From d811bc75a06e05b4fccd639d8853d7cf9e14d4f3 Mon Sep 17 00:00:00 2001 From: AWS SDK for Go v2 automation user Date: Thu, 7 Mar 2024 19:22:09 +0000 Subject: [PATCH] Regenerated Clients --- .../10a5345fa68e4df4b187783a86f75be9.json | 8 + .../1dc9ed4a06a54db29c4bd7043a693fda.json | 8 + .../207323eb8ccc4345acbe2f15c7e7cd5d.json | 8 + .../288799d44d7b421f8ffc76b959a00f6d.json | 8 + .../4f0ee41a2f374b33ab726a245017eb06.json | 8 + .../72ca94203b4d42deac87832932989040.json | 8 + .../7e592a17eba24db9ad63d6ca77a23ae1.json | 8 + .../7fdcf23c3227484ba7b924c38f5e2eb7.json | 8 + .../95273a16099d4a4da8b51e2fd26ecbc1.json | 8 + service/appconfig/api_op_CreateExtension.go | 2 +- .../api_op_CreateExtensionAssociation.go | 3 +- .../api_op_GetExtensionAssociation.go | 3 +- .../api_op_ListExtensionAssociations.go | 2 +- service/appconfig/api_op_ListExtensions.go | 3 +- service/appconfig/api_op_StartDeployment.go | 4 + service/appconfig/api_op_UpdateExtension.go | 2 +- .../api_op_UpdateExtensionAssociation.go | 2 +- service/appconfig/deserializers.go | 9 + service/appconfig/doc.go | 115 ++++++--- service/appconfig/serializers.go | 23 ++ service/appconfig/types/types.go | 7 +- service/ec2/api_op_BundleInstance.go | 2 +- service/ec2/api_op_CopyImage.go | 11 + service/ec2/api_op_DescribeBundleTasks.go | 4 +- service/ec2/api_op_DescribeImageAttribute.go | 4 +- service/ec2/api_op_DescribeImages.go | 4 +- service/ec2/api_op_RegisterImage.go | 12 +- service/ec2/serializers.go | 14 ++ service/grafana/api_op_AssociateLicense.go | 8 +- service/grafana/api_op_CreateWorkspace.go | 12 +- .../api_op_UpdateWorkspaceAuthentication.go | 7 +- .../api_op_UpdateWorkspaceConfiguration.go | 10 +- service/grafana/deserializers.go | 27 +++ service/grafana/endpoints.go | 2 +- service/grafana/serializers.go | 5 + service/grafana/types/types.go | 31 ++- service/lambda/api_op_AddPermission.go | 2 +- service/lambda/api_op_CreateAlias.go | 2 +- .../lambda/api_op_CreateEventSourceMapping.go | 2 +- service/lambda/api_op_CreateFunction.go | 2 +- .../lambda/api_op_CreateFunctionUrlConfig.go | 2 +- service/lambda/api_op_DeleteAlias.go | 2 +- service/lambda/api_op_DeleteFunction.go | 2 +- .../api_op_DeleteFunctionCodeSigningConfig.go | 2 +- .../api_op_DeleteFunctionConcurrency.go | 2 +- .../api_op_DeleteFunctionEventInvokeConfig.go | 2 +- .../lambda/api_op_DeleteFunctionUrlConfig.go | 2 +- ...i_op_DeleteProvisionedConcurrencyConfig.go | 2 +- service/lambda/api_op_GetAlias.go | 2 +- service/lambda/api_op_GetFunction.go | 2 +- .../api_op_GetFunctionCodeSigningConfig.go | 4 +- .../lambda/api_op_GetFunctionConcurrency.go | 2 +- .../lambda/api_op_GetFunctionConfiguration.go | 2 +- .../api_op_GetFunctionEventInvokeConfig.go | 2 +- service/lambda/api_op_GetFunctionUrlConfig.go | 2 +- service/lambda/api_op_GetPolicy.go | 2 +- .../api_op_GetProvisionedConcurrencyConfig.go | 2 +- .../api_op_GetRuntimeManagementConfig.go | 2 +- service/lambda/api_op_Invoke.go | 2 +- service/lambda/api_op_InvokeAsync.go | 2 +- .../lambda/api_op_InvokeWithResponseStream.go | 2 +- service/lambda/api_op_ListAliases.go | 2 +- .../lambda/api_op_ListEventSourceMappings.go | 2 +- .../api_op_ListFunctionEventInvokeConfigs.go | 2 +- .../lambda/api_op_ListFunctionUrlConfigs.go | 2 +- ...pi_op_ListProvisionedConcurrencyConfigs.go | 2 +- .../lambda/api_op_ListVersionsByFunction.go | 2 +- service/lambda/api_op_PublishVersion.go | 2 +- .../api_op_PutFunctionCodeSigningConfig.go | 4 +- .../lambda/api_op_PutFunctionConcurrency.go | 2 +- .../api_op_PutFunctionEventInvokeConfig.go | 2 +- .../api_op_PutProvisionedConcurrencyConfig.go | 2 +- .../api_op_PutRuntimeManagementConfig.go | 2 +- service/lambda/api_op_RemovePermission.go | 2 +- service/lambda/api_op_UpdateAlias.go | 2 +- .../lambda/api_op_UpdateEventSourceMapping.go | 2 +- service/lambda/api_op_UpdateFunctionCode.go | 2 +- .../api_op_UpdateFunctionConfiguration.go | 2 +- .../api_op_UpdateFunctionEventInvokeConfig.go | 2 +- .../lambda/api_op_UpdateFunctionUrlConfig.go | 2 +- .../api_op_DecryptData.go | 26 +- .../api_op_EncryptData.go | 37 +-- .../api_op_GenerateCardValidationData.go | 6 +- .../api_op_GenerateMac.go | 30 +-- .../api_op_GeneratePinData.go | 12 +- .../api_op_ReEncryptData.go | 6 +- .../api_op_TranslatePinData.go | 39 ++- .../api_op_VerifyAuthRequestCryptogram.go | 6 +- .../api_op_VerifyCardValidationData.go | 6 +- .../api_op_VerifyMac.go | 23 +- .../api_op_VerifyPinData.go | 12 +- service/paymentcryptographydata/endpoints.go | 2 +- .../paymentcryptographydata/serializers.go | 43 ++++ .../paymentcryptographydata/types/enums.go | 36 +++ .../paymentcryptographydata/types/types.go | 76 ++++-- .../types/types_exported_test.go | 4 + service/paymentcryptographydata/validators.go | 29 +++ service/rds/api_op_CreateDBCluster.go | 5 +- service/rds/api_op_ModifyDBCluster.go | 5 +- service/rds/api_op_ModifyDBInstance.go | 2 +- service/snowball/types/types.go | 2 +- service/wafv2/api_op_CreateWebACL.go | 11 +- service/wafv2/api_op_UpdateWebACL.go | 11 +- service/wafv2/deserializers.go | 19 +- service/wafv2/serializers.go | 4 +- service/wafv2/types/enums.go | 10 +- service/wafv2/types/errors.go | 2 + service/wafv2/types/types.go | 224 +++++++++++------- service/workspaces/api_op_CreateWorkspaces.go | 1 + service/workspaces/api_op_RebootWorkspaces.go | 6 +- service/workspaces/types/types.go | 30 ++- 111 files changed, 856 insertions(+), 361 deletions(-) create mode 100644 .changelog/10a5345fa68e4df4b187783a86f75be9.json create mode 100644 .changelog/1dc9ed4a06a54db29c4bd7043a693fda.json create mode 100644 .changelog/207323eb8ccc4345acbe2f15c7e7cd5d.json create mode 100644 .changelog/288799d44d7b421f8ffc76b959a00f6d.json create mode 100644 .changelog/4f0ee41a2f374b33ab726a245017eb06.json create mode 100644 .changelog/72ca94203b4d42deac87832932989040.json create mode 100644 .changelog/7e592a17eba24db9ad63d6ca77a23ae1.json create mode 100644 .changelog/7fdcf23c3227484ba7b924c38f5e2eb7.json create mode 100644 .changelog/95273a16099d4a4da8b51e2fd26ecbc1.json diff --git a/.changelog/10a5345fa68e4df4b187783a86f75be9.json b/.changelog/10a5345fa68e4df4b187783a86f75be9.json new file mode 100644 index 00000000000..1dc281ca910 --- /dev/null +++ b/.changelog/10a5345fa68e4df4b187783a86f75be9.json @@ -0,0 +1,8 @@ +{ + "id": "10a5345f-a68e-4df4-b187-783a86f75be9", + "type": "documentation", + "description": "Updates Amazon RDS documentation for io2 storage for Multi-AZ DB clusters", + "modules": [ + "service/rds" + ] +} \ No newline at end of file diff --git a/.changelog/1dc9ed4a06a54db29c4bd7043a693fda.json b/.changelog/1dc9ed4a06a54db29c4bd7043a693fda.json new file mode 100644 index 00000000000..55361adb5cc --- /dev/null +++ b/.changelog/1dc9ed4a06a54db29c4bd7043a693fda.json @@ -0,0 +1,8 @@ +{ + "id": "1dc9ed4a-06a5-4db2-9c4b-d7043a693fda", + "type": "documentation", + "description": "Documentation updates for AWS Lambda", + "modules": [ + "service/lambda" + ] +} \ No newline at end of file diff --git a/.changelog/207323eb8ccc4345acbe2f15c7e7cd5d.json b/.changelog/207323eb8ccc4345acbe2f15c7e7cd5d.json new file mode 100644 index 00000000000..5d08aa2ad05 --- /dev/null +++ b/.changelog/207323eb8ccc4345acbe2f15c7e7cd5d.json @@ -0,0 +1,8 @@ +{ + "id": "207323eb-8ccc-4345-acbe-2f15c7e7cd5d", + "type": "documentation", + "description": "Added note for user decoupling", + "modules": [ + "service/workspaces" + ] +} \ No newline at end of file diff --git a/.changelog/288799d44d7b421f8ffc76b959a00f6d.json b/.changelog/288799d44d7b421f8ffc76b959a00f6d.json new file mode 100644 index 00000000000..7a4d4181c79 --- /dev/null +++ b/.changelog/288799d44d7b421f8ffc76b959a00f6d.json @@ -0,0 +1,8 @@ +{ + "id": "288799d4-4d7b-421f-8ffc-76b959a00f6d", + "type": "documentation", + "description": "Doc-only update for change to EKS-Anywhere ordering.", + "modules": [ + "service/snowball" + ] +} \ No newline at end of file diff --git a/.changelog/4f0ee41a2f374b33ab726a245017eb06.json b/.changelog/4f0ee41a2f374b33ab726a245017eb06.json new file mode 100644 index 00000000000..caa80503175 --- /dev/null +++ b/.changelog/4f0ee41a2f374b33ab726a245017eb06.json @@ -0,0 +1,8 @@ +{ + "id": "4f0ee41a-2f37-4b33-ab72-6a245017eb06", + "type": "feature", + "description": "AWS Payment Cryptography EMV Decrypt Feature Release", + "modules": [ + "service/paymentcryptographydata" + ] +} \ No newline at end of file diff --git a/.changelog/72ca94203b4d42deac87832932989040.json b/.changelog/72ca94203b4d42deac87832932989040.json new file mode 100644 index 00000000000..1822ed2e8ca --- /dev/null +++ b/.changelog/72ca94203b4d42deac87832932989040.json @@ -0,0 +1,8 @@ +{ + "id": "72ca9420-3b4d-42de-ac87-832932989040", + "type": "feature", + "description": "You can increase the max request body inspection size for some regional resources. The size setting is in the web ACL association config. Also, the AWSManagedRulesBotControlRuleSet EnableMachineLearning setting now takes a Boolean instead of a primitive boolean type, for languages like Java.", + "modules": [ + "service/wafv2" + ] +} \ No newline at end of file diff --git a/.changelog/7e592a17eba24db9ad63d6ca77a23ae1.json b/.changelog/7e592a17eba24db9ad63d6ca77a23ae1.json new file mode 100644 index 00000000000..9d0c095356b --- /dev/null +++ b/.changelog/7e592a17eba24db9ad63d6ca77a23ae1.json @@ -0,0 +1,8 @@ +{ + "id": "7e592a17-eba2-4db9-ad63-d6ca77a23ae1", + "type": "feature", + "description": "AWS AppConfig now supports dynamic parameters, which enhance the functionality of AppConfig Extensions by allowing you to provide parameter values to your Extensions at the time you deploy your configuration.", + "modules": [ + "service/appconfig" + ] +} \ No newline at end of file diff --git a/.changelog/7fdcf23c3227484ba7b924c38f5e2eb7.json b/.changelog/7fdcf23c3227484ba7b924c38f5e2eb7.json new file mode 100644 index 00000000000..bd191e06a47 --- /dev/null +++ b/.changelog/7fdcf23c3227484ba7b924c38f5e2eb7.json @@ -0,0 +1,8 @@ +{ + "id": "7fdcf23c-3227-484b-a7b9-24c38f5e2eb7", + "type": "feature", + "description": "This release adds an optional parameter to RegisterImage and CopyImage APIs to support tagging AMIs at the time of creation.", + "modules": [ + "service/ec2" + ] +} \ No newline at end of file diff --git a/.changelog/95273a16099d4a4da8b51e2fd26ecbc1.json b/.changelog/95273a16099d4a4da8b51e2fd26ecbc1.json new file mode 100644 index 00000000000..3e99788341a --- /dev/null +++ b/.changelog/95273a16099d4a4da8b51e2fd26ecbc1.json @@ -0,0 +1,8 @@ +{ + "id": "95273a16-099d-4a4d-a8b5-1e2fd26ecbc1", + "type": "feature", + "description": "Adds support for the new GrafanaToken as part of the Amazon Managed Grafana Enterprise plugins upgrade to associate your AWS account with a Grafana Labs account.", + "modules": [ + "service/grafana" + ] +} \ No newline at end of file diff --git a/service/appconfig/api_op_CreateExtension.go b/service/appconfig/api_op_CreateExtension.go index 80b7ac35a3f..94927543d20 100644 --- a/service/appconfig/api_op_CreateExtension.go +++ b/service/appconfig/api_op_CreateExtension.go @@ -27,7 +27,7 @@ import ( // - For a custom Amazon SQS notification extension, enter the ARN of an Amazon // SQS message queue in the Uri field. // -// For more information about extensions, see Working with AppConfig extensions (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) +// For more information about extensions, see Extending workflows (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) // in the AppConfig User Guide. func (c *Client) CreateExtension(ctx context.Context, params *CreateExtensionInput, optFns ...func(*Options)) (*CreateExtensionOutput, error) { if params == nil { diff --git a/service/appconfig/api_op_CreateExtensionAssociation.go b/service/appconfig/api_op_CreateExtensionAssociation.go index 2c0b8b31a8e..ec8365fcbe5 100644 --- a/service/appconfig/api_op_CreateExtensionAssociation.go +++ b/service/appconfig/api_op_CreateExtensionAssociation.go @@ -19,8 +19,7 @@ import ( // associate with an AppConfig resource is called an extension association. An // extension association is a specified relationship between an extension and an // AppConfig resource, such as an application or a configuration profile. For more -// information about extensions and associations, see Working with AppConfig -// extensions (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) +// information about extensions and associations, see Extending workflows (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) // in the AppConfig User Guide. func (c *Client) CreateExtensionAssociation(ctx context.Context, params *CreateExtensionAssociationInput, optFns ...func(*Options)) (*CreateExtensionAssociationOutput, error) { if params == nil { diff --git a/service/appconfig/api_op_GetExtensionAssociation.go b/service/appconfig/api_op_GetExtensionAssociation.go index 86b29e0cfb4..8f4422de9f4 100644 --- a/service/appconfig/api_op_GetExtensionAssociation.go +++ b/service/appconfig/api_op_GetExtensionAssociation.go @@ -11,8 +11,7 @@ import ( ) // Returns information about an AppConfig extension association. For more -// information about extensions and associations, see Working with AppConfig -// extensions (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) +// information about extensions and associations, see Extending workflows (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) // in the AppConfig User Guide. func (c *Client) GetExtensionAssociation(ctx context.Context, params *GetExtensionAssociationInput, optFns ...func(*Options)) (*GetExtensionAssociationOutput, error) { if params == nil { diff --git a/service/appconfig/api_op_ListExtensionAssociations.go b/service/appconfig/api_op_ListExtensionAssociations.go index aa7f325d6e9..ced4488a85d 100644 --- a/service/appconfig/api_op_ListExtensionAssociations.go +++ b/service/appconfig/api_op_ListExtensionAssociations.go @@ -12,7 +12,7 @@ import ( ) // Lists all AppConfig extension associations in the account. For more information -// about extensions and associations, see Working with AppConfig extensions (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) +// about extensions and associations, see Extending workflows (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) // in the AppConfig User Guide. func (c *Client) ListExtensionAssociations(ctx context.Context, params *ListExtensionAssociationsInput, optFns ...func(*Options)) (*ListExtensionAssociationsOutput, error) { if params == nil { diff --git a/service/appconfig/api_op_ListExtensions.go b/service/appconfig/api_op_ListExtensions.go index f649cca7479..c27a55c78ae 100644 --- a/service/appconfig/api_op_ListExtensions.go +++ b/service/appconfig/api_op_ListExtensions.go @@ -12,8 +12,7 @@ import ( ) // Lists all custom and Amazon Web Services authored AppConfig extensions in the -// account. For more information about extensions, see Working with AppConfig -// extensions (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) +// account. For more information about extensions, see Extending workflows (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) // in the AppConfig User Guide. func (c *Client) ListExtensions(ctx context.Context, params *ListExtensionsInput, optFns ...func(*Options)) (*ListExtensionsOutput, error) { if params == nil { diff --git a/service/appconfig/api_op_StartDeployment.go b/service/appconfig/api_op_StartDeployment.go index 190320a95c6..064bb1a246a 100644 --- a/service/appconfig/api_op_StartDeployment.go +++ b/service/appconfig/api_op_StartDeployment.go @@ -60,6 +60,10 @@ type StartDeploymentInput struct { // A description of the deployment. Description *string + // A map of dynamic extension parameter names to values to pass to associated + // extensions with PRE_START_DEPLOYMENT actions. + DynamicExtensionParameters map[string]string + // The KMS key identifier (key ID, key alias, or key ARN). AppConfig uses this ID // to encrypt the configuration data using a customer managed key. KmsKeyIdentifier *string diff --git a/service/appconfig/api_op_UpdateExtension.go b/service/appconfig/api_op_UpdateExtension.go index 8d14fd1bbea..fe70d23ae09 100644 --- a/service/appconfig/api_op_UpdateExtension.go +++ b/service/appconfig/api_op_UpdateExtension.go @@ -12,7 +12,7 @@ import ( ) // Updates an AppConfig extension. For more information about extensions, see -// Working with AppConfig extensions (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) +// Extending workflows (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) // in the AppConfig User Guide. func (c *Client) UpdateExtension(ctx context.Context, params *UpdateExtensionInput, optFns ...func(*Options)) (*UpdateExtensionOutput, error) { if params == nil { diff --git a/service/appconfig/api_op_UpdateExtensionAssociation.go b/service/appconfig/api_op_UpdateExtensionAssociation.go index 5c1a7563162..d1b1ceefdd4 100644 --- a/service/appconfig/api_op_UpdateExtensionAssociation.go +++ b/service/appconfig/api_op_UpdateExtensionAssociation.go @@ -11,7 +11,7 @@ import ( ) // Updates an association. For more information about extensions and associations, -// see Working with AppConfig extensions (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) +// see Extending workflows (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) // in the AppConfig User Guide. func (c *Client) UpdateExtensionAssociation(ctx context.Context, params *UpdateExtensionAssociationInput, optFns ...func(*Options)) (*UpdateExtensionAssociationOutput, error) { if params == nil { diff --git a/service/appconfig/deserializers.go b/service/appconfig/deserializers.go index 78acd13b9bb..2e169ec6c5e 100644 --- a/service/appconfig/deserializers.go +++ b/service/appconfig/deserializers.go @@ -10104,6 +10104,15 @@ func awsRestjson1_deserializeDocumentParameter(v **types.Parameter, value interf sv.Description = ptr.String(jtv) } + case "Dynamic": + if value != nil { + jtv, ok := value.