diff --git a/clients/client-workspaces-web/src/commands/CreatePortalCommand.ts b/clients/client-workspaces-web/src/commands/CreatePortalCommand.ts index 33273ddf577e5..aab4e56b6fd34 100644 --- a/clients/client-workspaces-web/src/commands/CreatePortalCommand.ts +++ b/clients/client-workspaces-web/src/commands/CreatePortalCommand.ts @@ -48,6 +48,8 @@ export interface CreatePortalCommandOutput extends CreatePortalResponse, __Metad * }, * clientToken: "STRING_VALUE", * authenticationType: "STRING_VALUE", + * instanceType: "STRING_VALUE", + * maxConcurrentSessions: Number("int"), * }; * const command = new CreatePortalCommand(input); * const response = await client.send(command); diff --git a/clients/client-workspaces-web/src/commands/GetBrowserSettingsCommand.ts b/clients/client-workspaces-web/src/commands/GetBrowserSettingsCommand.ts index de960d5a5bba5..757fb46bd8415 100644 --- a/clients/client-workspaces-web/src/commands/GetBrowserSettingsCommand.ts +++ b/clients/client-workspaces-web/src/commands/GetBrowserSettingsCommand.ts @@ -50,6 +50,10 @@ export interface GetBrowserSettingsCommandOutput extends GetBrowserSettingsRespo * // "STRING_VALUE", * // ], * // browserPolicy: "STRING_VALUE", + * // customerManagedKey: "STRING_VALUE", + * // additionalEncryptionContext: { // EncryptionContextMap + * // "": "STRING_VALUE", + * // }, * // }, * // }; * diff --git a/clients/client-workspaces-web/src/commands/GetIpAccessSettingsCommand.ts b/clients/client-workspaces-web/src/commands/GetIpAccessSettingsCommand.ts index 48a50c787a989..56fefe0921bec 100644 --- a/clients/client-workspaces-web/src/commands/GetIpAccessSettingsCommand.ts +++ b/clients/client-workspaces-web/src/commands/GetIpAccessSettingsCommand.ts @@ -58,6 +58,10 @@ export interface GetIpAccessSettingsCommandOutput extends GetIpAccessSettingsRes * // displayName: "STRING_VALUE", * // description: "STRING_VALUE", * // creationDate: new Date("TIMESTAMP"), + * // customerManagedKey: "STRING_VALUE", + * // additionalEncryptionContext: { // EncryptionContextMap + * // "": "STRING_VALUE", + * // }, * // }, * // }; * diff --git a/clients/client-workspaces-web/src/commands/GetPortalCommand.ts b/clients/client-workspaces-web/src/commands/GetPortalCommand.ts index c0a1a03d31cb1..d0fabe5ef33a3 100644 --- a/clients/client-workspaces-web/src/commands/GetPortalCommand.ts +++ b/clients/client-workspaces-web/src/commands/GetPortalCommand.ts @@ -56,6 +56,12 @@ export interface GetPortalCommandOutput extends GetPortalResponse, __MetadataBea * // userAccessLoggingSettingsArn: "STRING_VALUE", * // authenticationType: "STRING_VALUE", * // ipAccessSettingsArn: "STRING_VALUE", + * // customerManagedKey: "STRING_VALUE", + * // additionalEncryptionContext: { // EncryptionContextMap + * // "": "STRING_VALUE", + * // }, + * // instanceType: "STRING_VALUE", + * // maxConcurrentSessions: Number("int"), * // }, * // }; * diff --git a/clients/client-workspaces-web/src/commands/GetUserSettingsCommand.ts b/clients/client-workspaces-web/src/commands/GetUserSettingsCommand.ts index 1dcbdefd1b226..97d3a7198ed5c 100644 --- a/clients/client-workspaces-web/src/commands/GetUserSettingsCommand.ts +++ b/clients/client-workspaces-web/src/commands/GetUserSettingsCommand.ts @@ -72,6 +72,10 @@ export interface GetUserSettingsCommandOutput extends GetUserSettingsResponse, _ * // }, * // ], * // }, + * // customerManagedKey: "STRING_VALUE", + * // additionalEncryptionContext: { // EncryptionContextMap + * // "": "STRING_VALUE", + * // }, * // }, * // }; * diff --git a/clients/client-workspaces-web/src/commands/ListPortalsCommand.ts b/clients/client-workspaces-web/src/commands/ListPortalsCommand.ts index bdfeb013272b0..5c602d3aee521 100644 --- a/clients/client-workspaces-web/src/commands/ListPortalsCommand.ts +++ b/clients/client-workspaces-web/src/commands/ListPortalsCommand.ts @@ -57,6 +57,8 @@ export interface ListPortalsCommandOutput extends ListPortalsResponse, __Metadat * // userAccessLoggingSettingsArn: "STRING_VALUE", * // authenticationType: "STRING_VALUE", * // ipAccessSettingsArn: "STRING_VALUE", + * // instanceType: "STRING_VALUE", + * // maxConcurrentSessions: Number("int"), * // }, * // ], * // nextToken: "STRING_VALUE", diff --git a/clients/client-workspaces-web/src/commands/UpdateBrowserSettingsCommand.ts b/clients/client-workspaces-web/src/commands/UpdateBrowserSettingsCommand.ts index 39de8cfb59f7c..1d8f4d289b34e 100644 --- a/clients/client-workspaces-web/src/commands/UpdateBrowserSettingsCommand.ts +++ b/clients/client-workspaces-web/src/commands/UpdateBrowserSettingsCommand.ts @@ -53,6 +53,10 @@ export interface UpdateBrowserSettingsCommandOutput extends UpdateBrowserSetting * // "STRING_VALUE", * // ], * // browserPolicy: "STRING_VALUE", + * // customerManagedKey: "STRING_VALUE", + * // additionalEncryptionContext: { // EncryptionContextMap + * // "": "STRING_VALUE", + * // }, * // }, * // }; * diff --git a/clients/client-workspaces-web/src/commands/UpdateIpAccessSettingsCommand.ts b/clients/client-workspaces-web/src/commands/UpdateIpAccessSettingsCommand.ts index c8403ebf43867..d1d6fec9a899f 100644 --- a/clients/client-workspaces-web/src/commands/UpdateIpAccessSettingsCommand.ts +++ b/clients/client-workspaces-web/src/commands/UpdateIpAccessSettingsCommand.ts @@ -68,6 +68,10 @@ export interface UpdateIpAccessSettingsCommandOutput extends UpdateIpAccessSetti * // displayName: "STRING_VALUE", * // description: "STRING_VALUE", * // creationDate: new Date("TIMESTAMP"), + * // customerManagedKey: "STRING_VALUE", + * // additionalEncryptionContext: { // EncryptionContextMap + * // "": "STRING_VALUE", + * // }, * // }, * // }; * diff --git a/clients/client-workspaces-web/src/commands/UpdatePortalCommand.ts b/clients/client-workspaces-web/src/commands/UpdatePortalCommand.ts index 8a41960d1d260..44ed225fa7da3 100644 --- a/clients/client-workspaces-web/src/commands/UpdatePortalCommand.ts +++ b/clients/client-workspaces-web/src/commands/UpdatePortalCommand.ts @@ -43,6 +43,8 @@ export interface UpdatePortalCommandOutput extends UpdatePortalResponse, __Metad * portalArn: "STRING_VALUE", // required * displayName: "STRING_VALUE", * authenticationType: "STRING_VALUE", + * instanceType: "STRING_VALUE", + * maxConcurrentSessions: Number("int"), * }; * const command = new UpdatePortalCommand(input); * const response = await client.send(command); @@ -63,6 +65,12 @@ export interface UpdatePortalCommandOutput extends UpdatePortalResponse, __Metad * // userAccessLoggingSettingsArn: "STRING_VALUE", * // authenticationType: "STRING_VALUE", * // ipAccessSettingsArn: "STRING_VALUE", + * // customerManagedKey: "STRING_VALUE", + * // additionalEncryptionContext: { // EncryptionContextMap + * // "": "STRING_VALUE", + * // }, + * // instanceType: "STRING_VALUE", + * // maxConcurrentSessions: Number("int"), * // }, * // }; * @@ -86,6 +94,9 @@ export interface UpdatePortalCommandOutput extends UpdatePortalResponse, __Metad * @throws {@link ResourceNotFoundException} (client fault) *

