVE = []
diff --git a/gems/aws-sdk-connect/CHANGELOG.md b/gems/aws-sdk-connect/CHANGELOG.md
index d3727c50bd8..2845556adf4 100644
--- a/gems/aws-sdk-connect/CHANGELOG.md
+++ b/gems/aws-sdk-connect/CHANGELOG.md
@@ -1,6 +1,11 @@
Unreleased Changes
------------------
+1.71.0 (2022-04-28)
+------------------
+
+* Feature - This release introduces an API for changing the current agent status of a user in Connect.
+
1.70.0 (2022-04-25)
------------------
diff --git a/gems/aws-sdk-connect/VERSION b/gems/aws-sdk-connect/VERSION
index 832e9afb6c1..df484cbb1d9 100644
--- a/gems/aws-sdk-connect/VERSION
+++ b/gems/aws-sdk-connect/VERSION
@@ -1 +1 @@
-1.70.0
+1.71.0
diff --git a/gems/aws-sdk-connect/lib/aws-sdk-connect.rb b/gems/aws-sdk-connect/lib/aws-sdk-connect.rb
index 1c2e345e6bb..c9e363ff612 100644
--- a/gems/aws-sdk-connect/lib/aws-sdk-connect.rb
+++ b/gems/aws-sdk-connect/lib/aws-sdk-connect.rb
@@ -48,6 +48,6 @@
# @!group service
module Aws::Connect
- GEM_VERSION = '1.70.0'
+ GEM_VERSION = '1.71.0'
end
diff --git a/gems/aws-sdk-connect/lib/aws-sdk-connect/client.rb b/gems/aws-sdk-connect/lib/aws-sdk-connect/client.rb
index 73f96d81567..cda6d612173 100644
--- a/gems/aws-sdk-connect/lib/aws-sdk-connect/client.rb
+++ b/gems/aws-sdk-connect/lib/aws-sdk-connect/client.rb
@@ -5248,6 +5248,47 @@ def list_users(params = {}, options = {})
req.send_request(options)
end
+ # Changes the current status of a user or agent in Amazon Connect. If
+ # the agent is currently handling a contact, this sets the agent's next
+ # status.
+ #
+ # For more information, see [Agent status][1] and [Set your next
+ # status][2] in the *Amazon Connect Administrator Guide*.
+ #
+ #
+ #
+ # [1]: https://docs.aws.amazon.com/connect/latest/adminguide/metrics-agent-status.html
+ # [2]: https://docs.aws.amazon.com/connect/latest/adminguide/set-next-status.html
+ #
+ # @option params [required, String] :user_id
+ # The identifier of the user.
+ #
+ # @option params [required, String] :instance_id
+ # The identifier of the Amazon Connect instance. You can find the
+ # instanceId in the ARN of the instance.
+ #
+ # @option params [required, String] :agent_status_id
+ # The identifier of the agent status.
+ #
+ # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+ #
+ # @example Request syntax with placeholder values
+ #
+ # resp = client.put_user_status({
+ # user_id: "UserId", # required
+ # instance_id: "InstanceId", # required
+ # agent_status_id: "AgentStatusId", # required
+ # })
+ #
+ # @see http://docs.aws.amazon.com/goto/WebAPI/connect-2017-08-08/PutUserStatus AWS API Documentation
+ #
+ # @overload put_user_status(params = {})
+ # @param [Hash] params ({})
+ def put_user_status(params = {}, options = {})
+ req = build_request(:put_user_status, params)
+ req.send_request(options)
+ end
+
# Releases a phone number previously claimed to an Amazon Connect
# instance.
#
@@ -7544,7 +7585,7 @@ def build_request(operation_name, params = {})
params: params,
config: config)
context[:gem_name] = 'aws-sdk-connect'
- context[:gem_version] = '1.70.0'
+ context[:gem_version] = '1.71.0'
Seahorse::Client::Request.new(handlers, context)
end
diff --git a/gems/aws-sdk-connect/lib/aws-sdk-connect/client_api.rb b/gems/aws-sdk-connect/lib/aws-sdk-connect/client_api.rb
index 8fff5f2a624..b875004712f 100644
--- a/gems/aws-sdk-connect/lib/aws-sdk-connect/client_api.rb
+++ b/gems/aws-sdk-connect/lib/aws-sdk-connect/client_api.rb
@@ -399,6 +399,8 @@ module ClientApi
PromptName = Shapes::StringShape.new(name: 'PromptName')
PromptSummary = Shapes::StructureShape.new(name: 'PromptSummary')
PromptSummaryList = Shapes::ListShape.new(name: 'PromptSummaryList')
+ PutUserStatusRequest = Shapes::StructureShape.new(name: 'PutUserStatusRequest')
+ PutUserStatusResponse = Shapes::StructureShape.new(name: 'PutUserStatusResponse')
Queue = Shapes::StructureShape.new(name: 'Queue')
QueueDescription = Shapes::StringShape.new(name: 'QueueDescription')
QueueId = Shapes::StringShape.new(name: 'QueueId')
@@ -1801,6 +1803,13 @@ module ClientApi
PromptSummaryList.member = Shapes::ShapeRef.new(shape: PromptSummary)
+ PutUserStatusRequest.add_member(:user_id, Shapes::ShapeRef.new(shape: UserId, required: true, location: "uri", location_name: "UserId"))
+ PutUserStatusRequest.add_member(:instance_id, Shapes::ShapeRef.new(shape: InstanceId, required: true, location: "uri", location_name: "InstanceId"))
+ PutUserStatusRequest.add_member(:agent_status_id, Shapes::ShapeRef.new(shape: AgentStatusId, required: true, location_name: "AgentStatusId"))
+ PutUserStatusRequest.struct_class = Types::PutUserStatusRequest
+
+ PutUserStatusResponse.struct_class = Types::PutUserStatusResponse
+
Queue.add_member(:name, Shapes::ShapeRef.new(shape: CommonNameLength127, location_name: "Name"))
Queue.add_member(:queue_arn, Shapes::ShapeRef.new(shape: ARN, location_name: "QueueArn"))
Queue.add_member(:queue_id, Shapes::ShapeRef.new(shape: QueueId, location_name: "QueueId"))
@@ -3891,6 +3900,20 @@ module ClientApi
)
end)
+ api.add_operation(:put_user_status, Seahorse::Model::Operation.new.tap do |o|
+ o.name = "PutUserStatus"
+ o.http_method = "PUT"
+ o.http_request_uri = "/users/{InstanceId}/{UserId}/status"
+ o.input = Shapes::ShapeRef.new(shape: PutUserStatusRequest)
+ o.output = Shapes::ShapeRef.new(shape: PutUserStatusResponse)
+ o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
+ o.errors << Shapes::ShapeRef.new(shape: InvalidParameterException)
+ o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+ o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
+ o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+ o.errors << Shapes::ShapeRef.new(shape: InternalServiceException)
+ end)
+
api.add_operation(:release_phone_number, Seahorse::Model::Operation.new.tap do |o|
o.name = "ReleasePhoneNumber"
o.http_method = "DELETE"
diff --git a/gems/aws-sdk-connect/lib/aws-sdk-connect/types.rb b/gems/aws-sdk-connect/lib/aws-sdk-connect/types.rb
index 6dfd2ffcc9a..7e1eb918fd7 100644
--- a/gems/aws-sdk-connect/lib/aws-sdk-connect/types.rb
+++ b/gems/aws-sdk-connect/lib/aws-sdk-connect/types.rb
@@ -7128,6 +7128,42 @@ class PromptSummary < Struct.new(
include Aws::Structure
end
+ # @note When making an API call, you may pass PutUserStatusRequest
+ # data as a hash:
+ #
+ # {
+ # user_id: "UserId", # required
+ # instance_id: "InstanceId", # required
+ # agent_status_id: "AgentStatusId", # required
+ # }
+ #
+ # @!attribute [rw] user_id
+ # The identifier of the user.
