The configuration object for the Microsoft Windows file system used in CreateFileSystem and CreateFileSystemFromBackup operations.
The configuration for this Microsoft Windows file system.
", - "CreateFileSystemRequest$WindowsConfiguration": "The Microsoft Windows configuration for the file system that's being created.
" + "CreateFileSystemRequest$WindowsConfiguration": "The Microsoft Windows configuration for the file system that's being created.
" } }, "CreateOntapVolumeConfiguration": { @@ -683,7 +683,7 @@ } }, "DataRepositoryTask": { - "base": "A description of the data repository task.
You use import and export data repository tasks to perform bulk transfer operations between an Amazon FSx for Lustre file system and a linked data repository.
You use release data repository tasks to release have been exported to a linked S3 bucketed files from your Amazon FSx for Lustre file system.
An Amazon File Cache resource uses a task to automatically release files from the cache.
To learn more about data repository tasks, see Data Repository Tasks.
", + "base": "A description of the data repository task.
You use import and export data repository tasks to perform bulk transfer operations between an Amazon FSx for Lustre file system and a linked data repository.
You use release data repository tasks to release files that have been exported to a linked S3 bucket from your Amazon FSx for Lustre file system.
An Amazon File Cache resource uses a task to automatically release files from the cache.
To learn more about data repository tasks, see Data Repository Tasks.
", "refs": { "CreateDataRepositoryTaskResponse$DataRepositoryTask": "The description of the data repository task that you just created.
", "DataRepositoryTasks$member": null @@ -1374,10 +1374,10 @@ "refs": { "CreateFileCacheRequest$FileCacheTypeVersion": "Sets the Lustre version for the cache that you're creating, which must be 2.12.
Sets the version for the Amazon FSx for Lustre file system that you're creating from a backup. Valid values are 2.10, 2.12, and 2.15.
You don't need to specify FileSystemTypeVersion because it will be applied using the backup's FileSystemTypeVersion setting. If you choose to specify FileSystemTypeVersion when creating from backup, the value must match the backup's FileSystemTypeVersion setting.
(Optional) For FSx for Lustre file systems, sets the Lustre version for the file system that you're creating. Valid values are 2.10, 2.12m and 2.15:
2.10 is supported by the Scratch and Persistent_1 Lustre deployment types.
2.12 and 2.15 are supported by all Lustre deployment types. 2.12 or 2.15 is required when setting FSx for Lustre DeploymentType to PERSISTENT_2.
Default value = 2.10, except when DeploymentType is set to PERSISTENT_2, then the default is 2.12.
If you set FileSystemTypeVersion to 2.10 for a PERSISTENT_2 Lustre deployment type, the CreateFileSystem operation fails.
(Optional) For FSx for Lustre file systems, sets the Lustre version for the file system that you're creating. Valid values are 2.10, 2.12, and 2.15:
2.10 is supported by the Scratch and Persistent_1 Lustre deployment types.
2.12 and 2.15 are supported by all Lustre deployment types. 2.12 or 2.15 is required when setting FSx for Lustre DeploymentType to PERSISTENT_2.
Default value = 2.10, except when DeploymentType is set to PERSISTENT_2, then the default is 2.12.
If you set FileSystemTypeVersion to 2.10 for a PERSISTENT_2 Lustre deployment type, the CreateFileSystem operation fails.
The Lustre version of the cache, which must be 2.12.
The Lustre version of the cache, which must be 2.12.
The Lustre version of the Amazon FSx for Lustre file system, which is 2.10, 2.12, or 2.15.
The Lustre version of the Amazon FSx for Lustre file system, which can be 2.10, 2.12, or 2.15.
Creates a running app for the specified UserProfile. This operation is automatically invoked by Amazon SageMaker Studio upon access to the associated Domain, and when new kernel configurations are selected by the user. A user may have multiple Apps active simultaneously.
", "CreateAppImageConfig": "Creates a configuration for running a SageMaker image as a KernelGateway app. The configuration specifies the Amazon Elastic File System (EFS) storage volume on the image, and a list of the kernels in the image.
", "CreateArtifact": "Creates an artifact. An artifact is a lineage tracking entity that represents a URI addressable object or data. Some examples are the S3 URI of a dataset and the ECR registry path of an image. For more information, see Amazon SageMaker ML Lineage Tracking.
", - "CreateAutoMLJob": "Creates an Autopilot job also referred to as Autopilot experiment or AutoML job.
We recommend using the new versions CreateAutoMLJobV2 and DescribeAutoMLJobV2, which offer backward compatibility.
CreateAutoMLJobV2 can manage tabular problem types identical to those of its previous version CreateAutoMLJob, as well as non-tabular problem types such as image or text classification.
Find guidelines about how to migrate a CreateAutoMLJob to CreateAutoMLJobV2 in Migrate a CreateAutoMLJob to CreateAutoMLJobV2.
You can find the best-performing model after you run an AutoML job by calling DescribeAutoMLJobV2 (recommended) or DescribeAutoMLJob.
", - "CreateAutoMLJobV2": "Creates an Autopilot job also referred to as Autopilot experiment or AutoML job V2.
CreateAutoMLJobV2 and DescribeAutoMLJobV2 are new versions of CreateAutoMLJob and DescribeAutoMLJob which offer backward compatibility.
CreateAutoMLJobV2 can manage tabular problem types identical to those of its previous version CreateAutoMLJob, as well as non-tabular problem types such as image or text classification.
Find guidelines about how to migrate a CreateAutoMLJob to CreateAutoMLJobV2 in Migrate a CreateAutoMLJob to CreateAutoMLJobV2.
For the list of available problem types supported by CreateAutoMLJobV2, see AutoMLProblemTypeConfig.
You can find the best-performing model after you run an AutoML job V2 by calling DescribeAutoMLJobV2.
", + "CreateAutoMLJob": "Creates an Autopilot job also referred to as Autopilot experiment or AutoML job.
We recommend using the new versions CreateAutoMLJobV2 and DescribeAutoMLJobV2, which offer backward compatibility.
CreateAutoMLJobV2 can manage tabular problem types identical to those of its previous version CreateAutoMLJob, as well as time-series forecasting, and non-tabular problem types such as image or text classification.
Find guidelines about how to migrate a CreateAutoMLJob to CreateAutoMLJobV2 in Migrate a CreateAutoMLJob to CreateAutoMLJobV2.
You can find the best-performing model after you run an AutoML job by calling DescribeAutoMLJobV2 (recommended) or DescribeAutoMLJob.
", + "CreateAutoMLJobV2": "Creates an Autopilot job also referred to as Autopilot experiment or AutoML job V2.
CreateAutoMLJobV2 and DescribeAutoMLJobV2 are new versions of CreateAutoMLJob and DescribeAutoMLJob which offer backward compatibility.
CreateAutoMLJobV2 can manage tabular problem types identical to those of its previous version CreateAutoMLJob, as well as time-series forecasting, and non-tabular problem types such as image or text classification.
Find guidelines about how to migrate a CreateAutoMLJob to CreateAutoMLJobV2 in Migrate a CreateAutoMLJob to CreateAutoMLJobV2.
For the list of available problem types supported by CreateAutoMLJobV2, see AutoMLProblemTypeConfig.
You can find the best-performing model after you run an AutoML job V2 by calling DescribeAutoMLJobV2.
", "CreateCodeRepository": "Creates a Git repository as a resource in your SageMaker account. You can associate the repository with notebook instances so that you can use Git source control for the notebooks you create. The Git repository is a resource in your SageMaker account, so it can be associated with more than one notebook instance, and it persists independently from the lifecycle of any notebook instances it is associated with.
The repository can be hosted either in Amazon Web Services CodeCommit or in any other Git repository.
", "CreateCompilationJob": "Starts a model compilation job. After the model has been compiled, Amazon SageMaker saves the resulting model artifacts to an Amazon Simple Storage Service (Amazon S3) bucket that you specify.
If you choose to host your model using Amazon SageMaker hosting services, you can use the resulting model artifacts as part of the model. You can also use the artifacts with Amazon Web Services IoT Greengrass. In that case, deploy them as an ML resource.
In the request body, you provide the following:
A name for the compilation job
Information about the input model artifacts
The output location for the compiled model and the device (target) that the model runs on
The Amazon Resource Name (ARN) of the IAM role that Amazon SageMaker assumes to perform the model compilation job.
You can also provide a Tag to track the model compilation job's resource use and costs. The response body contains the CompilationJobArn for the compiled job.
To stop a model compilation job, use StopCompilationJob. To get information about a particular model compilation job, use DescribeCompilationJob. To get information about multiple model compilation jobs, use ListCompilationJobs.
", "CreateContext": "Creates a context. A context is a lineage tracking entity that represents a logical grouping of other tracking or experiment entities. Some examples are an endpoint and a model package. For more information, see Amazon SageMaker ML Lineage Tracking.
", @@ -2271,6 +2271,12 @@ "TuningJobCompletionCriteria$ConvergenceDetected": "A flag to top your hyperparameter tuning job if automatic model tuning (AMT) has detected that your model has converged as evaluated against your objective function.
" } }, + "CountryCode": { + "base": null, + "refs": { + "HolidayConfigAttributes$CountryCode": "The country code for the holiday calendar.
For the list of public holiday calendars supported by AutoML job V2, see Country Codes. Use the country code corresponding to the country of your choice.
" + } + }, "CreateActionRequest": { "base": null, "refs": { @@ -5819,6 +5825,18 @@ "OidcMemberDefinition$Groups": "A list of comma seperated strings that identifies user groups in your OIDC IdP. Each user group is made up of a group of private workers.
" } }, + "HolidayConfig": { + "base": null, + "refs": { + "TimeSeriesForecastingJobConfig$HolidayConfig": "The collection of holiday featurization attributes used to incorporate national holiday information into your forecasting model.
" + } + }, + "HolidayConfigAttributes": { + "base": "Stores the holiday featurization attributes applicable to each item of time-series datasets during the training of a forecasting model. This allows the model to identify patterns associated with specific holidays.
", + "refs": { + "HolidayConfig$member": null + } + }, "HookParameters": { "base": null, "refs": { @@ -13604,9 +13622,9 @@ } }, "TimeSeriesForecastingJobConfig": { - "base": "The collection of settings used by an AutoML job V2 for the time-series forecasting problem type.
The TimeSeriesForecastingJobConfig problem type is only available in private beta. Contact Amazon Web Services Support or your account manager to learn more about access privileges.
The collection of settings used by an AutoML job V2 for the time-series forecasting problem type.
", "refs": { - "AutoMLProblemTypeConfig$TimeSeriesForecastingJobConfig": "Settings used to configure an AutoML job V2 for a time-series forecasting problem type.
The TimeSeriesForecastingJobConfig problem type is only available in private beta. Contact Amazon Web Services Support or your account manager to learn more about access privileges.
Settings used to configure an AutoML job V2 for a time-series forecasting problem type.
" } }, "TimeSeriesForecastingSettings": { diff --git a/models/apis/sso-admin/2020-07-20/api-2.json b/models/apis/sso-admin/2020-07-20/api-2.json index 494ed53dff4..74cff33261b 100644 --- a/models/apis/sso-admin/2020-07-20/api-2.json +++ b/models/apis/sso-admin/2020-07-20/api-2.json @@ -23,12 +23,12 @@ "input":{"shape":"AttachCustomerManagedPolicyReferenceToPermissionSetRequest"}, "output":{"shape":"AttachCustomerManagedPolicyReferenceToPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ServiceQuotaExceededException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -41,12 +41,12 @@ "input":{"shape":"AttachManagedPolicyToPermissionSetRequest"}, "output":{"shape":"AttachManagedPolicyToPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ServiceQuotaExceededException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -59,12 +59,12 @@ "input":{"shape":"CreateAccountAssignmentRequest"}, "output":{"shape":"CreateAccountAssignmentResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ServiceQuotaExceededException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -77,11 +77,11 @@ "input":{"shape":"CreateInstanceAccessControlAttributeConfigurationRequest"}, "output":{"shape":"CreateInstanceAccessControlAttributeConfigurationResponse"}, "errors":[ + {"shape":"ThrottlingException"}, {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, - {"shape":"ThrottlingException"}, {"shape":"ValidationException"}, - {"shape":"ResourceNotFoundException"}, {"shape":"ConflictException"} ] }, @@ -94,12 +94,12 @@ "input":{"shape":"CreatePermissionSetRequest"}, "output":{"shape":"CreatePermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ServiceQuotaExceededException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -112,11 +112,11 @@ "input":{"shape":"DeleteAccountAssignmentRequest"}, "output":{"shape":"DeleteAccountAssignmentResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -129,11 +129,11 @@ "input":{"shape":"DeleteInlinePolicyFromPermissionSetRequest"}, "output":{"shape":"DeleteInlinePolicyFromPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -146,11 +146,11 @@ "input":{"shape":"DeleteInstanceAccessControlAttributeConfigurationRequest"}, "output":{"shape":"DeleteInstanceAccessControlAttributeConfigurationResponse"}, "errors":[ + {"shape":"ThrottlingException"}, {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, - {"shape":"ThrottlingException"}, {"shape":"ValidationException"}, - {"shape":"ResourceNotFoundException"}, {"shape":"ConflictException"} ] }, @@ -163,11 +163,11 @@ "input":{"shape":"DeletePermissionSetRequest"}, "output":{"shape":"DeletePermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -180,11 +180,11 @@ "input":{"shape":"DeletePermissionsBoundaryFromPermissionSetRequest"}, "output":{"shape":"DeletePermissionsBoundaryFromPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "DescribeAccountAssignmentCreationStatus":{ @@ -196,11 +196,11 @@ "input":{"shape":"DescribeAccountAssignmentCreationStatusRequest"}, "output":{"shape":"DescribeAccountAssignmentCreationStatusResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "DescribeAccountAssignmentDeletionStatus":{ @@ -212,11 +212,11 @@ "input":{"shape":"DescribeAccountAssignmentDeletionStatusRequest"}, "output":{"shape":"DescribeAccountAssignmentDeletionStatusResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "DescribeInstanceAccessControlAttributeConfiguration":{ @@ -228,10 +228,10 @@ "input":{"shape":"DescribeInstanceAccessControlAttributeConfigurationRequest"}, "output":{"shape":"DescribeInstanceAccessControlAttributeConfigurationResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, + {"shape":"ThrottlingException"}, {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, - {"shape":"ThrottlingException"}, {"shape":"ValidationException"} ] }, @@ -244,11 +244,11 @@ "input":{"shape":"DescribePermissionSetRequest"}, "output":{"shape":"DescribePermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "DescribePermissionSetProvisioningStatus":{ @@ -260,11 +260,11 @@ "input":{"shape":"DescribePermissionSetProvisioningStatusRequest"}, "output":{"shape":"DescribePermissionSetProvisioningStatusResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "DetachCustomerManagedPolicyReferenceFromPermissionSet":{ @@ -276,11 +276,11 @@ "input":{"shape":"DetachCustomerManagedPolicyReferenceFromPermissionSetRequest"}, "output":{"shape":"DetachCustomerManagedPolicyReferenceFromPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -293,11 +293,11 @@ "input":{"shape":"DetachManagedPolicyFromPermissionSetRequest"}, "output":{"shape":"DetachManagedPolicyFromPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -310,11 +310,11 @@ "input":{"shape":"GetInlinePolicyForPermissionSetRequest"}, "output":{"shape":"GetInlinePolicyForPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "GetPermissionsBoundaryForPermissionSet":{ @@ -326,11 +326,11 @@ "input":{"shape":"GetPermissionsBoundaryForPermissionSetRequest"}, "output":{"shape":"GetPermissionsBoundaryForPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "ListAccountAssignmentCreationStatus":{ @@ -342,11 +342,11 @@ "input":{"shape":"ListAccountAssignmentCreationStatusRequest"}, "output":{"shape":"ListAccountAssignmentCreationStatusResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "ListAccountAssignmentDeletionStatus":{ @@ -358,11 +358,11 @@ "input":{"shape":"ListAccountAssignmentDeletionStatusRequest"}, "output":{"shape":"ListAccountAssignmentDeletionStatusResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "ListAccountAssignments":{ @@ -374,11 +374,11 @@ "input":{"shape":"ListAccountAssignmentsRequest"}, "output":{"shape":"ListAccountAssignmentsResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "ListAccountsForProvisionedPermissionSet":{ @@ -390,11 +390,11 @@ "input":{"shape":"ListAccountsForProvisionedPermissionSetRequest"}, "output":{"shape":"ListAccountsForProvisionedPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "ListCustomerManagedPolicyReferencesInPermissionSet":{ @@ -406,11 +406,11 @@ "input":{"shape":"ListCustomerManagedPolicyReferencesInPermissionSetRequest"}, "output":{"shape":"ListCustomerManagedPolicyReferencesInPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "ListInstances":{ @@ -422,8 +422,8 @@ "input":{"shape":"ListInstancesRequest"}, "output":{"shape":"ListInstancesResponse"}, "errors":[ - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, + {"shape":"InternalServerException"}, {"shape":"AccessDeniedException"}, {"shape":"ValidationException"} ] @@ -437,11 +437,11 @@ "input":{"shape":"ListManagedPoliciesInPermissionSetRequest"}, "output":{"shape":"ListManagedPoliciesInPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "ListPermissionSetProvisioningStatus":{ @@ -453,11 +453,11 @@ "input":{"shape":"ListPermissionSetProvisioningStatusRequest"}, "output":{"shape":"ListPermissionSetProvisioningStatusResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "ListPermissionSets":{ @@ -469,11 +469,11 @@ "input":{"shape":"ListPermissionSetsRequest"}, "output":{"shape":"ListPermissionSetsResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "ListPermissionSetsProvisionedToAccount":{ @@ -485,11 +485,11 @@ "input":{"shape":"ListPermissionSetsProvisionedToAccountRequest"}, "output":{"shape":"ListPermissionSetsProvisionedToAccountResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "ListTagsForResource":{ @@ -501,11 +501,11 @@ "input":{"shape":"ListTagsForResourceRequest"}, "output":{"shape":"ListTagsForResourceResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, - {"shape":"AccessDeniedException"} + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, + {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"} ] }, "ProvisionPermissionSet":{ @@ -517,11 +517,11 @@ "input":{"shape":"ProvisionPermissionSetRequest"}, "output":{"shape":"ProvisionPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -534,12 +534,12 @@ "input":{"shape":"PutInlinePolicyToPermissionSetRequest"}, "output":{"shape":"PutInlinePolicyToPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ServiceQuotaExceededException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -552,11 +552,11 @@ "input":{"shape":"PutPermissionsBoundaryToPermissionSetRequest"}, "output":{"shape":"PutPermissionsBoundaryToPermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -569,12 +569,12 @@ "input":{"shape":"TagResourceRequest"}, "output":{"shape":"TagResourceResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ServiceQuotaExceededException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -587,11 +587,11 @@ "input":{"shape":"UntagResourceRequest"}, "output":{"shape":"UntagResourceResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] }, @@ -604,11 +604,11 @@ "input":{"shape":"UpdateInstanceAccessControlAttributeConfigurationRequest"}, "output":{"shape":"UpdateInstanceAccessControlAttributeConfigurationResponse"}, "errors":[ + {"shape":"ThrottlingException"}, {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, - {"shape":"ThrottlingException"}, {"shape":"ValidationException"}, - {"shape":"ResourceNotFoundException"}, {"shape":"ConflictException"} ] }, @@ -621,11 +621,11 @@ "input":{"shape":"UpdatePermissionSetRequest"}, "output":{"shape":"UpdatePermissionSetResponse"}, "errors":[ - {"shape":"ResourceNotFoundException"}, - {"shape":"InternalServerException"}, {"shape":"ThrottlingException"}, - {"shape":"ValidationException"}, + {"shape":"InternalServerException"}, + {"shape":"ResourceNotFoundException"}, {"shape":"AccessDeniedException"}, + {"shape":"ValidationException"}, {"shape":"ConflictException"} ] } @@ -646,7 +646,7 @@ "type":"string", "max":128, "min":1, - "pattern":"[\\p{L}\\p{Z}\\p{N}_.:\\/=+\\-@]+" + "pattern":"^[\\p{L}\\p{Z}\\p{N}_.:\\/=+\\-@]+$" }, "AccessControlAttributeList":{ "type":"list", @@ -665,7 +665,7 @@ "type":"string", "max":256, "min":0, - "pattern":"[\\p{L}\\p{Z}\\p{N}_.:\\/=+\\-@\\[\\]\\{\\}\\$\\\\\"]*" + "pattern":"^[\\p{L}\\p{Z}\\p{N}_.:\\/=+\\-@\\[\\]\\{\\}\\$\\\\\"]*$" }, "AccessControlAttributeValueSourceList":{ "type":"list", @@ -686,8 +686,8 @@ "members":{ "AccountId":{"shape":"AccountId"}, "PermissionSetArn":{"shape":"PermissionSetArn"}, - "PrincipalType":{"shape":"PrincipalType"}, - "PrincipalId":{"shape":"PrincipalId"} + "PrincipalId":{"shape":"PrincipalId"}, + "PrincipalType":{"shape":"PrincipalType"} } }, "AccountAssignmentList":{ @@ -697,15 +697,15 @@ "AccountAssignmentOperationStatus":{ "type":"structure", "members":{ - "Status":{"shape":"StatusValues"}, - "RequestId":{"shape":"UUId"}, + "CreatedDate":{"shape":"Date"}, "FailureReason":{"shape":"Reason"}, - "TargetId":{"shape":"TargetId"}, - "TargetType":{"shape":"TargetType"}, "PermissionSetArn":{"shape":"PermissionSetArn"}, - "PrincipalType":{"shape":"PrincipalType"}, "PrincipalId":{"shape":"PrincipalId"}, - "CreatedDate":{"shape":"Date"} + "PrincipalType":{"shape":"PrincipalType"}, + "RequestId":{"shape":"UUId"}, + "Status":{"shape":"StatusValues"}, + "TargetId":{"shape":"TargetId"}, + "TargetType":{"shape":"TargetType"} } }, "AccountAssignmentOperationStatusList":{ @@ -715,16 +715,16 @@ "AccountAssignmentOperationStatusMetadata":{ "type":"structure", "members":{ - "Status":{"shape":"StatusValues"}, + "CreatedDate":{"shape":"Date"}, "RequestId":{"shape":"UUId"}, - "CreatedDate":{"shape":"Date"} + "Status":{"shape":"StatusValues"} } }, "AccountId":{ "type":"string", "max":12, "min":12, - "pattern":"\\d{12}" + "pattern":"^\\d{12}$" }, "AccountList":{ "type":"list", @@ -733,14 +733,14 @@ "AttachCustomerManagedPolicyReferenceToPermissionSetRequest":{ "type":"structure", "required":[ + "CustomerManagedPolicyReference", "InstanceArn", - "PermissionSetArn", - "CustomerManagedPolicyReference" + "PermissionSetArn" ], "members":{ + "CustomerManagedPolicyReference":{"shape":"CustomerManagedPolicyReference"}, "InstanceArn":{"shape":"InstanceArn"}, - "PermissionSetArn":{"shape":"PermissionSetArn"}, - "CustomerManagedPolicyReference":{"shape":"CustomerManagedPolicyReference"} + "PermissionSetArn":{"shape":"PermissionSetArn"} } }, "AttachCustomerManagedPolicyReferenceToPermissionSetResponse":{ @@ -752,13 +752,13 @@ "type":"structure", "required":[ "InstanceArn", - "PermissionSetArn", - "ManagedPolicyArn" + "ManagedPolicyArn", + "PermissionSetArn" ], "members":{ "InstanceArn":{"shape":"InstanceArn"}, - "PermissionSetArn":{"shape":"PermissionSetArn"}, - "ManagedPolicyArn":{"shape":"ManagedPolicyArn"} + "ManagedPolicyArn":{"shape":"ManagedPolicyArn"}, + "PermissionSetArn":{"shape":"PermissionSetArn"} } }, "AttachManagedPolicyToPermissionSetResponse":{ @@ -769,8 +769,8 @@ "AttachedManagedPolicy":{ "type":"structure", "members":{ - "Name":{"shape":"Name"}, - "Arn":{"shape":"ManagedPolicyArn"} + "Arn":{"shape":"ManagedPolicyArn"}, + "Name":{"shape":"Name"} } }, "AttachedManagedPolicyList":{ @@ -789,19 +789,19 @@ "type":"structure", "required":[ "InstanceArn", - "TargetId", - "TargetType", "PermissionSetArn", + "PrincipalId", "PrincipalType", - "PrincipalId" + "TargetId", + "TargetType" ], "members":{ "InstanceArn":{"shape":"InstanceArn"}, - "TargetId":{"shape":"TargetId"}, - "TargetType":{"shape":"TargetType"}, "PermissionSetArn":{"shape":"PermissionSetArn"}, + "PrincipalId":{"shape":"PrincipalId"}, "PrincipalType":{"shape":"PrincipalType"}, - "PrincipalId":{"shape":"PrincipalId"} + "TargetId":{"shape":"TargetId"}, + "TargetType":{"shape":"TargetType"} } }, "CreateAccountAssignmentResponse":{ @@ -813,12 +813,12 @@ "CreateInstanceAccessControlAttributeConfigurationRequest":{ "type":"structure", "required":[ - "InstanceArn", - "InstanceAccessControlAttributeConfiguration" + "InstanceAccessControlAttributeConfiguration", + "InstanceArn" ], "members":{ - "InstanceArn":{"shape":"InstanceArn"}, - "InstanceAccessControlAttributeConfiguration":{"shape":"InstanceAccessControlAttributeConfiguration"} + "InstanceAccessControlAttributeConfiguration":{"shape":"InstanceAccessControlAttributeConfiguration"}, + "InstanceArn":{"shape":"InstanceArn"} } }, "CreateInstanceAccessControlAttributeConfigurationResponse":{ @@ -829,15 +829,15 @@ "CreatePermissionSetRequest":{ "type":"structure", "required":[ - "Name", - "InstanceArn" + "InstanceArn", + "Name" ], "members":{ - "Name":{"shape":"PermissionSetName"}, "Description":{"shape":"PermissionSetDescription"}, "InstanceArn":{"shape":"InstanceArn"}, - "SessionDuration":{"shape":"Duration"}, + "Name":{"shape":"PermissionSetName"}, "RelayState":{"shape":"RelayState"}, + "SessionDuration":{"shape":"Duration"}, "Tags":{"shape":"TagList"} } }, @@ -864,19 +864,19 @@ "type":"structure", "required":[ "InstanceArn", - "TargetId", - "TargetType", "PermissionSetArn", + "PrincipalId", "PrincipalType", - "PrincipalId" + "TargetId", + "TargetType" ], "members":{ "InstanceArn":{"shape":"InstanceArn"}, - "TargetId":{"shape":"TargetId"}, - "TargetType":{"shape":"TargetType"}, "PermissionSetArn":{"shape":"PermissionSetArn"}, + "PrincipalId":{"shape":"PrincipalId"}, "PrincipalType":{"shape":"PrincipalType"}, - "PrincipalId":{"shape":"PrincipalId"} + "TargetId":{"shape":"TargetId"}, + "TargetType":{"shape":"TargetType"} } }, "DeleteAccountAssignmentResponse":{ @@ -948,12 +948,12 @@ "DescribeAccountAssignmentCreationStatusRequest":{ "type":"structure", "required":[ - "InstanceArn", - "AccountAssignmentCreationRequestId" + "AccountAssignmentCreationRequestId", + "InstanceArn" ], "members":{ - "InstanceArn":{"shape":"InstanceArn"}, - "AccountAssignmentCreationRequestId":{"shape":"UUId"} + "AccountAssignmentCreationRequestId":{"shape":"UUId"}, + "InstanceArn":{"shape":"InstanceArn"} } }, "DescribeAccountAssignmentCreationStatusResponse":{ @@ -965,12 +965,12 @@ "DescribeAccountAssignmentDeletionStatusRequest":{ "type":"structure", "required":[ - "InstanceArn", - "AccountAssignmentDeletionRequestId" + "AccountAssignmentDeletionRequestId", + "InstanceArn" ], "members":{ - "InstanceArn":{"shape":"InstanceArn"}, - "AccountAssignmentDeletionRequestId":{"shape":"UUId"} + "AccountAssignmentDeletionRequestId":{"shape":"UUId"}, + "InstanceArn":{"shape":"InstanceArn"} } }, "DescribeAccountAssignmentDeletionStatusResponse":{ @@ -989,9 +989,9 @@ "DescribeInstanceAccessControlAttributeConfigurationResponse":{ "type":"structure", "members":{ + "InstanceAccessControlAttributeConfiguration":{"shape":"InstanceAccessControlAttributeConfiguration"}, "Status":{"shape":"InstanceAccessControlAttributeConfigurationStatus"}, - "StatusReason":{"shape":"InstanceAccessControlAttributeConfigurationStatusReason"}, - "InstanceAccessControlAttributeConfiguration":{"shape":"InstanceAccessControlAttributeConfiguration"} + "StatusReason":{"shape":"InstanceAccessControlAttributeConfigurationStatusReason"} } }, "DescribePermissionSetProvisioningStatusRequest":{ @@ -1031,14 +1031,14 @@ "DetachCustomerManagedPolicyReferenceFromPermissionSetRequest":{ "type":"structure", "required":[ + "CustomerManagedPolicyReference", "InstanceArn", - "PermissionSetArn", - "CustomerManagedPolicyReference" + "PermissionSetArn" ], "members":{ + "CustomerManagedPolicyReference":{"shape":"CustomerManagedPolicyReference"}, "InstanceArn":{"shape":"InstanceArn"}, - "PermissionSetArn":{"shape":"PermissionSetArn"}, - "CustomerManagedPolicyReference":{"shape":"CustomerManagedPolicyReference"} + "PermissionSetArn":{"shape":"PermissionSetArn"} } }, "DetachCustomerManagedPolicyReferenceFromPermissionSetResponse":{ @@ -1050,13 +1050,13 @@ "type":"structure", "required":[ "InstanceArn", - "PermissionSetArn", - "ManagedPolicyArn" + "ManagedPolicyArn", + "PermissionSetArn" ], "members":{ "InstanceArn":{"shape":"InstanceArn"}, - "PermissionSetArn":{"shape":"PermissionSetArn"}, - "ManagedPolicyArn":{"shape":"ManagedPolicyArn"} + "ManagedPolicyArn":{"shape":"ManagedPolicyArn"}, + "PermissionSetArn":{"shape":"PermissionSetArn"} } }, "DetachManagedPolicyFromPermissionSetResponse":{ @@ -1108,7 +1108,7 @@ "type":"string", "max":64, "min":1, - "pattern":"^[a-zA-Z0-9-]*" + "pattern":"^[a-zA-Z0-9-]*$" }, "InstanceAccessControlAttributeConfiguration":{ "type":"structure", @@ -1130,7 +1130,7 @@ "type":"string", "max":1224, "min":10, - "pattern":"arn:(aws|aws-us-gov|aws-cn|aws-iso|aws-iso-b):sso:::instance/(sso)?ins-[a-zA-Z0-9-.]{16}" + "pattern":"^arn:(aws|aws-us-gov|aws-cn|aws-iso|aws-iso-b):sso:::instance/(sso)?ins-[a-zA-Z0-9-.]{16}$" }, "InstanceList":{ "type":"list", @@ -1139,8 +1139,8 @@ "InstanceMetadata":{ "type":"structure", "members":{ - "InstanceArn":{"shape":"InstanceArn"}, - "IdentityStoreId":{"shape":"Id"} + "IdentityStoreId":{"shape":"Id"}, + "InstanceArn":{"shape":"InstanceArn"} } }, "InternalFailureMessage":{"type":"string"}, @@ -1149,16 +1149,17 @@ "members":{ "Message":{"shape":"InternalFailureMessage"} }, - "exception":true + "exception":true, + "fault":true }, "ListAccountAssignmentCreationStatusRequest":{ "type":"structure", "required":["InstanceArn"], "members":{ + "Filter":{"shape":"OperationStatusFilter"}, "InstanceArn":{"shape":"InstanceArn"}, "MaxResults":{"shape":"MaxResults"}, - "NextToken":{"shape":"Token"}, - "Filter":{"shape":"OperationStatusFilter"} + "NextToken":{"shape":"Token"} } }, "ListAccountAssignmentCreationStatusResponse":{ @@ -1172,10 +1173,10 @@ "type":"structure", "required":["InstanceArn"], "members":{ + "Filter":{"shape":"OperationStatusFilter"}, "InstanceArn":{"shape":"InstanceArn"}, "MaxResults":{"shape":"MaxResults"}, - "NextToken":{"shape":"Token"}, - "Filter":{"shape":"OperationStatusFilter"} + "NextToken":{"shape":"Token"} } }, "ListAccountAssignmentDeletionStatusResponse":{ @@ -1188,16 +1189,16 @@ "ListAccountAssignmentsRequest":{ "type":"structure", "required":[ - "InstanceArn", "AccountId", + "InstanceArn", "PermissionSetArn" ], "members":{ - "InstanceArn":{"shape":"InstanceArn"}, "AccountId":{"shape":"TargetId"}, - "PermissionSetArn":{"shape":"PermissionSetArn"}, + "InstanceArn":{"shape":"InstanceArn"}, "MaxResults":{"shape":"MaxResults"}, - "NextToken":{"shape":"Token"} + "NextToken":{"shape":"Token"}, + "PermissionSetArn":{"shape":"PermissionSetArn"} } }, "ListAccountAssignmentsResponse":{ @@ -1215,10 +1216,10 @@ ], "members":{ "InstanceArn":{"shape":"InstanceArn"}, - "PermissionSetArn":{"shape":"PermissionSetArn"}, - "ProvisioningStatus":{"shape":"ProvisioningStatus"}, "MaxResults":{"shape":"MaxResults"}, - "NextToken":{"shape":"Token"} + "NextToken":{"shape":"Token"}, + "PermissionSetArn":{"shape":"PermissionSetArn"}, + "ProvisioningStatus":{"shape":"ProvisioningStatus"} } }, "ListAccountsForProvisionedPermissionSetResponse":{ @@ -1236,9 +1237,9 @@ ], "members":{ "InstanceArn":{"shape":"InstanceArn"}, - "PermissionSetArn":{"shape":"PermissionSetArn"}, "MaxResults":{"shape":"MaxResults"}, - "NextToken":{"shape":"Token"} + "NextToken":{"shape":"Token"}, + "PermissionSetArn":{"shape":"PermissionSetArn"} } }, "ListCustomerManagedPolicyReferencesInPermissionSetResponse":{ @@ -1270,9 +1271,9 @@ ], "members":{ "InstanceArn":{"shape":"InstanceArn"}, - "PermissionSetArn":{"shape":"PermissionSetArn"}, "MaxResults":{"shape":"MaxResults"}, - "NextToken":{"shape":"Token"} + "NextToken":{"shape":"Token"}, + "PermissionSetArn":{"shape":"PermissionSetArn"} } }, "ListManagedPoliciesInPermissionSetResponse":{ @@ -1286,31 +1287,31 @@ "type":"structure", "required":["InstanceArn"], "members":{ + "Filter":{"shape":"OperationStatusFilter"}, "InstanceArn":{"shape":"InstanceArn"}, "MaxResults":{"shape":"MaxResults"}, - "NextToken":{"shape":"Token"}, - "Filter":{"shape":"OperationStatusFilter"} + "NextToken":{"shape":"Token"} } }, "ListPermissionSetProvisioningStatusResponse":{ "type":"structure", "members":{ - "PermissionSetsProvisioningStatus":{"shape":"PermissionSetProvisioningStatusList"}, - "NextToken":{"shape":"Token"} + "NextToken":{"shape":"Token"}, + "PermissionSetsProvisioningStatus":{"shape":"PermissionSetProvisioningStatusList"} } }, "ListPermissionSetsProvisionedToAccountRequest":{ "type":"structure", "required":[ - "InstanceArn", - "AccountId" + "AccountId", + "InstanceArn" ], "members":{ - "InstanceArn":{"shape":"InstanceArn"}, "AccountId":{"shape":"AccountId"}, - "ProvisioningStatus":{"shape":"ProvisioningStatus"}, + "InstanceArn":{"shape":"InstanceArn"}, "MaxResults":{"shape":"MaxResults"}, - "NextToken":{"shape":"Token"} + "NextToken":{"shape":"Token"}, + "ProvisioningStatus":{"shape":"ProvisioningStatus"} } }, "ListPermissionSetsProvisionedToAccountResponse":{ @@ -1325,15 +1326,15 @@ "required":["InstanceArn"], "members":{ "InstanceArn":{"shape":"InstanceArn"}, - "NextToken":{"shape":"Token"}, - "MaxResults":{"shape":"MaxResults"} + "MaxResults":{"shape":"MaxResults"}, + "NextToken":{"shape":"Token"} } }, "ListPermissionSetsResponse":{ "type":"structure", "members":{ - "PermissionSets":{"shape":"PermissionSetList"}, - "NextToken":{"shape":"Token"} + "NextToken":{"shape":"Token"}, + "PermissionSets":{"shape":"PermissionSetList"} } }, "ListTagsForResourceRequest":{ @@ -1344,37 +1345,38 @@ ], "members":{ "InstanceArn":{"shape":"InstanceArn"}, - "ResourceArn":{"shape":"TaggableResourceArn"}, - "NextToken":{"shape":"Token"} + "NextToken":{"shape":"Token"}, + "ResourceArn":{"shape":"TaggableResourceArn"} } }, "ListTagsForResourceResponse":{ "type":"structure", "members":{ - "Tags":{"shape":"TagList"}, - "NextToken":{"shape":"Token"} + "NextToken":{"shape":"Token"}, + "Tags":{"shape":"TagList"} } }, "ManagedPolicyArn":{ "type":"string", "max":2048, "min":20, - "pattern":"arn:(aws|aws-us-gov|aws-cn|aws-iso|aws-iso-b):iam::aws:policy/[\\p{L}\\p{M}\\p{Z}\\p{S}\\p{N}\\p{P}]+" + "pattern":"^arn:(aws|aws-us-gov|aws-cn|aws-iso|aws-iso-b):iam::aws:policy/[\\p{L}\\p{M}\\p{Z}\\p{S}\\p{N}\\p{P}]+$" }, "ManagedPolicyName":{ "type":"string", "max":128, "min":1, - "pattern":"[\\w+=,.@-]+" + "pattern":"^[\\w+=,.@-]+$" }, "ManagedPolicyPath":{ "type":"string", "max":512, "min":1, - "pattern":"((/[A-Za-z0-9\\.,\\+@=_-]+)*)/" + "pattern":"^((/[A-Za-z0-9\\.,\\+@=_-]+)*)/$" }, "MaxResults":{ "type":"integer", + "box":true, "max":100, "min":1 }, @@ -1392,25 +1394,25 @@ "PermissionSet":{ "type":"structure", "members":{ + "CreatedDate":{"shape":"Date"}, + "Description":{"shape":"PermissionSetDescription"}, "Name":{"shape":"PermissionSetName"}, "PermissionSetArn":{"shape":"PermissionSetArn"}, - "Description":{"shape":"PermissionSetDescription"}, - "CreatedDate":{"shape":"Date"}, - "SessionDuration":{"shape":"Duration"}, - "RelayState":{"shape":"RelayState"} + "RelayState":{"shape":"RelayState"}, + "SessionDuration":{"shape":"Duration"} } }, "PermissionSetArn":{ "type":"string", "max":1224, "min":10, - "pattern":"arn:(aws|aws-us-gov|aws-cn|aws-iso|aws-iso-b):sso:::permissionSet/(sso)?ins-[a-zA-Z0-9-.]{16}/ps-[a-zA-Z0-9-./]{16}" + "pattern":"^arn:(aws|aws-us-gov|aws-cn|aws-iso|aws-iso-b):sso:::permissionSet/(sso)?ins-[a-zA-Z0-9-.]{16}/ps-[a-zA-Z0-9-./]{16}$" }, "PermissionSetDescription":{ "type":"string", "max":700, "min":1, - "pattern":"[\\u0009\\u000A\\u000D\\u0020-\\u007E\\u00A0-\\u00FF]*" + "pattern":"^[\\u0009\\u000A\\u000D\\u0020-\\u007E\\u00A1-\\u00FF]*$" }, "PermissionSetList":{ "type":"list", @@ -1420,23 +1422,23 @@ "type":"string", "max":32, "min":1, - "pattern":"[\\w+=,.@-]+" + "pattern":"^[\\w+=,.@-]+$" }, "PermissionSetPolicyDocument":{ "type":"string", - "max":10240, + "max":32768, "min":1, - "pattern":"[\\u0009\\u000A\\u000D\\u0020-\\u00FF]+" + "pattern":"^[\\u0009\\u000A\\u000D\\u0020-\\u00FF]+$" }, "PermissionSetProvisioningStatus":{ "type":"structure", "members":{ - "Status":{"shape":"StatusValues"}, - "RequestId":{"shape":"UUId"}, "AccountId":{"shape":"AccountId"}, - "PermissionSetArn":{"shape":"PermissionSetArn"}, + "CreatedDate":{"shape":"Date"}, "FailureReason":{"shape":"Reason"}, - "CreatedDate":{"shape":"Date"} + "PermissionSetArn":{"shape":"PermissionSetArn"}, + "RequestId":{"shape":"UUId"}, + "Status":{"shape":"StatusValues"} } }, "PermissionSetProvisioningStatusList":{ @@ -1446,9 +1448,9 @@ "PermissionSetProvisioningStatusMetadata":{ "type":"structure", "members":{ - "Status":{"shape":"StatusValues"}, + "CreatedDate":{"shape":"Date"}, "RequestId":{"shape":"UUId"}, - "CreatedDate":{"shape":"Date"} + "Status":{"shape":"StatusValues"} } }, "PermissionsBoundary":{ @@ -1508,14 +1510,14 @@ "PutInlinePolicyToPermissionSetRequest":{ "type":"structure", "required":[ + "InlinePolicy", "InstanceArn", - "PermissionSetArn", - "InlinePolicy" + "PermissionSetArn" ], "members":{ + "InlinePolicy":{"shape":"PermissionSetPolicyDocument"}, "InstanceArn":{"shape":"InstanceArn"}, - "PermissionSetArn":{"shape":"PermissionSetArn"}, - "InlinePolicy":{"shape":"PermissionSetPolicyDocument"} + "PermissionSetArn":{"shape":"PermissionSetArn"} } }, "PutInlinePolicyToPermissionSetResponse":{ @@ -1543,13 +1545,13 @@ }, "Reason":{ "type":"string", - "pattern":"[\\p{L}\\p{M}\\p{Z}\\p{S}\\p{N}\\p{P}]*" + "pattern":"^[\\p{L}\\p{M}\\p{Z}\\p{S}\\p{N}\\p{P}]*$" }, "RelayState":{ "type":"string", "max":240, "min":1, - "pattern":"[a-zA-Z0-9&$@#\\\\\\/%?=~\\-_'\"|!:,.;*+\\[\\]\\ \\(\\)\\{\\}]+" + "pattern":"^[a-zA-Z0-9&$@#\\\\\\/%?=~\\-_'\"|!:,.;*+\\[\\]\\ \\(\\)\\{\\}]+$" }, "ResourceNotFoundException":{ "type":"structure", @@ -1632,13 +1634,13 @@ "type":"string", "max":2048, "min":10, - "pattern":"arn:(aws|aws-us-gov|aws-cn|aws-iso|aws-iso-b):sso:::permissionSet/(sso)?ins-[a-zA-Z0-9-.]{16}/ps-[a-zA-Z0-9-./]{16}" + "pattern":"^arn:(aws|aws-us-gov|aws-cn|aws-iso|aws-iso-b):sso:::permissionSet/(sso)?ins-[a-zA-Z0-9-.]{16}/ps-[a-zA-Z0-9-./]{16}$" }, "TargetId":{ "type":"string", "max":12, "min":12, - "pattern":"\\d{12}" + "pattern":"^\\d{12}$" }, "TargetType":{ "type":"string", @@ -1655,13 +1657,14 @@ "Token":{ "type":"string", "max":2048, - "pattern":"^[-a-zA-Z0-9+=/_]*" + "min":0, + "pattern":"^[-a-zA-Z0-9+=/_]*$" }, "UUId":{ "type":"string", "max":36, "min":36, - "pattern":"\\b[0-9a-f]{8}\\b-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-\\b[0-9a-f]{12}\\b" + "pattern":"^\\b[0-9a-f]{8}\\b-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-\\b[0-9a-f]{12}\\b$" }, "UntagResourceRequest":{ "type":"structure", @@ -1684,12 +1687,12 @@ "UpdateInstanceAccessControlAttributeConfigurationRequest":{ "type":"structure", "required":[ - "InstanceArn", - "InstanceAccessControlAttributeConfiguration" + "InstanceAccessControlAttributeConfiguration", + "InstanceArn" ], "members":{ - "InstanceArn":{"shape":"InstanceArn"}, - "InstanceAccessControlAttributeConfiguration":{"shape":"InstanceAccessControlAttributeConfiguration"} + "InstanceAccessControlAttributeConfiguration":{"shape":"InstanceAccessControlAttributeConfiguration"}, + "InstanceArn":{"shape":"InstanceArn"} } }, "UpdateInstanceAccessControlAttributeConfigurationResponse":{ @@ -1704,11 +1707,11 @@ "PermissionSetArn" ], "members":{ + "Description":{"shape":"PermissionSetDescription"}, "InstanceArn":{"shape":"InstanceArn"}, "PermissionSetArn":{"shape":"PermissionSetArn"}, - "Description":{"shape":"PermissionSetDescription"}, - "SessionDuration":{"shape":"Duration"}, - "RelayState":{"shape":"RelayState"} + "RelayState":{"shape":"RelayState"}, + "SessionDuration":{"shape":"Duration"} } }, "UpdatePermissionSetResponse":{ diff --git a/models/apis/sso-admin/2020-07-20/docs-2.json b/models/apis/sso-admin/2020-07-20/docs-2.json index 11c38700f8b..e6290d2b687 100644 --- a/models/apis/sso-admin/2020-07-20/docs-2.json +++ b/models/apis/sso-admin/2020-07-20/docs-2.json @@ -1,13 +1,13 @@ { "version": "2.0", - "service": "AWS IAM Identity Center (successor to AWS Single Sign-On) helps you securely create, or connect, your workforce identities and manage their access centrally across AWS accounts and applications. IAM Identity Center is the recommended approach for workforce authentication and authorization in AWS, for organizations of any size and type.
