aws-sdk-accessanalyzer 1.31.0 → 1.33.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c975d66f577ce2ad5bebaf1b00380846b72066244108e80f33548c03ec58248a
-  data.tar.gz: 8b6f85c2313f8c08ffa0782f440e5dd6f9f4a0f2fdd5dada1dba29c8b0703f32
+  metadata.gz: fd1f3f9521514014252024f70752ecce355e1686eca51cda613f284972bde774
+  data.tar.gz: f24fc573a9bebd1fc74e7e2b5051881b45eb73498c491b2578d5ceb54e596050
 SHA512:
-  metadata.gz: 7c8e59bcfbdacf5b3cb94b2cb446a46e450b25734ef5bf1ada917f8708520cc4f41b2f31d0591b098d387b95a542413028d0ab421fad3adf37143eddad99a84e
-  data.tar.gz: 1b447ef46dcde07395364e873d1caeb06fe1e34e802d4ae467031332e7cde99895311b1431882688bf8e44a363443546cdf9f0b2d29b97483cca2f38577a7cfb
+  metadata.gz: b0a478d564a9b591d4325b31f0b59d0f3d9af88108fbfdbb2279cb2384a7094b8f344c7bbd41bcd8c0a4b8120b1d23781085780862209e34586d461caefa2e68
+  data.tar.gz: 449c68e1a77c18650d7a580cfa437091d9f87701fd04853e3a07b024807c79dae5ead30068f6ee5398f182ae956a5fa16d43a9b0c6a74076e89b6b4114422962

data/CHANGELOG.md

@@ -1,6 +1,18 @@
 Unreleased Changes
 ------------------
 
+1.33.0 (2023-01-18)
+------------------
+
+* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
+
+* Issue - Replace runtime endpoint resolution approach with generated ruby code.
+
+1.32.0 (2022-11-30)
+------------------
+
+* Feature - This release adds support for S3 cross account access points. IAM Access Analyzer will now produce public or cross account findings when it detects bucket delegation to external account access points.
+
 1.31.0 (2022-10-25)
 ------------------
 
@@ -171,4 +183,4 @@ Unreleased Changes
 1.0.0 (2019-12-02)
 ------------------
 
-* Feature - Initial release of `aws-sdk-accessanalyzer`.
+* Feature - Initial release of `aws-sdk-accessanalyzer`.

data/VERSION

@@ -1 +1 @@
-1.31.0
+1.33.0

data/lib/aws-sdk-accessanalyzer/client.rb

@@ -1021,8 +1021,9 @@ module Aws::AccessAnalyzer
     #   resp.finding.resource_owner_account #=> String
     #   resp.finding.error #=> String
     #   resp.finding.sources #=> Array
-    #   resp.finding.sources[0].type #=> String, one of "POLICY", "BUCKET_ACL", "S3_ACCESS_POINT"
+    #   resp.finding.sources[0].type #=> String, one of "POLICY", "BUCKET_ACL", "S3_ACCESS_POINT", "S3_ACCESS_POINT_ACCOUNT"
     #   resp.finding.sources[0].detail.access_point_arn #=> String
+    #   resp.finding.sources[0].detail.access_point_account #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/GetFinding AWS API Documentation
     #
@@ -1167,8 +1168,9 @@ module Aws::AccessAnalyzer
     #   resp.findings[0].resource_owner_account #=> String
     #   resp.findings[0].error #=> String
     #   resp.findings[0].sources #=> Array
-    #   resp.findings[0].sources[0].type #=> String, one of "POLICY", "BUCKET_ACL", "S3_ACCESS_POINT"
+    #   resp.findings[0].sources[0].type #=> String, one of "POLICY", "BUCKET_ACL", "S3_ACCESS_POINT", "S3_ACCESS_POINT_ACCOUNT"
     #   resp.findings[0].sources[0].detail.access_point_arn #=> String
+    #   resp.findings[0].sources[0].detail.access_point_account #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListAccessPreviewFindings AWS API Documentation
@@ -1459,8 +1461,9 @@ module Aws::AccessAnalyzer
     #   resp.findings[0].resource_owner_account #=> String
     #   resp.findings[0].error #=> String
     #   resp.findings[0].sources #=> Array
-    #   resp.findings[0].sources[0].type #=> String, one of "POLICY", "BUCKET_ACL", "S3_ACCESS_POINT"
+    #   resp.findings[0].sources[0].type #=> String, one of "POLICY", "BUCKET_ACL", "S3_ACCESS_POINT", "S3_ACCESS_POINT_ACCOUNT"
     #   resp.findings[0].sources[0].detail.access_point_arn #=> String
+    #   resp.findings[0].sources[0].detail.access_point_account #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/ListFindings AWS API Documentation
@@ -1899,7 +1902,7 @@ module Aws::AccessAnalyzer
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-accessanalyzer'
-      context[:gem_version] = '1.31.0'
+      context[:gem_version] = '1.33.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-accessanalyzer/client_api.rb

