From fdaa7e26bf24a7ae4c6f9e66c3a582ed479d9be5 Mon Sep 17 00:00:00 2001 From: AWS SDK for Go v2 automation user Date: Fri, 10 Jan 2025 19:24:20 +0000 Subject: [PATCH] Regenerated Clients --- .../079440de1e9b4932a37d5686c12435fa.json | 8 ++ .../143de6be44df4ba385df90526622d72e.json | 8 ++ .../fff3dc38395c4221996692a77f7c6e8f.json | 8 ++ .../budgets/internal/endpoints/endpoints.go | 23 +++- .../internal/endpoints/endpoints.go | 3 + service/redshift/api_op_CreateCluster.go | 7 +- service/redshift/api_op_ModifyCluster.go | 2 + .../api_op_RestoreFromClusterSnapshot.go | 2 + service/redshift/types/types.go | 2 + .../api_op_CreateCustomLogSource.go | 62 +---------- ...CreateDataLakeOrganizationConfiguration.go | 7 ++ service/securitylake/types/types.go | 64 +---------- .../snowball/internal/endpoints/endpoints.go | 105 ++++++++++++++++++ service/sts/api_op_AssumeRole.go | 2 +- .../sts/api_op_AssumeRoleWithWebIdentity.go | 5 +- service/sts/api_op_AssumeRoot.go | 15 ++- 16 files changed, 189 insertions(+), 134 deletions(-) create mode 100644 .changelog/079440de1e9b4932a37d5686c12435fa.json create mode 100644 .changelog/143de6be44df4ba385df90526622d72e.json create mode 100644 .changelog/fff3dc38395c4221996692a77f7c6e8f.json diff --git a/.changelog/079440de1e9b4932a37d5686c12435fa.json b/.changelog/079440de1e9b4932a37d5686c12435fa.json new file mode 100644 index 00000000000..8a397633f2c --- /dev/null +++ b/.changelog/079440de1e9b4932a37d5686c12435fa.json @@ -0,0 +1,8 @@ +{ + "id": "079440de-1e9b-4932-a37d-5686c12435fa", + "type": "documentation", + "description": "Additions to the PubliclyAccessible and Encrypted parameters clarifying what the defaults are.", + "modules": [ + "service/redshift" + ] +} \ No newline at end of file diff --git a/.changelog/143de6be44df4ba385df90526622d72e.json b/.changelog/143de6be44df4ba385df90526622d72e.json new file mode 100644 index 00000000000..5e8a0d9b069 --- /dev/null +++ b/.changelog/143de6be44df4ba385df90526622d72e.json @@ -0,0 +1,8 @@ +{ + "id": "143de6be-44df-4ba3-85df-90526622d72e", + "type": "documentation", + "description": "Fixed typos in the descriptions.", + "modules": [ + "service/sts" + ] +} \ No newline at end of file diff --git a/.changelog/fff3dc38395c4221996692a77f7c6e8f.json b/.changelog/fff3dc38395c4221996692a77f7c6e8f.json new file mode 100644 index 00000000000..bd13b061fb7 --- /dev/null +++ b/.changelog/fff3dc38395c4221996692a77f7c6e8f.json @@ -0,0 +1,8 @@ +{ + "id": "fff3dc38-395c-4221-9966-92a77f7c6e8f", + "type": "documentation", + "description": "Doc only update for ServiceName that fixes several customer-reported issues", + "modules": [ + "service/securitylake" + ] +} \ No newline at end of file diff --git a/service/budgets/internal/endpoints/endpoints.go b/service/budgets/internal/endpoints/endpoints.go index 8dedbe9986c..5a0e7f6e864 100644 --- a/service/budgets/internal/endpoints/endpoints.go +++ b/service/budgets/internal/endpoints/endpoints.go @@ -214,8 +214,27 @@ var defaultPartitions = endpoints.Partitions{ SignatureVersions: []string{"v4"}, }, }, - RegionRegex: partitionRegexp.AwsIso, - IsRegionalized: true, + RegionRegex: partitionRegexp.AwsIso, + IsRegionalized: false, + PartitionEndpoint: "aws-iso-global", + Endpoints: endpoints.Endpoints{ + endpoints.EndpointKey{ + Region: "aws-iso-global", + }: endpoints.Endpoint{ + Hostname: "budgets.c2s.ic.gov", + CredentialScope: endpoints.CredentialScope{ + Region: "us-iso-east-1", + }, + }, + endpoints.EndpointKey{ + Region: "us-iso-east-1", + }: endpoints.Endpoint{ + Hostname: "budgets.c2s.ic.gov", + CredentialScope: endpoints.CredentialScope{ + Region: "us-iso-east-1", + }, + }, + }, }, { ID: "aws-iso-b", diff --git a/service/licensemanager/internal/endpoints/endpoints.go b/service/licensemanager/internal/endpoints/endpoints.go index 490be299d65..e8d7102352d 100644 --- a/service/licensemanager/internal/endpoints/endpoints.go +++ b/service/licensemanager/internal/endpoints/endpoints.go @@ -172,6 +172,9 @@ var defaultPartitions = endpoints.Partitions{ endpoints.EndpointKey{ Region: "ap-southeast-4", }: endpoints.Endpoint{}, + endpoints.EndpointKey{ + Region: "ap-southeast-5", + }: endpoints.Endpoint{}, endpoints.EndpointKey{ Region: "ca-central-1", }: endpoints.Endpoint{}, diff --git a/service/redshift/api_op_CreateCluster.go b/service/redshift/api_op_CreateCluster.go index 0151989808f..d88f3f904b6 100644 --- a/service/redshift/api_op_CreateCluster.go +++ b/service/redshift/api_op_CreateCluster.go @@ -241,9 +241,10 @@ type CreateClusterInput struct { // [Supported Platforms to Launch Your Cluster]: https://docs.aws.amazon.com/redshift/latest/mgmt/working-with-clusters.html#cluster-platforms ElasticIp *string - // If true , the data in the cluster is encrypted at rest. + // If true , the data in the cluster is encrypted at rest. If you set the value on + // this parameter to false , the request will fail. // - // Default: false + // Default: true Encrypted *bool // An option that specifies whether to create the cluster with enhanced VPC @@ -383,6 +384,8 @@ type CreateClusterInput struct { PreferredMaintenanceWindow *string // If true , the cluster can be accessed from a public network. + // + // Default: false PubliclyAccessible *bool // The Amazon resource name (ARN) of the Amazon Redshift IAM Identity Center diff --git a/service/redshift/api_op_ModifyCluster.go b/service/redshift/api_op_ModifyCluster.go index 67556a6098b..083f75a7eab 100644 --- a/service/redshift/api_op_ModifyCluster.go +++ b/service/redshift/api_op_ModifyCluster.go @@ -320,6 +320,8 @@ type ModifyClusterInput struct { // If true , the cluster can be accessed from a public network. Only clusters in // VPCs can be set to be publicly available. + // + // Default: false PubliclyAccessible *bool // A list of virtual private cloud (VPC) security groups to be associated with the diff --git a/service/redshift/api_op_RestoreFromClusterSnapshot.go b/service/redshift/api_op_RestoreFromClusterSnapshot.go index 2a39781c987..0acb4a14c0e 100644 --- a/service/redshift/api_op_RestoreFromClusterSnapshot.go +++ b/service/redshift/api_op_RestoreFromClusterSnapshot.go @@ -274,6 +274,8 @@ type RestoreFromClusterSnapshotInput struct { PreferredMaintenanceWindow *string // If true , the cluster can be accessed from a public network. + // + // Default: false PubliclyAccessible *bool // The identifier of the target reserved node offering. diff --git a/service/redshift/types/types.go b/service/redshift/types/types.go index c6ece010806..3aee7664657 100644 --- a/service/redshift/types/types.go +++ b/service/redshift/types/types.go @@ -381,6 +381,8 @@ type Cluster struct { // A boolean value that, if true , indicates that