(bool) + if !ok { + return fmt.Errorf("expected Boolean to be of type *bool, got %T instead", value) + } + sv.Dynamic = jtv + } + case "Required": if value != nil { jtv, ok := value.(bool) diff --git a/service/appconfig/doc.go b/service/appconfig/doc.go index d5d2c84eed2..e6f6dfff3cf 100644 --- a/service/appconfig/doc.go +++ b/service/appconfig/doc.go @@ -3,35 +3,92 @@ // Package appconfig provides the API client, operations, and parameter types for // Amazon AppConfig. // -// Use AppConfig, a capability of Amazon Web Services Systems Manager, to create, -// manage, and quickly deploy application configurations. AppConfig supports -// controlled deployments to applications of any size and includes built-in -// validation checks and monitoring. You can use AppConfig with applications hosted -// on Amazon EC2 instances, Lambda, containers, mobile applications, or IoT -// devices. To prevent errors when deploying application configurations, especially -// for production systems where a simple typo could cause an unexpected outage, -// AppConfig includes validators. A validator provides a syntactic or semantic -// check to ensure that the configuration you want to deploy works as intended. To -// validate your application configuration data, you provide a schema or an Amazon -// Web Services Lambda function that runs against the configuration. The -// configuration deployment or update can only proceed when the configuration data -// is valid. During a configuration deployment, AppConfig monitors the application -// to ensure that the deployment is successful. If the system encounters an error, -// AppConfig rolls back the change to minimize impact for your application users. -// You can configure a deployment strategy for each application or environment that -// includes deployment criteria, including velocity, bake time, and alarms to -// monitor. Similar to error monitoring, if a deployment triggers an alarm, -// AppConfig automatically rolls back to the previous version. AppConfig supports -// multiple use cases. Here are some examples: -// - Feature flags: Use AppConfig to turn on new features that require a timely -// deployment, such as a product launch or announcement. -// - Application tuning: Use AppConfig to carefully introduce changes to your -// application that can only be tested with production traffic. -// - Allow list: Use AppConfig to allow premium subscribers to access paid -// content. -// - Operational issues: Use AppConfig to reduce stress on your application when -// a dependency or other external factor impacts the system. +// AppConfig feature flags and dynamic configurations help software builders +// quickly and securely adjust application behavior in production environments +// without full code deployments. AppConfig speeds up software release frequency, +// improves application resiliency, and helps you address emergent issues more +// quickly. With feature flags, you can gradually release new capabilities to users +// and measure the impact of those changes before fully deploying the new +// capabilities to all users. With operational flags and dynamic configurations, +// you can update block lists, allow lists, throttling limits, logging verbosity, +// and perform other operational tuning to quickly respond to issues in production +// environments. AppConfig is a capability of Amazon Web Services Systems Manager. +// Despite the fact that application configuration content can vary greatly from +// application to application, AppConfig supports the following use cases, which +// cover a broad spectrum of customer needs: +// - Feature flags and toggles - Safely release new capabilities to your +// customers in a controlled environment. Instantly roll back changes if you +// experience a problem. +// - Application tuning - Carefully introduce application changes while testing +// the impact of those changes with users in production environments. +// - Allow list or block list - Control access to premium features or instantly +// block specific users without deploying new code. +// - Centralized configuration storage - Keep your configuration data organized +// and consistent across all of your workloads. You can use AppConfig to deploy +// configuration data stored in the AppConfig hosted configuration store, Secrets +// Manager, Systems Manager, Parameter Store, or Amazon S3. // -// This reference is intended to be used with the AppConfig User Guide (http://docs.aws.amazon.com/appconfig/latest/userguide/what-is-appconfig.html) +// How AppConfig works This section provides a high-level description of how +// AppConfig works and how you get started. 1. Identify configuration values in +// code you want to manage in the cloud Before you start creating AppConfig +// artifacts, we recommend you identify configuration data in your code that you +// want to dynamically manage using AppConfig. Good examples include feature flags +// or toggles, allow and block lists, logging verbosity, service limits, and +// throttling rules, to name a few. If your configuration data already exists in +// the cloud, you can take advantage of AppConfig validation, deployment, and +// extension features to further streamline configuration data management. 2. +// Create an application namespace To create a namespace, you create an AppConfig +// artifact called an application. An application is simply an organizational +// construct like a folder. 3. Create environments For each AppConfig application, +// you define one or more environments. An environment is a logical grouping of +// targets, such as applications in a Beta or Production environment, Lambda +// functions, or containers. You can also define environments for application +// subcomponents, such as the Web , Mobile , and Back-end . You can configure +// Amazon CloudWatch alarms for each environment. The system monitors alarms during +// a configuration deployment. If an alarm is triggered, the system rolls back the +// configuration. 4. Create a configuration profile A configuration profile +// includes, among other things, a URI that enables AppConfig to locate your +// configuration data in its stored location and a profile type. AppConfig supports +// two configuration profile types: feature flags and freeform configurations. +// Feature flag configuration profiles store their data in the AppConfig hosted +// configuration store and the URI is simply hosted . For freeform configuration +// profiles, you can store your data in the AppConfig hosted configuration store or +// any Amazon Web Services service that integrates with AppConfig, as described in +// Creating a free form configuration profile (http://docs.aws.amazon.com/appconfig/latest/userguide/appconfig-free-form-configurations-creating.html) +// in the the AppConfig User Guide. A configuration profile can also include +// optional validators to ensure your configuration data is syntactically and +// semantically correct. AppConfig performs a check using the validators when you +// start a deployment. If any errors are detected, the deployment rolls back to the +// previous configuration data. 5. Deploy configuration data When you create a new +// deployment, you specify the following: +// - An application ID +// - A configuration profile ID +// - A configuration version +// - An environment ID where you want to deploy the configuration data +// - A deployment strategy ID that defines how fast you want the changes to take +// effect +// +// When you call the StartDeployment (https://docs.aws.amazon.com/appconfig/2019-10-09/APIReference/API_StartDeployment.html) +// API action, AppConfig performs the following tasks: +// - Retrieves the configuration data from the underlying data store by using +// the location URI in the configuration profile. +// - Verifies the configuration data is syntactically and semantically correct +// by using the validators you specified when you created your configuration +// profile. +// - Caches a copy of the data so it is ready to be retrieved by your +// application. This cached copy is called the deployed data. +// +// 6. Retrieve the configuration You can configure AppConfig Agent as a local host +// and have the agent poll AppConfig for configuration updates. The agent calls the +// StartConfigurationSession (https://docs.aws.amazon.com/appconfig/2019-10-09/APIReference/API_appconfigdata_StartConfigurationSession.html) +// and GetLatestConfiguration (https://docs.aws.amazon.com/appconfig/2019-10-09/APIReference/API_appconfigdata_GetLatestConfiguration.html) +// API actions and caches your configuration data locally. To retrieve the data, +// your application makes an HTTP call to the localhost server. AppConfig Agent +// supports several use cases, as described in Simplified retrieval methods (http://docs.aws.amazon.com/appconfig/latest/userguide/appconfig-retrieving-simplified-methods.html) +// in the the AppConfig User Guide. If AppConfig Agent isn't supported for your use +// case, you can configure your application to poll AppConfig for configuration +// updates by directly calling the StartConfigurationSession (https://docs.aws.amazon.com/appconfig/2019-10-09/APIReference/API_appconfigdata_StartConfigurationSession.html) +// and GetLatestConfiguration (https://docs.aws.amazon.com/appconfig/2019-10-09/APIReference/API_appconfigdata_GetLatestConfiguration.html) +// API actions. This reference is intended to be used with the AppConfig User Guide (http://docs.aws.amazon.com/appconfig/latest/userguide/what-is-appconfig.html) // . package appconfig diff --git a/service/appconfig/serializers.go b/service/appconfig/serializers.go index 9f8cb4d963a..da5827e90cd 100644 --- a/service/appconfig/serializers.go +++ b/service/appconfig/serializers.go @@ -2704,6 +2704,13 @@ func awsRestjson1_serializeOpDocumentStartDeploymentInput(v *StartDeploymentInpu ok.String(*v.Description) } + if v.DynamicExtensionParameters != nil { + ok := object.Key("DynamicExtensionParameters") + if err := awsRestjson1_serializeDocumentDynamicParameterMap(v.DynamicExtensionParameters, ok); err != nil { + return err + } + } + if v.KmsKeyIdentifier != nil { ok := object.Key("KmsKeyIdentifier") ok.String(*v.KmsKeyIdentifier) @@ -3736,6 +3743,17 @@ func awsRestjson1_serializeDocumentActionsMap(v map[string][]types.Action, value return nil } +func awsRestjson1_serializeDocumentDynamicParameterMap(v map[string]string, value smithyjson.Value) error { + object := value.Object() + defer object.Close() + + for key := range v { + om := object.Key(key) + om.String(v[key]) + } + return nil +} + func awsRestjson1_serializeDocumentMonitor(v *types.Monitor, value smithyjson.Value) error { object := value.Object() defer object.Close() @@ -3775,6 +3793,11 @@ func awsRestjson1_serializeDocumentParameter(v *types.Parameter, value smithyjso ok.String(*v.Description) } + if v.Dynamic { + ok := object.Key("Dynamic") + ok.Boolean(v.Dynamic) + } + if v.Required { ok := object.Key("Required") ok.Boolean(v.Required) diff --git a/service/appconfig/types/types.go b/service/appconfig/types/types.go index f5ba843d6cb..7bfa00a73d1 100644 --- a/service/appconfig/types/types.go +++ b/service/appconfig/types/types.go @@ -396,13 +396,18 @@ type Monitor struct { // A value such as an Amazon Resource Name (ARN) or an Amazon Simple Notification // Service topic entered in an extension when invoked. Parameter values are // specified in an extension association. For more information about extensions, -// see Working with AppConfig extensions (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) +// see Extending workflows (https://docs.aws.amazon.com/appconfig/latest/userguide/working-with-appconfig-extensions.html) // in the AppConfig User Guide. type Parameter struct { // Information about the parameter. Description *string + // Indicates whether this parameter's value can be supplied at the extension's + // action point instead of during extension association. Dynamic parameters can't + // be marked Required . + Dynamic bool + // A parameter value must be specified in the extension association. Required bool diff --git a/service/ec2/api_op_BundleInstance.go b/service/ec2/api_op_BundleInstance.go index d8133b54ccd..59606f0ff2b 100644 --- a/service/ec2/api_op_BundleInstance.go +++ b/service/ec2/api_op_BundleInstance.go @@ -33,7 +33,7 @@ func (c *Client) BundleInstance(ctx context.Context, params *BundleInstanceInput // Contains the parameters for BundleInstance. type BundleInstanceInput struct { - // The ID of the instance to bundle. Type: String Default: None Required: Yes + // The ID of the instance to bundle. Default: None // // This member is required. InstanceId *string diff --git a/service/ec2/api_op_CopyImage.go b/service/ec2/api_op_CopyImage.go index 301ad02592d..0ca1893638f 100644 --- a/service/ec2/api_op_CopyImage.go +++ b/service/ec2/api_op_CopyImage.go @@ -6,6 +6,7 @@ import ( "context" "fmt" awsmiddleware "github.com/aws/aws-sdk-go-v2/aws/middleware" + "github.com/aws/aws-sdk-go-v2/service/ec2/types" "github.com/aws/smithy-go/middleware" smithyhttp "github.com/aws/smithy-go/transport/http" ) @@ -118,6 +119,16 @@ type CopyImageInput struct { // Amazon EBS does not support asymmetric KMS keys. KmsKeyId *string + // The tags to apply to the new AMI and new snapshots. You can tag the AMI, the + // snapshots, or both. + // - To tag the new AMI, the value for ResourceType must be image . + // - To tag the new snapshots, the value for ResourceType must be snapshot . The + // same tag is applied to all the new snapshots. + // If you specify other values for ResourceType , the request fails. To tag an AMI + // or snapshot after it has been created, see CreateTags (https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html) + // . + TagSpecifications []types.TagSpecification + noSmithyDocumentSerde } diff --git a/service/ec2/api_op_DescribeBundleTasks.go b/service/ec2/api_op_DescribeBundleTasks.go index d8e96ab6892..32b3f2f8679 100644 --- a/service/ec2/api_op_DescribeBundleTasks.go +++ b/service/ec2/api_op_DescribeBundleTasks.go @@ -19,7 +19,9 @@ import ( // bundle tasks are listed for only a limited time. If your bundle task is no // longer in the list, you can still register an AMI from it. Just use // RegisterImage with the Amazon S3 bucket name and image manifest name you -// provided to the bundle task. +// provided to the bundle task. The order of the elements in the response, +// including those within nested structures, might vary. Applications should not +// assume the elements appear in a particular order. func (c *Client) DescribeBundleTasks(ctx context.Context, params *DescribeBundleTasksInput, optFns ...func(*Options)) (*DescribeBundleTasksOutput, error) { if params == nil { params = &DescribeBundleTasksInput{} diff --git a/service/ec2/api_op_DescribeImageAttribute.go b/service/ec2/api_op_DescribeImageAttribute.go index 75d635a4962..8612b850fb1 100644 --- a/service/ec2/api_op_DescribeImageAttribute.go +++ b/service/ec2/api_op_DescribeImageAttribute.go @@ -12,7 +12,9 @@ import ( ) // Describes the specified attribute of the specified AMI. You can specify only -// one attribute at a time. +// one attribute at a time. The order of the elements in the response, including +// those within nested structures, might vary. Applications should not assume the +// elements appear in a particular order. func (c *Client) DescribeImageAttribute(ctx context.Context, params *DescribeImageAttributeInput, optFns ...func(*Options)) (*DescribeImageAttributeOutput, error) { if params == nil { params = &DescribeImageAttributeInput{} diff --git a/service/ec2/api_op_DescribeImages.go b/service/ec2/api_op_DescribeImages.go index 1f57ec7ac1f..b28c17f5675 100644 --- a/service/ec2/api_op_DescribeImages.go +++ b/service/ec2/api_op_DescribeImages.go @@ -25,7 +25,9 @@ import ( // deregistered images appear in the returned results for a short interval and then // return empty results. After all instances that reference a deregistered AMI are // terminated, specifying the ID of the image will eventually return an error -// indicating that the AMI ID cannot be found. +// indicating that the AMI ID cannot be found. The order of the elements in the +// response, including those within nested structures, might vary. Applications +// should not assume the elements appear in a particular order. func (c *Client) DescribeImages(ctx context.Context, params *DescribeImagesInput, optFns ...func(*Options)) (*DescribeImagesOutput, error) { if params == nil { params = &DescribeImagesInput{} diff --git a/service/ec2/api_op_RegisterImage.go b/service/ec2/api_op_RegisterImage.go index d13430179d4..8eb32180029 100644 --- a/service/ec2/api_op_RegisterImage.go +++ b/service/ec2/api_op_RegisterImage.go @@ -11,9 +11,9 @@ import ( smithyhttp "github.com/aws/smithy-go/transport/http" ) -// Registers an AMI. When you're creating an AMI, this is the final step you must -// complete before you can launch an instance from the AMI. For more information -// about creating AMIs, see Create your own AMI (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/creating-an-ami.html) +// Registers an AMI. When you're creating an instance-store backed AMI, +// registering the AMI is the final step in the creation process. For more +// information about creating AMIs, see Create your own AMI (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/creating-an-ami.html) // in the Amazon Elastic Compute Cloud User Guide. For Amazon EBS-backed instances, // CreateImage creates and registers the AMI in a single request, so you don't // have to register the AMI yourself. We recommend that you always use CreateImage @@ -150,6 +150,12 @@ type RegisterImageInput struct { // instances launched from the AMI unreachable. SriovNetSupport *string + // The tags to apply to the AMI. To tag the AMI, the value for ResourceType must + // be image . If you specify another value for ResourceType , the request fails. To + // tag an AMI after it has been registered, see CreateTags (https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_CreateTags.html) + // . + TagSpecifications []types.TagSpecification + // Set to v2.0 to enable Trusted Platform Module (TPM) support. For more // information, see NitroTPM (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/nitrotpm.html) // in the Amazon EC2 User Guide. diff --git a/service/ec2/serializers.go b/service/ec2/serializers.go index 928f284216b..5b9988fdc3c 100644 --- a/service/ec2/serializers.go +++ b/service/ec2/serializers.go @@ -50114,6 +50114,13 @@ func awsEc2query_serializeOpDocumentCopyImageInput(v *CopyImageInput, value quer objectKey.String(*v.SourceRegion) } + if v.TagSpecifications != nil { + objectKey := object.FlatKey("TagSpecification") + if err := awsEc2query_serializeDocumentTagSpecificationList(v.TagSpecifications, objectKey); err != nil { + return err + } + } + return nil } @@ -66396,6 +66403,13 @@ func awsEc2query_serializeOpDocumentRegisterImageInput(v *RegisterImageInput, va objectKey.String(*v.SriovNetSupport) } + if v.TagSpecifications != nil { + objectKey := object.FlatKey("TagSpecification") + if err := awsEc2query_serializeDocumentTagSpecificationList(v.TagSpecifications, objectKey); err != nil { + return err + } + } + if len(v.TpmSupport) > 0 { objectKey := object.Key("TpmSupport") objectKey.String(string(v.TpmSupport)) diff --git a/service/grafana/api_op_AssociateLicense.go b/service/grafana/api_op_AssociateLicense.go index 85dcef74d2c..eedb14a770d 100644 --- a/service/grafana/api_op_AssociateLicense.go +++ b/service/grafana/api_op_AssociateLicense.go @@ -32,7 +32,8 @@ func (c *Client) AssociateLicense(ctx context.Context, params *AssociateLicenseI type AssociateLicenseInput struct { - // The type of license to associate with the workspace. + // The type of license to associate with the workspace. Amazon Managed Grafana + // workspaces no longer support Grafana Enterprise free trials. // // This member is required. LicenseType types.LicenseType @@ -42,6 +43,11 @@ type AssociateLicenseInput struct { // This member is required. WorkspaceId *string + // A token from Grafana Labs that ties your Amazon Web Services account with a + // Grafana Labs account. For more information, see Register with Grafana Labs (https://docs.aws.amazon.com/grafana/latest/userguide/upgrade-to-Grafana-Enterprise.html#AMG-workspace-register-enterprise) + // . + GrafanaToken *string + noSmithyDocumentSerde } diff --git a/service/grafana/api_op_CreateWorkspace.go b/service/grafana/api_op_CreateWorkspace.go index d1cfb98f639..308875f8b0d 100644 --- a/service/grafana/api_op_CreateWorkspace.go +++ b/service/grafana/api_op_CreateWorkspace.go @@ -42,10 +42,9 @@ type CreateWorkspaceInput struct { // This member is required. AccountAccessType types.AccountAccessType - // Specifies whether this workspace uses SAML 2.0, IAM Identity Center (successor - // to Single Sign-On), or both to authenticate users for using the Grafana console - // within a workspace. For more information, see User authentication in Amazon - // Managed Grafana (https://docs.aws.amazon.com/grafana/latest/userguide/authentication-in-AMG.html) + // Specifies whether this workspace uses SAML 2.0, IAM Identity Center, or both to + // authenticate users for using the Grafana console within a workspace. For more + // information, see User authentication in Amazon Managed Grafana (https://docs.aws.amazon.com/grafana/latest/userguide/authentication-in-AMG.html) // . // // This member is required. @@ -80,8 +79,9 @@ type CreateWorkspaceInput struct { // This value conforms to the media type: application/json Configuration *string - // Specifies the version of Grafana to support in the new workspace. To get a list - // of supported version, use the ListVersions operation. + // Specifies the version of Grafana to support in the new workspace. If not + // specified, defaults to the latest version (for example, 9.4). To get a list of + // supported versions, use the ListVersions operation. GrafanaVersion *string // Configuration for network access to your workspace. When this is configured, diff --git a/service/grafana/api_op_UpdateWorkspaceAuthentication.go b/service/grafana/api_op_UpdateWorkspaceAuthentication.go index 57829230a96..92888f07bf4 100644 --- a/service/grafana/api_op_UpdateWorkspaceAuthentication.go +++ b/service/grafana/api_op_UpdateWorkspaceAuthentication.go @@ -33,10 +33,9 @@ func (c *Client) UpdateWorkspaceAuthentication(ctx context.Context, params *Upda type UpdateWorkspaceAuthenticationInput struct { - // Specifies whether this workspace uses SAML 2.0, IAM Identity Center (successor - // to Single Sign-On), or both to authenticate users for using the Grafana console - // within a workspace. For more information, see User authentication in Amazon - // Managed Grafana (https://docs.aws.amazon.com/grafana/latest/userguide/authentication-in-AMG.html) + // Specifies whether this workspace uses SAML 2.0, IAM Identity Center, or both to + // authenticate users for using the Grafana console within a workspace. For more + // information, see User authentication in Amazon Managed Grafana (https://docs.aws.amazon.com/grafana/latest/userguide/authentication-in-AMG.html) // . // // This member is required. diff --git a/service/grafana/api_op_UpdateWorkspaceConfiguration.go b/service/grafana/api_op_UpdateWorkspaceConfiguration.go index c93d1efaa2e..15e71b1bfa9 100644 --- a/service/grafana/api_op_UpdateWorkspaceConfiguration.go +++ b/service/grafana/api_op_UpdateWorkspaceConfiguration.go @@ -43,10 +43,12 @@ type UpdateWorkspaceConfigurationInput struct { // This member is required. WorkspaceId *string - // Specifies the version of Grafana to support in the new workspace. Can only be - // used to upgrade (for example, from 8.4 to 9.4), not downgrade (for example, from - // 9.4 to 8.4). To know what versions are available to upgrade to for a specific - // workspace, see the ListVersions operation. + // Specifies the version of Grafana to support in the workspace. If not specified, + // keeps the current version of the workspace. Can only be used to upgrade (for + // example, from 8.4 to 9.4), not downgrade (for example, from 9.4 to 8.4). To know + // what versions are available to upgrade to for a specific workspace, see the + // ListVersions (https://docs.aws.amazon.com/grafana/latest/APIReference/API_ListVersions.html) + // operation. GrafanaVersion *string noSmithyDocumentSerde diff --git a/service/grafana/deserializers.go b/service/grafana/deserializers.go index d89e1d386c3..e0dbad79397 100644 --- a/service/grafana/deserializers.go +++ b/service/grafana/deserializers.go @@ -5066,6 +5066,15 @@ func awsRestjson1_deserializeDocumentWorkspaceDescription(v **types.WorkspaceDes } } + case "grafanaToken": + if value != nil { + jtv, ok := value.(string) + if !ok { + return fmt.Errorf("expected GrafanaToken to be of type string, got %T instead", value) + } + sv.GrafanaToken = ptr.String(jtv) + } + case "grafanaVersion": if value != nil { jtv, ok := value.(string) @@ -5308,6 +5317,15 @@ func awsRestjson1_deserializeDocumentWorkspaceSummary(v **types.WorkspaceSummary sv.Endpoint = ptr.String(jtv) } + case "grafanaToken": + if value != nil { + jtv, ok := value.(string) + if !ok { + return fmt.Errorf("expected GrafanaToken to be of type string, got %T instead", value) + } + sv.GrafanaToken = ptr.String(jtv) + } + case "grafanaVersion": if value != nil { jtv, ok := value.(string) @@ -5326,6 +5344,15 @@ func awsRestjson1_deserializeDocumentWorkspaceSummary(v **types.WorkspaceSummary sv.Id = ptr.String(jtv) } + case "licenseType": + if value != nil { + jtv, ok := value.(string) + if !ok { + return fmt.Errorf("expected LicenseType to be of type string, got %T instead", value) + } + sv.LicenseType = types.LicenseType(jtv) + } + case "modified": if value != nil { switch jtv := value.(type) { diff --git a/service/grafana/endpoints.go b/service/grafana/endpoints.go index 40bb3f53505..2177b3273ca 100644 --- a/service/grafana/endpoints.go +++ b/service/grafana/endpoints.go @@ -373,7 +373,7 @@ func (r *resolver) ResolveEndpoint( } } if _UseFIPS == true { - if true == _PartitionResult.SupportsFIPS { + if _PartitionResult.SupportsFIPS == true { uriString := func() string { var out strings.Builder out.WriteString("https://grafana-fips.") diff --git a/service/grafana/serializers.go b/service/grafana/serializers.go index 90bd988c50e..d3ebc1c0753 100644 --- a/service/grafana/serializers.go +++ b/service/grafana/serializers.go @@ -67,6 +67,11 @@ func awsRestjson1_serializeOpHttpBindingsAssociateLicenseInput(v *AssociateLicen return fmt.Errorf("unsupported serialization of nil %T", v) } + if v.GrafanaToken != nil && len(*v.GrafanaToken) > 0 { + locationName := "Grafana-Token" + encoder.SetHeader(locationName).String(*v.GrafanaToken) + } + if len(v.LicenseType) == 0 { return &smithy.SerializationError{Err: fmt.Errorf("input member licenseType must not be empty")} } diff --git a/service/grafana/types/types.go b/service/grafana/types/types.go index a8ac91332ce..2200bf642d5 100644 --- a/service/grafana/types/types.go +++ b/service/grafana/types/types.go @@ -403,19 +403,29 @@ type WorkspaceDescription struct { Description *string // Specifies whether this workspace has already fully used its free trial for - // Grafana Enterprise. + // Grafana Enterprise. Amazon Managed Grafana workspaces no longer support Grafana + // Enterprise free trials. FreeTrialConsumed *bool // If this workspace is currently in the free trial period for Grafana Enterprise, - // this value specifies when that free trial ends. + // this value specifies when that free trial ends. Amazon Managed Grafana + // workspaces no longer support Grafana Enterprise free trials. FreeTrialExpiration *time.Time - // If this workspace has a full Grafana Enterprise license, this specifies when - // the license ends and will need to be renewed. + // The token that ties this workspace to a Grafana Labs account. For more + // information, see Register with Grafana Labs (https://docs.aws.amazon.com/grafana/latest/userguide/upgrade-to-Grafana-Enterprise.html#AMG-workspace-register-enterprise) + // . + GrafanaToken *string + + // If this workspace has a full Grafana Enterprise license purchased through + // Amazon Web Services Marketplace, this specifies when the license ends and will + // need to be renewed. Purchasing the Enterprise plugins option through Amazon + // Managed Grafana does not have an expiration. It is valid until the license is + // removed. LicenseExpiration *time.Time - // Specifies whether this workspace has a full Grafana Enterprise license or a - // free trial license. + // Specifies whether this workspace has a full Grafana Enterprise license. Amazon + // Managed Grafana workspaces no longer support Grafana Enterprise free trials. LicenseType LicenseType // The name of the workspace. @@ -513,6 +523,15 @@ type WorkspaceSummary struct { // The customer-entered description of the workspace. Description *string + // The token that ties this workspace to a Grafana Labs account. For more + // information, see Register with Grafana Labs (https://docs.aws.amazon.com/grafana/latest/userguide/upgrade-to-Grafana-Enterprise.html#AMG-workspace-register-enterprise) + // . + GrafanaToken *string + + // Specifies whether this workspace has a full Grafana Enterprise license. Amazon + // Managed Grafana workspaces no longer support Grafana Enterprise free trials. + LicenseType LicenseType + // The name of the workspace. Name *string diff --git a/service/lambda/api_op_AddPermission.go b/service/lambda/api_op_AddPermission.go index 0240c149384..9788211d456 100644 --- a/service/lambda/api_op_AddPermission.go +++ b/service/lambda/api_op_AddPermission.go @@ -52,7 +52,7 @@ type AddPermissionInput struct { // This member is required. Action *string - // The name of the Lambda function, version, or alias. Name formats + // The name or ARN of the Lambda function, version, or alias. Name formats // - Function name – my-function (name-only), my-function:v1 (with alias). // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_CreateAlias.go b/service/lambda/api_op_CreateAlias.go index 195ea172bac..7bd6c33db3f 100644 --- a/service/lambda/api_op_CreateAlias.go +++ b/service/lambda/api_op_CreateAlias.go @@ -34,7 +34,7 @@ func (c *Client) CreateAlias(ctx context.Context, params *CreateAliasInput, optF type CreateAliasInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . diff --git a/service/lambda/api_op_CreateEventSourceMapping.go b/service/lambda/api_op_CreateEventSourceMapping.go index 0d6c7802a25..ae5d4f39185 100644 --- a/service/lambda/api_op_CreateEventSourceMapping.go +++ b/service/lambda/api_op_CreateEventSourceMapping.go @@ -64,7 +64,7 @@ func (c *Client) CreateEventSourceMapping(ctx context.Context, params *CreateEve type CreateEventSourceMappingInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – MyFunction . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Version or Alias ARN – diff --git a/service/lambda/api_op_CreateFunction.go b/service/lambda/api_op_CreateFunction.go index c0533fa493c..75efcac4e63 100644 --- a/service/lambda/api_op_CreateFunction.go +++ b/service/lambda/api_op_CreateFunction.go @@ -79,7 +79,7 @@ type CreateFunctionInput struct { // This member is required. Code *types.FunctionCode - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_CreateFunctionUrlConfig.go b/service/lambda/api_op_CreateFunctionUrlConfig.go index f76c468a63d..cc74a8197cc 100644 --- a/service/lambda/api_op_CreateFunctionUrlConfig.go +++ b/service/lambda/api_op_CreateFunctionUrlConfig.go @@ -40,7 +40,7 @@ type CreateFunctionUrlConfigInput struct { // This member is required. AuthType types.FunctionUrlAuthType - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_DeleteAlias.go b/service/lambda/api_op_DeleteAlias.go index 451e536aec0..b72de385483 100644 --- a/service/lambda/api_op_DeleteAlias.go +++ b/service/lambda/api_op_DeleteAlias.go @@ -29,7 +29,7 @@ func (c *Client) DeleteAlias(ctx context.Context, params *DeleteAliasInput, optF type DeleteAliasInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . diff --git a/service/lambda/api_op_DeleteFunction.go b/service/lambda/api_op_DeleteFunction.go index 78a3ddd7406..fad3deaa338 100644 --- a/service/lambda/api_op_DeleteFunction.go +++ b/service/lambda/api_op_DeleteFunction.go @@ -34,7 +34,7 @@ func (c *Client) DeleteFunction(ctx context.Context, params *DeleteFunctionInput type DeleteFunctionInput struct { - // The name of the Lambda function or version. Name formats + // The name or ARN of the Lambda function or version. Name formats // - Function name – my-function (name-only), my-function:1 (with version). // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_DeleteFunctionCodeSigningConfig.go b/service/lambda/api_op_DeleteFunctionCodeSigningConfig.go index 50b05fd3937..f112bc82b5c 100644 --- a/service/lambda/api_op_DeleteFunctionCodeSigningConfig.go +++ b/service/lambda/api_op_DeleteFunctionCodeSigningConfig.go @@ -28,7 +28,7 @@ func (c *Client) DeleteFunctionCodeSigningConfig(ctx context.Context, params *De type DeleteFunctionCodeSigningConfigInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . diff --git a/service/lambda/api_op_DeleteFunctionConcurrency.go b/service/lambda/api_op_DeleteFunctionConcurrency.go index d2823280816..925cdcc9b18 100644 --- a/service/lambda/api_op_DeleteFunctionConcurrency.go +++ b/service/lambda/api_op_DeleteFunctionConcurrency.go @@ -28,7 +28,7 @@ func (c *Client) DeleteFunctionConcurrency(ctx context.Context, params *DeleteFu type DeleteFunctionConcurrencyInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_DeleteFunctionEventInvokeConfig.go b/service/lambda/api_op_DeleteFunctionEventInvokeConfig.go index