+ # @return [String]
+ #
+ # @!attribute [rw] instance_id
+ # The identifier of the Amazon Connect instance. You can find the
+ # instanceId in the ARN of the instance.
+ # @return [String]
+ #
+ # @!attribute [rw] agent_status_id
+ # The identifier of the agent status.
+ # @return [String]
+ #
+ # @see http://docs.aws.amazon.com/goto/WebAPI/connect-2017-08-08/PutUserStatusRequest AWS API Documentation
+ #
+ class PutUserStatusRequest < Struct.new(
+ :user_id,
+ :instance_id,
+ :agent_status_id)
+ SENSITIVE = []
+ include Aws::Structure
+ end
+
+ # @see http://docs.aws.amazon.com/goto/WebAPI/connect-2017-08-08/PutUserStatusResponse AWS API Documentation
+ #
+ class PutUserStatusResponse < Aws::EmptyStructure; end
+
# Contains information about a queue.
#
# @!attribute [rw] name
diff --git a/gems/aws-sdk-ec2/CHANGELOG.md b/gems/aws-sdk-ec2/CHANGELOG.md
index 7cd5a8fa38a..ad46281735d 100644
--- a/gems/aws-sdk-ec2/CHANGELOG.md
+++ b/gems/aws-sdk-ec2/CHANGELOG.md
@@ -1,6 +1,11 @@
Unreleased Changes
------------------
+1.309.0 (2022-04-28)
+------------------
+
+* Feature - This release adds support to query the public key and creation date of EC2 Key Pairs. Additionally, the format (pem or ppk) of a key pair can be specified when creating a new key pair.
+
1.308.0 (2022-04-22)
------------------
diff --git a/gems/aws-sdk-ec2/VERSION b/gems/aws-sdk-ec2/VERSION
index c122667b0eb..469df898905 100644
--- a/gems/aws-sdk-ec2/VERSION
+++ b/gems/aws-sdk-ec2/VERSION
@@ -1 +1 @@
-1.308.0
+1.309.0
diff --git a/gems/aws-sdk-ec2/lib/aws-sdk-ec2.rb b/gems/aws-sdk-ec2/lib/aws-sdk-ec2.rb
index 793972a5c96..eb976028667 100644
--- a/gems/aws-sdk-ec2/lib/aws-sdk-ec2.rb
+++ b/gems/aws-sdk-ec2/lib/aws-sdk-ec2.rb
@@ -72,6 +72,6 @@
# @!group service
module Aws::EC2
- GEM_VERSION = '1.308.0'
+ GEM_VERSION = '1.309.0'
end
diff --git a/gems/aws-sdk-ec2/lib/aws-sdk-ec2/client.rb b/gems/aws-sdk-ec2/lib/aws-sdk-ec2/client.rb
index 42f945a2f9f..a53d3842b40 100644
--- a/gems/aws-sdk-ec2/lib/aws-sdk-ec2/client.rb
+++ b/gems/aws-sdk-ec2/lib/aws-sdk-ec2/client.rb
@@ -6959,11 +6959,13 @@ def create_ipam_scope(params = {}, options = {})
req.send_request(options)
end
- # Creates an ED25519 or 2048-bit RSA key pair with the specified name.
- # Amazon EC2 stores the public key and displays the private key for you
- # to save to a file. The private key is returned as an unencrypted PEM
- # encoded PKCS#1 private key. If a key with the specified name already
- # exists, Amazon EC2 returns an error.
+ # Creates an ED25519 or 2048-bit RSA key pair with the specified name
+ # and in the specified PEM or PPK format. Amazon EC2 stores the public
+ # key and displays the private key for you to save to a file. The
+ # private key is returned as an unencrypted PEM encoded PKCS#1 private
+ # key or an unencrypted PPK formatted private key for use with PuTTY. If
+ # a key with the specified name already exists, Amazon EC2 returns an
+ # error.
#
# The key pair returned to you is available only in the Amazon Web
# Services Region in which you create it. If you prefer, you can create
@@ -6999,6 +7001,11 @@ def create_ipam_scope(params = {}, options = {})
# @option params [Array] :tag_specifications
# The tags to apply to the new key pair.
#
+ # @option params [String] :key_format
+ # The format of the key pair.
+ #
+ # Default: `pem`
+ #
# @return [Types::KeyPair] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
#
# * {Types::KeyPair#key_fingerprint #key_fingerprint} => String
@@ -7033,6 +7040,7 @@ def create_ipam_scope(params = {}, options = {})
# ],
# },
# ],
+ # key_format: "pem", # accepts pem, ppk
# })
#
# @example Response structure
@@ -22679,6 +22687,11 @@ def describe_ipv_6_pools(params = {}, options = {})
# If you have the required permissions, the error response is
# `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
#
+ # @option params [Boolean] :include_public_key
+ # If `true`, the public key material is included in the response.