the cluster can be accessed from // a public network. + // + // Default: false PubliclyAccessible *bool // The status of the reserved-node exchange request. Statuses include in-progress diff --git a/service/securitylake/api_op_CreateCustomLogSource.go b/service/securitylake/api_op_CreateCustomLogSource.go index a926f8e0bdc..eb5e89c8fc9 100644 --- a/service/securitylake/api_op_CreateCustomLogSource.go +++ b/service/securitylake/api_op_CreateCustomLogSource.go @@ -52,66 +52,10 @@ type CreateCustomLogSourceInput struct { SourceName *string // The Open Cybersecurity Schema Framework (OCSF) event classes which describes - // the type of data that the custom source will send to Security Lake. The - // supported event classes are: + // the type of data that the custom source will send to Security Lake. For the list + // of supported event classes, see the [Amazon Security Lake User Guide]. // - // - ACCESS_ACTIVITY - // - // - FILE_ACTIVITY - // - // - KERNEL_ACTIVITY - // - // - KERNEL_EXTENSION - // - // - MEMORY_ACTIVITY - // - // - MODULE_ACTIVITY - // - // - PROCESS_ACTIVITY - // - // - REGISTRY_KEY_ACTIVITY - // - // - REGISTRY_VALUE_ACTIVITY - // - // - RESOURCE_ACTIVITY - // - // - SCHEDULED_JOB_ACTIVITY - // - // - SECURITY_FINDING - // - // - ACCOUNT_CHANGE - // - // - AUTHENTICATION - // - // - AUTHORIZATION - // - // - ENTITY_MANAGEMENT_AUDIT - // - // - DHCP_ACTIVITY - // - // - NETWORK_ACTIVITY - // - // - DNS_ACTIVITY - // - // - FTP_ACTIVITY - // - // - HTTP_ACTIVITY - // - // - RDP_ACTIVITY - // - // - SMB_ACTIVITY - // - // - SSH_ACTIVITY - // - // - CONFIG_STATE - // - // - INVENTORY_INFO - // - // - EMAIL_ACTIVITY - // - // - API_ACTIVITY - // - // - CLOUD_API + // [Amazon Security Lake User Guide]: https://docs.aws.amazon.com/security-lake/latest/userguide/adding-custom-sources.html#ocsf-eventclass EventClasses []string // Specify the source version for the third-party custom source, to limit log diff --git a/service/securitylake/api_op_CreateDataLakeOrganizationConfiguration.go b/service/securitylake/api_op_CreateDataLakeOrganizationConfiguration.go index 174a1d09ab1..ccdc5bd7dd7 100644 --- a/service/securitylake/api_op_CreateDataLakeOrganizationConfiguration.go +++ b/service/securitylake/api_op_CreateDataLakeOrganizationConfiguration.go @@ -14,6 +14,13 @@ import ( // Automatically enables Amazon Security Lake for new member accounts in your // organization. Security Lake is not automatically enabled for any existing member // accounts in your organization. +// +// This operation merges the new data lake organization configuration with the +// existing configuration for Security Lake in your organization. If you want to +// create a new data lake organization configuration, you must delete the existing +// one using [DeleteDataLakeOrganizationConfiguration]. +// +// [DeleteDataLakeOrganizationConfiguration]: https://docs.aws.amazon.com/security-lake/latest/APIReference/API_DeleteDataLakeOrganizationConfiguration.html func (c *Client) CreateDataLakeOrganizationConfiguration(ctx context.Context, params *CreateDataLakeOrganizationConfigurationInput, optFns ...func(*Options)) (*CreateDataLakeOrganizationConfigurationOutput, error) { if params == nil { params = &CreateDataLakeOrganizationConfigurationInput{} diff --git a/service/securitylake/types/types.go