fc2b1881c1f..43f65cc7534 100644 --- a/service/lambda/api_op_DeleteFunctionEventInvokeConfig.go +++ b/service/lambda/api_op_DeleteFunctionEventInvokeConfig.go @@ -30,7 +30,7 @@ func (c *Client) DeleteFunctionEventInvokeConfig(ctx context.Context, params *De type DeleteFunctionEventInvokeConfigInput struct { - // The name of the Lambda function, version, or alias. Name formats + // The name or ARN of the Lambda function, version, or alias. Name formats // - Function name - my-function (name-only), my-function:v1 (with alias). // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN - 123456789012:function:my-function . diff --git a/service/lambda/api_op_DeleteFunctionUrlConfig.go b/service/lambda/api_op_DeleteFunctionUrlConfig.go index 00759d9c2d7..b2bb38d04d5 100644 --- a/service/lambda/api_op_DeleteFunctionUrlConfig.go +++ b/service/lambda/api_op_DeleteFunctionUrlConfig.go @@ -29,7 +29,7 @@ func (c *Client) DeleteFunctionUrlConfig(ctx context.Context, params *DeleteFunc type DeleteFunctionUrlConfigInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_DeleteProvisionedConcurrencyConfig.go b/service/lambda/api_op_DeleteProvisionedConcurrencyConfig.go index 829d4ccf4cc..3c03e15c18f 100644 --- a/service/lambda/api_op_DeleteProvisionedConcurrencyConfig.go +++ b/service/lambda/api_op_DeleteProvisionedConcurrencyConfig.go @@ -28,7 +28,7 @@ func (c *Client) DeleteProvisionedConcurrencyConfig(ctx context.Context, params type DeleteProvisionedConcurrencyConfigInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_GetAlias.go b/service/lambda/api_op_GetAlias.go index 5ec93523daf..720f0daea3c 100644 --- a/service/lambda/api_op_GetAlias.go +++ b/service/lambda/api_op_GetAlias.go @@ -30,7 +30,7 @@ func (c *Client) GetAlias(ctx context.Context, params *GetAliasInput, optFns ... type GetAliasInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . diff --git a/service/lambda/api_op_GetFunction.go b/service/lambda/api_op_GetFunction.go index dbd77b116ef..c85cb02711f 100644 --- a/service/lambda/api_op_GetFunction.go +++ b/service/lambda/api_op_GetFunction.go @@ -36,7 +36,7 @@ func (c *Client) GetFunction(ctx context.Context, params *GetFunctionInput, optF type GetFunctionInput struct { - // The name of the Lambda function, version, or alias. Name formats + // The name or ARN of the Lambda function, version, or alias. Name formats // - Function name – my-function (name-only), my-function:v1 (with alias). // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_GetFunctionCodeSigningConfig.go b/service/lambda/api_op_GetFunctionCodeSigningConfig.go index b0b34d0d257..31729881375 100644 --- a/service/lambda/api_op_GetFunctionCodeSigningConfig.go +++ b/service/lambda/api_op_GetFunctionCodeSigningConfig.go @@ -28,7 +28,7 @@ func (c *Client) GetFunctionCodeSigningConfig(ctx context.Context, params *GetFu type GetFunctionCodeSigningConfigInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . @@ -48,7 +48,7 @@ type GetFunctionCodeSigningConfigOutput struct { // This member is required. CodeSigningConfigArn *string - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . diff --git a/service/lambda/api_op_GetFunctionConcurrency.go b/service/lambda/api_op_GetFunctionConcurrency.go index 03abd931162..6f761ef4d60 100644 --- a/service/lambda/api_op_GetFunctionConcurrency.go +++ b/service/lambda/api_op_GetFunctionConcurrency.go @@ -29,7 +29,7 @@ func (c *Client) GetFunctionConcurrency(ctx context.Context, params *GetFunction type GetFunctionConcurrencyInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_GetFunctionConfiguration.go b/service/lambda/api_op_GetFunctionConfiguration.go index 4571d3885a5..3aff0e1f4f0 100644 --- a/service/lambda/api_op_GetFunctionConfiguration.go +++ b/service/lambda/api_op_GetFunctionConfiguration.go @@ -36,7 +36,7 @@ func (c *Client) GetFunctionConfiguration(ctx context.Context, params *GetFuncti type GetFunctionConfigurationInput struct { - // The name of the Lambda function, version, or alias. Name formats + // The name or ARN of the Lambda function, version, or alias. Name formats // - Function name – my-function (name-only), my-function:v1 (with alias). // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_GetFunctionEventInvokeConfig.go b/service/lambda/api_op_GetFunctionEventInvokeConfig.go index ed32faaaaec..27deb8e2f96 100644 --- a/service/lambda/api_op_GetFunctionEventInvokeConfig.go +++ b/service/lambda/api_op_GetFunctionEventInvokeConfig.go @@ -32,7 +32,7 @@ func (c *Client) GetFunctionEventInvokeConfig(ctx context.Context, params *GetFu type GetFunctionEventInvokeConfigInput struct { - // The name of the Lambda function, version, or alias. Name formats + // The name or ARN of the Lambda function, version, or alias. Name formats // - Function name - my-function (name-only), my-function:v1 (with alias). // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN - 123456789012:function:my-function . diff --git a/service/lambda/api_op_GetFunctionUrlConfig.go b/service/lambda/api_op_GetFunctionUrlConfig.go index a0c4ddf9013..d7d7546e032 100644 --- a/service/lambda/api_op_GetFunctionUrlConfig.go +++ b/service/lambda/api_op_GetFunctionUrlConfig.go @@ -29,7 +29,7 @@ func (c *Client) GetFunctionUrlConfig(ctx context.Context, params *GetFunctionUr type GetFunctionUrlConfigInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_GetPolicy.go b/service/lambda/api_op_GetPolicy.go index 622a780af23..355a8e768dc 100644 --- a/service/lambda/api_op_GetPolicy.go +++ b/service/lambda/api_op_GetPolicy.go @@ -29,7 +29,7 @@ func (c *Client) GetPolicy(ctx context.Context, params *GetPolicyInput, optFns . type GetPolicyInput struct { - // The name of the Lambda function, version, or alias. Name formats + // The name or ARN of the Lambda function, version, or alias. Name formats // - Function name – my-function (name-only), my-function:v1 (with alias). // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_GetProvisionedConcurrencyConfig.go b/service/lambda/api_op_GetProvisionedConcurrencyConfig.go index e53e94a0d29..0a3f8cb57bf 100644 --- a/service/lambda/api_op_GetProvisionedConcurrencyConfig.go +++ b/service/lambda/api_op_GetProvisionedConcurrencyConfig.go @@ -30,7 +30,7 @@ func (c *Client) GetProvisionedConcurrencyConfig(ctx context.Context, params *Ge type GetProvisionedConcurrencyConfigInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_GetRuntimeManagementConfig.go b/service/lambda/api_op_GetRuntimeManagementConfig.go index ba19701f704..3795ee662b9 100644 --- a/service/lambda/api_op_GetRuntimeManagementConfig.go +++ b/service/lambda/api_op_GetRuntimeManagementConfig.go @@ -34,7 +34,7 @@ func (c *Client) GetRuntimeManagementConfig(ctx context.Context, params *GetRunt type GetRuntimeManagementConfigInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_Invoke.go b/service/lambda/api_op_Invoke.go index 2ebffed94c5..f003fc2fbdf 100644 --- a/service/lambda/api_op_Invoke.go +++ b/service/lambda/api_op_Invoke.go @@ -64,7 +64,7 @@ func (c *Client) Invoke(ctx context.Context, params *InvokeInput, optFns ...func type InvokeInput struct { - // The name of the Lambda function, version, or alias. Name formats + // The name or ARN of the Lambda function, version, or alias. Name formats // - Function name – my-function (name-only), my-function:v1 (with alias). // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_InvokeAsync.go b/service/lambda/api_op_InvokeAsync.go index bdb220bf589..61b5851c6cc 100644 --- a/service/lambda/api_op_InvokeAsync.go +++ b/service/lambda/api_op_InvokeAsync.go @@ -34,7 +34,7 @@ func (c *Client) InvokeAsync(ctx context.Context, params *InvokeAsyncInput, optF type InvokeAsyncInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_InvokeWithResponseStream.go b/service/lambda/api_op_InvokeWithResponseStream.go index d9542ffb6a7..b25877125a8 100644 --- a/service/lambda/api_op_InvokeWithResponseStream.go +++ b/service/lambda/api_op_InvokeWithResponseStream.go @@ -35,7 +35,7 @@ func (c *Client) InvokeWithResponseStream(ctx context.Context, params *InvokeWit type InvokeWithResponseStreamInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_ListAliases.go b/service/lambda/api_op_ListAliases.go index af202bcea1a..feeb3e78678 100644 --- a/service/lambda/api_op_ListAliases.go +++ b/service/lambda/api_op_ListAliases.go @@ -30,7 +30,7 @@ func (c *Client) ListAliases(ctx context.Context, params *ListAliasesInput, optF type ListAliasesInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . diff --git a/service/lambda/api_op_ListEventSourceMappings.go b/service/lambda/api_op_ListEventSourceMappings.go index f0f5e113889..11afd14472f 100644 --- a/service/lambda/api_op_ListEventSourceMappings.go +++ b/service/lambda/api_op_ListEventSourceMappings.go @@ -41,7 +41,7 @@ type ListEventSourceMappingsInput struct { // - Amazon DocumentDB – The ARN of the DocumentDB change stream. EventSourceArn *string - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – MyFunction . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Version or Alias ARN – diff --git a/service/lambda/api_op_ListFunctionEventInvokeConfigs.go b/service/lambda/api_op_ListFunctionEventInvokeConfigs.go index 481774e4db3..7a5fdae6034 100644 --- a/service/lambda/api_op_ListFunctionEventInvokeConfigs.go +++ b/service/lambda/api_op_ListFunctionEventInvokeConfigs.go @@ -31,7 +31,7 @@ func (c *Client) ListFunctionEventInvokeConfigs(ctx context.Context, params *Lis type ListFunctionEventInvokeConfigsInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - my-function . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN - 123456789012:function:my-function . diff --git a/service/lambda/api_op_ListFunctionUrlConfigs.go b/service/lambda/api_op_ListFunctionUrlConfigs.go index b40a364e25e..904678eaa5c 100644 --- a/service/lambda/api_op_ListFunctionUrlConfigs.go +++ b/service/lambda/api_op_ListFunctionUrlConfigs.go @@ -29,7 +29,7 @@ func (c *Client) ListFunctionUrlConfigs(ctx context.Context, params *ListFunctio type ListFunctionUrlConfigsInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_ListProvisionedConcurrencyConfigs.go b/service/lambda/api_op_ListProvisionedConcurrencyConfigs.go index aff2be0d6ef..78944a89dcc 100644 --- a/service/lambda/api_op_ListProvisionedConcurrencyConfigs.go +++ b/service/lambda/api_op_ListProvisionedConcurrencyConfigs.go @@ -29,7 +29,7 @@ func (c *Client) ListProvisionedConcurrencyConfigs(ctx context.Context, params * type ListProvisionedConcurrencyConfigsInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_ListVersionsByFunction.go b/service/lambda/api_op_ListVersionsByFunction.go index 79d2737830f..f31b0b1a445 100644 --- a/service/lambda/api_op_ListVersionsByFunction.go +++ b/service/lambda/api_op_ListVersionsByFunction.go @@ -31,7 +31,7 @@ func (c *Client) ListVersionsByFunction(ctx context.Context, params *ListVersion type ListVersionsByFunctionInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . diff --git a/service/lambda/api_op_PublishVersion.go b/service/lambda/api_op_PublishVersion.go index 676710801eb..2a13d99e1ac 100644 --- a/service/lambda/api_op_PublishVersion.go +++ b/service/lambda/api_op_PublishVersion.go @@ -36,7 +36,7 @@ func (c *Client) PublishVersion(ctx context.Context, params *PublishVersionInput type PublishVersionInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . diff --git a/service/lambda/api_op_PutFunctionCodeSigningConfig.go b/service/lambda/api_op_PutFunctionCodeSigningConfig.go index bafbafdfee0..d31b0150d82 100644 --- a/service/lambda/api_op_PutFunctionCodeSigningConfig.go +++ b/service/lambda/api_op_PutFunctionCodeSigningConfig.go @@ -35,7 +35,7 @@ type PutFunctionCodeSigningConfigInput struct { // This member is required. CodeSigningConfigArn *string - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . @@ -55,7 +55,7 @@ type PutFunctionCodeSigningConfigOutput struct { // This member is required. CodeSigningConfigArn *string - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . diff --git a/service/lambda/api_op_PutFunctionConcurrency.go b/service/lambda/api_op_PutFunctionConcurrency.go index d4095a5efcd..27d3273bd4f 100644 --- a/service/lambda/api_op_PutFunctionConcurrency.go +++ b/service/lambda/api_op_PutFunctionConcurrency.go @@ -38,7 +38,7 @@ func (c *Client) PutFunctionConcurrency(ctx context.Context, params *PutFunction type PutFunctionConcurrencyInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_PutFunctionEventInvokeConfig.go b/service/lambda/api_op_PutFunctionEventInvokeConfig.go index ba7fffa28ac..f9f421ec92d 100644 --- a/service/lambda/api_op_PutFunctionEventInvokeConfig.go +++ b/service/lambda/api_op_PutFunctionEventInvokeConfig.go @@ -43,7 +43,7 @@ func (c *Client) PutFunctionEventInvokeConfig(ctx context.Context, params *PutFu type PutFunctionEventInvokeConfigInput struct { - // The name of the Lambda function, version, or alias. Name formats + // The name or ARN of the Lambda function, version, or alias. Name formats // - Function name - my-function (name-only), my-function:v1 (with alias). // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN - 123456789012:function:my-function . diff --git a/service/lambda/api_op_PutProvisionedConcurrencyConfig.go b/service/lambda/api_op_PutProvisionedConcurrencyConfig.go index eb57af3357e..b94a1984a78 100644 --- a/service/lambda/api_op_PutProvisionedConcurrencyConfig.go +++ b/service/lambda/api_op_PutProvisionedConcurrencyConfig.go @@ -29,7 +29,7 @@ func (c *Client) PutProvisionedConcurrencyConfig(ctx context.Context, params *Pu type PutProvisionedConcurrencyConfigInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_PutRuntimeManagementConfig.go b/service/lambda/api_op_PutRuntimeManagementConfig.go index 97830f72cc6..27764f429e9 100644 --- a/service/lambda/api_op_PutRuntimeManagementConfig.go +++ b/service/lambda/api_op_PutRuntimeManagementConfig.go @@ -31,7 +31,7 @@ func (c *Client) PutRuntimeManagementConfig(ctx context.Context, params *PutRunt type PutRuntimeManagementConfigInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_RemovePermission.go b/service/lambda/api_op_RemovePermission.go index c8d1621e374..3060c1d2d66 100644 --- a/service/lambda/api_op_RemovePermission.go +++ b/service/lambda/api_op_RemovePermission.go @@ -30,7 +30,7 @@ func (c *Client) RemovePermission(ctx context.Context, params *RemovePermissionI type RemovePermissionInput struct { - // The name of the Lambda function, version, or alias. Name formats + // The name or ARN of the Lambda function, version, or alias. Name formats // - Function name – my-function (name-only), my-function:v1 (with alias). // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_UpdateAlias.go b/service/lambda/api_op_UpdateAlias.go index 5bb4ef11d30..02f7e146f3c 100644 --- a/service/lambda/api_op_UpdateAlias.go +++ b/service/lambda/api_op_UpdateAlias.go @@ -30,7 +30,7 @@ func (c *Client) UpdateAlias(ctx context.Context, params *UpdateAliasInput, optF type UpdateAliasInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name - MyFunction . // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Partial ARN - 123456789012:function:MyFunction . diff --git a/service/lambda/api_op_UpdateEventSourceMapping.go b/service/lambda/api_op_UpdateEventSourceMapping.go index 6c45684aa6d..90d0ec6866b 100644 --- a/service/lambda/api_op_UpdateEventSourceMapping.go +++ b/service/lambda/api_op_UpdateEventSourceMapping.go @@ -105,7 +105,7 @@ type UpdateEventSourceMappingInput struct { // . FilterCriteria *types.FilterCriteria - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – MyFunction . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:MyFunction . // - Version or Alias ARN – diff --git a/service/lambda/api_op_UpdateFunctionCode.go b/service/lambda/api_op_UpdateFunctionCode.go index 9de028ceaec..359c62a2b5a 100644 --- a/service/lambda/api_op_UpdateFunctionCode.go +++ b/service/lambda/api_op_UpdateFunctionCode.go @@ -43,7 +43,7 @@ func (c *Client) UpdateFunctionCode(ctx context.Context, params *UpdateFunctionC type UpdateFunctionCodeInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_UpdateFunctionConfiguration.go b/service/lambda/api_op_UpdateFunctionConfiguration.go index f819fc02225..27aa55f6561 100644 --- a/service/lambda/api_op_UpdateFunctionConfiguration.go +++ b/service/lambda/api_op_UpdateFunctionConfiguration.go @@ -41,7 +41,7 @@ func (c *Client) UpdateFunctionConfiguration(ctx context.Context, params *Update type UpdateFunctionConfigurationInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/lambda/api_op_UpdateFunctionEventInvokeConfig.go b/service/lambda/api_op_UpdateFunctionEventInvokeConfig.go index e59e6365b9e..eb90cbde57c 100644 --- a/service/lambda/api_op_UpdateFunctionEventInvokeConfig.go +++ b/service/lambda/api_op_UpdateFunctionEventInvokeConfig.go @@ -32,7 +32,7 @@ func (c *Client) UpdateFunctionEventInvokeConfig(ctx context.Context, params *Up type UpdateFunctionEventInvokeConfigInput struct { - // The name of the Lambda function, version, or alias. Name formats + // The name or ARN of the Lambda function, version, or alias. Name formats // - Function name - my-function (name-only), my-function:v1 (with alias). // - Function ARN - arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN - 123456789012:function:my-function . diff --git a/service/lambda/api_op_UpdateFunctionUrlConfig.go b/service/lambda/api_op_UpdateFunctionUrlConfig.go index 080810ad1f1..85048729a99 100644 --- a/service/lambda/api_op_UpdateFunctionUrlConfig.go +++ b/service/lambda/api_op_UpdateFunctionUrlConfig.go @@ -29,7 +29,7 @@ func (c *Client) UpdateFunctionUrlConfig(ctx context.Context, params *UpdateFunc type UpdateFunctionUrlConfigInput struct { - // The name of the Lambda function. Name formats + // The name or ARN of the Lambda function. Name formats // - Function name – my-function . // - Function ARN – arn:aws:lambda:us-west-2:123456789012:function:my-function . // - Partial ARN – 123456789012:function:my-function . diff --git a/service/paymentcryptographydata/api_op_DecryptData.go b/service/paymentcryptographydata/api_op_DecryptData.go index d30ea2ed11e..25a758c9999 100644 --- a/service/paymentcryptographydata/api_op_DecryptData.go +++ b/service/paymentcryptographydata/api_op_DecryptData.go @@ -11,8 +11,9 @@ import ( smithyhttp "github.com/aws/smithy-go/transport/http" ) -// Decrypts ciphertext data to plaintext using symmetric, asymmetric, or DUKPT -// data encryption key. For more information, see Decrypt data (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/decrypt-data.html) +// Decrypts ciphertext data to plaintext using a symmetric (TDES, AES), asymmetric +// (RSA), or derived (DUKPT or EMV) encryption key scheme. For more information, +// see Decrypt data (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/decrypt-data.html) // in the Amazon Web Services Payment Cryptography User Guide. You can use an // encryption key generated within Amazon Web Services Payment Cryptography, or you // can import your own encryption key by calling ImportKey (https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_ImportKey.html) @@ -23,12 +24,13 @@ import ( // export the public component of the asymmetric key pair by calling // GetPublicCertificate (https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_GetPublicKeyCertificate.html) // . For symmetric and DUKPT decryption, Amazon Web Services Payment Cryptography -// supports TDES and AES algorithms. For asymmetric decryption, Amazon Web -// Services Payment Cryptography supports RSA . When you use DUKPT, for TDES -// algorithm, the ciphertext data length must be a multiple of 16 bytes. For AES -// algorithm, the ciphertext data length must be a multiple of 32 bytes. For -// information about valid keys for this operation, see Understanding key -// attributes (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html) +// supports TDES and AES algorithms. For EMV decryption, Amazon Web Services +// Payment Cryptography supports TDES algorithms. For asymmetric decryption, +// Amazon Web Services Payment Cryptography supports RSA . When you use TDES or +// TDES DUKPT, the ciphertext data length must be a multiple of 8 bytes. For AES or +// AES DUKPT, the ciphertext data length must be a multiple of 16 bytes. For RSA, +// it sould be equal to the key size unless padding is enabled. For information +// about valid keys for this operation, see Understanding key attributes (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html) // and Key types for specific data operations (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html) // in the Amazon Web Services Payment Cryptography User Guide. Cross-account use: // This operation can't be used across different Amazon Web Services accounts. @@ -82,15 +84,13 @@ type DecryptDataOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. KeyCheckValue *string - // The decrypted plaintext data. + // The decrypted plaintext data in hexBinary format. // // This member is required. PlainText *string diff --git a/service/paymentcryptographydata/api_op_EncryptData.go b/service/paymentcryptographydata/api_op_EncryptData.go index acec15b9909..851fa1840b3 100644 --- a/service/paymentcryptographydata/api_op_EncryptData.go +++ b/service/paymentcryptographydata/api_op_EncryptData.go @@ -11,8 +11,9 @@ import ( smithyhttp "github.com/aws/smithy-go/transport/http" ) -// Encrypts plaintext data to ciphertext using symmetric, asymmetric, or DUKPT -// data encryption key. For more information, see Encrypt data (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/encrypt-data.html) +// Encrypts plaintext data to ciphertext using a symmetric (TDES, AES), asymmetric +// (RSA), or derived (DUKPT or EMV) encryption key scheme. For more information, +// see Encrypt data (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/encrypt-data.html) // in the Amazon Web Services Payment Cryptography User Guide. You can generate an // encryption key within Amazon Web Services Payment Cryptography by calling // CreateKey (https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_CreateKey.html) @@ -21,13 +22,19 @@ import ( // asymmetric encryption, plaintext is encrypted using public component. You can // import the public component of an asymmetric key pair created outside Amazon Web // Services Payment Cryptography by calling ImportKey (https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_ImportKey.html) -// ). for symmetric and DUKPT encryption, Amazon Web Services Payment Cryptography -// supports TDES and AES algorithms. For asymmetric encryption, Amazon Web -// Services Payment Cryptography supports RSA . To encrypt using DUKPT, you must -// already have a DUKPT key in your account with KeyModesOfUse set to DeriveKey , -// or you can generate a new DUKPT key by calling CreateKey (https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_CreateKey.html) -// . For information about valid keys for this operation, see Understanding key -// attributes (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html) +// . For symmetric and DUKPT encryption, Amazon Web Services Payment Cryptography +// supports TDES and AES algorithms. For EMV encryption, Amazon Web Services +// Payment Cryptography supports TDES algorithms.For asymmetric encryption, Amazon +// Web Services Payment Cryptography supports RSA . When you use TDES or TDES +// DUKPT, the plaintext data length must be a multiple of 8 bytes. For AES or AES +// DUKPT, the plaintext data length must be a multiple of 16 bytes. For RSA, it +// sould be equal to the key size unless padding is enabled. To encrypt using +// DUKPT, you must already have a BDK (Base Derivation Key) key in your account +// with KeyModesOfUse set to DeriveKey , or you can generate a new DUKPT key by +// calling CreateKey (https://docs.aws.amazon.com/payment-cryptography/latest/APIReference/API_CreateKey.html) +// . To encrypt using EMV, you must already have an IMK (Issuer Master Key) key in +// your account with KeyModesOfUse set to DeriveKey . For information about valid +// keys for this operation, see Understanding key attributes (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html) // and Key types for specific data operations (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html) // in the Amazon Web Services Payment Cryptography User Guide. Cross-account use: // This operation can't be used across different Amazon Web Services accounts. @@ -64,7 +71,11 @@ type EncryptDataInput struct { // This member is required. KeyIdentifier *string - // The plaintext to be encrypted. + // The plaintext to be encrypted. For encryption using asymmetric keys, plaintext + // data length is constrained by encryption key strength that you define in + // KeyAlgorithm and padding type that you define in AsymmetricEncryptionAttributes + // . For more information, see Encrypt data (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/encrypt-data.html) + // in the Amazon Web Services Payment Cryptography User Guide. // // This member is required. PlainText *string @@ -87,10 +98,8 @@ type EncryptDataOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. KeyCheckValue *string // Metadata pertaining to the operation's result. diff --git a/service/paymentcryptographydata/api_op_GenerateCardValidationData.go b/service/paymentcryptographydata/api_op_GenerateCardValidationData.go index 38df00b72ba..2157c57fd63 100644 --- a/service/paymentcryptographydata/api_op_GenerateCardValidationData.go +++ b/service/paymentcryptographydata/api_op_GenerateCardValidationData.go @@ -82,10 +82,8 @@ type GenerateCardValidationDataOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. KeyCheckValue *string diff --git a/service/paymentcryptographydata/api_op_GenerateMac.go b/service/paymentcryptographydata/api_op_GenerateMac.go index 5df9c4962c6..3ac490ff45f 100644 --- a/service/paymentcryptographydata/api_op_GenerateMac.go +++ b/service/paymentcryptographydata/api_op_GenerateMac.go @@ -12,16 +12,18 @@ import ( ) // Generates a Message Authentication Code (MAC) cryptogram within Amazon Web -// Services Payment Cryptography. You can use this operation when keys won't be -// shared but mutual data is present on both ends for validation. In this case, -// known data values are used to generate a MAC on both ends for comparision -// without sending or receiving data in ciphertext or plaintext. You can use this -// operation to generate a DUPKT, HMAC or EMV MAC by setting generation attributes -// and algorithm to the associated values. The MAC generation encryption key must -// have valid values for KeyUsage such as TR31_M7_HMAC_KEY for HMAC generation, -// and they key must have KeyModesOfUse set to Generate and Verify . For -// information about valid keys for this operation, see Understanding key -// attributes (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html) +// Services Payment Cryptography. You can use this operation to authenticate +// card-related data by using known data values to generate MAC for data validation +// between the sending and receiving parties. This operation uses message data, a +// secret encryption key and MAC algorithm to generate a unique MAC value for +// transmission. The receiving party of the MAC must use the same message data, +// secret encryption key and MAC algorithm to reproduce another MAC value for +// comparision. You can use this operation to generate a DUPKT, CMAC, HMAC or EMV +// MAC by setting generation attributes and algorithm to the associated values. The +// MAC generation encryption key must have valid values for KeyUsage such as +// TR31_M7_HMAC_KEY for HMAC generation, and they key must have KeyModesOfUse set +// to Generate and Verify . For information about valid keys for this operation, +// see Understanding key attributes (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html) // and Key types for specific data operations (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html) // in the Amazon Web Services Payment Cryptography User Guide. Cross-account use: // This operation can't be used across different Amazon Web Services accounts. @@ -55,7 +57,7 @@ type GenerateMacInput struct { // This member is required. KeyIdentifier *string - // The data for which a MAC is under generation. + // The data for which a MAC is under generation. This value must be hexBinary. // // This member is required. MessageData *string @@ -76,10 +78,8 @@ type GenerateMacOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. KeyCheckValue *string diff --git a/service/paymentcryptographydata/api_op_GeneratePinData.go b/service/paymentcryptographydata/api_op_GeneratePinData.go index 502a47b88a6..1a57ddc0186 100644 --- a/service/paymentcryptographydata/api_op_GeneratePinData.go +++ b/service/paymentcryptographydata/api_op_GeneratePinData.go @@ -103,10 +103,8 @@ type GeneratePinDataOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. EncryptionKeyCheckValue *string @@ -119,10 +117,8 @@ type GeneratePinDataOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. GenerationKeyCheckValue *string diff --git a/service/paymentcryptographydata/api_op_ReEncryptData.go b/service/paymentcryptographydata/api_op_ReEncryptData.go index cf82fff2cb5..70df0c4cb21 100644 --- a/service/paymentcryptographydata/api_op_ReEncryptData.go +++ b/service/paymentcryptographydata/api_op_ReEncryptData.go @@ -97,10 +97,8 @@ type ReEncryptDataOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. KeyCheckValue *string diff --git a/service/paymentcryptographydata/api_op_TranslatePinData.go b/service/paymentcryptographydata/api_op_TranslatePinData.go index d9372febd31..a717b2b0b1d 100644 --- a/service/paymentcryptographydata/api_op_TranslatePinData.go +++ b/service/paymentcryptographydata/api_op_TranslatePinData.go @@ -20,20 +20,19 @@ import ( // encryption key transformation can be from PEK (Pin Encryption Key) to BDK (Base // Derivation Key) for DUKPT or from BDK for DUKPT to PEK. Amazon Web Services // Payment Cryptography supports TDES and AES key derivation type for DUKPT -// tranlations. You can use this operation for P2PE (Point to Point Encryption) use -// cases where the encryption keys should change but the processing system either -// does not need to, or is not permitted to, decrypt the data. The allowed -// combinations of PIN block format translations are guided by PCI. It is important -// to note that not all encrypted PIN block formats (example, format 1) require PAN -// (Primary Account Number) as input. And as such, PIN block format that requires -// PAN (example, formats 0,3,4) cannot be translated to a format (format 1) that -// does not require a PAN for generation. For information about valid keys for this -// operation, see Understanding key attributes (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html) +// translations. The allowed combinations of PIN block format translations are +// guided by PCI. It is important to note that not all encrypted PIN block formats +// (example, format 1) require PAN (Primary Account Number) as input. And as such, +// PIN block format that requires PAN (example, formats 0,3,4) cannot be translated +// to a format (format 1) that does not require a PAN for generation. For +// information about valid keys for this operation, see Understanding key +// attributes (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html) // and Key types for specific data operations (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html) -// in the Amazon Web Services Payment Cryptography User Guide. At this time, Amazon -// Web Services Payment Cryptography does not support translations to PIN format 4. -// Cross-account use: This operation can't be used across different Amazon Web -// Services accounts. Related operations: +// in the Amazon Web Services Payment Cryptography User Guide. Amazon Web Services +// Payment Cryptography currently supports ISO PIN block 4 translation for PIN +// block built using legacy PAN length. That is, PAN is the right most 12 digits +// excluding the check digits. Cross-account use: This operation can't be used +// across different Amazon Web Services accounts. Related operations: // - GeneratePinData // - VerifyPinData func (c *Client) TranslatePinData(ctx context.Context, params *TranslatePinDataInput, optFns ...func(*Options)) (*TranslatePinDataOutput, error) { @@ -65,7 +64,7 @@ type TranslatePinDataInput struct { // This member is required. IncomingKeyIdentifier *string - // The format of the incoming PIN block data for tranlation within Amazon Web + // The format of the incoming PIN block data for translation within Amazon Web // Services Payment Cryptography. // // This member is required. @@ -77,14 +76,14 @@ type TranslatePinDataInput struct { // This member is required. OutgoingKeyIdentifier *string - // The format of the outgoing PIN block data after tranlation by Amazon Web + // The format of the outgoing PIN block data after translation by Amazon Web // Services Payment Cryptography. // // This member is required. OutgoingTranslationAttributes types.TranslationIsoFormats // The attributes and values to use for incoming DUKPT encryption key for PIN - // block tranlation. + // block translation. IncomingDukptAttributes *types.DukptDerivationAttributes // The attributes and values to use for outgoing DUKPT encryption key after PIN @@ -104,15 +103,13 @@ type TranslatePinDataOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. KeyCheckValue *string - // The ougoing encrypted PIN block data after tranlation. + // The outgoing encrypted PIN block data after translation. // // This member is required. PinBlock *string diff --git a/service/paymentcryptographydata/api_op_VerifyAuthRequestCryptogram.go b/service/paymentcryptographydata/api_op_VerifyAuthRequestCryptogram.go index 2d3c0ed44bc..9ff2aa133c0 100644 --- a/service/paymentcryptographydata/api_op_VerifyAuthRequestCryptogram.go +++ b/service/paymentcryptographydata/api_op_VerifyAuthRequestCryptogram.go @@ -103,10 +103,8 @@ type VerifyAuthRequestCryptogramOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. KeyCheckValue *string diff --git a/service/paymentcryptographydata/api_op_VerifyCardValidationData.go b/service/paymentcryptographydata/api_op_VerifyCardValidationData.go index ee3950e48f7..f98f3c22ef9 100644 --- a/service/paymentcryptographydata/api_op_VerifyCardValidationData.go +++ b/service/paymentcryptographydata/api_op_VerifyCardValidationData.go @@ -85,10 +85,8 @@ type VerifyCardValidationDataOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. KeyCheckValue *string diff --git a/service/paymentcryptographydata/api_op_VerifyMac.go b/service/paymentcryptographydata/api_op_VerifyMac.go index ab28b6df0b2..193aa63f41a 100644 --- a/service/paymentcryptographydata/api_op_VerifyMac.go +++ b/service/paymentcryptographydata/api_op_VerifyMac.go @@ -11,14 +11,13 @@ import ( smithyhttp "github.com/aws/smithy-go/transport/http" ) -// Verifies a Message Authentication Code (MAC). You can use this operation when -// keys won't be shared but mutual data is present on both ends for validation. In -// this case, known data values are used to generate a MAC on both ends for -// verification without sending or receiving data in ciphertext or plaintext. You -// can use this operation to verify a DUPKT, HMAC or EMV MAC by setting generation -// attributes and algorithm to the associated values. Use the same encryption key -// for MAC verification as you use for GenerateMac . For information about valid -// keys for this operation, see Understanding key attributes (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html) +// Verifies a Message Authentication Code (MAC). You can use this operation to +// verify MAC for message data authentication such as . In this operation, you must +// use the same message data, secret encryption key and MAC algorithm that was used +// to generate MAC. You can use this operation to verify a DUPKT, CMAC, HMAC or EMV +// MAC by setting generation attributes and algorithm to the associated values. For +// information about valid keys for this operation, see Understanding key +// attributes (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/keys-validattributes.html) // and Key types for specific data operations (https://docs.aws.amazon.com/payment-cryptography/latest/userguide/crypto-ops-validkeys-ops.html) // in the Amazon Web Services Payment Cryptography User Guide. Cross-account use: // This operation can't be used across different Amazon Web Services accounts. @@ -52,7 +51,7 @@ type VerifyMacInput struct { // This member is required. Mac *string - // The data on for which MAC is under verification. + // The data on for which MAC is under verification. This value must be hexBinary. // // This member is required. MessageData *string @@ -79,10 +78,8 @@ type VerifyMacOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. KeyCheckValue *string diff --git a/service/paymentcryptographydata/api_op_VerifyPinData.go b/service/paymentcryptographydata/api_op_VerifyPinData.go index 63badeddc11..22558eb03d9 100644 --- a/service/paymentcryptographydata/api_op_VerifyPinData.go +++ b/service/paymentcryptographydata/api_op_VerifyPinData.go @@ -101,10 +101,8 @@ type VerifyPinDataOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. EncryptionKeyCheckValue *string @@ -117,10 +115,8 @@ type VerifyPinDataOutput struct { // The key check value (KCV) of the encryption key. The KCV is used to check if // all parties holding a given key have the same key or to detect that a key has - // changed. Amazon Web Services Payment Cryptography calculates the KCV by using - // standard algorithms, typically by encrypting 8 or 16 bytes or "00" or "01" and - // then truncating the result to the first 3 bytes, or 6 hex digits, of the - // resulting cryptogram. + // changed. Amazon Web Services Payment Cryptography computes the KCV according to + // the CMAC specification. // // This member is required. VerificationKeyCheckValue *string diff --git a/service/paymentcryptographydata/endpoints.go b/service/paymentcryptographydata/endpoints.go index 8b70145d0a4..9b39b710b41 100644 --- a/service/paymentcryptographydata/endpoints.go +++ b/service/paymentcryptographydata/endpoints.go @@ -373,7 +373,7 @@ func (r *resolver) ResolveEndpoint( } } if _UseFIPS == true { - if true == _PartitionResult.SupportsFIPS { + if _PartitionResult.SupportsFIPS == true { uriString := func() string { var out strings.Builder out.WriteString("https://dataplane.payment-cryptography-fips.") diff --git a/service/paymentcryptographydata/serializers.go b/service/paymentcryptographydata/serializers.go index dc956ffcaa6..8e99e6a9944 100644 --- a/service/paymentcryptographydata/serializers.go +++ b/service/paymentcryptographydata/serializers.go @@ -1523,6 +1523,43 @@ func awsRestjson1_serializeDocumentDynamicCardVerificationValue(v *types.Dynamic return nil } +func awsRestjson1_serializeDocumentEmvEncryptionAttributes(v *types.EmvEncryptionAttributes, value smithyjson.Value) error { + object := value.Object() + defer object.Close() + + if v.InitializationVector != nil { + ok := object.Key("InitializationVector") + ok.String(*v.InitializationVector) + } + + if len(v.MajorKeyDerivationMode) > 0 { + ok := object.Key("MajorKeyDerivationMode") + ok.String(string(v.MajorKeyDerivationMode)) + } + + if len(v.Mode) > 0 { + ok := object.Key("Mode") + ok.String(string(v.Mode)) + } + + if v.PanSequenceNumber != nil { + ok := object.Key("PanSequenceNumber") + ok.String(*v.PanSequenceNumber) + } + + if v.PrimaryAccountNumber != nil { + ok := object.Key("PrimaryAccountNumber") + ok.String(*v.PrimaryAccountNumber) + } + + if v.SessionDerivationData != nil { + ok := object.Key("SessionDerivationData") + ok.String(*v.SessionDerivationData) + } + + return nil +} + func awsRestjson1_serializeDocumentEncryptionDecryptionAttributes(v types.EncryptionDecryptionAttributes, value smithyjson.Value) error { object := value.Object() defer object.Close() @@ -1540,6 +1577,12 @@ func awsRestjson1_serializeDocumentEncryptionDecryptionAttributes(v types.Encryp return err } + case *types.EncryptionDecryptionAttributesMemberEmv: + av := object.Key("Emv") + if err := awsRestjson1_serializeDocumentEmvEncryptionAttributes(&uv.Value, av); err != nil { + return err + } + case *types.EncryptionDecryptionAttributesMemberSymmetric: av := object.Key("Symmetric") if err := awsRestjson1_serializeDocumentSymmetricEncryptionAttributes(&uv.Value, av); err != nil { diff --git a/service/paymentcryptographydata/types/enums.go b/service/paymentcryptographydata/types/enums.go index a5166120bf0..04dbc45c2ce 100644 --- a/service/paymentcryptographydata/types/enums.go +++ b/service/paymentcryptographydata/types/enums.go @@ -64,6 +64,42 @@ func (DukptKeyVariant) Values() []DukptKeyVariant { } } +type EmvEncryptionMode string + +// Enum values for EmvEncryptionMode +const ( + EmvEncryptionModeEcb EmvEncryptionMode = "ECB" + EmvEncryptionModeCbc EmvEncryptionMode = "CBC" +) + +// Values returns all known values for EmvEncryptionMode. Note that this can be +// expanded in the future, and so it is only as up to date as the client. The +// ordering of this slice is not guaranteed to be stable across updates. +func (EmvEncryptionMode) Values() []EmvEncryptionMode { + return []EmvEncryptionMode{ + "ECB", + "CBC", + } +} + +type EmvMajorKeyDerivationMode string + +// Enum values for EmvMajorKeyDerivationMode +const ( + EmvMajorKeyDerivationModeEmvOptionA EmvMajorKeyDerivationMode = "EMV_OPTION_A" + EmvMajorKeyDerivationModeEmvOptionB EmvMajorKeyDerivationMode = "EMV_OPTION_B" +) + +// Values returns all known values for EmvMajorKeyDerivationMode. Note that this +// can be expanded in the future, and so it is only as up to date as the client. +// The ordering of this slice is not guaranteed to be stable across updates. +func (EmvMajorKeyDerivationMode) Values() []EmvMajorKeyDerivationMode { + return []EmvMajorKeyDerivationMode{ + "EMV_OPTION_A", + "EMV_OPTION_B", + } +} + type EncryptionMode string // Enum values for EncryptionMode diff --git a/service/paymentcryptographydata/types/types.go b/service/paymentcryptographydata/types/types.go index cc1f10fbb37..e446a3fb526 100644 --- a/service/paymentcryptographydata/types/types.go +++ b/service/paymentcryptographydata/types/types.go @@ -434,18 +434,11 @@ type DukptEncryptionAttributes struct { // encryption, or both. DukptKeyVariant DukptKeyVariant - // An input to cryptographic primitive used to provide the intial state. Typically - // the InitializationVector must have a random or psuedo-random value, but - // sometimes it only needs to be unpredictable or unique. If you don't provide a - // value, Amazon Web Services Payment Cryptography generates a random value. + // An input used to provide the intial state. If no value is provided, Amazon Web + // Services Payment Cryptography defaults it to zero. InitializationVector *string - // The block cipher mode of operation. Block ciphers are designed to encrypt a - // block of data of fixed size, for example, 128 bits. The size of the input block - // is usually same as the size of the encrypted output block, while the key length - // can be different. A mode of operation describes how to repeatedly apply a - // cipher's single-block operation to securely transform amounts of data larger - // than a block. The default is CBC. + // The block cipher method to use for encryption. The default is CBC. Mode DukptEncryptionMode noSmithyDocumentSerde @@ -510,12 +503,51 @@ type DynamicCardVerificationValue struct { noSmithyDocumentSerde } +// Parameters for plaintext encryption using EMV keys. +type EmvEncryptionAttributes struct { + + // The EMV derivation mode to use for ICC master key derivation as per EMV version + // 4.3 book 2. + // + // This member is required. + MajorKeyDerivationMode EmvMajorKeyDerivationMode + + // A number that identifies and differentiates payment cards with the same Primary + // Account Number (PAN). + // + // This member is required. + PanSequenceNumber *string + + // The Primary Account Number (PAN), a unique identifier for a payment credit or + // debit card and associates the card to a specific account holder. + // + // This member is required. + PrimaryAccountNumber *string + + // The derivation value used to derive the ICC session key. It is typically the + // application transaction counter value padded with zeros or previous ARQC value + // padded with zeros as per EMV version 4.3 book 2. + // + // This member is required. + SessionDerivationData *string + + // An input used to provide the intial state. If no value is provided, Amazon Web + // Services Payment Cryptography defaults it to zero. + InitializationVector *string + + // The block cipher method to use for encryption. + Mode EmvEncryptionMode + + noSmithyDocumentSerde +} + // Parameters that are required to perform encryption and decryption operations. // // The following types satisfy this interface: // // EncryptionDecryptionAttributesMemberAsymmetric // EncryptionDecryptionAttributesMemberDukpt +// EncryptionDecryptionAttributesMemberEmv // EncryptionDecryptionAttributesMemberSymmetric type EncryptionDecryptionAttributes interface { isEncryptionDecryptionAttributes() @@ -539,6 +571,15 @@ type EncryptionDecryptionAttributesMemberDukpt struct { func (*EncryptionDecryptionAttributesMemberDukpt) isEncryptionDecryptionAttributes() {} +// Parameters for plaintext encryption using EMV keys. +type EncryptionDecryptionAttributesMemberEmv struct { + Value EmvEncryptionAttributes + + noSmithyDocumentSerde +} + +func (*EncryptionDecryptionAttributesMemberEmv) isEncryptionDecryptionAttributes() {} + // Parameters that are required to perform encryption and decryption using // symmetric keys. type EncryptionDecryptionAttributesMemberSymmetric struct { @@ -785,7 +826,7 @@ type MacAttributesMemberDukptIso9797Algorithm1 struct { func (*MacAttributesMemberDukptIso9797Algorithm1) isMacAttributes() {} // Parameters that are required for MAC generation or verification using DUKPT ISO -// 9797 algorithm2. +// 9797 algorithm3. type MacAttributesMemberDukptIso9797Algorithm3 struct { Value MacAlgorithmDukpt @@ -1174,20 +1215,13 @@ type SessionKeyVisa struct { // Parameters requried to encrypt plaintext data using symmetric keys. type SymmetricEncryptionAttributes struct { - // The block cipher mode of operation. Block ciphers are designed to encrypt a - // block of data of fixed size (for example, 128 bits). The size of the input block - // is usually same as the size of the encrypted output block, while the key length - // can be different. A mode of operation describes how to repeatedly apply a - // cipher's single-block operation to securely transform amounts of data larger - // than a block. + // The block cipher method to use for encryption. // // This member is required. Mode EncryptionMode - // An input to cryptographic primitive used to provide the intial state. The - // InitializationVector is typically required have a random or psuedo-random value, - // but sometimes it only needs to be unpredictable or unique. If a value is not - // provided, Amazon Web Services Payment Cryptography generates a random value. + // An input used to provide the intial state. If no value is provided, Amazon Web + // Services Payment Cryptography defaults it to zero. InitializationVector *string // The padding to be included with the data. diff --git a/service/paymentcryptographydata/types/types_exported_test.go b/service/paymentcryptographydata/types/types_exported_test.go index 3fba7001678..38c7b862193 100644 --- a/service/paymentcryptographydata/types/types_exported_test.go +++ b/service/paymentcryptographydata/types/types_exported_test.go @@ -127,6 +127,9 @@ func ExampleEncryptionDecryptionAttributes_outputUsage() { case *types.EncryptionDecryptionAttributesMemberDukpt: _ = v.Value // Value is types.DukptEncryptionAttributes + case *types.EncryptionDecryptionAttributesMemberEmv: + _ = v.Value // Value is types.EmvEncryptionAttributes + case *types.EncryptionDecryptionAttributesMemberSymmetric: _ = v.Value // Value is types.SymmetricEncryptionAttributes @@ -139,6 +142,7 @@ func ExampleEncryptionDecryptionAttributes_outputUsage() { } } +var _ *types.EmvEncryptionAttributes var _ *types.SymmetricEncryptionAttributes var _ *types.AsymmetricEncryptionAttributes var _ *types.DukptEncryptionAttributes diff --git a/service/paymentcryptographydata/validators.go b/service/paymentcryptographydata/validators.go index 5160dfbdab4..2e9b5987d94 100644 --- a/service/paymentcryptographydata/validators.go +++ b/service/paymentcryptographydata/validators.go @@ -635,6 +635,30 @@ func validateDynamicCardVerificationValue(v *types.DynamicCardVerificationValue) } } +func validateEmvEncryptionAttributes(v *types.EmvEncryptionAttributes) error { + if v == nil { + return nil + } + invalidParams := smithy.InvalidParamsError{Context: "EmvEncryptionAttributes"} + if len(v.MajorKeyDerivationMode) == 0 { + invalidParams.Add(smithy.NewErrParamRequired("MajorKeyDerivationMode")) + } + if v.PrimaryAccountNumber == nil { + invalidParams.Add(smithy.NewErrParamRequired("PrimaryAccountNumber")) + } + if v.PanSequenceNumber == nil { + invalidParams.Add(smithy.NewErrParamRequired("PanSequenceNumber")) + } + if v.SessionDerivationData == nil { + invalidParams.Add(smithy.NewErrParamRequired("SessionDerivationData")) + } + if invalidParams.Len() > 0 { + return invalidParams + } else { + return nil + } +} + func validateEncryptionDecryptionAttributes(v types.EncryptionDecryptionAttributes) error { if v == nil { return nil @@ -646,6 +670,11 @@ func validateEncryptionDecryptionAttributes(v types.EncryptionDecryptionAttribut invalidParams.AddNested("[Dukpt]", err.(smithy.InvalidParamsError)) } + case *types.EncryptionDecryptionAttributesMemberEmv: + if err := validateEmvEncryptionAttributes(&uv.Value); err != nil { + invalidParams.AddNested("[Emv]", err.(smithy.InvalidParamsError)) + } + case *types.EncryptionDecryptionAttributesMemberSymmetric: if err := validateSymmetricEncryptionAttributes(&uv.Value); err != nil { invalidParams.AddNested("[Symmetric]", err.