@@ -466,6 +466,7 @@ module Aws::AccessAnalyzer
     FindingSource.struct_class = Types::FindingSource
 
     FindingSourceDetail.add_member(:access_point_arn, Shapes::ShapeRef.new(shape: String, location_name: "accessPointArn"))
+    FindingSourceDetail.add_member(:access_point_account, Shapes::ShapeRef.new(shape: String, location_name: "accessPointAccount"))
     FindingSourceDetail.struct_class = Types::FindingSourceDetail
 
     FindingSourceList.member = Shapes::ShapeRef.new(shape: FindingSource)
@@ -684,7 +685,7 @@ module Aws::AccessAnalyzer
     NetworkOriginConfiguration.add_member_subclass(:unknown, Types::NetworkOriginConfiguration::Unknown)
     NetworkOriginConfiguration.struct_class = Types::NetworkOriginConfiguration
 
-    PathElement.add_member(:index, Shapes::ShapeRef.new(shape: Integer, location_name: "index", metadata: {"box"=>true}))
+    PathElement.add_member(:index, Shapes::ShapeRef.new(shape: Integer, location_name: "index"))
     PathElement.add_member(:key, Shapes::ShapeRef.new(shape: String, location_name: "key"))
     PathElement.add_member(:substring, Shapes::ShapeRef.new(shape: Substring, location_name: "substring"))
     PathElement.add_member(:value, Shapes::ShapeRef.new(shape: String, location_name: "value"))

data/lib/aws-sdk-accessanalyzer/endpoint_parameters.rb

@@ -50,6 +50,9 @@ module Aws::AccessAnalyzer
 
     def initialize(options = {})
       self[:region] = options[:region]
+      if self[:region].nil?
+        raise ArgumentError, "Missing required EndpointParameter: :region"
+      end
       self[:use_dual_stack] = options[:use_dual_stack]
       self[:use_dual_stack] = false if self[:use_dual_stack].nil?
       if self[:use_dual_stack].nil?

data/lib/aws-sdk-accessanalyzer/endpoint_provider.rb

@@ -9,104 +9,43 @@
 
 module Aws::AccessAnalyzer
   class EndpointProvider
-    def initialize(rule_set = nil)
-      @@rule_set ||= begin
-        endpoint_rules = Aws::Json.load(Base64.decode64(RULES))
-        Aws::Endpoints::RuleSet.new(
-          version: endpoint_rules['version'],
-          service_id: endpoint_rules['serviceId'],
-          parameters: endpoint_rules['parameters'],
-          rules: endpoint_rules['rules']
-        )
+    def resolve_endpoint(parameters)
+      region = parameters.region
+      use_dual_stack = parameters.use_dual_stack
+      use_fips = parameters.use_fips
+      endpoint = parameters.endpoint
+      if (partition_result = Aws::Endpoints::Matchers.aws_partition(region))
+        if Aws::Endpoints::Matchers.set?(endpoint) && (url = Aws::Endpoints::Matchers.parse_url(endpoint))
+          if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
+            raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
+          end
+          if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+            raise ArgumentError, "Invalid Configuration: Dualstack and custom endpoint are not supported"
+          end
+          return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
+        end
+        if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
+            return Aws::Endpoints::Endpoint.new(url: "https://access-analyzer-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+          end
+          raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
+        end
+        if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
+          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"))
+            return Aws::Endpoints::Endpoint.new(url: "https://access-analyzer-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+          end
+          raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
+        end
+        if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
+            return Aws::Endpoints::Endpoint.new(url: "https://access-analyzer.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+          end
+          raise ArgumentError, "DualStack is enabled but this partition does not support DualStack"
+        end
+        return Aws::Endpoints::Endpoint.new(url: "https://access-analyzer.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
       end
-      @provider = Aws::Endpoints::RulesProvider.new(rule_set || @@rule_set)
-    end
+      raise ArgumentError, 'No endpoint could be resolved'
 