b/service/securitylake/types/types.go index f634a0904ec..73ddcca4fee 100644 --- a/service/securitylake/types/types.go +++ b/service/securitylake/types/types.go @@ -325,67 +325,11 @@ type DataLakeSource struct { // The ID of the Security Lake account for which logs are collected. Account *string - // The Open Cybersecurity Schema Framework (OCSF) event classes which describes - // the type of data that the custom source will send to Security Lake. The - // supported event classes are: + // The Open Cybersecurity Schema Framework (OCSF) event classes describes the type + // of data that the custom source will send to Security Lake. For the list of + // supported event classes, see [Supported OCSF Event classes]in the Amazon Security Lake User Guide. // - // - ACCESS_ACTIVITY - // - // - FILE_ACTIVITY - // - // - KERNEL_ACTIVITY - // - // - KERNEL_EXTENSION - // - // - MEMORY_ACTIVITY - // - // - MODULE_ACTIVITY - // - // - PROCESS_ACTIVITY - // - // - REGISTRY_KEY_ACTIVITY - // - // - REGISTRY_VALUE_ACTIVITY - // - // - RESOURCE_ACTIVITY - // - // - SCHEDULED_JOB_ACTIVITY - // - // - SECURITY_FINDING - // - // - ACCOUNT_CHANGE - // - // - AUTHENTICATION - // - // - AUTHORIZATION - // - // - ENTITY_MANAGEMENT_AUDIT - // - // - DHCP_ACTIVITY - // - // - NETWORK_ACTIVITY - // - // - DNS_ACTIVITY - // - // - FTP_ACTIVITY - // - // - HTTP_ACTIVITY - // - // - RDP_ACTIVITY - // - // - SMB_ACTIVITY - // - // - SSH_ACTIVITY - // - // - CONFIG_STATE - // - // - INVENTORY_INFO - // - // - EMAIL_ACTIVITY - // - // - API_ACTIVITY - // - // - CLOUD_API + // [Supported OCSF Event classes]: https://docs.aws.amazon.com/security-lake/latest/userguide/adding-custom-sources.html#ocsf-eventclass.html EventClasses []string // The supported Amazon Web Services services from which logs and events are diff --git a/service/snowball/internal/endpoints/endpoints.go b/service/snowball/internal/endpoints/endpoints.go index 46bb5b56e8f..3b0700c1133 100644 --- a/service/snowball/internal/endpoints/endpoints.go +++ b/service/snowball/internal/endpoints/endpoints.go @@ -142,9 +142,21 @@ var defaultPartitions = endpoints.Partitions{ endpoints.EndpointKey{ Region: "af-south-1", }: endpoints.Endpoint{}, + endpoints.EndpointKey{ + Region: "af-south-1", + Variant: endpoints.FIPSVariant, + }: { + Hostname: "snowball-fips.af-south-1.amazonaws.com", + }, endpoints.EndpointKey{ Region: "ap-east-1", }: endpoints.Endpoint{}, + endpoints.EndpointKey{ + Region: "ap-east-1", + Variant: endpoints.FIPSVariant, + }: { + Hostname: "snowball-fips.ap-east-1.amazonaws.com", + }, endpoints.EndpointKey{ Region: "ap-northeast-1", }: endpoints.Endpoint{}, @@ -202,6 +214,12 @@ var defaultPartitions = endpoints.Partitions{ endpoints.EndpointKey{ Region: "ap-southeast-3", }: endpoints.Endpoint{}, + endpoints.EndpointKey{ + Region: "ap-southeast-3", + Variant: endpoints.FIPSVariant, + }: { + Hostname: "snowball-fips.ap-southeast-3.amazonaws.com", + }, endpoints.EndpointKey{ Region: "ca-central-1", }: endpoints.Endpoint{}, @@ -223,9 +241,21 @@ var defaultPartitions = endpoints.Partitions{ endpoints.EndpointKey{ Region: "eu-north-1", }: endpoints.Endpoint{}, + endpoints.EndpointKey{ + Region: "eu-north-1", + Variant: endpoints.FIPSVariant, + }: { + Hostname: "snowball-fips.eu-north-1.amazonaws.com", + }, endpoints.EndpointKey{ Region: "eu-south-1", }: endpoints.Endpoint{}, + endpoints.EndpointKey{ + Region: "eu-south-1", + Variant: endpoints.FIPSVariant, + }: { + Hostname: "snowball-fips.eu-south-1.amazonaws.com", + }, endpoints.EndpointKey{ Region: "eu-west-1", }: endpoints.Endpoint{}, @@ -253,6 +283,24 @@ var defaultPartitions = endpoints.Partitions{ }: { Hostname: "snowball-fips.eu-west-3.amazonaws.com", }, + endpoints.EndpointKey{ + Region: "fips-af-south-1", + }: endpoints.Endpoint{ + Hostname: "snowball-fips.af-south-1.amazonaws.com", + CredentialScope: endpoints.CredentialScope{ + Region: "af-south-1", + }, + Deprecated: aws.TrueTernary, + }, + endpoints.EndpointKey{ + Region: "fips-ap-east-1", + }: endpoints.Endpoint{ + Hostname: "snowball-fips.ap-east-1.amazonaws.com", + CredentialScope: endpoints.CredentialScope{ + Region: "ap-east-1", + }, + Deprecated: aws.TrueTernary, + }, endpoints.EndpointKey{ Region: "fips-ap-northeast-1", }: endpoints.Endpoint{ @@ -307,6 +355,15 @@ var defaultPartitions = endpoints.Partitions{ }, Deprecated: aws.TrueTernary, }, + endpoints.EndpointKey{ + Region: "fips-ap-southeast-3", + }: endpoints.Endpoint{ + Hostname: "snowball-fips.ap-southeast-3.amazonaws.com", + CredentialScope: endpoints.CredentialScope{ + Region: "ap-southeast-3", + }, + Deprecated: aws.TrueTernary, + }, endpoints.EndpointKey{ Region: "fips-ca-central-1", }: endpoints.Endpoint{ @@ -325,6 +382,24 @@ var defaultPartitions = endpoints.Partitions{ }, Deprecated: aws.TrueTernary, }, + endpoints.EndpointKey{ + Region: "fips-eu-north-1", + }: endpoints.Endpoint{ + Hostname: "snowball-fips.eu-north-1.amazonaws.com", + CredentialScope: endpoints.CredentialScope{ + Region: "eu-north-1", + }, + Deprecated: aws.TrueTernary, + }, + endpoints.EndpointKey{ + Region: "fips-eu-south-1", + }: endpoints.Endpoint{ + Hostname: "snowball-fips.eu-south-1.amazonaws.com", + CredentialScope: endpoints.CredentialScope{ + Region: "eu-south-1", + }, + Deprecated: aws.TrueTernary, + }, endpoints.EndpointKey{ Region: "fips-eu-west-1", }: endpoints.Endpoint{ @@ -352,6 +427,24 @@ var defaultPartitions = endpoints.Partitions{ }, Deprecated: aws.TrueTernary, }, + endpoints.EndpointKey{ + Region: "fips-il-central-1", + }: endpoints.Endpoint{ + Hostname: "snowball-fips.il-central-1.amazonaws.com", + CredentialScope: endpoints.CredentialScope{ + Region: "il-central-1", + }, + Deprecated: aws.TrueTernary, + }, + endpoints.EndpointKey{ + Region: "fips-me-central-1", + }: endpoints.Endpoint{ + Hostname: "snowball-fips.me-central-1.amazonaws.com", + CredentialScope: endpoints.CredentialScope{ + Region: "me-central-1", + }, + Deprecated: aws.TrueTernary, + }, endpoints.EndpointKey{ Region: "fips-sa-east-1", }: endpoints.Endpoint{ @@ -400,9 +493,21 @@ var defaultPartitions = endpoints.Partitions{ endpoints.EndpointKey{ Region: "il-central-1", }: endpoints.Endpoint{}, + endpoints.EndpointKey{ + Region: "il-central-1", + Variant: endpoints.FIPSVariant, + }: { + Hostname: "snowball-fips.il-central-1.amazonaws.com", + }, endpoints.EndpointKey{ Region: "me-central-1", }: endpoints.Endpoint{}, + endpoints.EndpointKey{ + Region: "me-central-1", + Variant: endpoints.FIPSVariant, + }: { + Hostname: "snowball-fips.me-central-1.amazonaws.com", + }, endpoints.EndpointKey{ Region: "sa-east-1", }: endpoints.Endpoint{}, diff --git a/service/sts/api_op_AssumeRole.go b/service/sts/api_op_AssumeRole.go index 8838f4fb8aa..d056327746d 100644 --- a/service/sts/api_op_AssumeRole.go +++ b/service/sts/api_op_AssumeRole.go @@ -295,7 +295,7 @@ type AssumeRoleInput struct { // // The regex used to validate this parameter is a string of characters consisting // of upper- and lower-case alphanumeric characters with no spaces. You can also - // include underscores or any of the following characters: =,.