The resource cannot be found.

* + * @throws {@link ServiceQuotaExceededException} (client fault) + *

The service quota has been exceeded.

+ * * @throws {@link ThrottlingException} (client fault) *

There is a throttling error.

* diff --git a/clients/client-workspaces-web/src/commands/UpdateUserSettingsCommand.ts b/clients/client-workspaces-web/src/commands/UpdateUserSettingsCommand.ts index bc11f8fea8ca6..f0185a36b48fd 100644 --- a/clients/client-workspaces-web/src/commands/UpdateUserSettingsCommand.ts +++ b/clients/client-workspaces-web/src/commands/UpdateUserSettingsCommand.ts @@ -97,6 +97,10 @@ export interface UpdateUserSettingsCommandOutput extends UpdateUserSettingsRespo * // }, * // ], * // }, + * // customerManagedKey: "STRING_VALUE", + * // additionalEncryptionContext: { // EncryptionContextMap + * // "": "STRING_VALUE", + * // }, * // }, * // }; * diff --git a/clients/client-workspaces-web/src/models/models_0.ts b/clients/client-workspaces-web/src/models/models_0.ts index 735437c0c30a2..e38e70f2c545f 100644 --- a/clients/client-workspaces-web/src/models/models_0.ts +++ b/clients/client-workspaces-web/src/models/models_0.ts @@ -497,7 +497,7 @@ export interface CreateBrowserSettingsRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token returns the result from the original successful request.

- *

If you do not specify a client token, one is automatically generated by the AWS SDK.

+ *

If you do not specify a client token, one is automatically generated by the Amazon Web Services SDK.

* @public */ clientToken?: string; @@ -614,6 +614,18 @@ export interface BrowserSettings { * @public */ browserPolicy?: string; + + /** + *

The customer managed key used to encrypt sensitive information in the browser settings.

+ * @public + */ + customerManagedKey?: string; + + /** + *

The additional encryption context of the browser settings.

+ * @public + */ + additionalEncryptionContext?: Record; } /** @@ -695,7 +707,7 @@ export interface UpdateBrowserSettingsRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token return the result from the original successful request.