Although AWS Single Sign-On was renamed, the sso and identitystore API namespaces will continue to retain their original name for backward compatibility purposes. For more information, see IAM Identity Center rename.
This reference guide provides information on single sign-on operations which could be used for access management of AWS accounts. For information about IAM Identity Center features, see the IAM Identity Center User Guide.
Many operations in the IAM Identity Center APIs rely on identifiers for users and groups, known as principals. For more information about how to work with principals and principal IDs in IAM Identity Center, see the Identity Store API Reference.
AWS provides SDKs that consist of libraries and sample code for various programming languages and platforms (Java, Ruby, .Net, iOS, Android, and more). The SDKs provide a convenient way to create programmatic access to IAM Identity Center and other AWS services. For more information about the AWS SDKs, including how to download and install them, see Tools for Amazon Web Services.
IAM Identity Center (successor to Single Sign-On) helps you securely create, or connect, your workforce identities and manage their access centrally across Amazon Web Services accounts and applications. IAM Identity Center is the recommended approach for workforce authentication and authorization in Amazon Web Services, for organizations of any size and type.
IAM Identity Center uses the sso and identitystore API namespaces.
This reference guide provides information on single sign-on operations which could be used for access management of Amazon Web Services accounts. For information about IAM Identity Center features, see the IAM Identity Center User Guide.
Many operations in the IAM Identity Center APIs rely on identifiers for users and groups, known as principals. For more information about how to work with principals and principal IDs in IAM Identity Center, see the Identity Store API Reference.
Amazon Web Services provides SDKs that consist of libraries and sample code for various programming languages and platforms (Java, Ruby, .Net, iOS, Android, and more). The SDKs provide a convenient way to create programmatic access to IAM Identity Center and other Amazon Web Services services. For more information about the Amazon Web Services SDKs, including how to download and install them, see Tools for Amazon Web Services.
Attaches the specified customer managed policy to the specified PermissionSet.
", - "AttachManagedPolicyToPermissionSet": "Attaches an AWS managed policy ARN to a permission set.
If the permission set is already referenced by one or more account assignments, you will need to call ProvisionPermissionSet after this operation. Calling ProvisionPermissionSet applies the corresponding IAM policy updates to all assigned accounts.
Assigns access to a principal for a specified AWS account using a specified permission set.
The term principal here refers to a user or group that is defined in IAM Identity Center.
As part of a successful CreateAccountAssignment call, the specified permission set will automatically be provisioned to the account in the form of an IAM policy. That policy is attached to the IAM role created in IAM Identity Center. If the permission set is subsequently updated, the corresponding IAM policies attached to roles in your accounts will not be updated automatically. In this case, you must call ProvisionPermissionSet to make these updates.
After a successful response, call DescribeAccountAssignmentCreationStatus to describe the status of an assignment creation request.
Attaches an Amazon Web Services managed policy ARN to a permission set.
If the permission set is already referenced by one or more account assignments, you will need to call ProvisionPermissionSet after this operation. Calling ProvisionPermissionSet applies the corresponding IAM policy updates to all assigned accounts.
Assigns access to a principal for a specified Amazon Web Services account using a specified permission set.
The term principal here refers to a user or group that is defined in IAM Identity Center.
As part of a successful CreateAccountAssignment call, the specified permission set will automatically be provisioned to the account in the form of an IAM policy. That policy is attached to the IAM role created in IAM Identity Center. If the permission set is subsequently updated, the corresponding IAM policies attached to roles in your accounts will not be updated automatically. In this case, you must call ProvisionPermissionSet to make these updates.
After a successful response, call DescribeAccountAssignmentCreationStatus to describe the status of an assignment creation request.
Enables the attributes-based access control (ABAC) feature for the specified IAM Identity Center instance. You can also specify new attributes to add to your ABAC configuration during the enabling process. For more information about ABAC, see Attribute-Based Access Control in the IAM Identity Center User Guide.
After a successful response, call DescribeInstanceAccessControlAttributeConfiguration to validate that InstanceAccessControlAttributeConfiguration was created.
Creates a permission set within a specified IAM Identity Center instance.
To grant users and groups access to AWS account resources, use CreateAccountAssignment .
Deletes a principal's access from a specified AWS account using a specified permission set.
After a successful response, call DescribeAccountAssignmentCreationStatus to describe the status of an assignment deletion request.
Creates a permission set within a specified IAM Identity Center instance.
To grant users and groups access to Amazon Web Services account resources, use CreateAccountAssignment .
Deletes a principal's access from a specified Amazon Web Services account using a specified permission set.
After a successful response, call DescribeAccountAssignmentDeletionStatus to describe the status of an assignment deletion request.
Deletes the inline policy from a specified permission set.
", "DeleteInstanceAccessControlAttributeConfiguration": "Disables the attributes-based access control (ABAC) feature for the specified IAM Identity Center instance and deletes all of the attribute mappings that have been configured. Once deleted, any attributes that are received from an identity source and any custom attributes you have previously configured will not be passed. For more information about ABAC, see Attribute-Based Access Control in the IAM Identity Center User Guide.
", "DeletePermissionSet": "Deletes the specified permission set.
", @@ -18,23 +18,23 @@ "DescribePermissionSet": "Gets the details of the permission set.
", "DescribePermissionSetProvisioningStatus": "Describes the status for the given permission set provisioning request.
", "DetachCustomerManagedPolicyReferenceFromPermissionSet": "Detaches the specified customer managed policy from the specified PermissionSet.
", - "DetachManagedPolicyFromPermissionSet": "Detaches the attached AWS managed policy ARN from the specified permission set.
", + "DetachManagedPolicyFromPermissionSet": "Detaches the attached Amazon Web Services managed policy ARN from the specified permission set.
", "GetInlinePolicyForPermissionSet": "Obtains the inline policy assigned to the permission set.
", "GetPermissionsBoundaryForPermissionSet": "Obtains the permissions boundary for a specified PermissionSet.
", - "ListAccountAssignmentCreationStatus": "Lists the status of the AWS account assignment creation requests for a specified IAM Identity Center instance.
", - "ListAccountAssignmentDeletionStatus": "Lists the status of the AWS account assignment deletion requests for a specified IAM Identity Center instance.
", - "ListAccountAssignments": "Lists the assignee of the specified AWS account with the specified permission set.
", - "ListAccountsForProvisionedPermissionSet": "Lists all the AWS accounts where the specified permission set is provisioned.
", + "ListAccountAssignmentCreationStatus": "Lists the status of the Amazon Web Services account assignment creation requests for a specified IAM Identity Center instance.
", + "ListAccountAssignmentDeletionStatus": "Lists the status of the Amazon Web Services account assignment deletion requests for a specified IAM Identity Center instance.
", + "ListAccountAssignments": "Lists the assignee of the specified Amazon Web Services account with the specified permission set.
", + "ListAccountsForProvisionedPermissionSet": "Lists all the Amazon Web Services accounts where the specified permission set is provisioned.
", "ListCustomerManagedPolicyReferencesInPermissionSet": "Lists all customer managed policies attached to a specified PermissionSet.
", "ListInstances": "Lists the IAM Identity Center instances that the caller has access to.
", - "ListManagedPoliciesInPermissionSet": "Lists the AWS managed policy that is attached to a specified permission set.
", + "ListManagedPoliciesInPermissionSet": "Lists the Amazon Web Services managed policy that is attached to a specified permission set.
", "ListPermissionSetProvisioningStatus": "Lists the status of the permission set provisioning requests for a specified IAM Identity Center instance.
", "ListPermissionSets": "Lists the PermissionSets in an IAM Identity Center instance.
", - "ListPermissionSetsProvisionedToAccount": "Lists all the permission sets that are provisioned to a specified AWS account.
", + "ListPermissionSetsProvisionedToAccount": "Lists all the permission sets that are provisioned to a specified Amazon Web Services account.
", "ListTagsForResource": "Lists the tags that are attached to a specified resource.
", "ProvisionPermissionSet": "The process by which a specified permission set is provisioned to the specified target.
", "PutInlinePolicyToPermissionSet": "Attaches an inline policy to a permission set.
If the permission set is already referenced by one or more account assignments, you will need to call ProvisionPermissionSet after this action to apply the corresponding IAM policy updates to all assigned accounts.
Attaches an AWS managed or customer managed policy to the specified PermissionSet as a permissions boundary.
", + "PutPermissionsBoundaryToPermissionSet": "Attaches an Amazon Web Services managed or customer managed policy to the specified PermissionSet as a permissions boundary.
", "TagResource": "Associates a set of tags with a specified resource.
", "UntagResource": "Disassociates a set of tags from a specified resource.
", "UpdateInstanceAccessControlAttributeConfiguration": "Updates the IAM Identity Center identity store attributes that you can use with the IAM Identity Center instance for attributes-based access control (ABAC). When using an external identity provider as an identity source, you can pass attributes through the SAML assertion as an alternative to configuring attributes from the IAM Identity Center identity store. If a SAML assertion passes any of these attributes, IAM Identity Center replaces the attribute value with the value from the IAM Identity Center identity store. For more information about ABAC, see Attribute-Based Access Control in the IAM Identity Center User Guide.
", @@ -42,7 +42,7 @@ }, "shapes": { "AccessControlAttribute": { - "base": "These are IAM Identity Center identity store attributes that you can configure for use in attributes-based access control (ABAC). You can create permissions policies that determine who can access your AWS resources based upon the configured attribute values. When you enable ABAC and specify AccessControlAttributes, IAM Identity Center passes the attribute values of the authenticated user into IAM for use in policy evaluation.
These are IAM Identity Center identity store attributes that you can configure for use in attributes-based access control (ABAC). You can create permissions policies that determine who can access your Amazon Web Services resources based upon the configured attribute values. When you enable ABAC and specify AccessControlAttributes, IAM Identity Center passes the attribute values of the authenticated user into IAM for use in policy evaluation.
The assignment that indicates a principal's limited access to a specified AWS account with a specified permission set.
The term principal here refers to a user or group that is defined in IAM Identity Center.
The assignment that indicates a principal's limited access to a specified Amazon Web Services account with a specified permission set.
The term principal here refers to a user or group that is defined in IAM Identity Center.
The list of assignments that match the input AWS account and permission set.
" + "ListAccountAssignmentsResponse$AccountAssignments": "The list of assignments that match the input Amazon Web Services account and permission set.
" } }, "AccountAssignmentOperationStatus": { @@ -125,16 +125,16 @@ "AccountId": { "base": null, "refs": { - "AccountAssignment$AccountId": "The identifier of the AWS account.
", + "AccountAssignment$AccountId": "The identifier of the Amazon Web Services account.
", "AccountList$member": null, - "ListPermissionSetsProvisionedToAccountRequest$AccountId": "The identifier of the AWS account from which to list the assignments.
", - "PermissionSetProvisioningStatus$AccountId": "The identifier of the AWS account from which to list the assignments.
" + "ListPermissionSetsProvisionedToAccountRequest$AccountId": "The identifier of the Amazon Web Services account from which to list the assignments.
", + "PermissionSetProvisioningStatus$AccountId": "The identifier of the Amazon Web Services account from which to list the assignments.
" } }, "AccountList": { "base": null, "refs": { - "ListAccountsForProvisionedPermissionSetResponse$AccountIds": "The list of AWS AccountIds.
The list of Amazon Web Services AccountIds.
A structure that stores the details of the AWS managed policy.
", + "base": "A structure that stores the details of the Amazon Web Services managed policy.
", "refs": { "AttachedManagedPolicyList$member": null } @@ -211,12 +211,12 @@ } }, "CustomerManagedPolicyReference": { - "base": "Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.
", + "base": "Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each Amazon Web Services account where you want to deploy your permission set.
", "refs": { - "AttachCustomerManagedPolicyReferenceToPermissionSetRequest$CustomerManagedPolicyReference": "Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.
", + "AttachCustomerManagedPolicyReferenceToPermissionSetRequest$CustomerManagedPolicyReference": "Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each Amazon Web Services account where you want to deploy your permission set.
", "CustomerManagedPolicyReferenceList$member": null, - "DetachCustomerManagedPolicyReferenceFromPermissionSetRequest$CustomerManagedPolicyReference": "Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.
", - "PermissionsBoundary$CustomerManagedPolicyReference": "Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each AWS account where you want to deploy your permission set.
" + "DetachCustomerManagedPolicyReferenceFromPermissionSetRequest$CustomerManagedPolicyReference": "Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each Amazon Web Services account where you want to deploy your permission set.
", + "PermissionsBoundary$CustomerManagedPolicyReference": "Specifies the name and path of a customer managed policy. You must have an IAM policy that matches the name and path in each Amazon Web Services account where you want to deploy your permission set.
" } }, "CustomerManagedPolicyReferenceList": { @@ -413,42 +413,42 @@ "base": null, "refs": { "AttachCustomerManagedPolicyReferenceToPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed.
", - "AttachManagedPolicyToPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "CreateAccountAssignmentRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "AttachManagedPolicyToPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "CreateAccountAssignmentRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "CreateInstanceAccessControlAttributeConfigurationRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed.
", - "CreatePermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "DeleteAccountAssignmentRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "DeleteInlinePolicyFromPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "CreatePermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "DeleteAccountAssignmentRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "DeleteInlinePolicyFromPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "DeleteInstanceAccessControlAttributeConfigurationRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed.
", - "DeletePermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "DeletePermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "DeletePermissionsBoundaryFromPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed.
", - "DescribeAccountAssignmentCreationStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "DescribeAccountAssignmentDeletionStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "DescribeAccountAssignmentCreationStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "DescribeAccountAssignmentDeletionStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "DescribeInstanceAccessControlAttributeConfigurationRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed.
", - "DescribePermissionSetProvisioningStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "DescribePermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "DescribePermissionSetProvisioningStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "DescribePermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "DetachCustomerManagedPolicyReferenceFromPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed.
", - "DetachManagedPolicyFromPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "GetInlinePolicyForPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "DetachManagedPolicyFromPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "GetInlinePolicyForPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "GetPermissionsBoundaryForPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed.
", - "InstanceMetadata$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "ListAccountAssignmentCreationStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "ListAccountAssignmentDeletionStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "ListAccountAssignmentsRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "ListAccountsForProvisionedPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "InstanceMetadata$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "ListAccountAssignmentCreationStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "ListAccountAssignmentDeletionStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "ListAccountAssignmentsRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "ListAccountsForProvisionedPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "ListCustomerManagedPolicyReferencesInPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed.
", - "ListManagedPoliciesInPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "ListPermissionSetProvisioningStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "ListPermissionSetsProvisionedToAccountRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "ListPermissionSetsRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "ListTagsForResourceRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "ProvisionPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "PutInlinePolicyToPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "ListManagedPoliciesInPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "ListPermissionSetProvisioningStatusRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "ListPermissionSetsProvisionedToAccountRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "ListPermissionSetsRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "ListTagsForResourceRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "ProvisionPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "PutInlinePolicyToPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "PutPermissionsBoundaryToPermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed.
", - "TagResourceRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "UntagResourceRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "TagResourceRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "UntagResourceRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "UpdateInstanceAccessControlAttributeConfigurationRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed.
", - "UpdatePermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
" + "UpdatePermissionSetRequest$InstanceArn": "The ARN of the IAM Identity Center instance under which the operation will be executed. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
" } }, "InstanceList": { @@ -587,10 +587,10 @@ "ManagedPolicyArn": { "base": null, "refs": { - "AttachManagedPolicyToPermissionSetRequest$ManagedPolicyArn": "The AWS managed policy ARN to be attached to a permission set.