-    def resolve_endpoint(parameters)
-      @provider.resolve_endpoint(parameters)
     end
-
-    # @api private
-    RULES = <<-JSON
-eyJ2ZXJzaW9uIjoiMS4wIiwicGFyYW1ldGVycyI6eyJSZWdpb24iOnsiYnVp
-bHRJbiI6IkFXUzo6UmVnaW9uIiwicmVxdWlyZWQiOmZhbHNlLCJkb2N1bWVu
-dGF0aW9uIjoiVGhlIEFXUyByZWdpb24gdXNlZCB0byBkaXNwYXRjaCB0aGUg
-cmVxdWVzdC4iLCJ0eXBlIjoiU3RyaW5nIn0sIlVzZUR1YWxTdGFjayI6eyJi
-dWlsdEluIjoiQVdTOjpVc2VEdWFsU3RhY2siLCJyZXF1aXJlZCI6dHJ1ZSwi
-ZGVmYXVsdCI6ZmFsc2UsImRvY3VtZW50YXRpb24iOiJXaGVuIHRydWUsIHVz
-ZSB0aGUgZHVhbC1zdGFjayBlbmRwb2ludC4gSWYgdGhlIGNvbmZpZ3VyZWQg
-ZW5kcG9pbnQgZG9lcyBub3Qgc3VwcG9ydCBkdWFsLXN0YWNrLCBkaXNwYXRj
-aGluZyB0aGUgcmVxdWVzdCBNQVkgcmV0dXJuIGFuIGVycm9yLiIsInR5cGUi
-OiJCb29sZWFuIn0sIlVzZUZJUFMiOnsiYnVpbHRJbiI6IkFXUzo6VXNlRklQ
-UyIsInJlcXVpcmVkIjp0cnVlLCJkZWZhdWx0IjpmYWxzZSwiZG9jdW1lbnRh
-dGlvbiI6IldoZW4gdHJ1ZSwgc2VuZCB0aGlzIHJlcXVlc3QgdG8gdGhlIEZJ
-UFMtY29tcGxpYW50IHJlZ2lvbmFsIGVuZHBvaW50LiBJZiB0aGUgY29uZmln
-dXJlZCBlbmRwb2ludCBkb2VzIG5vdCBoYXZlIGEgRklQUyBjb21wbGlhbnQg
-ZW5kcG9pbnQsIGRpc3BhdGNoaW5nIHRoZSByZXF1ZXN0IHdpbGwgcmV0dXJu
-IGFuIGVycm9yLiIsInR5cGUiOiJCb29sZWFuIn0sIkVuZHBvaW50Ijp7ImJ1
-aWx0SW4iOiJTREs6OkVuZHBvaW50IiwicmVxdWlyZWQiOmZhbHNlLCJkb2N1
-bWVudGF0aW9uIjoiT3ZlcnJpZGUgdGhlIGVuZHBvaW50IHVzZWQgdG8gc2Vu
-ZCB0aGlzIHJlcXVlc3QiLCJ0eXBlIjoiU3RyaW5nIn19LCJydWxlcyI6W3si
-Y29uZGl0aW9ucyI6W3siZm4iOiJhd3MucGFydGl0aW9uIiwiYXJndiI6W3si
-cmVmIjoiUmVnaW9uIn1dLCJhc3NpZ24iOiJQYXJ0aXRpb25SZXN1bHQifV0s
-InR5cGUiOiJ0cmVlIiwicnVsZXMiOlt7ImNvbmRpdGlvbnMiOlt7ImZuIjoi
-aXNTZXQiLCJhcmd2IjpbeyJyZWYiOiJFbmRwb2ludCJ9XX0seyJmbiI6InBh
-cnNlVVJMIiwiYXJndiI6W3sicmVmIjoiRW5kcG9pbnQifV0sImFzc2lnbiI6
-InVybCJ9XSwidHlwZSI6InRyZWUiLCJydWxlcyI6W3siY29uZGl0aW9ucyI6
-W3siZm4iOiJib29sZWFuRXF1YWxzIiwiYXJndiI6W3sicmVmIjoiVXNlRklQ
-UyJ9LHRydWVdfV0sImVycm9yIjoiSW52YWxpZCBDb25maWd1cmF0aW9uOiBG
-SVBTIGFuZCBjdXN0b20gZW5kcG9pbnQgYXJlIG5vdCBzdXBwb3J0ZWQiLCJ0