- *

If you do not specify a client token, one is automatically generated by the AWS + *

If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

* @public */ @@ -904,6 +916,22 @@ export interface CreateIdentityProviderRequest { * optional *

* + *
  • + *

    + * IDPInit (boolean) optional + *

    + *
    • + *
  • + *

    + * RequestSigningAlgorithm (string) optional + * - Only accepts rsa-sha256 + *

    + *
    • + *
  • + *

    + * EncryptedResponses (boolean) optional + *

    + *
    • * * * @@ -916,7 +944,7 @@ export interface CreateIdentityProviderRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token returns the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -1131,8 +1159,23 @@ export interface IdentityProvider { * *
  • *

    - * IDPSignout - * optional + * IDPSignout (boolean) optional + *

    + *
    • + *
  • + *

    + * IDPInit (boolean) optional + *

    + *
    • + *
  • + *

    + * RequestSigningAlgorithm (string) optional + * - Only accepts rsa-sha256 + *

    + *
    • + *
  • + *

    + * EncryptedResponses (boolean) optional *

    *
    • * @@ -1387,8 +1430,23 @@ export interface UpdateIdentityProviderRequest { * *
  • *

    - * IDPSignout (boolean) - * optional + * IDPSignout (boolean) optional + *

    + *
    • + *
  • + *

    + * IDPInit (boolean) optional + *

    + *
    • + *
  • + *

    + * RequestSigningAlgorithm (string) optional + * - Only accepts rsa-sha256 + *

    + *
    • + *
  • + *

    + * EncryptedResponses (boolean) optional *

    *
    • * @@ -1403,7 +1461,7 @@ export interface UpdateIdentityProviderRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token return the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -1484,7 +1542,7 @@ export interface CreateIpAccessSettingsRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token returns the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -1569,6 +1627,18 @@ export interface IpAccessSettings { * @public */ creationDate?: Date; + + /** + *

    The customer managed key used to encrypt sensitive information in the IP access settings.

    + * @public + */ + customerManagedKey?: string; + + /** + *

    The additional encryption context of the IP access settings.

    + * @public + */ + additionalEncryptionContext?: Record; } /** @@ -1679,7 +1749,7 @@ export interface UpdateIpAccessSettingsRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token return the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -1752,7 +1822,7 @@ export interface CreateNetworkSettingsRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token returns the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -1931,7 +2001,7 @@ export interface UpdateNetworkSettingsRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token return the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -1962,6 +2032,21 @@ export const BrowserType = { */ export type BrowserType = (typeof BrowserType)[keyof typeof BrowserType]; +/** + * @public + * @enum + */ +export const _InstanceType = { + STANDARD_LARGE: "standard.large", + STANDARD_REGULAR: "standard.regular", + STANDARD_XLARGE: "standard.xlarge", +} as const; + +/** + * @public + */ +export type _InstanceType = (typeof _InstanceType)[keyof typeof _InstanceType]; + /** * @public */ @@ -1995,7 +2080,7 @@ export interface CreatePortalRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token returns the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -2010,14 +2095,24 @@ export interface CreatePortalRequest { * provider with your web portal. User and group access to your web portal is controlled * through your identity provider.

    *

    - * IAM_Identity_Center web portals are authenticated through AWS IAM Identity - * Center (successor to AWS Single Sign-On). They provide additional features, such as - * IdP-initiated authentication. Identity sources (including external identity provider - * integration), plus user and group access to your web portal, can be configured in the IAM - * Identity Center.

    + * IAM Identity Center web portals are authenticated through IAM Identity Center (successor to Single Sign-On). Identity sources (including + * external identity provider integration), plus user and group access to your web portal, + * can be configured in the IAM Identity Center.

    * @public */ authenticationType?: AuthenticationType; + + /** + *

    The type and resources of the underlying instance.

    + * @public + */ + instanceType?: _InstanceType; + + /** + *

    The maximum number of concurrent sessions for the portal.

    + * @public + */ + maxConcurrentSessions?: number; } /** @@ -2281,11 +2376,9 @@ export interface Portal { * provider with your web portal. User and group access to your web portal is controlled * through your identity provider.

    *

    - * IAM_Identity_Center web portals are authenticated through AWS IAM Identity - * Center (successor to AWS Single Sign-On). They provide additional features, such as - * IdP-initiated authentication. Identity sources (including external identity provider - * integration), plus user and group access to your web portal, can be configured in the IAM - * Identity Center.

    + * IAM Identity Center web portals are authenticated through IAM Identity Center (successor to Single Sign-On). Identity sources (including + * external identity provider integration), plus user and group access to your web portal, + * can be configured in the IAM Identity Center.

    * @public */ authenticationType?: AuthenticationType; @@ -2295,6 +2388,30 @@ export interface Portal { * @public */ ipAccessSettingsArn?: string; + + /** + *

    The customer managed key used to encrypt sensitive information in the portal.

    + * @public + */ + customerManagedKey?: string; + + /** + *

    The additional encryption context of the portal.

    + * @public + */ + additionalEncryptionContext?: Record; + + /** + *

    The type and resources of the underlying instance.

    + * @public + */ + instanceType?: _InstanceType; + + /** + *

    The maximum number of concurrent sessions for the portal.

    + * @public + */ + maxConcurrentSessions?: number; } /** @@ -2440,11 +2557,9 @@ export interface PortalSummary { * provider with your web portal. User and group access to your web portal is controlled * through your identity provider.

    *

    - * IAM_Identity_Center web portals are authenticated through AWS IAM Identity - * Center (successor to AWS Single Sign-On). They provide additional features, such as - * IdP-initiated authentication. Identity sources (including external identity provider - * integration), plus user and group access to your web portal, can be configured in the IAM - * Identity Center.

    + * IAM Identity Center web portals are authenticated through IAM Identity Center (successor to Single Sign-On). Identity sources (including + * external identity provider integration), plus user and group access to your web portal, + * can be configured in the IAM Identity Center.

    * @public */ authenticationType?: AuthenticationType; @@ -2454,6 +2569,18 @@ export interface PortalSummary { * @public */ ipAccessSettingsArn?: string; + + /** + *

    The type and resources of the underlying instance.

    + * @public + */ + instanceType?: _InstanceType; + + /** + *

    The maximum number of concurrent sessions for the portal.