+ #
+ # Default: `false`
+ #
# @return [Types::DescribeKeyPairsResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
#
# * {Types::DescribeKeyPairsResult#key_pairs #key_pairs} => Array<Types::KeyPairInfo>
@@ -22716,6 +22729,7 @@ def describe_ipv_6_pools(params = {}, options = {})
# key_names: ["KeyPairName"],
# key_pair_ids: ["KeyPairId"],
# dry_run: false,
+ # include_public_key: false,
# })
#
# @example Response structure
@@ -22728,6 +22742,8 @@ def describe_ipv_6_pools(params = {}, options = {})
# resp.key_pairs[0].tags #=> Array
# resp.key_pairs[0].tags[0].key #=> String
# resp.key_pairs[0].tags[0].value #=> String
+ # resp.key_pairs[0].public_key #=> String
+ # resp.key_pairs[0].create_time #=> Time
#
#
# The following waiters are defined for this operation (see {Client#wait_until} for detailed usage):
@@ -49490,7 +49506,7 @@ def build_request(operation_name, params = {})
params: params,
config: config)
context[:gem_name] = 'aws-sdk-ec2'
- context[:gem_version] = '1.308.0'
+ context[:gem_version] = '1.309.0'
Seahorse::Client::Request.new(handlers, context)
end
diff --git a/gems/aws-sdk-ec2/lib/aws-sdk-ec2/client_api.rb b/gems/aws-sdk-ec2/lib/aws-sdk-ec2/client_api.rb
index 474af300985..c2fd98ec491 100644
--- a/gems/aws-sdk-ec2/lib/aws-sdk-ec2/client_api.rb
+++ b/gems/aws-sdk-ec2/lib/aws-sdk-ec2/client_api.rb
@@ -1581,6 +1581,7 @@ module ClientApi
Ipv6RangeList = Shapes::ListShape.new(name: 'Ipv6RangeList')
Ipv6SupportValue = Shapes::StringShape.new(name: 'Ipv6SupportValue')
KernelId = Shapes::StringShape.new(name: 'KernelId')
+ KeyFormat = Shapes::StringShape.new(name: 'KeyFormat')
KeyNameStringList = Shapes::ListShape.new(name: 'KeyNameStringList')
KeyPair = Shapes::StructureShape.new(name: 'KeyPair')
KeyPairId = Shapes::StringShape.new(name: 'KeyPairId')
@@ -4075,6 +4076,7 @@ module ClientApi
CreateKeyPairRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "dryRun"))
CreateKeyPairRequest.add_member(:key_type, Shapes::ShapeRef.new(shape: KeyType, location_name: "KeyType"))
CreateKeyPairRequest.add_member(:tag_specifications, Shapes::ShapeRef.new(shape: TagSpecificationList, location_name: "TagSpecification"))
+ CreateKeyPairRequest.add_member(:key_format, Shapes::ShapeRef.new(shape: KeyFormat, location_name: "KeyFormat"))
CreateKeyPairRequest.struct_class = Types::CreateKeyPairRequest
CreateLaunchTemplateRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
@@ -5772,6 +5774,7 @@ module ClientApi
DescribeKeyPairsRequest.add_member(:key_names, Shapes::ShapeRef.new(shape: KeyNameStringList, location_name: "KeyName"))
DescribeKeyPairsRequest.add_member(:key_pair_ids, Shapes::ShapeRef.new(shape: KeyPairIdStringList, location_name: "KeyPairId"))
DescribeKeyPairsRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "dryRun"))
+ DescribeKeyPairsRequest.add_member(:include_public_key, Shapes::ShapeRef.new(shape: Boolean, location_name: "IncludePublicKey"))
DescribeKeyPairsRequest.struct_class = Types::DescribeKeyPairsRequest
DescribeKeyPairsResult.add_member(:key_pairs, Shapes::ShapeRef.new(shape: KeyPairList, location_name: "keySet"))
@@ -8971,6 +8974,8 @@ module ClientApi
KeyPairInfo.add_member(:key_name, Shapes::ShapeRef.new(shape: String, location_name: "keyName"))
KeyPairInfo.add_member(:key_type, Shapes::ShapeRef.new(shape: KeyType, location_name: "keyType"))
KeyPairInfo.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "tagSet"))
+ KeyPairInfo.add_member(:public_key, Shapes::ShapeRef.new(shape: String, location_name: "publicKey"))
+ KeyPairInfo.add_member(:create_time, Shapes::ShapeRef.new(shape: MillisecondDateTime, location_name: "createTime"))
KeyPairInfo.struct_class = Types::KeyPairInfo
KeyPairList.member = Shapes::ShapeRef.new(shape: KeyPairInfo, location_name: "item")
diff --git a/gems/aws-sdk-ec2/lib/aws-sdk-ec2/key_pair_info.rb b/gems/aws-sdk-ec2/lib/aws-sdk-ec2/key_pair_info.rb
index 6cc01d55f0b..d548c56b802 100644
--- a/gems/aws-sdk-ec2/lib/aws-sdk-ec2/key_pair_info.rb
+++ b/gems/aws-sdk-ec2/lib/aws-sdk-ec2/key_pair_info.rb
@@ -80,6 +80,28 @@ def tags
data[:tags]
end
+ # The public key material.
+ # @return [String]
+ def public_key
+ data[:public_key]
+ end
+
+ # If you used Amazon EC2 to create the key pair, this is the date and
+ # time when the key was created, in [ISO 8601 date-time format][1], in
+ # the UTC time zone.
+ #
+ # If you imported an existing key pair to Amazon EC2, this is the date
+ # and time the key was imported, in [ISO 8601 date-time format][1], in
+ # the UTC time zone.
+ #
+ #
+ #
+ # [1]: https://www.iso.org/iso-8601-date-and-time-format.html
+ # @return [Time]
+ def create_time
+ data[:create_time]
+ end
+
# @!endgroup
# @return [Client]
diff --git a/gems/aws-sdk-ec2/lib/aws-sdk-ec2/resource.rb b/gems/aws-sdk-ec2/lib/aws-sdk-ec2/resource.rb
index 2dd069502b7..e52ea1f666e 100644
--- a/gems/aws-sdk-ec2/lib/aws-sdk-ec2/resource.rb
+++ b/gems/aws-sdk-ec2/lib/aws-sdk-ec2/resource.rb
@@ -631,6 +631,7 @@ def create_internet_gateway(options = {})
# ],
# },
# ],
+ # key_format: "pem", # accepts pem, ppk
# })
# @param [Hash] options ({})
# @option options [required, String] :key_name
@@ -649,6 +650,10 @@ def create_internet_gateway(options = {})
# Default: `rsa`
# @option options [Array] :tag_specifications
# The tags to apply to the new key pair.
+ # @option options [String] :key_format
+ # The format of the key pair.
+ #
+ # Default: `pem`
# @return [KeyPair]
def create_key_pair(options = {})
resp = @client.create_key_pair(options)
@@ -2528,6 +2533,7 @@ def key_pair(name)
# key_names: ["KeyPairName"],
# key_pair_ids: ["KeyPairId"],
# dry_run: false,
+ # include_public_key: false,
# })
# @param [Hash] options ({})
# @option options [Array] :filters
@@ -2559,6 +2565,10 @@ def key_pair(name)
# without actually making the request, and provides an error response.
# If you have the required permissions, the error response is
# `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
+ # @option options [Boolean] :include_public_key
+ # If `true`, the public key material is included in the response.
+ #
+ # Default: `false`
# @return [KeyPairInfo::Collection]
def key_pairs(options = {})
batches = Enumerator.new do |y|
diff --git a/gems/aws-sdk-ec2/lib/aws-sdk-ec2/types.rb b/gems/aws-sdk-ec2/lib/aws-sdk-ec2/types.rb
index 8f70629b1c1..dfce61177ea 100644
--- a/gems/aws-sdk-ec2/lib/aws-sdk-ec2/types.rb
+++ b/gems/aws-sdk-ec2/lib/aws-sdk-ec2/types.rb
@@ -8997,6 +8997,7 @@ class CreateIpamScopeResult < Struct.new(
# ],
# },
# ],
+ # key_format: "pem", # accepts pem, ppk
# }
#
# @!attribute [rw] key_name
@@ -9023,13 +9024,20 @@ class CreateIpamScopeResult < Struct.new(
# The tags to apply to the new key pair.
# @return [Array]
#
+ # @!attribute [rw] key_format
+ # The format of the key pair.