-eXBlIjoiZXJyb3IifSx7ImNvbmRpdGlvbnMiOltdLCJ0eXBlIjoidHJlZSIs
-InJ1bGVzIjpbeyJjb25kaXRpb25zIjpbeyJmbiI6ImJvb2xlYW5FcXVhbHMi
-LCJhcmd2IjpbeyJyZWYiOiJVc2VEdWFsU3RhY2sifSx0cnVlXX1dLCJlcnJv
-ciI6IkludmFsaWQgQ29uZmlndXJhdGlvbjogRHVhbHN0YWNrIGFuZCBjdXN0
-b20gZW5kcG9pbnQgYXJlIG5vdCBzdXBwb3J0ZWQiLCJ0eXBlIjoiZXJyb3Ii
-fSx7ImNvbmRpdGlvbnMiOltdLCJlbmRwb2ludCI6eyJ1cmwiOnsicmVmIjoi
-RW5kcG9pbnQifSwicHJvcGVydGllcyI6e30sImhlYWRlcnMiOnt9fSwidHlw
-ZSI6ImVuZHBvaW50In1dfV19LHsiY29uZGl0aW9ucyI6W3siZm4iOiJib29s
-ZWFuRXF1YWxzIiwiYXJndiI6W3sicmVmIjoiVXNlRklQUyJ9LHRydWVdfSx7
-ImZuIjoiYm9vbGVhbkVxdWFscyIsImFyZ3YiOlt7InJlZiI6IlVzZUR1YWxT
-dGFjayJ9LHRydWVdfV0sInR5cGUiOiJ0cmVlIiwicnVsZXMiOlt7ImNvbmRp
-dGlvbnMiOlt7ImZuIjoiYm9vbGVhbkVxdWFscyIsImFyZ3YiOlt0cnVlLHsi
-Zm4iOiJnZXRBdHRyIiwiYXJndiI6W3sicmVmIjoiUGFydGl0aW9uUmVzdWx0
-In0sInN1cHBvcnRzRklQUyJdfV19LHsiZm4iOiJib29sZWFuRXF1YWxzIiwi
-YXJndiI6W3RydWUseyJmbiI6ImdldEF0dHIiLCJhcmd2IjpbeyJyZWYiOiJQ
-YXJ0aXRpb25SZXN1bHQifSwic3VwcG9ydHNEdWFsU3RhY2siXX1dfV0sInR5
-cGUiOiJ0cmVlIiwicnVsZXMiOlt7ImNvbmRpdGlvbnMiOltdLCJlbmRwb2lu
-dCI6eyJ1cmwiOiJodHRwczovL2FjY2Vzcy1hbmFseXplci1maXBzLntSZWdp
-b259LntQYXJ0aXRpb25SZXN1bHQjZHVhbFN0YWNrRG5zU3VmZml4fSIsInBy
-b3BlcnRpZXMiOnt9LCJoZWFkZXJzIjp7fX0sInR5cGUiOiJlbmRwb2ludCJ9
-XX0seyJjb25kaXRpb25zIjpbXSwiZXJyb3IiOiJGSVBTIGFuZCBEdWFsU3Rh
-Y2sgYXJlIGVuYWJsZWQsIGJ1dCB0aGlzIHBhcnRpdGlvbiBkb2VzIG5vdCBz
-dXBwb3J0IG9uZSBvciBib3RoIiwidHlwZSI6ImVycm9yIn1dfSx7ImNvbmRp
-dGlvbnMiOlt7ImZuIjoiYm9vbGVhbkVxdWFscyIsImFyZ3YiOlt7InJlZiI6
-IlVzZUZJUFMifSx0cnVlXX1dLCJ0eXBlIjoidHJlZSIsInJ1bGVzIjpbeyJj
-b25kaXRpb25zIjpbeyJmbiI6ImJvb2xlYW5FcXVhbHMiLCJhcmd2IjpbdHJ1
-ZSx7ImZuIjoiZ2V0QXR0ciIsImFyZ3YiOlt7InJlZiI6IlBhcnRpdGlvblJl
-c3VsdCJ9LCJzdXBwb3J0c0ZJUFMiXX1dfV0sInR5cGUiOiJ0cmVlIiwicnVs
-ZXMiOlt7ImNvbmRpdGlvbnMiOltdLCJ0eXBlIjoidHJlZSIsInJ1bGVzIjpb
-eyJjb25kaXRpb25zIjpbXSwiZW5kcG9pbnQiOnsidXJsIjoiaHR0cHM6Ly9h
-Y2Nlc3MtYW5hbHl6ZXItZmlwcy57UmVnaW9ufS57UGFydGl0aW9uUmVzdWx0