(smithy.InvalidParamsError)) diff --git a/service/rds/api_op_CreateDBCluster.go b/service/rds/api_op_CreateDBCluster.go index cdfcf8a633a..cb359513ea5 100644 --- a/service/rds/api_op_CreateDBCluster.go +++ b/service/rds/api_op_CreateDBCluster.go @@ -92,7 +92,8 @@ type CreateDBClusterInput struct { BackupRetentionPeriod *int32 // The CA certificate identifier to use for the DB cluster's server certificate. - // Valid for Cluster Type: Multi-AZ DB clusters + // For more information, see Using SSL/TLS to encrypt a connection to a DB instance (https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.SSL.html) + // in the Amazon RDS User Guide. Valid for Cluster Type: Multi-AZ DB clusters CACertificateIdentifier *string // The name of the character set ( CharacterSet ) to associate the DB cluster with. @@ -487,7 +488,7 @@ type CreateDBClusterInput struct { // Multi-AZ DB cluster, a value for the Iops parameter is required. Valid for // Cluster Type: Aurora DB clusters and Multi-AZ DB clusters Valid Values: // - Aurora DB clusters - aurora | aurora-iopt1 - // - Multi-AZ DB clusters - io1 + // - Multi-AZ DB clusters - io1 | io2 | gp3 // Default: // - Aurora DB clusters - aurora // - Multi-AZ DB clusters - io1 diff --git a/service/rds/api_op_ModifyDBCluster.go b/service/rds/api_op_ModifyDBCluster.go index 7b89461176c..62bd2bcd992 100644 --- a/service/rds/api_op_ModifyDBCluster.go +++ b/service/rds/api_op_ModifyDBCluster.go @@ -95,7 +95,8 @@ type ModifyDBClusterInput struct { BackupRetentionPeriod *int32 // The CA certificate identifier to use for the DB cluster's server certificate. - // Valid for Cluster Type: Multi-AZ DB clusters + // For more information, see Using SSL/TLS to encrypt a connection to a DB instance (https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.SSL.html) + // in the Amazon RDS User Guide. Valid for Cluster Type: Multi-AZ DB clusters CACertificateIdentifier *string // The configuration setting for the log types to be enabled for export to @@ -401,7 +402,7 @@ type ModifyDBClusterInput struct { // required. Valid for Cluster Type: Aurora DB clusters and Multi-AZ DB clusters // Valid Values: // - Aurora DB clusters - aurora | aurora-iopt1 - // - Multi-AZ DB clusters - io1 + // - Multi-AZ DB clusters - io1 | io2 | gp3 // Default: // - Aurora DB clusters - aurora // - Multi-AZ DB clusters - io1 diff --git a/service/rds/api_op_ModifyDBInstance.go b/service/rds/api_op_ModifyDBInstance.go index 10d813e0b0a..7e9b2c9a32f 100644 --- a/service/rds/api_op_ModifyDBInstance.go +++ b/service/rds/api_op_ModifyDBInstance.go @@ -602,7 +602,7 @@ type ModifyDBInstanceInput struct { // DB instances. StorageThroughput *int32 - // The storage type to associate with the DB instance. If you specify io1 ), io2 , + // The storage type to associate with the DB instance. If you specify io1 , io2 , // or gp3 you must also include a value for the Iops parameter. If you choose to // migrate your DB instance from using standard storage to using Provisioned IOPS, // or from using Provisioned IOPS to using standard storage, the process can take diff --git a/service/snowball/types/types.go b/service/snowball/types/types.go index 06d43fe5410..b85df66746b 100644 --- a/service/snowball/types/types.go +++ b/service/snowball/types/types.go @@ -239,7 +239,7 @@ type Ec2AmiResource struct { // on the Snow Family device. type EKSOnDeviceServiceConfiguration struct { - // The version of EKS Anywhere on the Snow Family device. + // The optional version of EKS Anywhere on the Snow Family device. EKSAnywhereVersion *string // The Kubernetes version for EKS Anywhere on the Snow Family device. diff --git a/service/wafv2/api_op_CreateWebACL.go b/service/wafv2/api_op_CreateWebACL.go index 55e939bc1f4..c9b8cf4ad34 100644 --- a/service/wafv2/api_op_CreateWebACL.go +++ b/service/wafv2/api_op_CreateWebACL.go @@ -70,10 +70,13 @@ type CreateWebACLInput struct { // Specifies custom configurations for the associations between the web ACL and // protected resources. Use this to customize the maximum size of the request body - // that your protected CloudFront distributions forward to WAF for inspection. The - // default is 16 KB (16,384 bytes). You are charged additional fees when your - // protected resources forward body sizes that are larger than the default. For - // more information, see WAF Pricing (http://aws.amazon.com/waf/pricing/) . + // that your protected resources forward to WAF for inspection. You can customize + // this setting for CloudFront, API Gateway, Amazon Cognito, App Runner, or + // Verified Access resources. The default setting is 16 KB (16,384 bytes). You are + // charged additional fees when your protected resources forward body sizes that + // are larger than the default. For more information, see WAF Pricing (http://aws.amazon.com/waf/pricing/) + // . For Application Load Balancer and AppSync, the limit is fixed at 8 KB (8,192 + // bytes). AssociationConfig *types.AssociationConfig // Specifies how WAF should handle CAPTCHA evaluations for rules that don't have diff --git a/service/wafv2/api_op_UpdateWebACL.go b/service/wafv2/api_op_UpdateWebACL.go index c23ed97ece7..99d1c575d6f 100644 --- a/service/wafv2/api_op_UpdateWebACL.go +++ b/service/wafv2/api_op_UpdateWebACL.go @@ -108,10 +108,13 @@ type UpdateWebACLInput struct { // Specifies custom configurations for the associations between the web ACL and // protected resources. Use this to customize the maximum size of the request body - // that your protected CloudFront distributions forward to WAF for inspection. The - // default is 16 KB (16,384 bytes). You are charged additional fees when your - // protected resources forward body sizes that are larger than the default. For - // more information, see WAF Pricing (http://aws.amazon.com/waf/pricing/) . + // that your protected resources forward to WAF for inspection. You can customize + // this setting for CloudFront, API Gateway, Amazon Cognito, App Runner, or + // Verified Access resources. The default setting is 16 KB (16,384 bytes). You are + // charged additional fees when your protected resources forward body sizes that + // are larger than the default. For more information, see WAF Pricing (http://aws.amazon.com/waf/pricing/) + // . For Application Load Balancer and AppSync, the limit is fixed at 8 KB (8,192 + // bytes). AssociationConfig *types.AssociationConfig // Specifies how WAF should handle CAPTCHA evaluations for rules that don't have diff --git a/service/wafv2/deserializers.go b/service/wafv2/deserializers.go index 8f0412baa45..203f43e299d 100644 --- a/service/wafv2/deserializers.go +++ b/service/wafv2/deserializers.go @@ -2007,6 +2007,9 @@ func awsAwsjson11_deserializeOpErrorDescribeAllManagedProducts(response *smithyh case strings.EqualFold("WAFInvalidOperationException", errorCode): return awsAwsjson11_deserializeErrorWAFInvalidOperationException(response, errorBody) + case strings.EqualFold("WAFInvalidParameterException", errorCode): + return awsAwsjson11_deserializeErrorWAFInvalidParameterException(response, errorBody) + default: genericError := &smithy.GenericAPIError{ Code: errorCode, @@ -2590,6 +2593,9 @@ func awsAwsjson11_deserializeOpErrorGetDecryptedAPIKey(response *smithyhttp.Resp case strings.EqualFold("WAFInvalidResourceException", errorCode): return awsAwsjson11_deserializeErrorWAFInvalidResourceException(response, errorBody) + case strings.EqualFold("WAFNonexistentItemException", errorCode): + return awsAwsjson11_deserializeErrorWAFNonexistentItemException(response, errorBody) + default: genericError := &smithy.GenericAPIError{ Code: errorCode, @@ -7713,9 +7719,9 @@ func awsAwsjson11_deserializeDocumentAWSManagedRulesBotControlRuleSet(v **types. if value != nil { jtv, ok := value.(bool) if !ok { - return fmt.Errorf("expected Boolean to be of type *bool, got %T instead", value) + return fmt.Errorf("expected EnableMachineLearning to be of type *bool, got %T instead", value) } - sv.EnableMachineLearning = jtv + sv.EnableMachineLearning = ptr.Bool(jtv) } case "InspectionLevel": @@ -15617,6 +15623,15 @@ func awsAwsjson11_deserializeDocumentWAFLimitsExceededException(v **types.WAFLim sv.Message = ptr.String(jtv) } + case "SourceType": + if value != nil { + jtv, ok := value.(string) + if !ok { + return fmt.Errorf("expected SourceType to be of type string, got %T instead", value) + } + sv.SourceType = ptr.String(jtv) + } + default: _, _ = key, value diff --git a/service/wafv2/serializers.go b/service/wafv2/serializers.go index 5c8f528ffd4..eb2fb59d2ef 100644 --- a/service/wafv2/serializers.go +++ b/service/wafv2/serializers.go @@ -3160,9 +3160,9 @@ func awsAwsjson11_serializeDocumentAWSManagedRulesBotControlRuleSet(v *types.AWS object := value.Object() defer object.Close() - if v.EnableMachineLearning { + if v.EnableMachineLearning != nil { ok := object.Key("EnableMachineLearning") - ok.Boolean(v.EnableMachineLearning) + ok.Boolean(*v.EnableMachineLearning) } if len(v.InspectionLevel) > 0 { diff --git a/service/wafv2/types/enums.go b/service/wafv2/types/enums.go index 32e1d3288bb..ce8a4b76d14 100644 --- a/service/wafv2/types/enums.go +++ b/service/wafv2/types/enums.go @@ -32,7 +32,11 @@ type AssociatedResourceType string // Enum values for AssociatedResourceType const ( - AssociatedResourceTypeCloudfront AssociatedResourceType = "CLOUDFRONT" + AssociatedResourceTypeCloudfront AssociatedResourceType = "CLOUDFRONT" + AssociatedResourceTypeApiGateway AssociatedResourceType = "API_GATEWAY" + AssociatedResourceTypeCognitoUserPool AssociatedResourceType = "COGNITO_USER_POOL" + AssociatedResourceTypeAppRunnerService AssociatedResourceType = "APP_RUNNER_SERVICE" + AssociatedResourceTypeVerifiedAccessInstance AssociatedResourceType = "VERIFIED_ACCESS_INSTANCE" ) // Values returns all known values for AssociatedResourceType. Note that this can @@ -41,6 +45,10 @@ const ( func (AssociatedResourceType) Values() []AssociatedResourceType { return []AssociatedResourceType{ "CLOUDFRONT", + "API_GATEWAY", + "COGNITO_USER_POOL", + "APP_RUNNER_SERVICE", + "VERIFIED_ACCESS_INSTANCE", } } diff --git a/service/wafv2/types/errors.go b/service/wafv2/types/errors.go index f3cfb7315e2..7ded895103d 100644 --- a/service/wafv2/types/errors.go +++ b/service/wafv2/types/errors.go @@ -292,6 +292,8 @@ type WAFLimitsExceededException struct { ErrorCodeOverride *string + SourceType *string + noSmithyDocumentSerde } diff --git a/service/wafv2/types/types.go b/service/wafv2/types/types.go index 35f2062c9a4..e10433d8bb1 100644 --- a/service/wafv2/types/types.go +++ b/service/wafv2/types/types.go @@ -115,17 +115,23 @@ type APIKeySummary struct { // Specifies custom configurations for the associations between the web ACL and // protected resources. Use this to customize the maximum size of the request body -// that your protected CloudFront distributions forward to WAF for inspection. The -// default is 16 KB (16,384 bytes). You are charged additional fees when your -// protected resources forward body sizes that are larger than the default. For -// more information, see WAF Pricing (http://aws.amazon.com/waf/pricing/) . +// that your protected resources forward to WAF for inspection. You can customize +// this setting for CloudFront, API Gateway, Amazon Cognito, App Runner, or +// Verified Access resources. The default setting is 16 KB (16,384 bytes). You are +// charged additional fees when your protected resources forward body sizes that +// are larger than the default. For more information, see WAF Pricing (http://aws.amazon.com/waf/pricing/) +// . For Application Load Balancer and AppSync, the limit is fixed at 8 KB (8,192 +// bytes). type AssociationConfig struct { - // Customizes the maximum size of the request body that your protected CloudFront - // distributions forward to WAF for inspection. The default size is 16 KB (16,384 - // bytes). You are charged additional fees when your protected resources forward - // body sizes that are larger than the default. For more information, see WAF - // Pricing (http://aws.amazon.com/waf/pricing/) . + // Customizes the maximum size of the request body that your protected CloudFront, + // API Gateway, Amazon Cognito, App Runner, and Verified Access resources forward + // to WAF for inspection. The default size is 16 KB (16,384 bytes). You can change + // the setting for any of the available resource types. You are charged additional + // fees when your protected resources forward body sizes that are larger than the + // default. For more information, see WAF Pricing (http://aws.amazon.com/waf/pricing/) + // . Example JSON: { "API_GATEWAY": "KB_48", "APP_RUNNER_SERVICE": "KB_32" } For + // Application Load Balancer and AppSync, the limit is fixed at 8 KB (8,192 bytes). RequestBody map[string]RequestBodyAssociatedResourceTypeConfig noSmithyDocumentSerde @@ -244,7 +250,7 @@ type AWSManagedRulesBotControlRuleSet struct { // activity. For more information about this choice, see the listing for these // rules in the table at Bot Control rules listing (https://docs.aws.amazon.com/waf/latest/developerguide/aws-managed-rule-groups-bot.html#aws-managed-rule-groups-bot-rules) // in the WAF Developer Guide. Default: TRUE - EnableMachineLearning bool + EnableMachineLearning *bool noSmithyDocumentSerde } @@ -271,13 +277,16 @@ type Body struct { // What WAF should do if the body is larger than WAF can inspect. WAF does not // support inspecting the entire contents of the web request body if the body - // exceeds the limit for the resource type. If the body is larger than the limit, - // the underlying host service only forwards the contents that are below the limit - // to WAF for inspection. The default limit is 8 KB (8,192 bytes) for regional - // resources and 16 KB (16,384 bytes) for CloudFront distributions. For CloudFront - // distributions, you can increase the limit in the web ACL AssociationConfig , for - // additional processing fees. The options for oversize handling are the following: - // + // exceeds the limit for the resource type. When a web request body is larger than + // the limit, the underlying host service only forwards the contents that are + // within the limit to WAF for inspection. + // - For Application Load Balancer and AppSync, the limit is fixed at 8 KB + // (8,192 bytes). + // - For CloudFront, API Gateway, Amazon Cognito, App Runner, and Verified + // Access, the default limit is 16 KB (16,384 bytes), and you can increase the + // limit for each resource type in the web ACL AssociationConfig , for additional + // processing fees. + // The options for oversize handling are the following: // - CONTINUE - Inspect the available body contents normally, according to the // rule inspection criteria. // - MATCH - Treat the web request as matching the rule statement. WAF applies @@ -728,14 +737,24 @@ type ExcludedRule struct { noSmithyDocumentSerde } -// The part of the web request that you want WAF to inspect. Include the single -// FieldToMatch type that you want to inspect, with additional specifications as -// needed, according to the type. You specify a single request component in -// FieldToMatch for each rule statement that requires it. To inspect more than one -// component of the web request, create a separate rule statement for each -// component. Example JSON for a QueryString field to match: "FieldToMatch": { -// "QueryString": {} } Example JSON for a Method field to match specification: -// "FieldToMatch": { "Method": { "Name": "DELETE" } } +// Specifies a web request component to be used in a rule match statement or in a +// logging configuration. +// - In a rule statement, this is the part of the web request that you want WAF +// to inspect. Include the single FieldToMatch type that you want to inspect, +// with additional specifications as needed, according to the type. You specify a +// single request component in FieldToMatch for each rule statement that requires +// it. To inspect more than one component of the web request, create a separate +// rule statement for each component. Example JSON for a QueryString field to +// match: "FieldToMatch": { "QueryString": {} } Example JSON for a Method field +// to match specification: "FieldToMatch": { "Method": { "Name": "DELETE" } } +// - In a logging configuration, this is used in the RedactedFields property to +// specify a field to redact from the logging records. For this use case, note the +// following: +// - Even though all FieldToMatch settings are available, the only valid settings +// for field redaction are UriPath , QueryString , SingleHeader , and Method . +// - In this documentation, the descriptions of the individual fields talk about +// specifying the web request component to inspect, but for field redaction, you +// are specifying the component type to redact from the logs. type FieldToMatch struct { // Inspect all query arguments. @@ -744,12 +763,18 @@ type FieldToMatch struct { // Inspect the request body as plain text. The request body immediately follows // the request headers. This is the part of a request that contains any additional // data that you want to send to your web server as the HTTP request body, such as - // data from a form. A limited amount of the request body is forwarded to WAF for - // inspection by the underlying host service. For regional resources, the limit is - // 8 KB (8,192 bytes) and for CloudFront distributions, the limit is 16 KB (16,384 - // bytes). For CloudFront distributions, you can increase the limit in the web - // ACL's AssociationConfig , for additional processing fees. For information about - // how to handle oversized request bodies, see the Body object configuration. + // data from a form. WAF does not support inspecting the entire contents of the web + // request body if the body exceeds the limit for the resource type. When a web + // request body is larger than the limit, the underlying host service only forwards + // the contents that are within the limit to WAF for inspection. + // - For Application Load Balancer and AppSync, the limit is fixed at 8 KB + // (8,192 bytes). + // - For CloudFront, API Gateway, Amazon Cognito, App Runner, and Verified + // Access, the default limit is 16 KB (16,384 bytes), and you can increase the + // limit for each resource type in the web ACL AssociationConfig , for additional + // processing fees. + // For information about how to handle oversized request bodies, see the Body + // object configuration. Body *Body // Inspect the request cookies. You must configure scope and pattern matching @@ -795,12 +820,18 @@ type FieldToMatch struct { // Inspect the request body as JSON. The request body immediately follows the // request headers. This is the part of a request that contains any additional data // that you want to send to your web server as the HTTP request body, such as data - // from