    + * @public + */ + maxConcurrentSessions?: number; } /** @@ -2498,14 +2625,24 @@ export interface UpdatePortalRequest { * provider with your web portal. User and group access to your web portal is controlled * through your identity provider.

    *

    - * IAM_Identity_Center web portals are authenticated through AWS IAM Identity - * Center (successor to AWS Single Sign-On). They provide additional features, such as - * IdP-initiated authentication. Identity sources (including external identity provider - * integration), plus user and group access to your web portal, can be configured in the IAM - * Identity Center.

    + * IAM Identity Center web portals are authenticated through IAM Identity Center (successor to Single Sign-On). Identity sources (including + * external identity provider integration), plus user and group access to your web portal, + * can be configured in the IAM Identity Center.

    * @public */ authenticationType?: AuthenticationType; + + /** + *

    The type and resources of the underlying instance.

    + * @public + */ + instanceType?: _InstanceType; + + /** + *

    The maximum number of concurrent sessions for the portal.

    + * @public + */ + maxConcurrentSessions?: number; } /** @@ -2540,7 +2677,7 @@ export interface TagResourceRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token returns the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -2636,7 +2773,7 @@ export interface CreateTrustStoreRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token returns the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -2909,7 +3046,7 @@ export interface UpdateTrustStoreRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token return the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -2970,7 +3107,7 @@ export interface CreateUserAccessLoggingSettingsRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token returns the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -3123,7 +3260,7 @@ export interface UpdateUserAccessLoggingSettingsRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token return the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -3258,7 +3395,7 @@ export interface CreateUserSettingsRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token returns the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -3391,6 +3528,18 @@ export interface UserSettings { * @public */ cookieSynchronizationConfiguration?: CookieSynchronizationConfiguration; + + /** + *

    The customer managed key used to encrypt sensitive information in the user settings.

    + * @public + */ + customerManagedKey?: string; + + /** + *

    The additional encryption context of the user settings.

    + * @public + */ + additionalEncryptionContext?: Record; } /** @@ -3563,7 +3712,7 @@ export interface UpdateUserSettingsRequest { * request. Idempotency ensures that an API request completes only once. With an idempotent * request, if the original request completes successfully, subsequent retries with the same * client token return the result from the original successful request.

    - *

    If you do not specify a client token, one is automatically generated by the AWS + *

    If you do not specify a client token, one is automatically generated by the Amazon Web Services * SDK.

    * @public */ @@ -3881,11 +4030,23 @@ export const CreateUserAccessLoggingSettingsRequestFilterSensitiveLog = ( ...(obj.tags && { tags: SENSITIVE_STRING }), }); +/** + * @internal + */ +export const CookieSpecificationFilterSensitiveLog = (obj: CookieSpecification): any => ({ + ...obj, + ...(obj.domain && { domain: SENSITIVE_STRING }), + ...(obj.name && { name: SENSITIVE_STRING }), + ...(obj.path && { path: SENSITIVE_STRING }), +}); + /** * @internal */ export const CookieSynchronizationConfigurationFilterSensitiveLog = (obj: CookieSynchronizationConfiguration): any => ({ ...obj, + ...(obj.allowlist && { allowlist: obj.allowlist.map((item) => CookieSpecificationFilterSensitiveLog(item)) }), + ...(obj.blocklist && { blocklist: obj.blocklist.map((item) => CookieSpecificationFilterSensitiveLog(item)) }), }); /** diff --git a/clients/client-workspaces-web/src/protocols/Aws_restJson1.ts b/clients/client-workspaces-web/src/protocols/Aws_restJson1.ts index efd7f54c041dc..1ef28f16a67e7 100644 --- a/clients/client-workspaces-web/src/protocols/Aws_restJson1.ts +++ b/clients/client-workspaces-web/src/protocols/Aws_restJson1.ts @@ -6,6 +6,7 @@ import { _json, collectBody, decorateServiceException as __decorateServiceException, + expectInt32 as __expectInt32, expectNonNull as __expectNonNull, expectNumber as __expectNumber, expectObject as __expectObject, @@ -462,6 +463,8 @@ export const se_CreatePortalCommand = async ( clientToken: [true, (_) => _ ?? generateIdempotencyToken()], customerManagedKey: [], displayName: [], + instanceType: [], + maxConcurrentSessions: [], tags: (_) => _json(_), }) ); @@ -1302,6 +1305,8 @@ export const se_UpdatePortalCommand = async ( take(input, { authenticationType: [], displayName: [], + instanceType: [], + maxConcurrentSessions: [], }) ); b.m("PUT").h(headers).b(body); @@ -2867,6 +2872,8 @@ const de_CertificateSummaryList = (output: any, context: __SerdeContext): Certif // de_CookieSynchronizationConfiguration omitted. +// de_EncryptionContextMap omitted. + // de_IdentityProvider omitted. // de_IdentityProviderDetails omitted. @@ -2880,8 +2887,10 @@ const de_CertificateSummaryList = (output: any, context: __SerdeContext): Certif */ const de_IpAccessSettings = (output: any, context: __SerdeContext): IpAccessSettings => { return take(output, { + additionalEncryptionContext: _json, associatedPortalArns: _json, creationDate: (_: any) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))), + customerManagedKey: __expectString, description: __expectString, displayName: __expectString, ipAccessSettingsArn: __expectString, @@ -2928,12 +2937,16 @@ const de_IpAccessSettingsSummary = (output: any, context: __SerdeContext): IpAcc */ const de_Portal = (output: any, context: __SerdeContext): Portal => { return take(output, { + additionalEncryptionContext: _json, authenticationType: __expectString, browserSettingsArn: __expectString, browserType: __expectString, creationDate: (_: any) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))), + customerManagedKey: __expectString, displayName: __expectString, + instanceType: __expectString, ipAccessSettingsArn: __expectString, + maxConcurrentSessions: __expectInt32, networkSettingsArn: __expectString, portalArn: __expectString, portalEndpoint: __expectString, @@ -2968,7 +2981,9 @@ const de_PortalSummary = (output: any, context: __SerdeContext): PortalSummary = browserType: __expectString, creationDate: (_: any) => __expectNonNull(__parseEpochTimestamp(__expectNumber(_))), displayName: __expectString, + instanceType: __expectString, ipAccessSettingsArn: __expectString, + maxConcurrentSessions: __expectInt32, networkSettingsArn: __expectString, portalArn: __expectString, portalEndpoint: __expectString, diff --git a/codegen/sdk-codegen/aws-models/workspaces-web.json b/codegen/sdk-codegen/aws-models/workspaces-web.json index 8495516ffbbd5..80dbf7c000924 100644 --- a/codegen/sdk-codegen/aws-models/workspaces-web.json +++ b/codegen/sdk-codegen/aws-models/workspaces-web.json @@ -1296,6 +1296,18 @@ "traits": { "smithy.api#documentation": "