", - "AttachedManagedPolicy$Arn": "The ARN of the AWS managed policy. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "DetachManagedPolicyFromPermissionSetRequest$ManagedPolicyArn": "The AWS managed policy ARN to be detached from a permission set.
", - "PermissionsBoundary$ManagedPolicyArn": "The AWS managed policy ARN that you want to attach to a permission set as a permissions boundary.
" + "AttachManagedPolicyToPermissionSetRequest$ManagedPolicyArn": "The Amazon Web Services managed policy ARN to be attached to a permission set.
", + "AttachedManagedPolicy$Arn": "The ARN of the Amazon Web Services managed policy. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "DetachManagedPolicyFromPermissionSetRequest$ManagedPolicyArn": "The Amazon Web Services managed policy ARN to be detached from a permission set.
", + "PermissionsBoundary$ManagedPolicyArn": "The Amazon Web Services managed policy ARN that you want to attach to a permission set as a permissions boundary.
" } }, "ManagedPolicyName": { @@ -623,7 +623,7 @@ "Name": { "base": null, "refs": { - "AttachedManagedPolicy$Name": "The name of the AWS managed policy.
" + "AttachedManagedPolicy$Name": "The name of the Amazon Web Services managed policy.
" } }, "OperationStatusFilter": { @@ -637,15 +637,15 @@ "PermissionSet": { "base": "An entity that contains IAM policies.
", "refs": { - "CreatePermissionSetResponse$PermissionSet": "Defines the level of access on an AWS account.
", - "DescribePermissionSetResponse$PermissionSet": "Describes the level of access on an AWS account.
" + "CreatePermissionSetResponse$PermissionSet": "Defines the level of access on an Amazon Web Services account.
", + "DescribePermissionSetResponse$PermissionSet": "Describes the level of access on an Amazon Web Services account.
" } }, "PermissionSetArn": { "base": null, "refs": { - "AccountAssignment$PermissionSetArn": "The ARN of the permission set. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", - "AccountAssignmentOperationStatus$PermissionSetArn": "The ARN of the permission set. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "AccountAssignment$PermissionSetArn": "The ARN of the permission set. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", + "AccountAssignmentOperationStatus$PermissionSetArn": "The ARN of the permission set. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "AttachCustomerManagedPolicyReferenceToPermissionSetRequest$PermissionSetArn": "The ARN of the PermissionSet.
The ARN of the PermissionSet that the managed policy should be attached to.
", "CreateAccountAssignmentRequest$PermissionSetArn": "The ARN of the permission set that the admin wants to grant the principal access to.
", @@ -659,12 +659,12 @@ "GetInlinePolicyForPermissionSetRequest$PermissionSetArn": "The ARN of the permission set.
", "GetPermissionsBoundaryForPermissionSetRequest$PermissionSetArn": "The ARN of the PermissionSet.
The ARN of the permission set from which to list assignments.
", - "ListAccountsForProvisionedPermissionSetRequest$PermissionSetArn": "The ARN of the PermissionSet from which the associated AWS accounts will be listed.
", + "ListAccountsForProvisionedPermissionSetRequest$PermissionSetArn": "The ARN of the PermissionSet from which the associated Amazon Web Services accounts will be listed.
", "ListCustomerManagedPolicyReferencesInPermissionSetRequest$PermissionSetArn": "The ARN of the PermissionSet.
The ARN of the PermissionSet whose managed policies will be listed.
", - "PermissionSet$PermissionSetArn": "The ARN of the permission set. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "PermissionSet$PermissionSetArn": "The ARN of the permission set. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "PermissionSetList$member": null, - "PermissionSetProvisioningStatus$PermissionSetArn": "The ARN of the permission set that is being provisioned. For more information about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces in the AWS General Reference.
", + "PermissionSetProvisioningStatus$PermissionSetArn": "The ARN of the permission set that is being provisioned. For more information about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces in the Amazon Web Services General Reference.
", "ProvisionPermissionSetRequest$PermissionSetArn": "The ARN of the permission set.
", "PutInlinePolicyToPermissionSetRequest$PermissionSetArn": "The ARN of the permission set.
", "PutPermissionsBoundaryToPermissionSetRequest$PermissionSetArn": "The ARN of the PermissionSet.
Defines the level of access that an AWS account has.
", - "ListPermissionSetsResponse$PermissionSets": "Defines the level of access on an AWS account.
" + "ListPermissionSetsProvisionedToAccountResponse$PermissionSets": "Defines the level of access that an Amazon Web Services account has.
", + "ListPermissionSetsResponse$PermissionSets": "Defines the level of access on an Amazon Web Services account.
" } }, "PermissionSetName": { @@ -696,7 +696,7 @@ "PermissionSetPolicyDocument": { "base": null, "refs": { - "GetInlinePolicyForPermissionSetResponse$InlinePolicy": "The inline policy that is attached to the permission set.
", + "GetInlinePolicyForPermissionSetResponse$InlinePolicy": "The inline policy that is attached to the permission set.
For Length Constraints, if a valid ARN is provided for a permission set, it is possible for an empty inline policy to be returned.
The inline policy to attach to a PermissionSet.
" } }, @@ -720,7 +720,7 @@ } }, "PermissionsBoundary": { - "base": "Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary. Specify either CustomerManagedPolicyReference to use the name and path of a customer managed policy, or ManagedPolicyArn to use the ARN of an AWS managed policy. A permissions boundary represents the maximum permissions that any policy can grant your role. For more information, see Permissions boundaries for IAM entities in the IAM User Guide.
Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see IAM JSON policy evaluation logic in the IAM User Guide.
Specifies the configuration of the Amazon Web Services managed or customer managed policy that you want to set as a permissions boundary. Specify either CustomerManagedPolicyReference to use the name and path of a customer managed policy, or ManagedPolicyArn to use the ARN of an Amazon Web Services managed policy. A permissions boundary represents the maximum permissions that any policy can grant your role. For more information, see Permissions boundaries for IAM entities in the IAM User Guide.
Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see IAM JSON policy evaluation logic in the IAM User Guide.
The permissions boundary attached to the specified permission set.
", "PutPermissionsBoundaryToPermissionSetRequest$PermissionsBoundary": "The permissions boundary that you want to attach to a PermissionSet.
The permission set provisioning status for an AWS account.
", + "ListAccountsForProvisionedPermissionSetRequest$ProvisioningStatus": "The permission set provisioning status for an Amazon Web Services account.
", "ListPermissionSetsProvisionedToAccountRequest$ProvisioningStatus": "The status object for the permission set provisioning operation.
" } }, @@ -835,7 +835,7 @@ } }, "Tag": { - "base": "A set of key-value pairs that are used to manage the resource. Tags can only be applied to permission sets and cannot be applied to corresponding roles that IAM Identity Center creates in AWS accounts.
", + "base": "A set of key-value pairs that are used to manage the resource. Tags can only be applied to permission sets and cannot be applied to corresponding roles that IAM Identity Center creates in Amazon Web Services accounts.
", "refs": { "TagList$member": null } @@ -888,11 +888,11 @@ "TargetId": { "base": null, "refs": { - "AccountAssignmentOperationStatus$TargetId": "TargetID is an AWS account identifier, typically a 10-12 digit string (For example, 123456789012).
", - "CreateAccountAssignmentRequest$TargetId": "TargetID is an AWS account identifier, typically a 10-12 digit string (For example, 123456789012).
", - "DeleteAccountAssignmentRequest$TargetId": "TargetID is an AWS account identifier, typically a 10-12 digit string (For example, 123456789012).
", - "ListAccountAssignmentsRequest$AccountId": "The identifier of the AWS account from which to list the assignments.
", - "ProvisionPermissionSetRequest$TargetId": "TargetID is an AWS account identifier, typically a 10-12 digit string (For example, 123456789012).
" + "AccountAssignmentOperationStatus$TargetId": "TargetID is an Amazon Web Services account identifier, (For example, 123456789012).
", + "CreateAccountAssignmentRequest$TargetId": "TargetID is an Amazon Web Services account identifier, (For example, 123456789012).
", + "DeleteAccountAssignmentRequest$TargetId": "TargetID is an Amazon Web Services account identifier, (For example, 123456789012).
", + "ListAccountAssignmentsRequest$AccountId": "The identifier of the Amazon Web Services account from which to list the assignments.
", + "ProvisionPermissionSetRequest$TargetId": "TargetID is an Amazon Web Services account identifier, (For example, 123456789012).
" } }, "TargetType": { diff --git a/models/apis/sso-admin/2020-07-20/endpoint-rule-set-1.json b/models/apis/sso-admin/2020-07-20/endpoint-rule-set-1.json index c68993a8641..16c56f9d87a 100644 --- a/models/apis/sso-admin/2020-07-20/endpoint-rule-set-1.json +++ b/models/apis/sso-admin/2020-07-20/endpoint-rule-set-1.json @@ -3,7 +3,7 @@ "parameters": { "Region": { "builtIn": "AWS::Region", - "required": true, + "required": false, "documentation": "The AWS region used to dispatch the request.", "type": "String" }, @@ -32,13 +32,12 @@ { "conditions": [ { - "fn": "aws.partition", + "fn": "isSet", "argv": [ { - "ref": "Region" + "ref": "Endpoint" } - ], - "assign": "PartitionResult" + ] } ], "type": "tree", @@ -46,64 +45,17 @@ { "conditions": [ { - "fn": "isSet", + "fn": "booleanEquals", "argv": [ { - "ref": "Endpoint" - } - ] - } - ], - "type": "tree", - "rules": [ - { - "conditions": [ - { - "fn": "booleanEquals", - "argv": [ - { - "ref": "UseFIPS" - }, - true - ] - } - ], - "error": "Invalid Configuration: FIPS and custom endpoint are not supported", - "type": "error" - }, - { - "conditions": [], - "type": "tree", - "rules": [ - { - "conditions": [ - { - "fn": "booleanEquals", - "argv": [ - { - "ref": "UseDualStack" - }, - true - ] - } - ], - "error": "Invalid Configuration: Dualstack and custom endpoint are not supported", - "type": "error" + "ref": "UseFIPS" }, - { - "conditions": [], - "endpoint": { - "url": { - "ref": "Endpoint" - }, - "properties": {}, - "headers": {} - }, - "type": "endpoint" - } + true ] } - ] + ], + "error": "Invalid Configuration: FIPS and custom endpoint are not supported", + "type": "error" }, { "conditions": [ @@ -111,19 +63,51 @@ "fn": "booleanEquals", "argv": [ { - "ref": "UseFIPS" + "ref": "UseDualStack" }, true ] + } + ], + "error": "Invalid Configuration: Dualstack and custom endpoint are not supported", + "type": "error" + }, + { + "conditions": [], + "endpoint": { + "url": { + "ref": "Endpoint" }, + "properties": {}, + "headers": {} + }, + "type": "endpoint" + } + ] + }, + { + "conditions": [ + { + "fn": "isSet", + "argv": [ { - "fn": "booleanEquals", + "ref": "Region" + } + ] + } + ], + "type": "tree", + "rules": [ + { + "conditions": [ + { + "fn": "aws.partition", "argv": [ { - "ref": "UseDualStack" - }, - true - ] + "ref": "Region" + } + ], + "assign": "PartitionResult" } ], "type": "tree", @@ -133,38 +117,57 @@ { "fn": "booleanEquals", "argv": [ - true, { - "fn": "getAttr", - "argv": [ - { - "ref": "PartitionResult" - }, - "supportsFIPS" - ] - } + "ref": "UseFIPS" + }, + true ] }, { "fn": "booleanEquals", "argv": [ - true, { - "fn": "getAttr", - "argv": [ - { - "ref": "PartitionResult" - }, - "supportsDualStack" - ] - } + "ref": "UseDualStack" + }, + true ] } ], "type": "tree", "rules": [ { - "conditions": [], + "conditions": [ + { + "fn": "booleanEquals", + "argv": [ + true, + { + "fn": "getAttr", + "argv": [ + { + "ref": "PartitionResult" + }, + "supportsFIPS" + ] + } + ] + }, + { + "fn": "booleanEquals", + "argv": [ + true, + { + "fn": "getAttr", + "argv": [ + { + "ref": "PartitionResult" + }, + "supportsDualStack" + ] + } + ] + } + ], "type": "tree", "rules": [ { @@ -177,52 +180,46 @@ "type": "endpoint" } ] + }, + { + "conditions": [], + "error": "FIPS and DualStack are enabled, but this partition does not support one or both", + "type": "error" } ] }, - { - "conditions": [], - "error": "FIPS and DualStack are enabled, but this partition does not support one or both", - "type": "error" - } - ] - }, - { - "conditions": [ - { - "fn": "booleanEquals", - "argv": [ - { - "ref": "UseFIPS" - }, - true - ] - } - ], - "type": "tree", - "rules": [ { "conditions": [ { "fn": "booleanEquals", "argv": [ - true, { - "fn": "getAttr", - "argv": [ - { - "ref": "PartitionResult" - }, - "supportsFIPS" - ] - } + "ref": "UseFIPS" + }, + true ] } ], "type": "tree", "rules": [ { - "conditions": [], + "conditions": [ + { + "fn": "booleanEquals", + "argv": [ + true, + { + "fn": "getAttr", + "argv": [ + { + "ref": "PartitionResult" + }, + "supportsFIPS" + ] + } + ] + } + ], "type": "tree", "rules": [ { @@ -260,52 +257,46 @@ "type": "endpoint" } ] + }, + { + "conditions": [], + "error": "FIPS is enabled but this partition does not support FIPS", + "type": "error" } ] }, - { - "conditions": [], - "error": "FIPS is enabled but this partition does not support FIPS", - "type": "error" - } - ] - }, - { - "conditions": [ - { - "fn": "booleanEquals", - "argv": [ - { - "ref": "UseDualStack" - }, - true - ] - } - ], - "type": "tree", - "rules": [ { "conditions": [ { "fn": "booleanEquals", "argv": [ - true, { - "fn": "getAttr", - "argv": [ - { - "ref": "PartitionResult" - }, - "supportsDualStack" - ] - } + "ref": "UseDualStack" + }, + true ] } ], "type": "tree", "rules": [ { - "conditions": [], + "conditions": [ + { + "fn": "booleanEquals", + "argv": [ + true, + { + "fn": "getAttr", + "argv": [ + { + "ref": "PartitionResult" + }, + "supportsDualStack" + ] + } + ] + } + ], "type": "tree", "rules": [ { @@ -318,57 +309,13 @@ "type": "endpoint" } ] - } - ] - }, - { - "conditions": [], - "error": "DualStack is enabled but this partition does not support DualStack", - "type": "error" - } - ] - }, - { - "conditions": [], - "type": "tree", - "rules": [ - { - "conditions": [ - { - "fn": "stringEquals", - "argv": [ - { - "ref": "Region" - }, - "us-gov-east-1" - ] - } - ], - "endpoint": { - "url": "https://sso.us-gov-east-1.amazonaws.com", - "properties": {}, - "headers": {} - }, - "type": "endpoint" - }, - { - "conditions": [ + }, { - "fn": "stringEquals", - "argv": [ - { - "ref": "Region" - }, - "us-gov-west-1" - ] + "conditions": [], + "error": "DualStack is enabled but this partition does not support DualStack", + "type": "error" } - ], - "endpoint": { - "url": "https://sso.us-gov-west-1.amazonaws.com", - "properties": {}, - "headers": {} - }, - "type": "endpoint" + ] }, { "conditions": [], @@ -382,6 +329,11 @@ ] } ] + }, + { + "conditions": [], + "error": "Invalid Configuration: Missing Region", + "type": "error" } ] } \ No newline at end of file diff --git a/models/apis/sso-admin/2020-07-20/endpoint-tests-1.json b/models/apis/sso-admin/2020-07-20/endpoint-tests-1.json index 31dc96614d6..a5dcad14253 100644 --- a/models/apis/sso-admin/2020-07-20/endpoint-tests-1.json +++ b/models/apis/sso-admin/2020-07-20/endpoint-tests-1.json @@ -1,81 +1,94 @@ { "testCases": [ { - "documentation": "For region us-gov-west-1 with FIPS disabled and DualStack disabled", + "documentation": "For region ap-east-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.us-gov-west-1.amazonaws.com" + "url": "https://sso.ap-east-1.amazonaws.com" } }, "params": { + "Region": "ap-east-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "us-gov-west-1" + "UseDualStack": false } }, { - "documentation": "For region us-gov-west-1 with FIPS enabled and DualStack disabled", + "documentation": "For region ap-northeast-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.us-gov-west-1.amazonaws.com" + "url": "https://sso.ap-northeast-1.amazonaws.com" } }, "params": { - "UseFIPS": true, - "UseDualStack": false, - "Region": "us-gov-west-1" + "Region": "ap-northeast-1", + "UseFIPS": false, + "UseDualStack": false } }, { - "documentation": "For region us-gov-east-1 with FIPS disabled and DualStack disabled", + "documentation": "For region ap-northeast-2 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.us-gov-east-1.amazonaws.com" + "url": "https://sso.ap-northeast-2.amazonaws.com" } }, "params": { + "Region": "ap-northeast-2", "UseFIPS": false, - "UseDualStack": false, - "Region": "us-gov-east-1" + "UseDualStack": false } }, { - "documentation": "For region us-gov-east-1 with FIPS enabled and DualStack disabled", + "documentation": "For region ap-northeast-3 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.us-gov-east-1.amazonaws.com" + "url": "https://sso.ap-northeast-3.amazonaws.com" } }, "params": { - "UseFIPS": true, - "UseDualStack": false, - "Region": "us-gov-east-1" + "Region": "ap-northeast-3", + "UseFIPS": false, + "UseDualStack": false } }, { - "documentation": "For region us-gov-east-1 with FIPS enabled and DualStack enabled", + "documentation": "For region ap-south-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso-fips.us-gov-east-1.api.aws" + "url": "https://sso.ap-south-1.amazonaws.com" } }, "params": { - "UseFIPS": true, - "UseDualStack": true, - "Region": "us-gov-east-1" + "Region": "ap-south-1", + "UseFIPS": false, + "UseDualStack": false } }, { - "documentation": "For region us-gov-east-1 with FIPS disabled and DualStack enabled", + "documentation": "For region ap-southeast-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.us-gov-east-1.api.aws" + "url": "https://sso.ap-southeast-1.amazonaws.com" } }, "params": { + "Region": "ap-southeast-1", "UseFIPS": false, - "UseDualStack": true, - "Region": "us-gov-east-1" + "UseDualStack": false + } + }, + { + "documentation": "For region ap-southeast-2 with FIPS disabled and DualStack disabled", + "expect": { + "endpoint": { + "url": "https://sso.ap-southeast-2.amazonaws.com" + } + }, + "params": { + "Region": "ap-southeast-2", + "UseFIPS": false, + "UseDualStack": false } }, { @@ -86,35 +99,35 @@ } }, "params": { + "Region": "ca-central-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "ca-central-1" + "UseDualStack": false } }, { - "documentation": "For region ap-east-1 with FIPS disabled and DualStack disabled", + "documentation": "For region eu-central-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.ap-east-1.amazonaws.com" + "url": "https://sso.eu-central-1.amazonaws.com" } }, "params": { + "Region": "eu-central-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "ap-east-1" + "UseDualStack": false } }, { - "documentation": "For region sa-east-1 with FIPS disabled and DualStack disabled", + "documentation": "For region