+ #
+ # Default: `pem`
+ # @return [String]
+ #
# @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateKeyPairRequest AWS API Documentation
#
class CreateKeyPairRequest < Struct.new(
:key_name,
:dry_run,
:key_type,
- :tag_specifications)
+ :tag_specifications,
+ :key_format)
SENSITIVE = []
include Aws::Structure
end
@@ -22135,6 +22143,7 @@ class DescribeIpv6PoolsResult < Struct.new(
# key_names: ["KeyPairName"],
# key_pair_ids: ["KeyPairId"],
# dry_run: false,
+ # include_public_key: false,
# }
#
# @!attribute [rw] filters
@@ -22174,13 +22183,20 @@ class DescribeIpv6PoolsResult < Struct.new(
# `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
# @return [Boolean]
#
+ # @!attribute [rw] include_public_key
+ # If `true`, the public key material is included in the response.
+ #
+ # Default: `false`
+ # @return [Boolean]
+ #
# @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeKeyPairsRequest AWS API Documentation
#
class DescribeKeyPairsRequest < Struct.new(
:filters,
:key_names,
:key_pair_ids,
- :dry_run)
+ :dry_run,
+ :include_public_key)
SENSITIVE = []
include Aws::Structure
end
@@ -43431,6 +43447,24 @@ class KeyPair < Struct.new(
# Any tags applied to the key pair.
# @return [Array]
#
+ # @!attribute [rw] public_key
+ # The public key material.
+ # @return [String]
+ #
+ # @!attribute [rw] create_time
+ # If you used Amazon EC2 to create the key pair, this is the date and
+ # time when the key was created, in [ISO 8601 date-time format][1], in
+ # the UTC time zone.
+ #
+ # If you imported an existing key pair to Amazon EC2, this is the date
+ # and time the key was imported, in [ISO 8601 date-time format][1], in
+ # the UTC time zone.
+ #
+ #
+ #
+ # [1]: https://www.iso.org/iso-8601-date-and-time-format.html
+ # @return [Time]
+ #
# @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/KeyPairInfo AWS API Documentation
#
class KeyPairInfo < Struct.new(
@@ -43438,7 +43472,9 @@ class KeyPairInfo < Struct.new(
:key_fingerprint,
:key_name,
:key_type,
- :tags)
+ :tags,
+ :public_key,
+ :create_time)
SENSITIVE = []
include Aws::Structure
end
diff --git a/gems/aws-sdk-guardduty/CHANGELOG.md b/gems/aws-sdk-guardduty/CHANGELOG.md
index 74ef5d85952..bef2d80b4f4 100644
--- a/gems/aws-sdk-guardduty/CHANGELOG.md
+++ b/gems/aws-sdk-guardduty/CHANGELOG.md
@@ -1,6 +1,11 @@
Unreleased Changes
------------------
+1.57.0 (2022-04-28)
+------------------
+
+* Feature - Documentation update for API description.
+
1.56.0 (2022-02-24)
------------------
diff --git a/gems/aws-sdk-guardduty/VERSION b/gems/aws-sdk-guardduty/VERSION
index 3ebf789f5a8..373aea97570 100644
--- a/gems/aws-sdk-guardduty/VERSION
+++ b/gems/aws-sdk-guardduty/VERSION
@@ -1 +1 @@
-1.56.0
+1.57.0
diff --git a/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty.rb b/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty.rb
index 20414f7a411..abbd8a2f6dc 100644
--- a/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty.rb
+++ b/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty.rb
@@ -48,6 +48,6 @@
# @!group service
module Aws::GuardDuty
- GEM_VERSION = '1.56.0'
+ GEM_VERSION = '1.57.0'
end
diff --git a/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb b/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb
index c148396bddf..c5093b6f1be 100644
--- a/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb
+++ b/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/client.rb
@@ -562,6 +562,8 @@ def create_detector(params = {}, options = {})
#
# * service.action.awsApiCallAction.errorCode
#
+ # * service.action.awsApiCallAction.userAgent
+ #
# * service.action.awsApiCallAction.remoteIpDetails.city.cityName
#
# * service.action.awsApiCallAction.remoteIpDetails.country.countryName
@@ -1313,7 +1315,13 @@ def disassociate_from_master_account(params = {}, options = {})
end
# Disassociates GuardDuty member accounts (to the current GuardDuty
- # administrator account) specified by the account IDs.
+ # administrator account) specified by the account IDs. Member accounts
+ # added through [Invitation][1] get deleted from the current GuardDuty
+ # administrator account after 30 days of disassociation.
+ #
+ #
+ #
+ # [1]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_invitations.html
#
# @option params [required, String] :detector_id
# The unique ID of the detector of the GuardDuty account whose members
@@ -3246,7 +3254,7 @@ def build_request(operation_name, params = {})
params: params,
config: config)
context[:gem_name] = 'aws-sdk-guardduty'
- context[:gem_version] = '1.56.0'
+ context[:gem_version] = '1.57.0'
Seahorse::Client::Request.new(handlers, context)
end
diff --git a/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/types.rb b/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/types.rb
index 88b10c67b70..c713e92b8d3 100644
--- a/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/types.rb
+++ b/gems/aws-sdk-guardduty/lib/aws-sdk-guardduty/types.rb
@@ -253,6 +253,7 @@ class ArchiveFindingsResponse < Aws::EmptyStructure; end
# @return [String]
#
# @!attribute [rw] user_agent
+ # The agent through which the API request was made.
# @return [String]
#
# @!attribute [rw] remote_ip_details
@@ -774,6 +775,8 @@ class CreateDetectorResponse < Struct.new(
#
# * service.action.awsApiCallAction.errorCode
#
+ # * service.action.awsApiCallAction.userAgent
+ #
# * service.action.awsApiCallAction.remoteIpDetails.city.cityName
#
# * service.action.awsApiCallAction.remoteIpDetails.country.countryName
diff --git a/gems/aws-sdk-networkfirewall/CHANGELOG.md b/gems/aws-sdk-networkfirewall/CHANGELOG.md
index 92eb0a04ce0..2e8280b781e 100644
--- a/gems/aws-sdk-networkfirewall/CHANGELOG.md
+++ b/gems/aws-sdk-networkfirewall/CHANGELOG.md
@@ -1,6 +1,11 @@
Unreleased Changes
------------------
+1.17.0 (2022-04-28)
+------------------
+
+* Feature - AWS Network Firewall adds support for stateful threat signature AWS managed rule groups.