    A JSON string containing Chrome Enterprise policies that will be applied to all\n streaming sessions.

    " } + }, + "customerManagedKey": { + "target": "com.amazonaws.workspacesweb#keyArn", + "traits": { + "smithy.api#documentation": "

    The customer managed key used to encrypt sensitive information in the browser settings.

    " + } + }, + "additionalEncryptionContext": { + "target": "com.amazonaws.workspacesweb#EncryptionContextMap", + "traits": { + "smithy.api#documentation": "

    The additional encryption context of the browser settings.

    " + } } }, "traits": { @@ -1551,7 +1563,8 @@ "min": 0, "max": 253 }, - "smithy.api#pattern": "^(\\.?)(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\\.)*[a-z0-9][a-z0-9-]{0,61}[a-z0-9]$" + "smithy.api#pattern": "^(\\.?)(?:[a-z0-9](?:[a-z0-9-]{0,61}[a-z0-9])?\\.)*[a-z0-9][a-z0-9-]{0,61}[a-z0-9]$", + "smithy.api#sensitive": {} } }, "com.amazonaws.workspacesweb#CookieName": { @@ -1560,7 +1573,8 @@ "smithy.api#length": { "min": 0, "max": 4096 - } + }, + "smithy.api#sensitive": {} } }, "com.amazonaws.workspacesweb#CookiePath": { @@ -1570,7 +1584,8 @@ "min": 0, "max": 2000 }, - "smithy.api#pattern": "^/(\\S)*$" + "smithy.api#pattern": "^/(\\S)*$", + "smithy.api#sensitive": {} } }, "com.amazonaws.workspacesweb#CookieSpecification": { @@ -1706,7 +1721,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -1797,14 +1812,14 @@ "identityProviderDetails": { "target": "com.amazonaws.workspacesweb#IdentityProviderDetails", "traits": { - "smithy.api#documentation": "

    The identity provider details. The following list describes the provider detail keys for\n each identity provider type.

    \n
      \n
    • \n

      For Google and Login with Amazon:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For Facebook:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n api_version\n

        \n
        • \n
      \n
      • \n
    • \n

      For Sign in with Apple:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n team_id\n

        \n
        • \n
      • \n

        \n key_id\n

        \n
        • \n
      • \n

        \n private_key\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For OIDC providers:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n attributes_request_method\n

        \n
        • \n
      • \n

        \n oidc_issuer\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n authorize_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n token_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n attributes_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n jwks_uri\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      \n
      • \n
    • \n

      For SAML providers:

      \n
        \n
      • \n

        \n MetadataFile OR MetadataURL\n

        \n
        • \n
      • \n

        \n IDPSignout (boolean) \n optional\n

        \n
        • \n
      \n
      • \n
    ", + "smithy.api#documentation": "

    The identity provider details. The following list describes the provider detail keys for\n each identity provider type.

    \n
      \n
    • \n

      For Google and Login with Amazon:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For Facebook:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n api_version\n

        \n
        • \n
      \n
      • \n
    • \n

      For Sign in with Apple:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n team_id\n

        \n
        • \n
      • \n

        \n key_id\n

        \n
        • \n
      • \n

        \n private_key\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For OIDC providers:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n attributes_request_method\n

        \n
        • \n
      • \n

        \n oidc_issuer\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n authorize_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n token_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n attributes_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n jwks_uri\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      \n
      • \n
    • \n

      For SAML providers:

      \n
        \n
      • \n

        \n MetadataFile OR MetadataURL\n

        \n
        • \n
      • \n

        \n IDPSignout (boolean) \n optional\n

        \n
        • \n
      • \n

        \n IDPInit (boolean) optional\n

        \n
        • \n
      • \n

        \n RequestSigningAlgorithm (string) optional\n - Only accepts rsa-sha256\n

        \n
        • \n
      • \n

        \n EncryptedResponses (boolean) optional\n

        \n
        • \n
      \n
      • \n
    ", "smithy.api#required": {} } }, "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -1909,7 +1924,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -2004,7 +2019,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -2099,14 +2114,26 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } }, "authenticationType": { "target": "com.amazonaws.workspacesweb#AuthenticationType", "traits": { - "smithy.api#documentation": "

    The type of authentication integration points used when signing into the web portal.\n Defaults to Standard.

    \n

    \n Standard web portals are authenticated directly through your identity\n provider. You need to call CreateIdentityProvider to integrate your identity\n provider with your web portal. User and group access to your web portal is controlled\n through your identity provider.