eu-north-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.sa-east-1.amazonaws.com" + "url": "https://sso.eu-north-1.amazonaws.com" } }, "params": { + "Region": "eu-north-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "sa-east-1" + "UseDualStack": false } }, { @@ -125,321 +138,341 @@ } }, "params": { + "Region": "eu-south-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "eu-south-1" + "UseDualStack": false } }, { - "documentation": "For region me-south-1 with FIPS disabled and DualStack disabled", + "documentation": "For region eu-west-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.me-south-1.amazonaws.com" + "url": "https://sso.eu-west-1.amazonaws.com" } }, "params": { + "Region": "eu-west-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "me-south-1" + "UseDualStack": false } }, { - "documentation": "For region us-west-2 with FIPS disabled and DualStack disabled", + "documentation": "For region eu-west-2 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.us-west-2.amazonaws.com" + "url": "https://sso.eu-west-2.amazonaws.com" } }, "params": { + "Region": "eu-west-2", "UseFIPS": false, - "UseDualStack": false, - "Region": "us-west-2" + "UseDualStack": false } }, { - "documentation": "For region eu-central-1 with FIPS disabled and DualStack disabled", + "documentation": "For region eu-west-3 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.eu-central-1.amazonaws.com" + "url": "https://sso.eu-west-3.amazonaws.com" } }, "params": { + "Region": "eu-west-3", "UseFIPS": false, - "UseDualStack": false, - "Region": "eu-central-1" + "UseDualStack": false } }, { - "documentation": "For region ap-northeast-1 with FIPS disabled and DualStack disabled", + "documentation": "For region me-south-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.ap-northeast-1.amazonaws.com" + "url": "https://sso.me-south-1.amazonaws.com" } }, "params": { + "Region": "me-south-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "ap-northeast-1" + "UseDualStack": false } }, { - "documentation": "For region ap-northeast-3 with FIPS disabled and DualStack disabled", + "documentation": "For region sa-east-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.ap-northeast-3.amazonaws.com" + "url": "https://sso.sa-east-1.amazonaws.com" } }, "params": { + "Region": "sa-east-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "ap-northeast-3" + "UseDualStack": false } }, { - "documentation": "For region ap-northeast-2 with FIPS disabled and DualStack disabled", + "documentation": "For region us-east-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.ap-northeast-2.amazonaws.com" + "url": "https://sso.us-east-1.amazonaws.com" } }, "params": { + "Region": "us-east-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "ap-northeast-2" + "UseDualStack": false } }, { - "documentation": "For region eu-west-3 with FIPS disabled and DualStack disabled", + "documentation": "For region us-east-2 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.eu-west-3.amazonaws.com" + "url": "https://sso.us-east-2.amazonaws.com" } }, "params": { + "Region": "us-east-2", "UseFIPS": false, - "UseDualStack": false, - "Region": "eu-west-3" + "UseDualStack": false } }, { - "documentation": "For region eu-west-2 with FIPS disabled and DualStack disabled", + "documentation": "For region us-west-2 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.eu-west-2.amazonaws.com" + "url": "https://sso.us-west-2.amazonaws.com" } }, "params": { + "Region": "us-west-2", "UseFIPS": false, - "UseDualStack": false, - "Region": "eu-west-2" + "UseDualStack": false } }, { - "documentation": "For region eu-west-1 with FIPS disabled and DualStack disabled", + "documentation": "For region us-east-1 with FIPS enabled and DualStack enabled", "expect": { "endpoint": { - "url": "https://sso.eu-west-1.amazonaws.com" + "url": "https://sso-fips.us-east-1.api.aws" } }, "params": { - "UseFIPS": false, - "UseDualStack": false, - "Region": "eu-west-1" + "Region": "us-east-1", + "UseFIPS": true, + "UseDualStack": true } }, { - "documentation": "For region us-east-2 with FIPS disabled and DualStack disabled", + "documentation": "For region us-east-1 with FIPS enabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.us-east-2.amazonaws.com" + "url": "https://sso-fips.us-east-1.amazonaws.com" } }, "params": { - "UseFIPS": false, - "UseDualStack": false, - "Region": "us-east-2" + "Region": "us-east-1", + "UseFIPS": true, + "UseDualStack": false } }, { - "documentation": "For region us-east-1 with FIPS disabled and DualStack disabled", + "documentation": "For region us-east-1 with FIPS disabled and DualStack enabled", "expect": { "endpoint": { - "url": "https://sso.us-east-1.amazonaws.com" + "url": "https://sso.us-east-1.api.aws" } }, "params": { + "Region": "us-east-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "us-east-1" + "UseDualStack": true } }, { - "documentation": "For region ap-southeast-2 with FIPS disabled and DualStack disabled", + "documentation": "For region cn-north-1 with FIPS enabled and DualStack enabled", "expect": { "endpoint": { - "url": "https://sso.ap-southeast-2.amazonaws.com" + "url": "https://sso-fips.cn-north-1.api.amazonwebservices.com.cn" } }, "params": { - "UseFIPS": false, - "UseDualStack": false, - "Region": "ap-southeast-2" + "Region": "cn-north-1", + "UseFIPS": true, + "UseDualStack": true } }, { - "documentation": "For region eu-north-1 with FIPS disabled and DualStack disabled", + "documentation": "For region cn-north-1 with FIPS enabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.eu-north-1.amazonaws.com" + "url": "https://sso-fips.cn-north-1.amazonaws.com.cn" } }, "params": { - "UseFIPS": false, - "UseDualStack": false, - "Region": "eu-north-1" + "Region": "cn-north-1", + "UseFIPS": true, + "UseDualStack": false } }, { - "documentation": "For region ap-south-1 with FIPS disabled and DualStack disabled", + "documentation": "For region cn-north-1 with FIPS disabled and DualStack enabled", "expect": { "endpoint": { - "url": "https://sso.ap-south-1.amazonaws.com" + "url": "https://sso.cn-north-1.api.amazonwebservices.com.cn" } }, "params": { + "Region": "cn-north-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "ap-south-1" + "UseDualStack": true } }, { - "documentation": "For region ap-southeast-1 with FIPS disabled and DualStack disabled", + "documentation": "For region cn-north-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.ap-southeast-1.amazonaws.com" + "url": "https://sso.cn-north-1.amazonaws.com.cn" } }, "params": { + "Region": "cn-north-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "ap-southeast-1" + "UseDualStack": false } }, { - "documentation": "For region us-east-1 with FIPS enabled and DualStack enabled", + "documentation": "For region us-gov-east-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso-fips.us-east-1.api.aws" + "url": "https://sso.us-gov-east-1.amazonaws.com" } }, "params": { - "UseFIPS": true, - "UseDualStack": true, - "Region": "us-east-1" + "Region": "us-gov-east-1", + "UseFIPS": false, + "UseDualStack": false } }, { - "documentation": "For region us-east-1 with FIPS enabled and DualStack disabled", + "documentation": "For region us-gov-east-1 with FIPS enabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso-fips.us-east-1.amazonaws.com" + "url": "https://sso.us-gov-east-1.amazonaws.com" } }, "params": { + "Region": "us-gov-east-1", "UseFIPS": true, - "UseDualStack": false, - "Region": "us-east-1" + "UseDualStack": false } }, { - "documentation": "For region us-east-1 with FIPS disabled and DualStack enabled", + "documentation": "For region us-gov-west-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.us-east-1.api.aws" + "url": "https://sso.us-gov-west-1.amazonaws.com" } }, "params": { + "Region": "us-gov-west-1", "UseFIPS": false, - "UseDualStack": true, - "Region": "us-east-1" + "UseDualStack": false } }, { - "documentation": "For region us-iso-east-1 with FIPS enabled and DualStack disabled", + "documentation": "For region us-gov-west-1 with FIPS enabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso-fips.us-iso-east-1.c2s.ic.gov" + "url": "https://sso.us-gov-west-1.amazonaws.com" } }, "params": { + "Region": "us-gov-west-1", "UseFIPS": true, - "UseDualStack": false, - "Region": "us-iso-east-1" + "UseDualStack": false } }, { - "documentation": "For region us-iso-east-1 with FIPS disabled and DualStack disabled", + "documentation": "For region us-gov-east-1 with FIPS enabled and DualStack enabled", "expect": { "endpoint": { - "url": "https://sso.us-iso-east-1.c2s.ic.gov" + "url": "https://sso-fips.us-gov-east-1.api.aws" } }, "params": { - "UseFIPS": false, - "UseDualStack": false, - "Region": "us-iso-east-1" + "Region": "us-gov-east-1", + "UseFIPS": true, + "UseDualStack": true } }, { - "documentation": "For region cn-north-1 with FIPS enabled and DualStack enabled", + "documentation": "For region us-gov-east-1 with FIPS disabled and DualStack enabled", "expect": { "endpoint": { - "url": "https://sso-fips.cn-north-1.api.amazonwebservices.com.cn" + "url": "https://sso.us-gov-east-1.api.aws" } }, "params": { + "Region": "us-gov-east-1", + "UseFIPS": false, + "UseDualStack": true + } + }, + { + "documentation": "For region us-iso-east-1 with FIPS enabled and DualStack enabled", + "expect": { + "error": "FIPS and DualStack are enabled, but this partition does not support one or both" + }, + "params": { + "Region": "us-iso-east-1", "UseFIPS": true, - "UseDualStack": true, - "Region": "cn-north-1" + "UseDualStack": true } }, { - "documentation": "For region cn-north-1 with FIPS enabled and DualStack disabled", + "documentation": "For region us-iso-east-1 with FIPS enabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso-fips.cn-north-1.amazonaws.com.cn" + "url": "https://sso-fips.us-iso-east-1.c2s.ic.gov" } }, "params": { + "Region": "us-iso-east-1", "UseFIPS": true, - "UseDualStack": false, - "Region": "cn-north-1" + "UseDualStack": false } }, { - "documentation": "For region cn-north-1 with FIPS disabled and DualStack enabled", + "documentation": "For region us-iso-east-1 with FIPS disabled and DualStack enabled", "expect": { - "endpoint": { - "url": "https://sso.cn-north-1.api.amazonwebservices.com.cn" - } + "error": "DualStack is enabled but this partition does not support DualStack" }, "params": { + "Region": "us-iso-east-1", "UseFIPS": false, - "UseDualStack": true, - "Region": "cn-north-1" + "UseDualStack": true } }, { - "documentation": "For region cn-north-1 with FIPS disabled and DualStack disabled", + "documentation": "For region us-iso-east-1 with FIPS disabled and DualStack disabled", "expect": { "endpoint": { - "url": "https://sso.cn-north-1.amazonaws.com.cn" + "url": "https://sso.us-iso-east-1.c2s.ic.gov" } }, "params": { + "Region": "us-iso-east-1", "UseFIPS": false, - "UseDualStack": false, - "Region": "cn-north-1" + "UseDualStack": false + } + }, + { + "documentation": "For region us-isob-east-1 with FIPS enabled and DualStack enabled", + "expect": { + "error": "FIPS and DualStack are enabled, but this partition does not support one or both" + }, + "params": { + "Region": "us-isob-east-1", + "UseFIPS": true, + "UseDualStack": true } }, { @@ -450,9 +483,20 @@ } }, "params": { + "Region": "us-isob-east-1", "UseFIPS": true, - "UseDualStack": false, - "Region": "us-isob-east-1" + "UseDualStack": false + } + }, + { + "documentation": "For region us-isob-east-1 with FIPS disabled and DualStack enabled", + "expect": { + "error": "DualStack is enabled but this partition does not support DualStack" + }, + "params": { + "Region": "us-isob-east-1", + "UseFIPS": false, + "UseDualStack": true } }, { @@ -463,13 +507,27 @@ } }, "params": { + "Region": "us-isob-east-1", + "UseFIPS": false, + "UseDualStack": false + } + }, + { + "documentation": "For custom endpoint with region set and fips disabled and dualstack disabled", + "expect": { + "endpoint": { + "url": "https://example.com" + } + }, + "params": { + "Region": "us-east-1", "UseFIPS": false, "UseDualStack": false, - "Region": "us-isob-east-1" + "Endpoint": "https://example.com" } }, { - "documentation": "For custom endpoint with fips disabled and dualstack disabled", + "documentation": "For custom endpoint with region not set and fips disabled and dualstack disabled", "expect": { "endpoint": { "url": "https://example.com" @@ -478,7 +536,6 @@ "params": { "UseFIPS": false, "UseDualStack": false, - "Region": "us-east-1", "Endpoint": "https://example.com" } }, @@ -488,9 +545,9 @@ "error": "Invalid Configuration: FIPS and custom endpoint are not supported" }, "params": { + "Region": "us-east-1", "UseFIPS": true, "UseDualStack": false, - "Region": "us-east-1", "Endpoint": "https://example.com" } }, @@ -500,11 +557,17 @@ "error": "Invalid Configuration: Dualstack and custom endpoint are not supported" }, "params": { + "Region": "us-east-1", "UseFIPS": false, "UseDualStack": true, - "Region": "us-east-1", "Endpoint": "https://example.com" } + }, + { + "documentation": "Missing region", + "expect": { + "error": "Invalid Configuration: Missing Region" + } } ], "version": "1.0" diff --git a/models/apis/sso-admin/2020-07-20/paginators-1.json b/models/apis/sso-admin/2020-07-20/paginators-1.json index 7fd35593dde..759b37c3608 100644 --- a/models/apis/sso-admin/2020-07-20/paginators-1.json +++ b/models/apis/sso-admin/2020-07-20/paginators-1.json @@ -2,62 +2,62 @@ "pagination": { "ListAccountAssignmentCreationStatus": { "input_token": "NextToken", - "limit_key": "MaxResults", "output_token": "NextToken", + "limit_key": "MaxResults", "result_key": "AccountAssignmentsCreationStatus" }, "ListAccountAssignmentDeletionStatus": { "input_token": "NextToken", - "limit_key": "MaxResults", "output_token": "NextToken", + "limit_key": "MaxResults", "result_key": "AccountAssignmentsDeletionStatus" }, "ListAccountAssignments": { "input_token": "NextToken", - "limit_key": "MaxResults", "output_token": "NextToken", + "limit_key": "MaxResults", "result_key": "AccountAssignments" }, "ListAccountsForProvisionedPermissionSet": { "input_token": "NextToken", - "limit_key": "MaxResults", "output_token": "NextToken", + "limit_key": "MaxResults", "result_key": "AccountIds" }, "ListCustomerManagedPolicyReferencesInPermissionSet": { "input_token": "NextToken", - "limit_key": "MaxResults", "output_token": "NextToken", + "limit_key": "MaxResults", "result_key": "CustomerManagedPolicyReferences" }, "ListInstances": { "input_token": "NextToken", - "limit_key": "MaxResults", "output_token": "NextToken", + "limit_key": "MaxResults", "result_key": "Instances" }, "ListManagedPoliciesInPermissionSet": { "input_token": "NextToken", - "limit_key": "MaxResults", "output_token": "NextToken", + "limit_key": "MaxResults", "result_key": "AttachedManagedPolicies" }, "ListPermissionSetProvisioningStatus": { "input_token": "NextToken", - "limit_key": "MaxResults", "output_token": "NextToken", + "limit_key": "MaxResults", "result_key": "PermissionSetsProvisioningStatus" }, "ListPermissionSets": { "input_token": "NextToken", - "limit_key": "MaxResults", "output_token": "NextToken", + "limit_key": "MaxResults", "result_key": "PermissionSets" }, "ListPermissionSetsProvisionedToAccount": { "input_token": "NextToken", - "limit_key": "MaxResults", "output_token": "NextToken", + "limit_key": "MaxResults", "result_key": "PermissionSets" }, "ListTagsForResource": { @@ -66,4 +66,4 @@ "result_key": "Tags" } } -} \ No newline at end of file +} diff --git a/models/apis/workspaces/2015-04-08/api-2.json b/models/apis/workspaces/2015-04-08/api-2.json index d6a3e325576..d7984bd9cb3 100644 --- a/models/apis/workspaces/2015-04-08/api-2.json +++ b/models/apis/workspaces/2015-04-08/api-2.json @@ -1990,6 +1990,17 @@ "type":"string", "pattern":"^ami\\-([a-f0-9]{8}|[a-f0-9]{17})$" }, + "ErrorDetails":{ + "type":"structure", + "members":{ + "ErrorCode":{"shape":"WorkspaceImageErrorDetailCode"}, + "ErrorMessage":{"shape":"Description"} + } + }, + "ErrorDetailsList":{ + "type":"list", + "member":{"shape":"ErrorDetails"} + }, "ErrorType":{"type":"string"}, "ExceptionErrorCode":{"type":"string"}, "ExceptionMessage":{"type":"string"}, @@ -3148,7 +3159,8 @@ "ErrorMessage":{"shape":"Description"}, "Created":{"shape":"Timestamp"}, "OwnerAccountId":{"shape":"AwsAccount"}, - "Updates":{"shape":"UpdateResult"} + "Updates":{"shape":"UpdateResult"}, + "ErrorDetails":{"shape":"ErrorDetailsList"} } }, "WorkspaceImageDescription":{ @@ -3158,6 +3170,37 @@ "pattern":"^[a-zA-Z0-9_./() -]+$" }, "WorkspaceImageErrorCode":{"type":"string"}, + "WorkspaceImageErrorDetailCode":{ + "type":"string", + "enum":[ + "OutdatedPowershellVersion", + "OfficeInstalled", + "PCoIPAgentInstalled", + "WindowsUpdatesEnabled", + "AutoMountDisabled", + "WorkspacesBYOLAccountNotFound", + "WorkspacesBYOLAccountDisabled", + "DHCPDisabled", + "DiskFreeSpace", + "AdditionalDrivesAttached", + "OSNotSupported", + "DomainJoined", + "AzureDomainJoined", + "FirewallEnabled", + "VMWareToolsInstalled", + "DiskSizeExceeded", + "IncompatiblePartitioning", + "PendingReboot", + "AutoLogonEnabled", + "RealTimeUniversalDisabled", + "MultipleBootPartition", + "Requires64BitOS", + "ZeroRearmCount", + "InPlaceUpgrade", + "AntiVirusInstalled", + "UEFINotSupported" + ] + }, "WorkspaceImageId":{ "type":"string", "pattern":"wsi-[0-9a-z]{9,63}$" diff --git a/models/apis/workspaces/2015-04-08/docs-2.json b/models/apis/workspaces/2015-04-08/docs-2.json index f2027ba5bbf..72e719d85da 100644 --- a/models/apis/workspaces/2015-04-08/docs-2.json +++ b/models/apis/workspaces/2015-04-08/docs-2.json @@ -905,6 +905,7 @@ "base": null, "refs": { "AccountModification$ErrorMessage": "The text of the error message that is returned if the configuration of BYOL cannot be modified.
", + "ErrorDetails$ErrorMessage": "The text of the error message related the error code.
", "FailedCreateStandbyWorkspacesRequest$ErrorMessage": "The text of the error message that is returned if the standby WorkSpace could not be created.
", "FailedCreateWorkspaceRequest$ErrorMessage": "The text of the error message that is returned if the WorkSpace cannot be created.
", "FailedWorkspaceChangeRequest$ErrorMessage": "The text of the error message that is returned if the WorkSpace cannot be rebooted.
", @@ -992,6 +993,18 @@ "ImportWorkspaceImageRequest$Ec2ImageId": "The identifier of the EC2 image.
" } }, + "ErrorDetails": { + "base": "Provides in-depth details about the error. These details include the possible causes of the errors and troubleshooting information.
", + "refs": { + "ErrorDetailsList$member": null + } + }, + "ErrorDetailsList": { + "base": null, + "refs": { + "WorkspaceImage$ErrorDetails": "The details of the error returned for the image.
" + } + }, "ErrorType": { "base": null, "refs": { @@ -2139,6 +2152,12 @@ "WorkspaceImage$ErrorCode": "The error code that is returned for the image.
" } }, + "WorkspaceImageErrorDetailCode": { + "base": null, + "refs": { + "ErrorDetails$ErrorCode": "Indicates the error code returned.