a form. A limited amount of the request body is forwarded to WAF for - // inspection by the underlying host service. For regional resources, the limit is - // 8 KB (8,192 bytes) and for CloudFront distributions, the limit is 16 KB (16,384 - // bytes). For CloudFront distributions, you can increase the limit in the web - // ACL's AssociationConfig , for additional processing fees. For information about - // how to handle oversized request bodies, see the JsonBody object configuration. + // from a form. WAF does not support inspecting the entire contents of the web + // request body if the body exceeds the limit for the resource type. When a web + // request body is larger than the limit, the underlying host service only forwards + // the contents that are within the limit to WAF for inspection. + // - For Application Load Balancer and AppSync, the limit is fixed at 8 KB + // (8,192 bytes). + // - For CloudFront, API Gateway, Amazon Cognito, App Runner, and Verified + // Access, the default limit is 16 KB (16,384 bytes), and you can increase the + // limit for each resource type in the web ACL AssociationConfig , for additional + // processing fees. + // For information about how to handle oversized request bodies, see the JsonBody + // object configuration. JsonBody *JsonBody // Inspect the HTTP method. The method indicates the type of operation that the @@ -1381,13 +1412,16 @@ type JsonBody struct { // What WAF should do if the body is larger than WAF can inspect. WAF does not // support inspecting the entire contents of the web request body if the body - // exceeds the limit for the resource type. If the body is larger than the limit, - // the underlying host service only forwards the contents that are below the limit - // to WAF for inspection. The default limit is 8 KB (8,192 bytes) for regional - // resources and 16 KB (16,384 bytes) for CloudFront distributions. For CloudFront - // distributions, you can increase the limit in the web ACL AssociationConfig , for - // additional processing fees. The options for oversize handling are the following: - // + // exceeds the limit for the resource type. When a web request body is larger than + // the limit, the underlying host service only forwards the contents that are + // within the limit to WAF for inspection. + // - For Application Load Balancer and AppSync, the limit is fixed at 8 KB + // (8,192 bytes). + // - For CloudFront, API Gateway, Amazon Cognito, App Runner, and Verified + // Access, the default limit is 16 KB (16,384 bytes), and you can increase the + // limit for each resource type in the web ACL AssociationConfig , for additional + // processing fees. + // The options for oversize handling are the following: // - CONTINUE - Inspect the available body contents normally, according to the // rule inspection criteria. // - MATCH - Treat the web request as matching the rule statement. WAF applies @@ -2110,14 +2144,16 @@ type QueryString struct { // A rate-based rule counts incoming requests and rate limits requests when they // are coming at too fast a rate. The rule categorizes requests according to your // aggregation criteria, collects them into aggregation instances, and counts and -// rate limits the requests for each instance. You can specify individual -// aggregation keys, like IP address or HTTP method. You can also specify -// aggregation key combinations, like IP address and HTTP method, or HTTP method, -// query argument, and cookie. Each unique set of values for the aggregation keys -// that you specify is a separate aggregation instance, with the value from each -// key contributing to the aggregation instance definition. For example, assume the -// rule evaluates web requests with the following IP address and HTTP method -// values: +// rate limits the requests for each instance. If you change any of these settings +// in a rule that's currently in use, the change resets the rule's rate limiting +// counts. This can pause the rule's rate limiting activities for up to a minute. +// You can specify individual aggregation keys, like IP address or HTTP method. You +// can also specify aggregation key combinations, like IP address and HTTP method, +// or HTTP method, query argument, and cookie. Each unique set of values for the +// aggregation keys that you specify is a separate aggregation instance, with the +// value from each key contributing to the aggregation instance definition. For +// example, assume the rule evaluates web requests with the following IP address +// and HTTP method values: // - IP address 10.1.1.1, HTTP method POST // - IP address 10.1.1.1, HTTP method GET // - IP address 127.0.0.0, HTTP method POST @@ -2645,18 +2681,21 @@ type ReleaseSummary struct { noSmithyDocumentSerde } -// Customizes the maximum size of the request body that your protected CloudFront -// distributions forward to WAF for inspection. The default size is 16 KB (16,384 -// bytes). You are charged additional fees when your protected resources forward -// body sizes that are larger than the default. For more information, see WAF -// Pricing (http://aws.amazon.com/waf/pricing/) . This is used in the -// AssociationConfig of the web ACL. +// Customizes the maximum size of the request body that your protected CloudFront, +// API Gateway, Amazon Cognito, App Runner, and Verified Access resources forward +// to WAF for inspection. The default size is 16 KB (16,384 bytes). You can change +// the setting for any of the available resource types. You are charged additional +// fees when your protected resources forward body sizes that are larger than the +// default. For more information, see WAF Pricing (http://aws.amazon.com/waf/pricing/) +// . Example JSON: { "API_GATEWAY": "KB_48", "APP_RUNNER_SERVICE": "KB_32" } For +// Application Load Balancer and AppSync, the limit is fixed at 8 KB (8,192 bytes). +// This is used in the AssociationConfig of the web ACL. type RequestBodyAssociatedResourceTypeConfig struct { // Specifies the maximum size of the web request body component that an associated - // CloudFront distribution should send to WAF for inspection. This applies to - // statements in the web ACL that inspect the body or JSON body. Default: 16 KB - // (16,384 bytes) + // CloudFront, API Gateway, Amazon Cognito, App Runner, or Verified Access resource + // should send to WAF for inspection. This applies to statements in the web ACL + // that inspect the body or JSON body. Default: 16 KB (16,384 bytes) // // This member is required. DefaultSizeInspectionLimit SizeInspectionLimit @@ -3341,15 +3380,14 @@ type SingleQueryArgument struct { // component, using a comparison operator, such as greater than (>) or less than // (<). For example, you can use a size constraint statement to look for query // strings that are longer than 100 bytes. If you configure WAF to inspect the -// request body, WAF inspects only the number of bytes of the body up to the limit -// for the web ACL. By default, for regional web ACLs, this limit is 8 KB (8,192 -// bytes) and for CloudFront web ACLs, this limit is 16 KB (16,384 bytes). For -// CloudFront web ACLs, you can increase the limit in the web ACL AssociationConfig -// , for additional fees. If you know that the request body for your web requests -// should never exceed the inspection limit, you could use a size constraint -// statement to block requests that have a larger request body size. If you choose -// URI for the value of Part of the request to filter on, the slash (/) in the URI -// counts as one character. For example, the URI /logo.jpg is nine characters long. +// request body, WAF inspects only the number of bytes in the body up to the limit +// for the web ACL and protected resource type. If you know that the request body +// for your web requests should never exceed the inspection limit, you can use a +// size constraint statement to block requests that have a larger request body +// size. For more information about the inspection limits, see Body and JsonBody +// settings for the FieldToMatch data type. If you choose URI for the value of +// Part of the request to filter on, the slash (/) in the URI counts as one +// character. For example, the URI /logo.jpg is nine characters long. type SizeConstraintStatement struct { // The operator to use to compare the request part to the size setting. @@ -3501,14 +3539,16 @@ type Statement struct { // A rate-based rule counts incoming requests and rate limits requests when they // are coming at too fast a rate. The rule categorizes requests according to your // aggregation criteria, collects them into aggregation instances, and counts and - // rate limits the requests for each instance. You can specify individual - // aggregation keys, like IP address or HTTP method. You can also specify - // aggregation key combinations, like IP address and HTTP method, or HTTP method, - // query argument, and cookie. Each unique set of values for the aggregation keys - // that you specify is a separate aggregation instance, with the value from each - // key contributing to the aggregation instance definition. For example, assume the - // rule evaluates web requests with the following IP address and HTTP method - // values: + // rate limits the requests for each instance. If you change any of these settings + // in a rule that's currently in use, the change resets the rule's rate limiting + // counts. This can pause the rule's rate limiting activities for up to a minute. + // You can specify individual aggregation keys, like IP address or HTTP method. You + // can also specify aggregation key combinations, like IP address and HTTP method, + // or HTTP method, query argument, and cookie. Each unique set of values for the + // aggregation keys that you specify is a separate aggregation instance, with the + // value from each key contributing to the aggregation instance definition. For + // example, assume the rule evaluates web requests with the following IP address + // and HTTP method values: // - IP address 10.1.1.1, HTTP method POST // - IP address 10.1.1.1, HTTP method GET // - IP address 127.0.0.0, HTTP method POST @@ -3588,15 +3628,14 @@ type Statement struct { // component, using a comparison operator, such as greater than (>) or less than // (<). For example, you can use a size constraint statement to look for query // strings that are longer than 100 bytes. If you configure WAF to inspect the - // request body, WAF inspects only the number of bytes of the body up to the limit - // for the web ACL. By default, for regional web ACLs, this limit is 8 KB (8,192 - // bytes) and for CloudFront web ACLs, this limit is 16 KB (16,384 bytes). For - // CloudFront web ACLs, you can increase the limit in the web ACL AssociationConfig - // , for additional fees. If you know that the request body for your web requests - // should never exceed the inspection limit, you could use a size constraint - // statement to block requests that have a larger request body size. If you choose - // URI for the value of Part of the request to filter on, the slash (/) in the URI - // counts as one character. For example, the URI /logo.jpg is nine characters long. + // request body, WAF inspects only the number of bytes in the body up to the limit + // for the web ACL and protected resource type. If you know that the request body + // for your web requests should never exceed the inspection limit, you can use a + // size constraint statement to block requests that have a larger request body + // size. For more information about the inspection limits, see Body and JsonBody + // settings for the FieldToMatch data type. If you choose URI for the value of + // Part of the request to filter on, the slash (/) in the URI counts as one + // character. For example, the URI /logo.jpg is nine characters long. SizeConstraintStatement *SizeConstraintStatement // A rule statement that inspects for malicious SQL code. Attackers insert @@ -3844,10 +3883,13 @@ type WebACL struct { // Specifies custom configurations for the associations between the web ACL and // protected resources. Use this to customize the maximum size of the request body - // that your protected CloudFront distributions forward to WAF for inspection. The - // default is 16 KB (16,384 bytes). You are charged additional fees when your - // protected resources forward body sizes that are larger than the default. For - // more information, see WAF Pricing (http://aws.amazon.com/waf/pricing/) . + // that your protected resources forward to WAF for inspection. You can customize + // this setting for CloudFront, API Gateway, Amazon Cognito, App Runner, or + // Verified Access resources. The default setting is 16 KB (16,384 bytes). You are + // charged additional fees when your protected resources forward body sizes that + // are larger than the default. For more information, see WAF Pricing (http://aws.amazon.com/waf/pricing/) + // . For Application Load Balancer and AppSync, the limit is fixed at 8 KB (8,192 + // bytes). AssociationConfig *AssociationConfig // The web ACL capacity units (WCUs) currently being used by this web ACL. WAF diff --git a/service/workspaces/api_op_CreateWorkspaces.go b/service/workspaces/api_op_CreateWorkspaces.go index 730fd17a5ae..ad3918705fc 100644 --- a/service/workspaces/api_op_CreateWorkspaces.go +++ b/service/workspaces/api_op_CreateWorkspaces.go @@ -19,6 +19,7 @@ import ( // . // - You don't need to specify the PCOIP protocol for Linux bundles because WSP // is the default protocol for those bundles. +// - User-decoupled WorkSpaces are only supported by Amazon WorkSpaces Core. func (c *Client) CreateWorkspaces(ctx context.Context, params *CreateWorkspacesInput, optFns ...func(*Options)) (*CreateWorkspacesOutput, error) { if params == nil { params = &CreateWorkspacesInput{} diff --git a/service/workspaces/api_op_RebootWorkspaces.go b/service/workspaces/api_op_RebootWorkspaces.go index 0b8bbbfee2a..d2208aa3198 100644 --- a/service/workspaces/api_op_RebootWorkspaces.go +++ b/service/workspaces/api_op_RebootWorkspaces.go @@ -12,8 +12,10 @@ import ( ) // Reboots the specified WorkSpaces. You cannot reboot a WorkSpace unless its -// state is AVAILABLE or UNHEALTHY . This operation is asynchronous and returns -// before the WorkSpaces have rebooted. +// state is AVAILABLE , UNHEALTHY , or REBOOTING . Reboot a WorkSpace in the +// REBOOTING state only if your WorkSpace has been stuck in the REBOOTING state +// for over 20 minutes. This operation is asynchronous and returns before the +// WorkSpaces have rebooted. func (c *Client) RebootWorkspaces(ctx context.Context, params *RebootWorkspacesInput, optFns ...func(*Options)) (*RebootWorkspacesOutput, error) { if params == nil { params = &RebootWorkspacesInput{} diff --git a/service/workspaces/types/types.go b/service/workspaces/types/types.go index 5751b899724..dbdf679e2a2 100644 --- a/service/workspaces/types/types.go +++ b/service/workspaces/types/types.go @@ -907,10 +907,32 @@ type Workspace struct { // The properties of the standby WorkSpace StandbyWorkspacesProperties []StandbyWorkspacesProperties - // The operational state of the WorkSpace. After a WorkSpace is terminated, the - // TERMINATED state is returned only briefly before the WorkSpace directory - // metadata is cleaned up, so this state is rarely returned. To confirm that a - // WorkSpace is terminated, check for the WorkSpace ID by using DescribeWorkSpaces (https://docs.aws.amazon.com/workspaces/latest/api/API_DescribeWorkspaces.html) + // The operational state of the WorkSpace. + // - PENDING – The WorkSpace is in a waiting state (for example, the WorkSpace is + // being created). + // - AVAILABLE – The WorkSpace is running and has passed the health checks. + // - IMPAIRED – Refer to UNHEALTHY state. + // - UNHEALTHY – The WorkSpace is not responding to health checks. + // - REBOOTING – The WorkSpace is being rebooted (restarted). + // - STARTING – The WorkSpace is starting up and health checks are being run. + // - REBUILDING – The WorkSpace is being rebuilt. + // - RESTORING – The WorkSpace is being restored. + // - MAINTENANCE – The WorkSpace is undergoing scheduled maintenance by Amazon + // Web Services. + // - ADMIN_MAINTENANCE – The WorkSpace is undergoing maintenance by the + // WorkSpaces administrator. + // - TERMINATING – The WorkSpace is being deleted. + // - TERMINATED – The WorkSpace has been deleted. + // - SUSPENDED – The WorkSpace has been suspended for image creation. + // - UPDATING – The WorkSpace is undergoing an update. + // - STOPPING – The WorkSpace is being stopped. + // - STOPPED – The WorkSpace has been stopped. + // - ERROR – The WorkSpace is an error state (for example, an error occurred + // during startup). + // After a WorkSpace is terminated, the TERMINATED state is returned only briefly + // before the WorkSpace directory metadata is cleaned up, so this state is rarely + // returned. To confirm that a WorkSpace is terminated, check for the WorkSpace ID + // by using DescribeWorkSpaces (https://docs.aws.amazon.com/workspaces/latest/api/API_DescribeWorkspaces.html) // . If the WorkSpace ID isn't returned, then the WorkSpace has been successfully // terminated. State WorkspaceState