    \n

    \n IAM_Identity_Center web portals are authenticated through AWS IAM Identity\n Center (successor to AWS Single Sign-On). They provide additional features, such as\n IdP-initiated authentication. Identity sources (including external identity provider\n integration), plus user and group access to your web portal, can be configured in the IAM\n Identity Center.

    " + "smithy.api#documentation": "

    The type of authentication integration points used when signing into the web portal.\n Defaults to Standard.

    \n

    \n Standard web portals are authenticated directly through your identity\n provider. You need to call CreateIdentityProvider to integrate your identity\n provider with your web portal. User and group access to your web portal is controlled\n through your identity provider.

    \n

    \n IAM Identity Center web portals are authenticated through IAM Identity Center (successor to Single Sign-On). Identity sources (including\n external identity provider integration), plus user and group access to your web portal,\n can be configured in the IAM Identity Center.

    " + } + }, + "instanceType": { + "target": "com.amazonaws.workspacesweb#InstanceType", + "traits": { + "smithy.api#documentation": "

    The type and resources of the underlying instance.

    " + } + }, + "maxConcurrentSessions": { + "target": "com.amazonaws.workspacesweb#MaxConcurrentSessions", + "traits": { + "smithy.api#documentation": "

    The maximum number of concurrent sessions for the portal.

    " } } }, @@ -2193,7 +2220,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -2274,7 +2301,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -2397,7 +2424,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } }, @@ -4023,7 +4050,7 @@ "identityProviderDetails": { "target": "com.amazonaws.workspacesweb#IdentityProviderDetails", "traits": { - "smithy.api#documentation": "

    The identity provider details. The following list describes the provider detail keys for\n each identity provider type.

    \n
      \n
    • \n

      For Google and Login with Amazon:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For Facebook:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n api_version\n

        \n
        • \n
      \n
      • \n
    • \n

      For Sign in with Apple:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n team_id\n

        \n
        • \n
      • \n

        \n key_id\n

        \n
        • \n
      • \n

        \n private_key\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For OIDC providers:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n attributes_request_method\n

        \n
        • \n
      • \n

        \n oidc_issuer\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n authorize_url\n if not available from discovery URL specified by oidc_issuer\n key\n

        \n
        • \n
      • \n

        \n token_url\n if not available from discovery URL specified by oidc_issuer\n key\n

        \n
        • \n
      • \n

        \n attributes_url\n if not available from discovery URL specified by oidc_issuer\n key\n

        \n
        • \n
      • \n

        \n jwks_uri\n if not available from discovery URL specified by oidc_issuer\n key\n

        \n
        • \n
      \n
      • \n
    • \n

      For SAML providers:

      \n
        \n
      • \n

        \n MetadataFile OR MetadataURL\n

        \n
        • \n
      • \n

        \n IDPSignout\n optional\n

        \n
        • \n
      \n
      • \n
    " + "smithy.api#documentation": "

    The identity provider details. The following list describes the provider detail keys for\n each identity provider type.

    \n
      \n
    • \n

      For Google and Login with Amazon:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For Facebook:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n api_version\n

        \n
        • \n
      \n
      • \n
    • \n

      For Sign in with Apple:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n team_id\n

        \n
        • \n
      • \n

        \n key_id\n

        \n
        • \n
      • \n

        \n private_key\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For OIDC providers:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n attributes_request_method\n

        \n
        • \n
      • \n

        \n oidc_issuer\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n authorize_url\n if not available from discovery URL specified by oidc_issuer\n key\n

        \n
        • \n
      • \n

        \n token_url\n if not available from discovery URL specified by oidc_issuer\n key\n

        \n
        • \n
      • \n

        \n attributes_url\n if not available from discovery URL specified by oidc_issuer\n key\n

        \n
        • \n
      • \n

        \n jwks_uri\n if not available from discovery URL specified by oidc_issuer\n key\n

        \n
        • \n
      \n
      • \n
    • \n

      For SAML providers:

      \n
        \n
      • \n

        \n MetadataFile OR MetadataURL\n

        \n
        • \n
      • \n

        \n IDPSignout (boolean) optional\n

        \n
        • \n
      • \n

        \n IDPInit (boolean) optional\n

        \n
        • \n
      • \n

        \n RequestSigningAlgorithm (string) optional\n - Only accepts rsa-sha256\n

        \n
        • \n
      • \n

        \n EncryptedResponses (boolean) optional\n

        \n
        • \n
      \n
      • \n
    " } } }, @@ -4174,6 +4201,25 @@ } } }, + "com.amazonaws.workspacesweb#InstanceType": { + "type": "string", + "traits": { + "smithy.api#enum": [ + { + "value": "standard.regular", + "name": "STANDARD_REGULAR" + }, + { + "value": "standard.large", + "name": "STANDARD_LARGE" + }, + { + "value": "standard.xlarge", + "name": "STANDARD_XLARGE" + } + ] + } + }, "com.amazonaws.workspacesweb#InternalServerException": { "type": "structure", "members": { @@ -4235,6 +4281,18 @@ "traits": { "smithy.api#documentation": "

    The creation date timestamp of the IP access settings.

    " } + }, + "customerManagedKey": { + "target": "com.amazonaws.workspacesweb#keyArn", + "traits": { + "smithy.api#documentation": "

    The customer managed key used to encrypt sensitive information in the IP access settings.

    " + } + }, + "additionalEncryptionContext": { + "target": "com.amazonaws.workspacesweb#EncryptionContextMap", + "traits": { + "smithy.api#documentation": "

    The additional encryption context of the IP access settings.