+
1.16.0 (2022-04-26)
------------------
diff --git a/gems/aws-sdk-networkfirewall/VERSION b/gems/aws-sdk-networkfirewall/VERSION
index 15b989e398f..092afa15df4 100644
--- a/gems/aws-sdk-networkfirewall/VERSION
+++ b/gems/aws-sdk-networkfirewall/VERSION
@@ -1 +1 @@
-1.16.0
+1.17.0
diff --git a/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall.rb b/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall.rb
index 4e8009c4595..5f38320aba1 100644
--- a/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall.rb
+++ b/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall.rb
@@ -48,6 +48,6 @@
# @!group service
module Aws::NetworkFirewall
- GEM_VERSION = '1.16.0'
+ GEM_VERSION = '1.17.0'
end
diff --git a/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/client.rb b/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/client.rb
index 9999d9048f7..3a7084a7b77 100644
--- a/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/client.rb
+++ b/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/client.rb
@@ -615,7 +615,7 @@ def associate_subnets(params = {}, options = {})
# ],
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
# },
# })
#
@@ -752,7 +752,7 @@ def create_firewall(params = {}, options = {})
# dry_run: false,
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
# },
# })
#
@@ -772,6 +772,7 @@ def create_firewall(params = {}, options = {})
# resp.firewall_policy_response.number_of_associations #=> Integer
# resp.firewall_policy_response.encryption_configuration.key_id #=> String
# resp.firewall_policy_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+ # resp.firewall_policy_response.last_modified_time #=> Time
#
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/CreateFirewallPolicy AWS API Documentation
#
@@ -894,6 +895,11 @@ def create_firewall_policy(params = {}, options = {})
# A complex type that contains settings for encryption of your rule
# group resources.
#
+ # @option params [Types::SourceMetadata] :source_metadata
+ # A complex type that contains metadata about the rule group that your
+ # own rule group is copied from. You can use the metadata to keep track
+ # of updates made to the originating rule group.
+ #
# @return [Types::CreateRuleGroupResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
#
# * {Types::CreateRuleGroupResponse#update_token #update_token} => String
@@ -1015,7 +1021,11 @@ def create_firewall_policy(params = {}, options = {})
# dry_run: false,
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # },
+ # source_metadata: {
+ # source_arn: "ResourceArn",
+ # source_update_token: "UpdateToken",
# },
# })
#
@@ -1036,6 +1046,10 @@ def create_firewall_policy(params = {}, options = {})
# resp.rule_group_response.number_of_associations #=> Integer
# resp.rule_group_response.encryption_configuration.key_id #=> String
# resp.rule_group_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+ # resp.rule_group_response.source_metadata.source_arn #=> String
+ # resp.rule_group_response.source_metadata.source_update_token #=> String
+ # resp.rule_group_response.sns_topic #=> String
+ # resp.rule_group_response.last_modified_time #=> Time
#
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/CreateRuleGroup AWS API Documentation
#
@@ -1161,6 +1175,7 @@ def delete_firewall(params = {}, options = {})
# resp.firewall_policy_response.number_of_associations #=> Integer
# resp.firewall_policy_response.encryption_configuration.key_id #=> String
# resp.firewall_policy_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+ # resp.firewall_policy_response.last_modified_time #=> Time
#
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DeleteFirewallPolicy AWS API Documentation
#
@@ -1246,6 +1261,10 @@ def delete_resource_policy(params = {}, options = {})
# resp.rule_group_response.number_of_associations #=> Integer
# resp.rule_group_response.encryption_configuration.key_id #=> String
# resp.rule_group_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+ # resp.rule_group_response.source_metadata.source_arn #=> String
+ # resp.rule_group_response.source_metadata.source_update_token #=> String
+ # resp.rule_group_response.sns_topic #=> String
+ # resp.rule_group_response.last_modified_time #=> Time
#
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DeleteRuleGroup AWS API Documentation
#
@@ -1362,6 +1381,7 @@ def describe_firewall(params = {}, options = {})
# resp.firewall_policy_response.number_of_associations #=> Integer
# resp.firewall_policy_response.encryption_configuration.key_id #=> String
# resp.firewall_policy_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+ # resp.firewall_policy_response.last_modified_time #=> Time
# resp.firewall_policy.stateless_rule_group_references #=> Array
# resp.firewall_policy.stateless_rule_group_references[0].resource_arn #=> String
# resp.firewall_policy.stateless_rule_group_references[0].priority #=> Integer
@@ -1567,6 +1587,10 @@ def describe_resource_policy(params = {}, options = {})
# resp.rule_group_response.number_of_associations #=> Integer
# resp.rule_group_response.encryption_configuration.key_id #=> String
# resp.rule_group_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+ # resp.rule_group_response.source_metadata.source_arn #=> String
+ # resp.rule_group_response.source_metadata.source_update_token #=> String
+ # resp.rule_group_response.sns_topic #=> String
+ # resp.rule_group_response.last_modified_time #=> Time
#
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DescribeRuleGroup AWS API Documentation
#
@@ -1612,6 +1636,7 @@ def describe_rule_group(params = {}, options = {})
# * {Types::DescribeRuleGroupMetadataResponse#type #type} => String
# * {Types::DescribeRuleGroupMetadataResponse#capacity #capacity} => Integer
# * {Types::DescribeRuleGroupMetadataResponse#stateful_rule_options #stateful_rule_options} => Types::StatefulRuleOptions
+ # * {Types::DescribeRuleGroupMetadataResponse#last_modified_time #last_modified_time} => Time
#
# @example Request syntax with placeholder values
#
@@ -1629,6 +1654,7 @@ def describe_rule_group(params = {}, options = {})
# resp.type #=> String, one of "STATELESS", "STATEFUL"
# resp.capacity #=> Integer
# resp.stateful_rule_options.rule_order #=> String, one of "DEFAULT_ACTION_ORDER", "STRICT_ORDER"
+ # resp.last_modified_time #=> Time
#
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DescribeRuleGroupMetadata AWS API Documentation
#
@@ -1834,6 +1860,15 @@ def list_firewalls(params = {}, options = {})
# setting of `NULL` returns all of the rule groups in your account. A
# setting of `MANAGED` returns all available managed rule groups.
#
+ # @option params [String] :managed_type
+ # Indicates the general category of the Amazon Web Services managed rule
+ # group.
+ #
+ # @option params [String] :type
+ # Indicates whether the rule group is stateless or stateful. If the rule
+ # group is stateless, it contains stateless rules. If it is stateful, it
+ # contains stateful rules.