@-. You cannot use a + // include underscores or any of the following characters: +=,.@-. You cannot use a // value that begins with the text aws: . This prefix is reserved for Amazon Web // Services internal use. // diff --git a/service/sts/api_op_AssumeRoleWithWebIdentity.go b/service/sts/api_op_AssumeRoleWithWebIdentity.go index 803cded5a49..0ae4bc173e7 100644 --- a/service/sts/api_op_AssumeRoleWithWebIdentity.go +++ b/service/sts/api_op_AssumeRoleWithWebIdentity.go @@ -198,8 +198,9 @@ type AssumeRoleWithWebIdentityInput struct { // identity provider. Your application must get this token by authenticating the // user who is using your application with a web identity provider before the // application makes an AssumeRoleWithWebIdentity call. Timestamps in the token - // must be formatted as either an integer or a long integer. Only tokens with RSA - // algorithms (RS256) are supported. + // must be formatted as either an integer or a long integer. Tokens must be signed + // using either RSA keys (RS256, RS384, or RS512) or ECDSA keys (ES256, ES384, or + // ES512). // // This member is required. WebIdentityToken *string diff --git a/service/sts/api_op_AssumeRoot.go b/service/sts/api_op_AssumeRoot.go index 537ab87527e..cd976e573a6 100644 --- a/service/sts/api_op_AssumeRoot.go +++ b/service/sts/api_op_AssumeRoot.go @@ -12,14 +12,14 @@ import ( ) // Returns a set of short term credentials you can use to perform privileged tasks -// in a member account. +// on a member account in your organization. // -// Before you can launch a privileged session, you must have enabled centralized -// root access in your organization. For steps to enable this feature, see [Centralize root access for member accounts]in the -// IAM User Guide. +// Before you can launch a privileged session, you must have centralized root +// access in your organization. For steps to enable this feature, see [Centralize root access for member accounts]in the IAM +// User Guide. // -// The global endpoint is not supported for AssumeRoot. You must send this request -// to a Regional STS endpoint. For more information, see [Endpoints]. +// The STS global endpoint is not supported for AssumeRoot. You must send this +// request to a Regional STS endpoint. For more information, see [Endpoints]. // // You can track AssumeRoot in CloudTrail logs to determine what actions were // performed in a session. For more information, see [Track privileged tasks in CloudTrail]in the IAM User Guide. @@ -51,8 +51,7 @@ type AssumeRootInput struct { // The identity based policy that scopes the session to the privileged tasks that // can be performed. You can use one of following Amazon Web Services managed - // policies to scope root session actions. You can add additional customer managed - // policies to further limit the permissions for the root session. + // policies to scope root session actions. // // [IAMAuditRootUserCredentials] //