    " + } } }, "traits": { @@ -5205,6 +5263,15 @@ "smithy.api#output": {} } }, + "com.amazonaws.workspacesweb#MaxConcurrentSessions": { + "type": "integer", + "traits": { + "smithy.api#range": { + "min": 1, + "max": 5000 + } + } + }, "com.amazonaws.workspacesweb#MaxResults": { "type": "integer", "traits": { @@ -5429,7 +5496,7 @@ "authenticationType": { "target": "com.amazonaws.workspacesweb#AuthenticationType", "traits": { - "smithy.api#documentation": "

    The type of authentication integration points used when signing into the web portal.\n Defaults to Standard.

    \n

    \n Standard web portals are authenticated directly through your identity\n provider. You need to call CreateIdentityProvider to integrate your identity\n provider with your web portal. User and group access to your web portal is controlled\n through your identity provider.

    \n

    \n IAM_Identity_Center web portals are authenticated through AWS IAM Identity\n Center (successor to AWS Single Sign-On). They provide additional features, such as\n IdP-initiated authentication. Identity sources (including external identity provider\n integration), plus user and group access to your web portal, can be configured in the IAM\n Identity Center.

    " + "smithy.api#documentation": "

    The type of authentication integration points used when signing into the web portal.\n Defaults to Standard.

    \n

    \n Standard web portals are authenticated directly through your identity\n provider. You need to call CreateIdentityProvider to integrate your identity\n provider with your web portal. User and group access to your web portal is controlled\n through your identity provider.

    \n

    \n IAM Identity Center web portals are authenticated through IAM Identity Center (successor to Single Sign-On). Identity sources (including\n external identity provider integration), plus user and group access to your web portal,\n can be configured in the IAM Identity Center.

    " } }, "ipAccessSettingsArn": { @@ -5437,6 +5504,30 @@ "traits": { "smithy.api#documentation": "

    The ARN of the IP access settings.

    " } + }, + "customerManagedKey": { + "target": "com.amazonaws.workspacesweb#keyArn", + "traits": { + "smithy.api#documentation": "

    The customer managed key used to encrypt sensitive information in the portal.

    " + } + }, + "additionalEncryptionContext": { + "target": "com.amazonaws.workspacesweb#EncryptionContextMap", + "traits": { + "smithy.api#documentation": "

    The additional encryption context of the portal.

    " + } + }, + "instanceType": { + "target": "com.amazonaws.workspacesweb#InstanceType", + "traits": { + "smithy.api#documentation": "

    The type and resources of the underlying instance.

    " + } + }, + "maxConcurrentSessions": { + "target": "com.amazonaws.workspacesweb#MaxConcurrentSessions", + "traits": { + "smithy.api#documentation": "

    The maximum number of concurrent sessions for the portal.

    " + } } }, "traits": { @@ -5520,6 +5611,12 @@ }, "additionalEncryptionContext": { "target": "com.amazonaws.workspacesweb#EncryptionContextMap" + }, + "instanceType": { + "target": "com.amazonaws.workspacesweb#InstanceType" + }, + "maxConcurrentSessions": { + "target": "com.amazonaws.workspacesweb#MaxConcurrentSessions" } }, "create": { @@ -5700,7 +5797,7 @@ "authenticationType": { "target": "com.amazonaws.workspacesweb#AuthenticationType", "traits": { - "smithy.api#documentation": "

    The type of authentication integration points used when signing into the web portal.\n Defaults to Standard.

    \n

    \n Standard web portals are authenticated directly through your identity\n provider. You need to call CreateIdentityProvider to integrate your identity\n provider with your web portal. User and group access to your web portal is controlled\n through your identity provider.

    \n

    \n IAM_Identity_Center web portals are authenticated through AWS IAM Identity\n Center (successor to AWS Single Sign-On). They provide additional features, such as\n IdP-initiated authentication. Identity sources (including external identity provider\n integration), plus user and group access to your web portal, can be configured in the IAM\n Identity Center.

    " + "smithy.api#documentation": "

    The type of authentication integration points used when signing into the web portal.\n Defaults to Standard.

    \n

    \n Standard web portals are authenticated directly through your identity\n provider. You need to call CreateIdentityProvider to integrate your identity\n provider with your web portal. User and group access to your web portal is controlled\n through your identity provider.

    \n

    \n IAM Identity Center web portals are authenticated through IAM Identity Center (successor to Single Sign-On). Identity sources (including\n external identity provider integration), plus user and group access to your web portal,\n can be configured in the IAM Identity Center.

    " } }, "ipAccessSettingsArn": { @@ -5708,6 +5805,18 @@ "traits": { "smithy.api#documentation": "

    The ARN of the IP access settings.

    " } + }, + "instanceType": { + "target": "com.amazonaws.workspacesweb#InstanceType", + "traits": { + "smithy.api#documentation": "

    The type and resources of the underlying instance.

    " + } + }, + "maxConcurrentSessions": { + "target": "com.amazonaws.workspacesweb#MaxConcurrentSessions", + "traits": { + "smithy.api#documentation": "

    The maximum number of concurrent sessions for the portal.

    " + } } }, "traits": { @@ -6008,7 +6117,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token returns the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -6309,7 +6418,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -6394,13 +6503,13 @@ "identityProviderDetails": { "target": "com.amazonaws.workspacesweb#IdentityProviderDetails", "traits": { - "smithy.api#documentation": "

    The details of the identity provider. The following list describes the provider detail keys for\n each identity provider type.