+ #
# @return [Types::ListRuleGroupsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
#
# * {Types::ListRuleGroupsResponse#next_token #next_token} => String
@@ -1847,6 +1882,8 @@ def list_firewalls(params = {}, options = {})
# next_token: "PaginationToken",
# max_results: 1,
# scope: "MANAGED", # accepts MANAGED, ACCOUNT
+ # managed_type: "AWS_MANAGED_THREAT_SIGNATURES", # accepts AWS_MANAGED_THREAT_SIGNATURES, AWS_MANAGED_DOMAIN_LISTS
+ # type: "STATELESS", # accepts STATELESS, STATEFUL
# })
#
# @example Response structure
@@ -2278,7 +2315,7 @@ def update_firewall_description(params = {}, options = {})
# firewall_name: "ResourceName",
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
# },
# })
#
@@ -2402,7 +2439,7 @@ def update_firewall_encryption_configuration(params = {}, options = {})
# dry_run: false,
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
# },
# })
#
@@ -2422,6 +2459,7 @@ def update_firewall_encryption_configuration(params = {}, options = {})
# resp.firewall_policy_response.number_of_associations #=> Integer
# resp.firewall_policy_response.encryption_configuration.key_id #=> String
# resp.firewall_policy_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+ # resp.firewall_policy_response.last_modified_time #=> Time
#
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/UpdateFirewallPolicy AWS API Documentation
#
@@ -2676,6 +2714,11 @@ def update_logging_configuration(params = {}, options = {})
# A complex type that contains settings for encryption of your rule
# group resources.
#
+ # @option params [Types::SourceMetadata] :source_metadata
+ # A complex type that contains metadata about the rule group that your
+ # own rule group is copied from. You can use the metadata to keep track
+ # of updates made to the originating rule group.
+ #
# @return [Types::UpdateRuleGroupResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
#
# * {Types::UpdateRuleGroupResponse#update_token #update_token} => String
@@ -2792,7 +2835,11 @@ def update_logging_configuration(params = {}, options = {})
# dry_run: false,
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # },
+ # source_metadata: {
+ # source_arn: "ResourceArn",
+ # source_update_token: "UpdateToken",
# },
# })
#
@@ -2813,6 +2860,10 @@ def update_logging_configuration(params = {}, options = {})
# resp.rule_group_response.number_of_associations #=> Integer
# resp.rule_group_response.encryption_configuration.key_id #=> String
# resp.rule_group_response.encryption_configuration.type #=> String, one of "CUSTOMER_KMS", "AWS_OWNED_KMS_KEY"
+ # resp.rule_group_response.source_metadata.source_arn #=> String
+ # resp.rule_group_response.source_metadata.source_update_token #=> String
+ # resp.rule_group_response.sns_topic #=> String
+ # resp.rule_group_response.last_modified_time #=> Time
#
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/UpdateRuleGroup AWS API Documentation
#
@@ -2905,7 +2956,7 @@ def build_request(operation_name, params = {})
params: params,
config: config)
context[:gem_name] = 'aws-sdk-networkfirewall'
- context[:gem_version] = '1.16.0'
+ context[:gem_version] = '1.17.0'
Seahorse::Client::Request.new(handlers, context)
end
diff --git a/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/client_api.rb b/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/client_api.rb
index fdbf3996e48..b96d63cef39 100644
--- a/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/client_api.rb
+++ b/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/client_api.rb
@@ -93,6 +93,7 @@ module ClientApi
InvalidTokenException = Shapes::StructureShape.new(name: 'InvalidTokenException')
KeyId = Shapes::StringShape.new(name: 'KeyId')
Keyword = Shapes::StringShape.new(name: 'Keyword')
+ LastUpdateTime = Shapes::TimestampShape.new(name: 'LastUpdateTime')
LimitExceededException = Shapes::StructureShape.new(name: 'LimitExceededException')
ListFirewallPoliciesRequest = Shapes::StructureShape.new(name: 'ListFirewallPoliciesRequest')
ListFirewallPoliciesResponse = Shapes::StructureShape.new(name: 'ListFirewallPoliciesResponse')
@@ -132,6 +133,7 @@ module ClientApi
ResourceArn = Shapes::StringShape.new(name: 'ResourceArn')
ResourceId = Shapes::StringShape.new(name: 'ResourceId')
ResourceManagedStatus = Shapes::StringShape.new(name: 'ResourceManagedStatus')
+ ResourceManagedType = Shapes::StringShape.new(name: 'ResourceManagedType')
ResourceName = Shapes::StringShape.new(name: 'ResourceName')
ResourceNotFoundException = Shapes::StructureShape.new(name: 'ResourceNotFoundException')
ResourceOwnerCheckException = Shapes::StructureShape.new(name: 'ResourceOwnerCheckException')
@@ -155,6 +157,7 @@ module ClientApi
Setting = Shapes::StringShape.new(name: 'Setting')
Settings = Shapes::ListShape.new(name: 'Settings')
Source = Shapes::StringShape.new(name: 'Source')
+ SourceMetadata = Shapes::StructureShape.new(name: 'SourceMetadata')
StatefulAction = Shapes::StringShape.new(name: 'StatefulAction')
StatefulActions = Shapes::ListShape.new(name: 'StatefulActions')
StatefulEngineOptions = Shapes::StructureShape.new(name: 'StatefulEngineOptions')
@@ -292,6 +295,7 @@ module ClientApi
CreateRuleGroupRequest.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "Tags"))
CreateRuleGroupRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
CreateRuleGroupRequest.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
+ CreateRuleGroupRequest.add_member(:source_metadata, Shapes::ShapeRef.new(shape: SourceMetadata, location_name: "SourceMetadata"))
CreateRuleGroupRequest.struct_class = Types::CreateRuleGroupRequest
CreateRuleGroupResponse.add_member(:update_token, Shapes::ShapeRef.new(shape: UpdateToken, required: true, location_name: "UpdateToken"))
@@ -375,6 +379,7 @@ module ClientApi
DescribeRuleGroupMetadataResponse.add_member(:type, Shapes::ShapeRef.new(shape: RuleGroupType, location_name: "Type"))
DescribeRuleGroupMetadataResponse.add_member(:capacity, Shapes::ShapeRef.new(shape: RuleCapacity, location_name: "Capacity"))
DescribeRuleGroupMetadataResponse.add_member(:stateful_rule_options, Shapes::ShapeRef.new(shape: StatefulRuleOptions, location_name: "StatefulRuleOptions"))
+ DescribeRuleGroupMetadataResponse.add_member(:last_modified_time, Shapes::ShapeRef.new(shape: LastUpdateTime, location_name: "LastModifiedTime"))
DescribeRuleGroupMetadataResponse.struct_class = Types::DescribeRuleGroupMetadataResponse
DescribeRuleGroupRequest.add_member(:rule_group_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "RuleGroupName"))
@@ -405,7 +410,7 @@ module ClientApi
DisassociateSubnetsResponse.struct_class = Types::DisassociateSubnetsResponse
EncryptionConfiguration.add_member(:key_id, Shapes::ShapeRef.new(shape: KeyId, location_name: "KeyId"))