" + } + }, "WorkspaceImageId": { "base": null, "refs": { diff --git a/models/apis/workspaces/2015-04-08/endpoint-rule-set-1.json b/models/apis/workspaces/2015-04-08/endpoint-rule-set-1.json index 828bc33d1b3..f07e0d5663c 100644 --- a/models/apis/workspaces/2015-04-08/endpoint-rule-set-1.json +++ b/models/apis/workspaces/2015-04-08/endpoint-rule-set-1.json @@ -58,52 +58,56 @@ "type": "error" }, { - "conditions": [], - "type": "tree", - "rules": [ + "conditions": [ { - "conditions": [ + "fn": "booleanEquals", + "argv": [ { - "fn": "booleanEquals", - "argv": [ - { - "ref": "UseDualStack" - }, - true - ] - } - ], - "error": "Invalid Configuration: Dualstack and custom endpoint are not supported", - "type": "error" - }, - { - "conditions": [], - "endpoint": { - "url": { - "ref": "Endpoint" + "ref": "UseDualStack" }, - "properties": {}, - "headers": {} - }, - "type": "endpoint" + true + ] } - ] + ], + "error": "Invalid Configuration: Dualstack and custom endpoint are not supported", + "type": "error" + }, + { + "conditions": [], + "endpoint": { + "url": { + "ref": "Endpoint" + }, + "properties": {}, + "headers": {} + }, + "type": "endpoint" } ] }, { - "conditions": [], + "conditions": [ + { + "fn": "isSet", + "argv": [ + { + "ref": "Region" + } + ] + } + ], "type": "tree", "rules": [ { "conditions": [ { - "fn": "isSet", + "fn": "aws.partition", "argv": [ { "ref": "Region" } - ] + ], + "assign": "PartitionResult" } ], "type": "tree", @@ -111,13 +115,22 @@ { "conditions": [ { - "fn": "aws.partition", + "fn": "booleanEquals", "argv": [ { - "ref": "Region" - } - ], - "assign": "PartitionResult" + "ref": "UseFIPS" + }, + true + ] + }, + { + "fn": "booleanEquals", + "argv": [ + { + "ref": "UseDualStack" + }, + true + ] } ], "type": "tree", @@ -127,224 +140,175 @@ { "fn": "booleanEquals", "argv": [ + true, { - "ref": "UseFIPS" - }, - true + "fn": "getAttr", + "argv": [ + { + "ref": "PartitionResult" + }, + "supportsFIPS" + ] + } ] }, { "fn": "booleanEquals", "argv": [ + true, { - "ref": "UseDualStack" - }, - true - ] - } - ], - "type": "tree", - "rules": [ - { - "conditions": [ - { - "fn": "booleanEquals", - "argv": [ - true, - { - "fn": "getAttr", - "argv": [ - { - "ref": "PartitionResult" - }, - "supportsFIPS" - ] - } - ] - }, - { - "fn": "booleanEquals", + "fn": "getAttr", "argv": [ - true, { - "fn": "getAttr", - "argv": [ - { - "ref": "PartitionResult" - }, - "supportsDualStack" - ] - } - ] - } - ], - "type": "tree", - "rules": [ - { - "conditions": [], - "type": "tree", - "rules": [ - { - "conditions": [], - "endpoint": { - "url": "https://workspaces-fips.{Region}.{PartitionResult#dualStackDnsSuffix}", - "properties": {}, - "headers": {} - }, - "type": "endpoint" - } + "ref": "PartitionResult" + }, + "supportsDualStack" ] } ] - }, + } + ], + "type": "tree", + "rules": [ { "conditions": [], - "error": "FIPS and DualStack are enabled, but this partition does not support one or both", - "type": "error" + "endpoint": { + "url": "https://workspaces-fips.{Region}.{PartitionResult#dualStackDnsSuffix}", + "properties": {}, + "headers": {} + }, + "type": "endpoint" } ] }, + { + "conditions": [], + "error": "FIPS and DualStack are enabled, but this partition does not support one or both", + "type": "error" + } + ] + }, + { + "conditions": [ + { + "fn": "booleanEquals", + "argv": [ + { + "ref": "UseFIPS" + }, + true + ] + } + ], + "type": "tree", + "rules": [ { "conditions": [ { "fn": "booleanEquals", "argv": [ + true, { - "ref": "UseFIPS" - }, - true - ] - } - ], - "type": "tree", - "rules": [ - { - "conditions": [ - { - "fn": "booleanEquals", + "fn": "getAttr", "argv": [ - true, - { - "fn": "getAttr", - "argv": [ - { - "ref": "PartitionResult" - }, - "supportsFIPS" - ] - } - ] - } - ], - "type": "tree", - "rules": [ - { - "conditions": [], - "type": "tree", - "rules": [ { - "conditions": [], - "endpoint": { - "url": "https://workspaces-fips.{Region}.{PartitionResult#dnsSuffix}", - "properties": {}, - "headers": {} - }, - "type": "endpoint" - } + "ref": "PartitionResult" + }, + "supportsFIPS" ] } ] - }, + } + ], + "type": "tree", + "rules": [ { "conditions": [], - "error": "FIPS is enabled but this partition does not support FIPS", - "type": "error" + "endpoint": { + "url": "https://workspaces-fips.{Region}.{PartitionResult#dnsSuffix}", + "properties": {}, + "headers": {} + }, + "type": "endpoint" } ] }, + { + "conditions": [], + "error": "FIPS is enabled but this partition does not support FIPS", + "type": "error" + } + ] + }, + { + "conditions": [ + { + "fn": "booleanEquals", + "argv": [ + { + "ref": "UseDualStack" + }, + true + ] + } + ], + "type": "tree", + "rules": [ { "conditions": [ { "fn": "booleanEquals", "argv": [ + true, { - "ref": "UseDualStack" - }, - true - ] - } - ], - "type": "tree", - "rules": [ - { - "conditions": [ - { - "fn": "booleanEquals", + "fn": "getAttr", "argv": [ - true, { - "fn": "getAttr", - "argv": [ - { - "ref": "PartitionResult" - }, - "supportsDualStack" - ] - } - ] - } - ], - "type": "tree", - "rules": [ - { - "conditions": [], - "type": "tree", - "rules": [ - { - "conditions": [], - "endpoint": { - "url": "https://workspaces.{Region}.{PartitionResult#dualStackDnsSuffix}", - "properties": {}, - "headers": {} - }, - "type": "endpoint" - } + "ref": "PartitionResult" + }, + "supportsDualStack" ] } ] - }, - { - "conditions": [], - "error": "DualStack is enabled but this partition does not support DualStack", - "type": "error" } - ] - }, - { - "conditions": [], + ], "type": "tree", "rules": [ { "conditions": [], "endpoint": { - "url": "https://workspaces.{Region}.{PartitionResult#dnsSuffix}", + "url": "https://workspaces.{Region}.{PartitionResult#dualStackDnsSuffix}", "properties": {}, "headers": {} }, "type": "endpoint" } ] + }, + { + "conditions": [], + "error": "DualStack is enabled but this partition does not support DualStack", + "type": "error" } ] + }, + { + "conditions": [], + "endpoint": { + "url": "https://workspaces.{Region}.{PartitionResult#dnsSuffix}", + "properties": {}, + "headers": {} + }, + "type": "endpoint" } ] - }, - { - "conditions": [], - "error": "Invalid Configuration: Missing Region", - "type": "error" } ] + }, + { + "conditions": [], + "error": "Invalid Configuration: Missing Region", + "type": "error" } ] } \ No newline at end of file diff --git a/models/endpoints/endpoints.json b/models/endpoints/endpoints.json index 50d1601ec16..6cbfc2afd8c 100644 --- a/models/endpoints/endpoints.json +++ b/models/endpoints/endpoints.json @@ -19027,6 +19027,12 @@ "isRegionalized" : false, "partitionEndpoint" : "aws-cn-global" }, + "identitystore" : { + "endpoints" : { + "cn-north-1" : { }, + "cn-northwest-1" : { } + } + }, "internetmonitor" : { "defaults" : { "dnsSuffix" : "api.amazonwebservices.com.cn", diff --git a/service/fsx/api.go b/service/fsx/api.go index 935f3187942..931376e931a 100644 --- a/service/fsx/api.go +++ b/service/fsx/api.go @@ -7868,7 +7868,7 @@ type CreateFileSystemInput struct { FileSystemType *string `type:"string" required:"true" enum:"FileSystemType"` // (Optional) For FSx for Lustre file systems, sets the Lustre version for the - // file system that you're creating. Valid values are 2.10, 2.12m and 2.15: + // file system that you're creating. Valid values are 2.10, 2.12, and 2.15: // // * 2.10 is supported by the Scratch and Persistent_1 Lustre deployment // types. @@ -11067,8 +11067,8 @@ func (s *DataRepositoryFailureDetails) SetMessage(v string) *DataRepositoryFailu // operations between an Amazon FSx for Lustre file system and a linked data // repository. // -// - You use release data repository tasks to release have been exported -// to a linked S3 bucketed files from your Amazon FSx for Lustre file system. +// - You use release data repository tasks to release files that have been +// exported to a linked S3 bucket from your Amazon FSx for Lustre file system. // // - An Amazon File Cache resource uses a task to automatically release files // from the cache. @@ -15186,8 +15186,8 @@ type FileSystem struct { // or OPENZFS. FileSystemType *string `type:"string" enum:"FileSystemType"` - // The Lustre version of the Amazon FSx for Lustre file system, which is 2.10, - // 2.12, or 2.15. + // The Lustre version of the Amazon FSx for Lustre file system, which can be + // 2.10, 2.12, or 2.15. FileSystemTypeVersion *string `min:"1" type:"string"` // The ID of the Key Management Service (KMS) key used to encrypt Amazon FSx diff --git a/service/sagemaker/api.go b/service/sagemaker/api.go index 7fb3c60c19c..96d72027dbd 100644 --- a/service/sagemaker/api.go +++ b/service/sagemaker/api.go @@ -811,8 +811,8 @@ func (c *SageMaker) CreateAutoMLJobRequest(input *CreateAutoMLJobInput) (req *re // which offer backward compatibility. // // CreateAutoMLJobV2 can manage tabular problem types identical to those of -// its previous version CreateAutoMLJob, as well as non-tabular problem types -// such as image or text classification. +// its previous version CreateAutoMLJob, as well as time-series forecasting, +// and non-tabular problem types such as image or text classification. // // Find guidelines about how to migrate a CreateAutoMLJob to CreateAutoMLJobV2 // in Migrate a CreateAutoMLJob to CreateAutoMLJobV2 (https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-automate-model-development-create-experiment-api.html#autopilot-create-experiment-api-migrate-v1-v2). @@ -912,8 +912,8 @@ func (c *SageMaker) CreateAutoMLJobV2Request(input *CreateAutoMLJobV2Input) (req // which offer backward compatibility. // // CreateAutoMLJobV2 can manage tabular problem types identical to those of -// its previous version CreateAutoMLJob, as well as non-tabular problem types -// such as image or text classification. +// its previous version CreateAutoMLJob, as well as time-series forecasting, +// and non-tabular problem types such as image or text classification. // // Find guidelines about how to migrate a CreateAutoMLJob to CreateAutoMLJobV2 // in Migrate a CreateAutoMLJob to CreateAutoMLJobV2 (https://docs.aws.amazon.com/sagemaker/latest/dg/autopilot-automate-model-development-create-experiment-api.html#autopilot-create-experiment-api-migrate-v1-v2). @@ -32949,10 +32949,6 @@ type AutoMLProblemTypeConfig struct { // Settings used to configure an AutoML job V2 for a time-series forecasting // problem type. - // - // The TimeSeriesForecastingJobConfig problem type is only available in private - // beta. Contact Amazon Web Services Support or your account manager to learn - // more about access privileges. TimeSeriesForecastingJobConfig *TimeSeriesForecastingJobConfig `type:"structure"` } @@ -69942,6 +69938,57 @@ func (s *GitConfigForUpdate) SetSecretArn(v string) *GitConfigForUpdate { return s } +// Stores the holiday featurization attributes applicable to each item of time-series +// datasets during the training of a forecasting model. This allows the model +// to identify patterns associated with specific holidays. +type HolidayConfigAttributes struct { + _ struct{} `type:"structure"` + + // The country code for the holiday calendar. + // + // For the list of public holiday calendars supported by AutoML job V2, see + // Country Codes (https://docs.aws.amazon.com/forecast/latest/dg/holidays.html#holidays-country-codes). + // Use the country code corresponding to the country of your choice. + CountryCode *string `min:"2" type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s HolidayConfigAttributes) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s HolidayConfigAttributes) GoString() string { + return s.String() +} + +// Validate inspects the fields of the type to determine if they are valid. +func (s *HolidayConfigAttributes) Validate() error { + invalidParams := request.ErrInvalidParams{Context: "HolidayConfigAttributes"} + if s.CountryCode != nil && len(*s.CountryCode) < 2 { + invalidParams.Add(request.NewErrParamMinLen("CountryCode", 2)) + } + + if invalidParams.Len() > 0 { + return invalidParams + } + return nil +} + +// SetCountryCode sets the CountryCode field's value. +func (s *HolidayConfigAttributes) SetCountryCode(v string) *HolidayConfigAttributes { + s.CountryCode = &v + return s +} + // Any dependencies related to hub content, such as scripts, model artifacts, // datasets, or notebooks. type HubContentDependency struct { @@ -108441,10 +108488,6 @@ func (s *TimeSeriesConfig) SetTimestampAttributeName(v string) *TimeSeriesConfig // The collection of settings used by an AutoML job V2 for the time-series forecasting // problem type. -// -// The TimeSeriesForecastingJobConfig problem type is only available in private -// beta. Contact Amazon Web Services Support or your account manager to learn -// more about access privileges. type TimeSeriesForecastingJobConfig struct { _ struct{} `type:"structure"` @@ -108512,6 +108555,10 @@ type TimeSeriesForecastingJobConfig struct { // is not provided, the AutoML job uses the quantiles p10, p50, and p90 as default. ForecastQuantiles []*string `min:"1" type:"list"` + // The collection of holiday featurization attributes used to incorporate national + // holiday information into your forecasting model. + HolidayConfig []*HolidayConfigAttributes `min:"1" type:"list"` + // The collection of components that defines the time-series. // // TimeSeriesConfig is a required field @@ -108558,6 +108605,9 @@ func (s *TimeSeriesForecastingJobConfig) Validate() error { if s.ForecastQuantiles != nil && len(s.ForecastQuantiles) < 1 { invalidParams.Add(request.NewErrParamMinLen("ForecastQuantiles", 1)) } + if s.HolidayConfig != nil && len(s.HolidayConfig) < 1 { + invalidParams.Add(request.NewErrParamMinLen("HolidayConfig", 1)) + } if s.TimeSeriesConfig == nil { invalidParams.Add(request.NewErrParamRequired("TimeSeriesConfig")) } @@ -108566,6 +108616,16 @@ func (s *TimeSeriesForecastingJobConfig) Validate() error { invalidParams.AddNested("CompletionCriteria", err.(request.ErrInvalidParams)) } } + if s.HolidayConfig != nil { + for i, v := range s.HolidayConfig { + if v == nil { + continue + } + if err := v.Validate(); err != nil { + invalidParams.AddNested(fmt.Sprintf("%s[%v]", "HolidayConfig", i), err.(request.ErrInvalidParams)) + } + } + } if s.TimeSeriesConfig != nil { if err := s.TimeSeriesConfig.Validate(); err != nil { invalidParams.AddNested("TimeSeriesConfig", err.(request.ErrInvalidParams)) @@ -108613,6 +108673,12 @@ func (s *TimeSeriesForecastingJobConfig) SetForecastQuantiles(v []*string) *Time return s } +// SetHolidayConfig sets the HolidayConfig field's value. +func (s *TimeSeriesForecastingJobConfig) SetHolidayConfig(v []*HolidayConfigAttributes) *TimeSeriesForecastingJobConfig { + s.HolidayConfig = v + return s +} + // SetTimeSeriesConfig sets the TimeSeriesConfig field's value. func (s *TimeSeriesForecastingJobConfig) SetTimeSeriesConfig(v *TimeSeriesConfig) *TimeSeriesForecastingJobConfig { s.TimeSeriesConfig = v diff --git a/service/ssoadmin/api.go b/service/ssoadmin/api.go index d2a68c18f0e..7d26ea1a853 100644 --- a/service/ssoadmin/api.go +++ b/service/ssoadmin/api.go @@ -68,13 +68,6 @@ func (c *SSOAdmin) AttachCustomerManagedPolicyReferenceToPermissionSetRequest(in // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. -// -// - InternalServerException -// The request processing has failed because of an unknown error, exception, -// or failure with an internal server. -// // - ServiceQuotaExceededException // Indicates that the principal has crossed the permitted number of resources // that can be created. @@ -83,12 +76,19 @@ func (c *SSOAdmin) AttachCustomerManagedPolicyReferenceToPermissionSetRequest(in // Indicates that the principal has crossed the throttling limits of the API // operations. // -// - ValidationException -// The request failed because it contains a syntax error. +// - InternalServerException +// The request processing has failed because of an unknown error, exception, +// or failure with an internal server. +// +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -161,7 +161,7 @@ func (c *SSOAdmin) AttachManagedPolicyToPermissionSetRequest(input *AttachManage // AttachManagedPolicyToPermissionSet API operation for AWS Single Sign-On Admin. // -// Attaches an AWS managed policy ARN to a permission set. +// Attaches an Amazon Web Services managed policy ARN to a permission set. // // If the permission set is already referenced by one or more account assignments, // you will need to call ProvisionPermissionSet after this operation. Calling @@ -177,13 +177,6 @@ func (c *SSOAdmin) AttachManagedPolicyToPermissionSetRequest(input *AttachManage // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. -// -// - InternalServerException -// The request processing has failed because of an unknown error, exception, -// or failure with an internal server. -// // - ServiceQuotaExceededException // Indicates that the principal has crossed the permitted number of resources // that can be created. @@ -192,12 +185,19 @@ func (c *SSOAdmin) AttachManagedPolicyToPermissionSetRequest(input *AttachManage // Indicates that the principal has crossed the throttling limits of the API // operations. // -// - ValidationException -// The request failed because it contains a syntax error. +// - InternalServerException +// The request processing has failed because of an unknown error, exception, +// or failure with an internal server. +// +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -269,8 +269,8 @@ func (c *SSOAdmin) CreateAccountAssignmentRequest(input *CreateAccountAssignment // CreateAccountAssignment API operation for AWS Single Sign-On Admin. // -// Assigns access to a principal for a specified AWS account using a specified -// permission set. +// Assigns access to a principal for a specified Amazon Web Services account +// using a specified permission set. // // The term principal here refers to a user or group that is defined in IAM // Identity Center. @@ -294,13 +294,6 @@ func (c *SSOAdmin) CreateAccountAssignmentRequest(input *CreateAccountAssignment // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. -// -// - InternalServerException -// The request processing has failed because of an unknown error, exception, -// or failure with an internal server. -// // - ServiceQuotaExceededException // Indicates that the principal has crossed the permitted number of resources // that can be created. @@ -309,12 +302,19 @@ func (c *SSOAdmin) CreateAccountAssignmentRequest(input *CreateAccountAssignment // Indicates that the principal has crossed the throttling limits of the API // operations. // -// - ValidationException -// The request failed because it contains a syntax error. +// - InternalServerException +// The request processing has failed because of an unknown error, exception, +// or failure with an internal server. +// +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -405,23 +405,23 @@ func (c *SSOAdmin) CreateInstanceAccessControlAttributeConfigurationRequest(inpu // // Returned Error Types: // +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. +// // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // +// - ResourceNotFoundException +// Indicates that a requested resource is not found. +// // - AccessDeniedException // You do not have sufficient access to perform this action. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// // - ValidationException // The request failed because it contains a syntax error. // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. -// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -495,7 +495,8 @@ func (c *SSOAdmin) CreatePermissionSetRequest(input *CreatePermissionSetInput) ( // // Creates a permission set within a specified IAM Identity Center instance. // -// To grant users and groups access to AWS account resources, use CreateAccountAssignment . +// To grant users and groups access to Amazon Web Services account resources, +// use CreateAccountAssignment . // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -506,13 +507,6 @@ func (c *SSOAdmin) CreatePermissionSetRequest(input *CreatePermissionSetInput) ( // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. -// -// - InternalServerException -// The request processing has failed because of an unknown error, exception, -// or failure with an internal server. -// // - ServiceQuotaExceededException // Indicates that the principal has crossed the permitted number of resources // that can be created. @@ -521,12 +515,19 @@ func (c *SSOAdmin) CreatePermissionSetRequest(input *CreatePermissionSetInput) ( // Indicates that the principal has crossed the throttling limits of the API // operations. // -// - ValidationException -// The request failed because it contains a syntax error. +// - InternalServerException +// The request processing has failed because of an unknown error, exception, +// or failure with an internal server. +// +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -598,10 +599,10 @@ func (c *SSOAdmin) DeleteAccountAssignmentRequest(input *DeleteAccountAssignment // DeleteAccountAssignment API operation for AWS Single Sign-On Admin. // -// Deletes a principal's access from a specified AWS account using a specified -// permission set. +// Deletes a principal's access from a specified Amazon Web Services account +// using a specified permission set. // -// After a successful response, call DescribeAccountAssignmentCreationStatus +// After a successful response, call DescribeAccountAssignmentDeletionStatus // to describe the status of an assignment deletion request. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions @@ -613,23 +614,23 @@ func (c *SSOAdmin) DeleteAccountAssignmentRequest(input *DeleteAccountAssignment // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -713,23 +714,23 @@ func (c *SSOAdmin) DeleteInlinePolicyFromPermissionSetRequest(input *DeleteInlin // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -819,23 +820,23 @@ func (c *SSOAdmin) DeleteInstanceAccessControlAttributeConfigurationRequest(inpu // // Returned Error Types: // +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. +// // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // +// - ResourceNotFoundException +// Indicates that a requested resource is not found. +// // - AccessDeniedException // You do not have sufficient access to perform this action. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// // - ValidationException // The request failed because it contains a syntax error. // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. -// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -919,23 +920,23 @@ func (c *SSOAdmin) DeletePermissionSetRequest(input *DeletePermissionSetInput) ( // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -1019,23 +1020,23 @@ func (c *SSOAdmin) DeletePermissionsBoundaryFromPermissionSetRequest(input *Dele // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeletePermissionsBoundaryFromPermissionSet func (c *SSOAdmin) DeletePermissionsBoundaryFromPermissionSet(input *DeletePermissionsBoundaryFromPermissionSetInput) (*DeletePermissionsBoundaryFromPermissionSetOutput, error) { req, out := c.DeletePermissionsBoundaryFromPermissionSetRequest(input) @@ -1112,23 +1113,23 @@ func (c *SSOAdmin) DescribeAccountAssignmentCreationStatusRequest(input *Describ // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribeAccountAssignmentCreationStatus func (c *SSOAdmin) DescribeAccountAssignmentCreationStatus(input *DescribeAccountAssignmentCreationStatusInput) (*DescribeAccountAssignmentCreationStatusOutput, error) { req, out := c.DescribeAccountAssignmentCreationStatusRequest(input) @@ -1205,23 +1206,23 @@ func (c *SSOAdmin) DescribeAccountAssignmentDeletionStatusRequest(input *Describ // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribeAccountAssignmentDeletionStatus func (c *SSOAdmin) DescribeAccountAssignmentDeletionStatus(input *DescribeAccountAssignmentDeletionStatusInput) (*DescribeAccountAssignmentDeletionStatusOutput, error) { req, out := c.DescribeAccountAssignmentDeletionStatusRequest(input) @@ -1303,20 +1304,20 @@ func (c *SSOAdmin) DescribeInstanceAccessControlAttributeConfigurationRequest(in // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // +// - ResourceNotFoundException +// Indicates that a requested resource is not found. +// // - AccessDeniedException // You do not have sufficient access to perform this action. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// // - ValidationException // The request failed because it contains a syntax error. // @@ -1396,23 +1397,23 @@ func (c *SSOAdmin) DescribePermissionSetRequest(input *DescribePermissionSetInpu // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribePermissionSet func (c *SSOAdmin) DescribePermissionSet(input *DescribePermissionSetInput) (*DescribePermissionSetOutput, error) { req, out := c.DescribePermissionSetRequest(input) @@ -1489,23 +1490,23 @@ func (c *SSOAdmin) DescribePermissionSetProvisioningStatusRequest(input *Describ // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribePermissionSetProvisioningStatus func (c *SSOAdmin) DescribePermissionSetProvisioningStatus(input *DescribePermissionSetProvisioningStatusInput) (*DescribePermissionSetProvisioningStatusOutput, error) { req, out := c.DescribePermissionSetProvisioningStatusRequest(input) @@ -1583,23 +1584,23 @@ func (c *SSOAdmin) DetachCustomerManagedPolicyReferenceFromPermissionSetRequest( // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -1672,8 +1673,8 @@ func (c *SSOAdmin) DetachManagedPolicyFromPermissionSetRequest(input *DetachMana // DetachManagedPolicyFromPermissionSet API operation for AWS Single Sign-On Admin. // -// Detaches the attached AWS managed policy ARN from the specified permission -// set. +// Detaches the attached Amazon Web Services managed policy ARN from the specified +// permission set. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -1684,23 +1685,23 @@ func (c *SSOAdmin) DetachManagedPolicyFromPermissionSetRequest(input *DetachMana // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -1783,23 +1784,23 @@ func (c *SSOAdmin) GetInlinePolicyForPermissionSetRequest(input *GetInlinePolicy // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/GetInlinePolicyForPermissionSet func (c *SSOAdmin) GetInlinePolicyForPermissionSet(input *GetInlinePolicyForPermissionSetInput) (*GetInlinePolicyForPermissionSetOutput, error) { req, out := c.GetInlinePolicyForPermissionSetRequest(input) @@ -1876,23 +1877,23 @@ func (c *SSOAdmin) GetPermissionsBoundaryForPermissionSetRequest(input *GetPermi // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/GetPermissionsBoundaryForPermissionSet func (c *SSOAdmin) GetPermissionsBoundaryForPermissionSet(input *GetPermissionsBoundaryForPermissionSetInput) (*GetPermissionsBoundaryForPermissionSetOutput, error) { req, out := c.GetPermissionsBoundaryForPermissionSetRequest(input) @@ -1964,8 +1965,8 @@ func (c *SSOAdmin) ListAccountAssignmentCreationStatusRequest(input *ListAccount // ListAccountAssignmentCreationStatus API operation for AWS Single Sign-On Admin. // -// Lists the status of the AWS account assignment creation requests for a specified -// IAM Identity Center instance. +// Lists the status of the Amazon Web Services account assignment creation requests +// for a specified IAM Identity Center instance. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -1976,23 +1977,23 @@ func (c *SSOAdmin) ListAccountAssignmentCreationStatusRequest(input *ListAccount // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignmentCreationStatus func (c *SSOAdmin) ListAccountAssignmentCreationStatus(input *ListAccountAssignmentCreationStatusInput) (*ListAccountAssignmentCreationStatusOutput, error) { req, out := c.ListAccountAssignmentCreationStatusRequest(input) @@ -2115,8 +2116,8 @@ func (c *SSOAdmin) ListAccountAssignmentDeletionStatusRequest(input *ListAccount // ListAccountAssignmentDeletionStatus API operation for AWS Single Sign-On Admin. // -// Lists the status of the AWS account assignment deletion requests for a specified -// IAM Identity Center instance. +// Lists the status of the Amazon Web Services account assignment deletion requests +// for a specified IAM Identity Center instance. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -2127,23 +2128,23 @@ func (c *SSOAdmin) ListAccountAssignmentDeletionStatusRequest(input *ListAccount // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignmentDeletionStatus func (c *SSOAdmin) ListAccountAssignmentDeletionStatus(input *ListAccountAssignmentDeletionStatusInput) (*ListAccountAssignmentDeletionStatusOutput, error) { req, out := c.ListAccountAssignmentDeletionStatusRequest(input) @@ -2266,8 +2267,8 @@ func (c *SSOAdmin) ListAccountAssignmentsRequest(input *ListAccountAssignmentsIn // ListAccountAssignments API operation for AWS Single Sign-On Admin. // -// Lists the assignee of the specified AWS account with the specified permission -// set. +// Lists the assignee of the specified Amazon Web Services account with the +// specified permission set. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -2278,23 +2279,23 @@ func (c *SSOAdmin) ListAccountAssignmentsRequest(input *ListAccountAssignmentsIn // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignments func (c *SSOAdmin) ListAccountAssignments(input *ListAccountAssignmentsInput) (*ListAccountAssignmentsOutput, error) { req, out := c.ListAccountAssignmentsRequest(input) @@ -2417,7 +2418,8 @@ func (c *SSOAdmin) ListAccountsForProvisionedPermissionSetRequest(input *ListAcc // ListAccountsForProvisionedPermissionSet API operation for AWS Single Sign-On Admin. // -// Lists all the AWS accounts where the specified permission set is provisioned. +// Lists all the Amazon Web Services accounts where the specified permission +// set is provisioned. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -2428,23 +2430,23 @@ func (c *SSOAdmin) ListAccountsForProvisionedPermissionSetRequest(input *ListAcc // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountsForProvisionedPermissionSet func (c *SSOAdmin) ListAccountsForProvisionedPermissionSet(input *ListAccountsForProvisionedPermissionSetInput) (*ListAccountsForProvisionedPermissionSetOutput, error) { req, out := c.ListAccountsForProvisionedPermissionSetRequest(input) @@ -2578,23 +2580,23 @@ func (c *SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSetRequest(inp // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListCustomerManagedPolicyReferencesInPermissionSet func (c *SSOAdmin) ListCustomerManagedPolicyReferencesInPermissionSet(input *ListCustomerManagedPolicyReferencesInPermissionSetInput) (*ListCustomerManagedPolicyReferencesInPermissionSetOutput, error) { req, out := c.ListCustomerManagedPolicyReferencesInPermissionSetRequest(input) @@ -2728,14 +2730,14 @@ func (c *SSOAdmin) ListInstancesRequest(input *ListInstancesInput) (req *request // // Returned Error Types: // -// - InternalServerException -// The request processing has failed because of an unknown error, exception, -// or failure with an internal server. -// // - ThrottlingException // Indicates that the principal has crossed the throttling limits of the API // operations. // +// - InternalServerException +// The request processing has failed because of an unknown error, exception, +// or failure with an internal server. +// // - AccessDeniedException // You do not have sufficient access to perform this action. // @@ -2864,7 +2866,8 @@ func (c *SSOAdmin) ListManagedPoliciesInPermissionSetRequest(input *ListManagedP // ListManagedPoliciesInPermissionSet API operation for AWS Single Sign-On Admin. // -// Lists the AWS managed policy that is attached to a specified permission set. +// Lists the Amazon Web Services managed policy that is attached to a specified +// permission set. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -2875,23 +2878,23 @@ func (c *SSOAdmin) ListManagedPoliciesInPermissionSetRequest(input *ListManagedP // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListManagedPoliciesInPermissionSet func (c *SSOAdmin) ListManagedPoliciesInPermissionSet(input *ListManagedPoliciesInPermissionSetInput) (*ListManagedPoliciesInPermissionSetOutput, error) { req, out := c.ListManagedPoliciesInPermissionSetRequest(input) @@ -3026,23 +3029,23 @@ func (c *SSOAdmin) ListPermissionSetProvisioningStatusRequest(input *ListPermiss // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListPermissionSetProvisioningStatus func (c *SSOAdmin) ListPermissionSetProvisioningStatus(input *ListPermissionSetProvisioningStatusInput) (*ListPermissionSetProvisioningStatusOutput, error) { req, out := c.ListPermissionSetProvisioningStatusRequest(input) @@ -3176,23 +3179,23 @@ func (c *SSOAdmin) ListPermissionSetsRequest(input *ListPermissionSetsInput) (re // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListPermissionSets func (c *SSOAdmin) ListPermissionSets(input *ListPermissionSetsInput) (*ListPermissionSetsOutput, error) { req, out := c.ListPermissionSetsRequest(input) @@ -3315,7 +3318,8 @@ func (c *SSOAdmin) ListPermissionSetsProvisionedToAccountRequest(input *ListPerm // ListPermissionSetsProvisionedToAccount API operation for AWS Single Sign-On Admin. // -// Lists all the permission sets that are provisioned to a specified AWS account. +// Lists all the permission sets that are provisioned to a specified Amazon +// Web Services account. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -3326,23 +3330,23 @@ func (c *SSOAdmin) ListPermissionSetsProvisionedToAccountRequest(input *ListPerm // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListPermissionSetsProvisionedToAccount func (c *SSOAdmin) ListPermissionSetsProvisionedToAccount(input *ListPermissionSetsProvisionedToAccountInput) (*ListPermissionSetsProvisionedToAccountOutput, error) { req, out := c.ListPermissionSetsProvisionedToAccountRequest(input) @@ -3476,23 +3480,23 @@ func (c *SSOAdmin) ListTagsForResourceRequest(input *ListTagsForResourceInput) ( // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // See also, https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListTagsForResource func (c *SSOAdmin) ListTagsForResource(input *ListTagsForResourceInput) (*ListTagsForResourceOutput, error) { req, out := c.ListTagsForResourceRequest(input) @@ -3621,23 +3625,23 @@ func (c *SSOAdmin) ProvisionPermissionSetRequest(input *ProvisionPermissionSetIn // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -3725,13 +3729,6 @@ func (c *SSOAdmin) PutInlinePolicyToPermissionSetRequest(input *PutInlinePolicyT // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. -// -// - InternalServerException -// The request processing has failed because of an unknown error, exception, -// or failure with an internal server. -// // - ServiceQuotaExceededException // Indicates that the principal has crossed the permitted number of resources // that can be created. @@ -3740,12 +3737,19 @@ func (c *SSOAdmin) PutInlinePolicyToPermissionSetRequest(input *PutInlinePolicyT // Indicates that the principal has crossed the throttling limits of the API // operations. // -// - ValidationException -// The request failed because it contains a syntax error. +// - InternalServerException +// The request processing has failed because of an unknown error, exception, +// or failure with an internal server. +// +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -3818,8 +3822,8 @@ func (c *SSOAdmin) PutPermissionsBoundaryToPermissionSetRequest(input *PutPermis // PutPermissionsBoundaryToPermissionSet API operation for AWS Single Sign-On Admin. // -// Attaches an AWS managed or customer managed policy to the specified PermissionSet -// as a permissions boundary. +// Attaches an Amazon Web Services managed or customer managed policy to the +// specified PermissionSet as a permissions boundary. // // Returns awserr.Error for service API and SDK errors. Use runtime type assertions // with awserr.Error's Code and Message methods to get detailed information about @@ -3830,23 +3834,23 @@ func (c *SSOAdmin) PutPermissionsBoundaryToPermissionSetRequest(input *PutPermis // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -3930,13 +3934,6 @@ func (c *SSOAdmin) TagResourceRequest(input *TagResourceInput) (req *request.Req // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. -// -// - InternalServerException -// The request processing has failed because of an unknown error, exception, -// or failure with an internal server. -// // - ServiceQuotaExceededException // Indicates that the principal has crossed the permitted number of resources // that can be created. @@ -3945,12 +3942,19 @@ func (c *SSOAdmin) TagResourceRequest(input *TagResourceInput) (req *request.Req // Indicates that the principal has crossed the throttling limits of the API // operations. // -// - ValidationException -// The request failed because it contains a syntax error. +// - InternalServerException +// The request processing has failed because of an unknown error, exception, +// or failure with an internal server. +// +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -4034,23 +4038,23 @@ func (c *SSOAdmin) UntagResourceRequest(input *UntagResourceInput) (req *request // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -4142,23 +4146,23 @@ func (c *SSOAdmin) UpdateInstanceAccessControlAttributeConfigurationRequest(inpu // // Returned Error Types: // +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. +// // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // +// - ResourceNotFoundException +// Indicates that a requested resource is not found. +// // - AccessDeniedException // You do not have sufficient access to perform this action. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// // - ValidationException // The request failed because it contains a syntax error. // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. -// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -4242,23 +4246,23 @@ func (c *SSOAdmin) UpdatePermissionSetRequest(input *UpdatePermissionSetInput) ( // // Returned Error Types: // -// - ResourceNotFoundException -// Indicates that a requested resource is not found. +// - ThrottlingException +// Indicates that the principal has crossed the throttling limits of the API +// operations. // // - InternalServerException // The request processing has failed because of an unknown error, exception, // or failure with an internal server. // -// - ThrottlingException -// Indicates that the principal has crossed the throttling limits of the API -// operations. -// -// - ValidationException -// The request failed because it contains a syntax error. +// - ResourceNotFoundException +// Indicates that a requested resource is not found. // // - AccessDeniedException // You do not have sufficient access to perform this action. // +// - ValidationException +// The request failed because it contains a syntax error. +// // - ConflictException // Occurs when a conflict with a previous successful write is detected. This // generally occurs when the previous write did not have time to propagate to @@ -4289,10 +4293,10 @@ func (c *SSOAdmin) UpdatePermissionSetWithContext(ctx aws.Context, input *Update // These are IAM Identity Center identity store attributes that you can configure // for use in attributes-based access control (ABAC). You can create permissions -// policies that determine who can access your AWS resources based upon the -// configured attribute values. When you enable ABAC and specify AccessControlAttributes, -// IAM Identity Center passes the attribute values of the authenticated user -// into IAM for use in policy evaluation. +// policies that determine who can access your Amazon Web Services resources +// based upon the configured attribute values. When you enable ABAC and specify +// AccessControlAttributes, IAM Identity Center passes the attribute values +// of the authenticated user into IAM for use in policy evaluation. type AccessControlAttribute struct { _ struct{} `type:"structure"` @@ -4481,19 +4485,19 @@ func (s *AccessDeniedException) RequestID() string { } // The assignment that indicates a principal's limited access to a specified -// AWS account with a specified permission set. +// Amazon Web Services account with a specified permission set. // // The term principal here refers to a user or group that is defined in IAM // Identity Center. type AccountAssignment struct { _ struct{} `type:"structure"` - // The identifier of the AWS account. + // The identifier of the Amazon Web Services account. AccountId *string `min:"12" type:"string"` // The ARN of the permission set. For more information about ARNs, see Amazon - // Resource Names (ARNs) and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // Resource Names (ARNs) and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. PermissionSetArn *string `min:"10" type:"string"` // An identifier for an object in IAM Identity Center, such as a user or group. @@ -4560,8 +4564,8 @@ type AccountAssignmentOperationStatus struct { FailureReason *string `type:"string"` // The ARN of the permission set. For more information about ARNs, see Amazon - // Resource Names (ARNs) and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // Resource Names (ARNs) and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. PermissionSetArn *string `min:"10" type:"string"` // An identifier for an object in IAM Identity Center, such as a user or group. @@ -4580,8 +4584,7 @@ type AccountAssignmentOperationStatus struct { // The status of the permission set provisioning process. Status *string `type:"string" enum:"StatusValues"` - // TargetID is an AWS account identifier, typically a 10-12 digit string (For - // example, 123456789012). + // TargetID is an Amazon Web Services account identifier, (For example, 123456789012). TargetId *string `min:"12" type:"string"` // The entity type for which the assignment will be created. @@ -4715,8 +4718,8 @@ type AttachCustomerManagedPolicyReferenceToPermissionSetInput struct { _ struct{} `type:"structure"` // Specifies the name and path of a customer managed policy. You must have an - // IAM policy that matches the name and path in each AWS account where you want - // to deploy your permission set. + // IAM policy that matches the name and path in each Amazon Web Services account + // where you want to deploy your permission set. // // CustomerManagedPolicyReference is a required field CustomerManagedPolicyReference *CustomerManagedPolicyReference `type:"structure" required:"true"` @@ -4826,13 +4829,14 @@ type AttachManagedPolicyToPermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` - // The AWS managed policy ARN to be attached to a permission set. + // The Amazon Web Services managed policy ARN to be attached to a permission + // set. // // ManagedPolicyArn is a required field ManagedPolicyArn *string `min:"20" type:"string" required:"true"` @@ -4929,16 +4933,17 @@ func (s AttachManagedPolicyToPermissionSetOutput) GoString() string { return s.String() } -// A structure that stores the details of the AWS managed policy. +// A structure that stores the details of the Amazon Web Services managed policy. type AttachedManagedPolicy struct { _ struct{} `type:"structure"` - // The ARN of the AWS managed policy. For more information about ARNs, see Amazon - // Resource Names (ARNs) and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // The ARN of the Amazon Web Services managed policy. For more information about + // ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service Namespaces + // (/general/latest/gr/aws-arns-and-namespaces.html) in the Amazon Web Services + // General Reference. Arn *string `min:"20" type:"string"` - // The name of the AWS managed policy. + // The name of the Amazon Web Services managed policy. Name *string `min:"1" type:"string"` } @@ -5044,8 +5049,8 @@ type CreateAccountAssignmentInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -5069,8 +5074,7 @@ type CreateAccountAssignmentInput struct { // PrincipalType is a required field PrincipalType *string `type:"string" required:"true" enum:"PrincipalType"` - // TargetID is an AWS account identifier, typically a 10-12 digit string (For - // example, 123456789012). + // TargetID is an Amazon Web Services account identifier, (For example, 123456789012). // // TargetId is a required field TargetId *string `min:"12" type:"string" required:"true"` @@ -5311,8 +5315,8 @@ type CreatePermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -5432,7 +5436,7 @@ func (s *CreatePermissionSetInput) SetTags(v []*Tag) *CreatePermissionSetInput { type CreatePermissionSetOutput struct { _ struct{} `type:"structure"` - // Defines the level of access on an AWS account. + // Defines the level of access on an Amazon Web Services account. PermissionSet *PermissionSet `type:"structure"` } @@ -5461,8 +5465,8 @@ func (s *CreatePermissionSetOutput) SetPermissionSet(v *PermissionSet) *CreatePe } // Specifies the name and path of a customer managed policy. You must have an -// IAM policy that matches the name and path in each AWS account where you want -// to deploy your permission set. +// IAM policy that matches the name and path in each Amazon Web Services account +// where you want to deploy your permission set. type CustomerManagedPolicyReference struct { _ struct{} `type:"structure"` @@ -5533,8 +5537,8 @@ type DeleteAccountAssignmentInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -5557,8 +5561,7 @@ type DeleteAccountAssignmentInput struct { // PrincipalType is a required field PrincipalType *string `type:"string" required:"true" enum:"PrincipalType"` - // TargetID is an AWS account identifier, typically a 10-12 digit string (For - // example, 123456789012). + // TargetID is an Amazon Web Services account identifier, (For example, 123456789012). // // TargetId is a required field TargetId *string `min:"12" type:"string" required:"true"` @@ -5699,8 +5702,8 @@ type DeleteInlinePolicyFromPermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -5862,8 +5865,8 @@ type DeletePermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -6047,8 +6050,8 @@ type DescribeAccountAssignmentCreationStatusInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -6147,8 +6150,8 @@ type DescribeAccountAssignmentDeletionStatusInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -6342,8 +6345,8 @@ type DescribePermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -6409,7 +6412,7 @@ func (s *DescribePermissionSetInput) SetPermissionSetArn(v string) *DescribePerm type DescribePermissionSetOutput struct { _ struct{} `type:"structure"` - // Describes the level of access on an AWS account. + // Describes the level of access on an Amazon Web Services account. PermissionSet *PermissionSet `type:"structure"` } @@ -6442,8 +6445,8 @@ type DescribePermissionSetProvisioningStatusInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -6542,8 +6545,8 @@ type DetachCustomerManagedPolicyReferenceFromPermissionSetInput struct { _ struct{} `type:"structure"` // Specifies the name and path of a customer managed policy. You must have an - // IAM policy that matches the name and path in each AWS account where you want - // to deploy your permission set. + // IAM policy that matches the name and path in each Amazon Web Services account + // where you want to deploy your permission set. // // CustomerManagedPolicyReference is a required field CustomerManagedPolicyReference *CustomerManagedPolicyReference `type:"structure" required:"true"` @@ -6653,13 +6656,14 @@ type DetachManagedPolicyFromPermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` - // The AWS managed policy ARN to be detached from a permission set. + // The Amazon Web Services managed policy ARN to be detached from a permission + // set. // // ManagedPolicyArn is a required field ManagedPolicyArn *string `min:"20" type:"string" required:"true"` @@ -6761,8 +6765,8 @@ type GetInlinePolicyForPermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -6829,6 +6833,9 @@ type GetInlinePolicyForPermissionSetOutput struct { _ struct{} `type:"structure"` // The inline policy that is attached to the permission set. + // + // For Length Constraints, if a valid ARN is provided for a permission set, + // it is possible for an empty inline policy to be returned. InlinePolicy *string `min:"1" type:"string"` } @@ -7023,8 +7030,8 @@ type InstanceMetadata struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. InstanceArn *string `min:"10" type:"string"` } @@ -7131,8 +7138,8 @@ type ListAccountAssignmentCreationStatusInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -7255,8 +7262,8 @@ type ListAccountAssignmentDeletionStatusInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -7374,15 +7381,16 @@ func (s *ListAccountAssignmentDeletionStatusOutput) SetNextToken(v string) *List type ListAccountAssignmentsInput struct { _ struct{} `type:"structure"` - // The identifier of the AWS account from which to list the assignments. + // The identifier of the Amazon Web Services account from which to list the + // assignments. // // AccountId is a required field AccountId *string `min:"12" type:"string" required:"true"` // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -7482,7 +7490,8 @@ func (s *ListAccountAssignmentsInput) SetPermissionSetArn(v string) *ListAccount type ListAccountAssignmentsOutput struct { _ struct{} `type:"structure"` - // The list of assignments that match the input AWS account and permission set. + // The list of assignments that match the input Amazon Web Services account + // and permission set. AccountAssignments []*AccountAssignment `type:"list"` // The pagination token for the list API. Initially the value is null. Use the @@ -7525,8 +7534,8 @@ type ListAccountsForProvisionedPermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -7538,13 +7547,13 @@ type ListAccountsForProvisionedPermissionSetInput struct { // output of previous API calls to make subsequent calls. NextToken *string `type:"string"` - // The ARN of the PermissionSet from which the associated AWS accounts will - // be listed. + // The ARN of the PermissionSet from which the associated Amazon Web Services + // accounts will be listed. // // PermissionSetArn is a required field PermissionSetArn *string `min:"10" type:"string" required:"true"` - // The permission set provisioning status for an AWS account. + // The permission set provisioning status for an Amazon Web Services account. ProvisioningStatus *string `type:"string" enum:"ProvisioningStatus"` } @@ -7624,7 +7633,7 @@ func (s *ListAccountsForProvisionedPermissionSetInput) SetProvisioningStatus(v s type ListAccountsForProvisionedPermissionSetOutput struct { _ struct{} `type:"structure"` - // The list of AWS AccountIds. + // The list of Amazon Web Services AccountIds. AccountIds []*string `type:"list"` // The pagination token for the list API. Initially the value is null. Use the @@ -7893,8 +7902,8 @@ type ListManagedPoliciesInPermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -8028,8 +8037,8 @@ type ListPermissionSetProvisioningStatusInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -8149,8 +8158,8 @@ type ListPermissionSetsInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -8225,7 +8234,7 @@ type ListPermissionSetsOutput struct { // output of previous API calls to make subsequent calls. NextToken *string `type:"string"` - // Defines the level of access on an AWS account. + // Defines the level of access on an Amazon Web Services account. PermissionSets []*string `type:"list"` } @@ -8262,15 +8271,16 @@ func (s *ListPermissionSetsOutput) SetPermissionSets(v []*string) *ListPermissio type ListPermissionSetsProvisionedToAccountInput struct { _ struct{} `type:"structure"` - // The identifier of the AWS account from which to list the assignments. + // The identifier of the Amazon Web Services account from which to list the + // assignments. // // AccountId is a required field AccountId *string `min:"12" type:"string" required:"true"` // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -8366,7 +8376,7 @@ type ListPermissionSetsProvisionedToAccountOutput struct { // output of previous API calls to make subsequent calls. NextToken *string `type:"string"` - // Defines the level of access that an AWS account has. + // Defines the level of access that an Amazon Web Services account has. PermissionSets []*string `type:"list"` } @@ -8405,8 +8415,8 @@ type ListTagsForResourceInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -8566,8 +8576,8 @@ type PermissionSet struct { Name *string `min:"1" type:"string"` // The ARN of the permission set. For more information about ARNs, see Amazon - // Resource Names (ARNs) and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // Resource Names (ARNs) and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. PermissionSetArn *string `min:"10" type:"string"` // Used to redirect users within the application during the federation authentication @@ -8638,7 +8648,8 @@ func (s *PermissionSet) SetSessionDuration(v string) *PermissionSet { type PermissionSetProvisioningStatus struct { _ struct{} `type:"structure"` - // The identifier of the AWS account from which to list the assignments. + // The identifier of the Amazon Web Services account from which to list the + // assignments. AccountId *string `min:"12" type:"string"` // The date that the permission set was created. @@ -8648,8 +8659,9 @@ type PermissionSetProvisioningStatus struct { FailureReason *string `type:"string"` // The ARN of the permission set that is being provisioned. For more information - // about ARNs, see Amazon Resource Names (ARNs) and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // about ARNs, see Amazon Resource Names (ARNs) and Amazon Web Services Service + // Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) in the Amazon + // Web Services General Reference. PermissionSetArn *string `min:"10" type:"string"` // The identifier for tracking the request operation that is generated by the @@ -8765,12 +8777,13 @@ func (s *PermissionSetProvisioningStatusMetadata) SetStatus(v string) *Permissio return s } -// Specifies the configuration of the AWS managed or customer managed policy -// that you want to set as a permissions boundary. Specify either CustomerManagedPolicyReference -// to use the name and path of a customer managed policy, or ManagedPolicyArn -// to use the ARN of an AWS managed policy. A permissions boundary represents -// the maximum permissions that any policy can grant your role. For more information, -// see Permissions boundaries for IAM entities (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html) +// Specifies the configuration of the Amazon Web Services managed or customer +// managed policy that you want to set as a permissions boundary. Specify either +// CustomerManagedPolicyReference to use the name and path of a customer managed +// policy, or ManagedPolicyArn to use the ARN of an Amazon Web Services managed +// policy. A permissions boundary represents the maximum permissions that any +// policy can grant your role. For more information, see Permissions boundaries +// for IAM entities (https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html) // in the IAM User Guide. // // Policies used as permissions boundaries don't provide permissions. You must @@ -8781,12 +8794,12 @@ type PermissionsBoundary struct { _ struct{} `type:"structure"` // Specifies the name and path of a customer managed policy. You must have an - // IAM policy that matches the name and path in each AWS account where you want - // to deploy your permission set. + // IAM policy that matches the name and path in each Amazon Web Services account + // where you want to deploy your permission set. CustomerManagedPolicyReference *CustomerManagedPolicyReference `type:"structure"` - // The AWS managed policy ARN that you want to attach to a permission set as - // a permissions boundary. + // The Amazon Web Services managed policy ARN that you want to attach to a permission + // set as a permissions boundary. ManagedPolicyArn *string `min:"20" type:"string"` } @@ -8843,8 +8856,8 @@ type ProvisionPermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -8854,8 +8867,7 @@ type ProvisionPermissionSetInput struct { // PermissionSetArn is a required field PermissionSetArn *string `min:"10" type:"string" required:"true"` - // TargetID is an AWS account identifier, typically a 10-12 digit string (For - // example, 123456789012). + // TargetID is an Amazon Web Services account identifier, (For example, 123456789012). TargetId *string `min:"12" type:"string"` // The entity type for which the assignment will be created. @@ -8975,8 +8987,8 @@ type PutInlinePolicyToPermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -9312,7 +9324,7 @@ func (s *ServiceQuotaExceededException) RequestID() string { // A set of key-value pairs that are used to manage the resource. Tags can only // be applied to permission sets and cannot be applied to corresponding roles -// that IAM Identity Center creates in AWS accounts. +// that IAM Identity Center creates in Amazon Web Services accounts. type Tag struct { _ struct{} `type:"structure"` @@ -9381,8 +9393,8 @@ type TagResourceInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -9561,8 +9573,8 @@ type UntagResourceInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` @@ -9763,8 +9775,8 @@ type UpdatePermissionSetInput struct { // The ARN of the IAM Identity Center instance under which the operation will // be executed. For more information about ARNs, see Amazon Resource Names (ARNs) - // and AWS Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) - // in the AWS General Reference. + // and Amazon Web Services Service Namespaces (/general/latest/gr/aws-arns-and-namespaces.html) + // in the Amazon Web Services General Reference. // // InstanceArn is a required field InstanceArn *string `min:"10" type:"string" required:"true"` diff --git a/service/ssoadmin/doc.go b/service/ssoadmin/doc.go index 591abb66612..1aff9b7cc36 100644 --- a/service/ssoadmin/doc.go +++ b/service/ssoadmin/doc.go @@ -3,30 +3,30 @@ // Package ssoadmin provides the client and types for making API // requests to AWS Single Sign-On Admin. // -// AWS IAM Identity Center (successor to AWS Single Sign-On) helps you securely -// create, or connect, your workforce identities and manage their access centrally -// across AWS accounts and applications. IAM Identity Center is the recommended -// approach for workforce authentication and authorization in AWS, for organizations -// of any size and type. +// IAM Identity Center (successor to Single Sign-On) helps you securely create, +// or connect, your workforce identities and manage their access centrally across +// Amazon Web Services accounts and applications. IAM Identity Center is the +// recommended approach for workforce authentication and authorization in Amazon +// Web Services, for organizations of any size and type. // -// Although AWS Single Sign-On was renamed, the sso and identitystore API namespaces -// will continue to retain their original name for backward compatibility purposes. -// For more information, see IAM Identity Center rename (https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html#renamed). +// IAM Identity Center uses the sso and identitystore API namespaces. // // This reference guide provides information on single sign-on operations which -// could be used for access management of AWS accounts. For information about -// IAM Identity Center features, see the IAM Identity Center User Guide (https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html). +// could be used for access management of Amazon Web Services accounts. For +// information about IAM Identity Center features, see the IAM Identity Center +// User Guide (https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html). // // Many operations in the IAM Identity Center APIs rely on identifiers for users // and groups, known as principals. For more information about how to work with // principals and principal IDs in IAM Identity Center, see the Identity Store // API Reference (https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/welcome.html). // -// AWS provides SDKs that consist of libraries and sample code for various programming -// languages and platforms (Java, Ruby, .Net, iOS, Android, and more). The SDKs -// provide a convenient way to create programmatic access to IAM Identity Center -// and other AWS services. For more information about the AWS SDKs, including -// how to download and install them, see Tools for Amazon Web Services (http://aws.amazon.com/tools/). +// Amazon Web Services provides SDKs that consist of libraries and sample code +// for various programming languages and platforms (Java, Ruby, .Net, iOS, Android, +// and more). The SDKs provide a convenient way to create programmatic access +// to IAM Identity Center and other Amazon Web Services services. For more information +// about the Amazon Web Services SDKs, including how to download and install +// them, see Tools for Amazon Web Services (http://aws.amazon.com/tools/). // // See https://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20 for more information on this service. // diff --git a/service/workspaces/api.go b/service/workspaces/api.go index 200473d4582..fd9a86ec948 100644 --- a/service/workspaces/api.go +++ b/service/workspaces/api.go @@ -11058,6 +11058,48 @@ func (s DisassociateIpGroupsOutput) GoString() string { return s.String() } +// Provides in-depth details about the error. These details include the possible +// causes of the errors and troubleshooting information. +type ErrorDetails struct { + _ struct{} `type:"structure"` + + // Indicates the error code returned. + ErrorCode *string `type:"string" enum:"WorkspaceImageErrorDetailCode"` + + // The text of the error message related the error code. + ErrorMessage *string `type:"string"` +} + +// String returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ErrorDetails) String() string { + return awsutil.Prettify(s) +} + +// GoString returns the string representation. +// +// API parameter values that are decorated as "sensitive" in the API will not +// be included in the string output. The member name will be present, but the +// value will be replaced with "sensitive". +func (s ErrorDetails) GoString() string { + return s.String() +} + +// SetErrorCode sets the ErrorCode field's value. +func (s *ErrorDetails) SetErrorCode(v string) *ErrorDetails { + s.ErrorCode = &v + return s +} + +// SetErrorMessage sets the ErrorMessage field's value. +func (s *ErrorDetails) SetErrorMessage(v string) *ErrorDetails { + s.ErrorMessage = &v + return s +} + // Describes the standby WorkSpace that could not be created. type FailedCreateStandbyWorkspacesRequest struct { _ struct{} `type:"structure"` @@ -16638,6 +16680,9 @@ type WorkspaceImage struct { // The error code that is returned for the image. ErrorCode *string `type:"string"` + // The details of the error returned for the image. + ErrorDetails []*ErrorDetails `type:"list"` + // The text of the error message that is returned for the image. ErrorMessage *string `type:"string"` @@ -16701,6 +16746,12 @@ func (s *WorkspaceImage) SetErrorCode(v string) *WorkspaceImage { return s } +// SetErrorDetails sets the ErrorDetails field's value. +func (s *WorkspaceImage) SetErrorDetails(v []*ErrorDetails) *WorkspaceImage { + s.ErrorDetails = v + return s +} + // SetErrorMessage sets the ErrorMessage field's value. func (s *WorkspaceImage) SetErrorMessage(v string) *WorkspaceImage { s.ErrorMessage = &v @@ -17600,6 +17651,118 @@ func WorkspaceDirectoryType_Values() []string { } } +const ( + // WorkspaceImageErrorDetailCodeOutdatedPowershellVersion is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeOutdatedPowershellVersion = "OutdatedPowershellVersion" + + // WorkspaceImageErrorDetailCodeOfficeInstalled is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeOfficeInstalled = "OfficeInstalled" + + // WorkspaceImageErrorDetailCodePcoIpagentInstalled is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodePcoIpagentInstalled = "PCoIPAgentInstalled" + + // WorkspaceImageErrorDetailCodeWindowsUpdatesEnabled is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeWindowsUpdatesEnabled = "WindowsUpdatesEnabled" + + // WorkspaceImageErrorDetailCodeAutoMountDisabled is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeAutoMountDisabled = "AutoMountDisabled" + + // WorkspaceImageErrorDetailCodeWorkspacesByolaccountNotFound is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeWorkspacesByolaccountNotFound = "WorkspacesBYOLAccountNotFound" + + // WorkspaceImageErrorDetailCodeWorkspacesByolaccountDisabled is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeWorkspacesByolaccountDisabled = "WorkspacesBYOLAccountDisabled" + + // WorkspaceImageErrorDetailCodeDhcpdisabled is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeDhcpdisabled = "DHCPDisabled" + + // WorkspaceImageErrorDetailCodeDiskFreeSpace is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeDiskFreeSpace = "DiskFreeSpace" + + // WorkspaceImageErrorDetailCodeAdditionalDrivesAttached is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeAdditionalDrivesAttached = "AdditionalDrivesAttached" + + // WorkspaceImageErrorDetailCodeOsnotSupported is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeOsnotSupported = "OSNotSupported" + + // WorkspaceImageErrorDetailCodeDomainJoined is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeDomainJoined = "DomainJoined" + + // WorkspaceImageErrorDetailCodeAzureDomainJoined is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeAzureDomainJoined = "AzureDomainJoined" + + // WorkspaceImageErrorDetailCodeFirewallEnabled is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeFirewallEnabled = "FirewallEnabled" + + // WorkspaceImageErrorDetailCodeVmwareToolsInstalled is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeVmwareToolsInstalled = "VMWareToolsInstalled" + + // WorkspaceImageErrorDetailCodeDiskSizeExceeded is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeDiskSizeExceeded = "DiskSizeExceeded" + + // WorkspaceImageErrorDetailCodeIncompatiblePartitioning is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeIncompatiblePartitioning = "IncompatiblePartitioning" + + // WorkspaceImageErrorDetailCodePendingReboot is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodePendingReboot = "PendingReboot" + + // WorkspaceImageErrorDetailCodeAutoLogonEnabled is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeAutoLogonEnabled = "AutoLogonEnabled" + + // WorkspaceImageErrorDetailCodeRealTimeUniversalDisabled is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeRealTimeUniversalDisabled = "RealTimeUniversalDisabled" + + // WorkspaceImageErrorDetailCodeMultipleBootPartition is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeMultipleBootPartition = "MultipleBootPartition" + + // WorkspaceImageErrorDetailCodeRequires64bitOs is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeRequires64bitOs = "Requires64BitOS" + + // WorkspaceImageErrorDetailCodeZeroRearmCount is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeZeroRearmCount = "ZeroRearmCount" + + // WorkspaceImageErrorDetailCodeInPlaceUpgrade is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeInPlaceUpgrade = "InPlaceUpgrade" + + // WorkspaceImageErrorDetailCodeAntiVirusInstalled is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeAntiVirusInstalled = "AntiVirusInstalled" + + // WorkspaceImageErrorDetailCodeUefinotSupported is a WorkspaceImageErrorDetailCode enum value + WorkspaceImageErrorDetailCodeUefinotSupported = "UEFINotSupported" +) + +// WorkspaceImageErrorDetailCode_Values returns all elements of the WorkspaceImageErrorDetailCode enum +func WorkspaceImageErrorDetailCode_Values() []string { + return []string{ + WorkspaceImageErrorDetailCodeOutdatedPowershellVersion, + WorkspaceImageErrorDetailCodeOfficeInstalled, + WorkspaceImageErrorDetailCodePcoIpagentInstalled, + WorkspaceImageErrorDetailCodeWindowsUpdatesEnabled, + WorkspaceImageErrorDetailCodeAutoMountDisabled, + WorkspaceImageErrorDetailCodeWorkspacesByolaccountNotFound, + WorkspaceImageErrorDetailCodeWorkspacesByolaccountDisabled, + WorkspaceImageErrorDetailCodeDhcpdisabled, + WorkspaceImageErrorDetailCodeDiskFreeSpace, + WorkspaceImageErrorDetailCodeAdditionalDrivesAttached, + WorkspaceImageErrorDetailCodeOsnotSupported, + WorkspaceImageErrorDetailCodeDomainJoined, + WorkspaceImageErrorDetailCodeAzureDomainJoined, + WorkspaceImageErrorDetailCodeFirewallEnabled, + WorkspaceImageErrorDetailCodeVmwareToolsInstalled, + WorkspaceImageErrorDetailCodeDiskSizeExceeded, + WorkspaceImageErrorDetailCodeIncompatiblePartitioning, + WorkspaceImageErrorDetailCodePendingReboot, + WorkspaceImageErrorDetailCodeAutoLogonEnabled, + WorkspaceImageErrorDetailCodeRealTimeUniversalDisabled, + WorkspaceImageErrorDetailCodeMultipleBootPartition, + WorkspaceImageErrorDetailCodeRequires64bitOs, + WorkspaceImageErrorDetailCodeZeroRearmCount, + WorkspaceImageErrorDetailCodeInPlaceUpgrade, + WorkspaceImageErrorDetailCodeAntiVirusInstalled, + WorkspaceImageErrorDetailCodeUefinotSupported, + } +} + const ( // WorkspaceImageIngestionProcessByolRegular is a WorkspaceImageIngestionProcess enum value WorkspaceImageIngestionProcessByolRegular = "BYOL_REGULAR"