    \n
      \n
    • \n

      For Google and Login with Amazon:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For Facebook:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n api_version\n

        \n
        • \n
      \n
      • \n
    • \n

      For Sign in with Apple:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n team_id\n

        \n
        • \n
      • \n

        \n key_id\n

        \n
        • \n
      • \n

        \n private_key\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For OIDC providers:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n attributes_request_method\n

        \n
        • \n
      • \n

        \n oidc_issuer\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n authorize_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n token_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n attributes_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n jwks_uri\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      \n
      • \n
    • \n

      For SAML providers:

      \n
        \n
      • \n

        \n MetadataFile OR MetadataURL\n

        \n
        • \n
      • \n

        \n IDPSignout (boolean) \n optional\n

        \n
        • \n
      \n
      • \n
    " + "smithy.api#documentation": "

    The details of the identity provider. The following list describes the provider detail keys for\n each identity provider type.

    \n
      \n
    • \n

      For Google and Login with Amazon:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For Facebook:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n api_version\n

        \n
        • \n
      \n
      • \n
    • \n

      For Sign in with Apple:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n team_id\n

        \n
        • \n
      • \n

        \n key_id\n

        \n
        • \n
      • \n

        \n private_key\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      \n
      • \n
    • \n

      For OIDC providers:

      \n
        \n
      • \n

        \n client_id\n

        \n
        • \n
      • \n

        \n client_secret\n

        \n
        • \n
      • \n

        \n attributes_request_method\n

        \n
        • \n
      • \n

        \n oidc_issuer\n

        \n
        • \n
      • \n

        \n authorize_scopes\n

        \n
        • \n
      • \n

        \n authorize_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n token_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n attributes_url\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      • \n

        \n jwks_uri\n if not available from discovery URL specified by\n oidc_issuer key\n

        \n
        • \n
      \n
      • \n
    • \n

      For SAML providers:

      \n
        \n
      • \n

        \n MetadataFile OR MetadataURL\n

        \n
        • \n
      • \n

        \n IDPSignout (boolean) optional\n

        \n
        • \n
      • \n

        \n IDPInit (boolean) optional\n

        \n
        • \n
      • \n

        \n RequestSigningAlgorithm (string) optional\n - Only accepts rsa-sha256\n

        \n
        • \n
      • \n

        \n EncryptedResponses (boolean) optional\n

        \n
        • \n
      \n
      • \n
    " } }, "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -6491,7 +6600,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -6582,7 +6691,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -6628,6 +6737,9 @@ { "target": "com.amazonaws.workspacesweb#ResourceNotFoundException" }, + { + "target": "com.amazonaws.workspacesweb#ServiceQuotaExceededException" + }, { "target": "com.amazonaws.workspacesweb#ThrottlingException" }, @@ -6665,7 +6777,19 @@ "authenticationType": { "target": "com.amazonaws.workspacesweb#AuthenticationType", "traits": { - "smithy.api#documentation": "

    The type of authentication integration points used when signing into the web portal.\n Defaults to Standard.

    \n

    \n Standard web portals are authenticated directly through your identity\n provider. You need to call CreateIdentityProvider to integrate your identity\n provider with your web portal. User and group access to your web portal is controlled\n through your identity provider.

    \n

    \n IAM_Identity_Center web portals are authenticated through AWS IAM Identity\n Center (successor to AWS Single Sign-On). They provide additional features, such as\n IdP-initiated authentication. Identity sources (including external identity provider\n integration), plus user and group access to your web portal, can be configured in the IAM\n Identity Center.

    " + "smithy.api#documentation": "

    The type of authentication integration points used when signing into the web portal.\n Defaults to Standard.

    \n

    \n Standard web portals are authenticated directly through your identity\n provider. You need to call CreateIdentityProvider to integrate your identity\n provider with your web portal. User and group access to your web portal is controlled\n through your identity provider.

    \n

    \n IAM Identity Center web portals are authenticated through IAM Identity Center (successor to Single Sign-On). Identity sources (including\n external identity provider integration), plus user and group access to your web portal,\n can be configured in the IAM Identity Center.

    " + } + }, + "instanceType": { + "target": "com.amazonaws.workspacesweb#InstanceType", + "traits": { + "smithy.api#documentation": "

    The type and resources of the underlying instance.

    " + } + }, + "maxConcurrentSessions": { + "target": "com.amazonaws.workspacesweb#MaxConcurrentSessions", + "traits": { + "smithy.api#documentation": "

    The maximum number of concurrent sessions for the portal.

    " } } }, @@ -6753,7 +6877,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -6831,7 +6955,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } } @@ -6948,7 +7072,7 @@ "clientToken": { "target": "com.amazonaws.workspacesweb#ClientToken", "traits": { - "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the AWS\n SDK.

    ", + "smithy.api#documentation": "

    A unique, case-sensitive identifier that you provide to ensure the idempotency of the\n request. Idempotency ensures that an API request completes only once. With an idempotent\n request, if the original request completes successfully, subsequent retries with the same\n client token return the result from the original successful request.

    \n

    If you do not specify a client token, one is automatically generated by the Amazon Web Services\n SDK.

    ", "smithy.api#idempotencyToken": {} } }, @@ -7147,6 +7271,18 @@ "traits": { "smithy.api#documentation": "

    The configuration that specifies which cookies should be synchronized from the end user's local browser to the remote browser.

    " } + }, + "customerManagedKey": { + "target": "com.amazonaws.workspacesweb#keyArn", + "traits": { + "smithy.api#documentation": "

    The customer managed key used to encrypt sensitive information in the user settings.

    " + } + }, + "additionalEncryptionContext": { + "target": "com.amazonaws.workspacesweb#EncryptionContextMap", + "traits": { + "smithy.api#documentation": "

    The additional encryption context of the user settings.

    " + } } }, "traits": {