- EncryptionConfiguration.add_member(:type, Shapes::ShapeRef.new(shape: EncryptionType, location_name: "Type"))
+ EncryptionConfiguration.add_member(:type, Shapes::ShapeRef.new(shape: EncryptionType, required: true, location_name: "Type"))
EncryptionConfiguration.struct_class = Types::EncryptionConfiguration
Firewall.add_member(:firewall_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "FirewallName"))
@@ -451,6 +456,7 @@ module ClientApi
FirewallPolicyResponse.add_member(:consumed_stateful_rule_capacity, Shapes::ShapeRef.new(shape: RuleCapacity, location_name: "ConsumedStatefulRuleCapacity"))
FirewallPolicyResponse.add_member(:number_of_associations, Shapes::ShapeRef.new(shape: NumberOfAssociations, location_name: "NumberOfAssociations"))
FirewallPolicyResponse.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
+ FirewallPolicyResponse.add_member(:last_modified_time, Shapes::ShapeRef.new(shape: LastUpdateTime, location_name: "LastModifiedTime"))
FirewallPolicyResponse.struct_class = Types::FirewallPolicyResponse
FirewallStatus.add_member(:status, Shapes::ShapeRef.new(shape: FirewallStatusValue, required: true, location_name: "Status"))
@@ -517,6 +523,8 @@ module ClientApi
ListRuleGroupsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
ListRuleGroupsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: PaginationMaxResults, location_name: "MaxResults"))
ListRuleGroupsRequest.add_member(:scope, Shapes::ShapeRef.new(shape: ResourceManagedStatus, location_name: "Scope"))
+ ListRuleGroupsRequest.add_member(:managed_type, Shapes::ShapeRef.new(shape: ResourceManagedType, location_name: "ManagedType"))
+ ListRuleGroupsRequest.add_member(:type, Shapes::ShapeRef.new(shape: RuleGroupType, location_name: "Type"))
ListRuleGroupsRequest.struct_class = Types::ListRuleGroupsRequest
ListRuleGroupsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "NextToken"))
@@ -613,6 +621,9 @@ module ClientApi
RuleGroupResponse.add_member(:consumed_capacity, Shapes::ShapeRef.new(shape: RuleCapacity, location_name: "ConsumedCapacity"))
RuleGroupResponse.add_member(:number_of_associations, Shapes::ShapeRef.new(shape: NumberOfAssociations, location_name: "NumberOfAssociations"))
RuleGroupResponse.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
+ RuleGroupResponse.add_member(:source_metadata, Shapes::ShapeRef.new(shape: SourceMetadata, location_name: "SourceMetadata"))
+ RuleGroupResponse.add_member(:sns_topic, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "SnsTopic"))
+ RuleGroupResponse.add_member(:last_modified_time, Shapes::ShapeRef.new(shape: LastUpdateTime, location_name: "LastModifiedTime"))
RuleGroupResponse.struct_class = Types::RuleGroupResponse
RuleGroups.member = Shapes::ShapeRef.new(shape: RuleGroupMetadata)
@@ -642,6 +653,10 @@ module ClientApi
Settings.member = Shapes::ShapeRef.new(shape: Setting)
+ SourceMetadata.add_member(:source_arn, Shapes::ShapeRef.new(shape: ResourceArn, location_name: "SourceArn"))
+ SourceMetadata.add_member(:source_update_token, Shapes::ShapeRef.new(shape: UpdateToken, location_name: "SourceUpdateToken"))
+ SourceMetadata.struct_class = Types::SourceMetadata
+
StatefulActions.member = Shapes::ShapeRef.new(shape: CollectionMember_String)
StatefulEngineOptions.add_member(:rule_order, Shapes::ShapeRef.new(shape: RuleOrder, location_name: "RuleOrder"))
@@ -814,6 +829,7 @@ module ClientApi
UpdateRuleGroupRequest.add_member(:description, Shapes::ShapeRef.new(shape: Description, location_name: "Description"))
UpdateRuleGroupRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
UpdateRuleGroupRequest.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
+ UpdateRuleGroupRequest.add_member(:source_metadata, Shapes::ShapeRef.new(shape: SourceMetadata, location_name: "SourceMetadata"))
UpdateRuleGroupRequest.struct_class = Types::UpdateRuleGroupRequest
UpdateRuleGroupResponse.add_member(:update_token, Shapes::ShapeRef.new(shape: UpdateToken, required: true, location_name: "UpdateToken"))
diff --git a/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/types.rb b/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/types.rb
index 8e399312fc8..3a7f1344a2b 100644
--- a/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/types.rb
+++ b/gems/aws-sdk-networkfirewall/lib/aws-sdk-networkfirewall/types.rb
@@ -381,7 +381,7 @@ class Attachment < Struct.new(
# dry_run: false,
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
# },
# }
#
@@ -489,7 +489,7 @@ class CreateFirewallPolicyResponse < Struct.new(
# ],
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
# },
# }
#
@@ -708,7 +708,11 @@ class CreateFirewallResponse < Struct.new(
# dry_run: false,
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # },
+ # source_metadata: {
+ # source_arn: "ResourceArn",
+ # source_update_token: "UpdateToken",
# },
# }
#
@@ -828,6 +832,12 @@ class CreateFirewallResponse < Struct.new(
# group resources.
# @return [Types::EncryptionConfiguration]
#
+ # @!attribute [rw] source_metadata
+ # A complex type that contains metadata about the rule group that your
+ # own rule group is copied from. You can use the metadata to keep
+ # track of updates made to the originating rule group.
+ # @return [Types::SourceMetadata]
+ #
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/CreateRuleGroupRequest AWS API Documentation
#
class CreateRuleGroupRequest < Struct.new(
@@ -839,7 +849,8 @@ class CreateRuleGroupRequest < Struct.new(
:capacity,
:tags,
:dry_run,
- :encryption_configuration)
+ :encryption_configuration,
+ :source_metadata)
SENSITIVE = []
include Aws::Structure
end
@@ -1414,6 +1425,10 @@ class DescribeRuleGroupMetadataRequest < Struct.new(
# group. You can only use these for stateful rule groups.
# @return [Types::StatefulRuleOptions]
#
+ # @!attribute [rw] last_modified_time
+ # The last time that the rule group was changed.
+ # @return [Time]
+ #
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/DescribeRuleGroupMetadataResponse AWS API Documentation
#
class DescribeRuleGroupMetadataResponse < Struct.new(
@@ -1422,7 +1437,8 @@ class DescribeRuleGroupMetadataResponse < Struct.new(
:description,
:type,
:capacity,
- :stateful_rule_options)
+ :stateful_rule_options,
+ :last_modified_time)
SENSITIVE = []
include Aws::Structure
end
@@ -1674,7 +1690,7 @@ class DisassociateSubnetsResponse < Struct.new(
#
# {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
# }
#
# @!attribute [rw] key_id
@@ -2044,6 +2060,10 @@ class FirewallPolicyMetadata < Struct.new(
# configuration settings for your firewall policy.
# @return [Types::EncryptionConfiguration]
#
+ # @!attribute [rw] last_modified_time
+ # The last time that the firewall policy was changed.
+ # @return [Time]
+ #
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/FirewallPolicyResponse AWS API Documentation
#
class FirewallPolicyResponse < Struct.new(
@@ -2056,7 +2076,8 @@ class FirewallPolicyResponse < Struct.new(
:consumed_stateless_rule_capacity,
:consumed_stateful_rule_capacity,
:number_of_associations,
- :encryption_configuration)
+ :encryption_configuration,
+ :last_modified_time)
SENSITIVE = []
include Aws::Structure
end
@@ -2463,6 +2484,8 @@ class ListFirewallsResponse < Struct.new(
# next_token: "PaginationToken",
# max_results: 1,
# scope: "MANAGED", # accepts MANAGED, ACCOUNT
+ # managed_type: "AWS_MANAGED_THREAT_SIGNATURES", # accepts AWS_MANAGED_THREAT_SIGNATURES, AWS_MANAGED_DOMAIN_LISTS
+ # type: "STATELESS", # accepts STATELESS, STATEFUL
# }
#
# @!attribute [rw] next_token
@@ -2486,12 +2509,25 @@ class ListFirewallsResponse < Struct.new(
# setting of `MANAGED` returns all available managed rule groups.
# @return [String]
#
+ # @!attribute [rw] managed_type
+ # Indicates the general category of the Amazon Web Services managed
+ # rule group.
+ # @return [String]
+ #
+ # @!attribute [rw] type
+ # Indicates whether the rule group is stateless or stateful. If the
+ # rule group is stateless, it contains stateless rules. If it is
+ # stateful, it contains stateful rules.
+ # @return [String]
+ #
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/ListRuleGroupsRequest AWS API Documentation
#
class ListRuleGroupsRequest < Struct.new(
:next_token,
:max_results,
- :scope)
+ :scope,
+ :managed_type,
+ :type)
SENSITIVE = []
include Aws::Structure
end
@@ -3302,6 +3338,29 @@ class RuleGroupMetadata < Struct.new(
# configuration settings for your rule group.
# @return [Types::EncryptionConfiguration]
#
+ # @!attribute [rw] source_metadata
+ # A complex type that contains metadata about the rule group that your
+ # own rule group is copied from. You can use the metadata to track the
+ # version updates made to the originating rule group.
+ # @return [Types::SourceMetadata]
+ #
+ # @!attribute [rw] sns_topic
+ # The Amazon resource name (ARN) of the Amazon Simple Notification
+ # Service SNS topic that's used to record changes to the managed rule
+ # group. You can subscribe to the SNS topic to receive notifications
+ # when the managed rule group is modified, such as for new versions
+ # and for version expiration. For more information, see the [Amazon
+ # Simple Notification Service Developer Guide.][1].
+ #
+ #
+ #
+ # [1]: https://docs.aws.amazon.com/sns/latest/dg/welcome.html
+ # @return [String]
+ #
+ # @!attribute [rw] last_modified_time
+ # The last time that the rule group was changed.
+ # @return [Time]
+ #
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/RuleGroupResponse AWS API Documentation
#
class RuleGroupResponse < Struct.new(
@@ -3315,7 +3374,10 @@ class RuleGroupResponse < Struct.new(
:tags,
:consumed_capacity,
:number_of_associations,
- :encryption_configuration)
+ :encryption_configuration,
+ :source_metadata,
+ :sns_topic,
+ :last_modified_time)
SENSITIVE = []
include Aws::Structure
end
@@ -3573,6 +3635,47 @@ class RulesSourceList < Struct.new(
include Aws::Structure
end
+ # High-level information about the managed rule group that your own rule
+ # group is copied from. You can use the the metadata to track version
+ # updates made to the originating rule group. You can retrieve all
+ # objects for a rule group by calling [DescribeRuleGroup][1].
+ #
+ #
+ #
+ # [1]: https://docs.aws.amazon.com/network-firewall/latest/APIReference/API_DescribeRuleGroup.html
+ #
+ # @note When making an API call, you may pass SourceMetadata
+ # data as a hash:
+ #
+ # {
+ # source_arn: "ResourceArn",
+ # source_update_token: "UpdateToken",
+ # }
+ #
+ # @!attribute [rw] source_arn
+ # The Amazon Resource Name (ARN) of the rule group that your own rule
+ # group is copied from.
+ # @return [String]
+ #
+ # @!attribute [rw] source_update_token
+ # The update token of the Amazon Web Services managed rule group that
+ # your own rule group is copied from. To determine the update token
+ # for the managed rule group, call [DescribeRuleGroup][1].
+ #
+ #
+ #
+ # [1]: https://docs.aws.amazon.com/network-firewall/latest/APIReference/API_DescribeRuleGroup.html#networkfirewall-DescribeRuleGroup-response-UpdateToken
+ # @return [String]
+ #
+ # @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/SourceMetadata AWS API Documentation
+ #
+ class SourceMetadata < Struct.new(
+ :source_arn,
+ :source_update_token)
+ SENSITIVE = []
+ include Aws::Structure
+ end
+
# Configuration settings for the handling of the stateful rule groups in
# a firewall policy.
#
@@ -4429,7 +4532,7 @@ class UpdateFirewallDescriptionResponse < Struct.new(
# firewall_name: "ResourceName",
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
# },
# }
#
@@ -4703,7 +4806,7 @@ class UpdateFirewallPolicyChangeProtectionResponse < Struct.new(
# dry_run: false,
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
# },
# }
#
@@ -4989,7 +5092,11 @@ class UpdateLoggingConfigurationResponse < Struct.new(
# dry_run: false,
# encryption_configuration: {
# key_id: "KeyId",
- # type: "CUSTOMER_KMS", # accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # type: "CUSTOMER_KMS", # required, accepts CUSTOMER_KMS, AWS_OWNED_KMS_KEY
+ # },
+ # source_metadata: {
+ # source_arn: "ResourceArn",
+ # source_update_token: "UpdateToken",
# },
# }
#
@@ -5081,6 +5188,12 @@ class UpdateLoggingConfigurationResponse < Struct.new(
# group resources.
# @return [Types::EncryptionConfiguration]
#
+ # @!attribute [rw] source_metadata
+ # A complex type that contains metadata about the rule group that your
+ # own rule group is copied from. You can use the metadata to keep
+ # track of updates made to the originating rule group.
+ # @return [Types::SourceMetadata]
+ #
# @see http://docs.aws.amazon.com/goto/WebAPI/network-firewall-2020-11-12/UpdateRuleGroupRequest AWS API Documentation
#
class UpdateRuleGroupRequest < Struct.new(
@@ -5092,7 +5205,8 @@ class UpdateRuleGroupRequest < Struct.new(
:type,
:description,
:dry_run,
- :encryption_configuration)
+ :encryption_configuration,
+ :source_metadata)
SENSITIVE = []
include Aws::Structure
end