-I2Ruc1N1ZmZpeH0iLCJwcm9wZXJ0aWVzIjp7fSwiaGVhZGVycyI6e319LCJ0
-eXBlIjoiZW5kcG9pbnQifV19XX0seyJjb25kaXRpb25zIjpbXSwiZXJyb3Ii
-OiJGSVBTIGlzIGVuYWJsZWQgYnV0IHRoaXMgcGFydGl0aW9uIGRvZXMgbm90
-IHN1cHBvcnQgRklQUyIsInR5cGUiOiJlcnJvciJ9XX0seyJjb25kaXRpb25z
-IjpbeyJmbiI6ImJvb2xlYW5FcXVhbHMiLCJhcmd2IjpbeyJyZWYiOiJVc2VE
-dWFsU3RhY2sifSx0cnVlXX1dLCJ0eXBlIjoidHJlZSIsInJ1bGVzIjpbeyJj
-b25kaXRpb25zIjpbeyJmbiI6ImJvb2xlYW5FcXVhbHMiLCJhcmd2IjpbdHJ1
-ZSx7ImZuIjoiZ2V0QXR0ciIsImFyZ3YiOlt7InJlZiI6IlBhcnRpdGlvblJl
-c3VsdCJ9LCJzdXBwb3J0c0R1YWxTdGFjayJdfV19XSwidHlwZSI6InRyZWUi
-LCJydWxlcyI6W3siY29uZGl0aW9ucyI6W10sImVuZHBvaW50Ijp7InVybCI6
-Imh0dHBzOi8vYWNjZXNzLWFuYWx5emVyLntSZWdpb259LntQYXJ0aXRpb25S
-ZXN1bHQjZHVhbFN0YWNrRG5zU3VmZml4fSIsInByb3BlcnRpZXMiOnt9LCJo
-ZWFkZXJzIjp7fX0sInR5cGUiOiJlbmRwb2ludCJ9XX0seyJjb25kaXRpb25z
-IjpbXSwiZXJyb3IiOiJEdWFsU3RhY2sgaXMgZW5hYmxlZCBidXQgdGhpcyBw
-YXJ0aXRpb24gZG9lcyBub3Qgc3VwcG9ydCBEdWFsU3RhY2siLCJ0eXBlIjoi
-ZXJyb3IifV19LHsiY29uZGl0aW9ucyI6W10sImVuZHBvaW50Ijp7InVybCI6
-Imh0dHBzOi8vYWNjZXNzLWFuYWx5emVyLntSZWdpb259LntQYXJ0aXRpb25S
-ZXN1bHQjZG5zU3VmZml4fSIsInByb3BlcnRpZXMiOnt9LCJoZWFkZXJzIjp7
-fX0sInR5cGUiOiJlbmRwb2ludCJ9XX1dfQ==
-
-    JSON
   end
 end

data/lib/aws-sdk-accessanalyzer/types.rb

@@ -447,15 +447,6 @@ module Aws::AccessAnalyzer
 
     # Retroactively applies an archive rule.
     #
-    # @note When making an API call, you may pass ApplyArchiveRuleRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_arn: "AnalyzerArn", # required
-    #         rule_name: "Name", # required
-    #         client_token: "String",
-    #       }
-    #
     # @!attribute [rw] analyzer_arn
     #   The Amazon resource name (ARN) of the analyzer.
     #   @return [String]
@@ -510,13 +501,6 @@ module Aws::AccessAnalyzer
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass CancelPolicyGenerationRequest
-    #   data as a hash:
-    #
-    #       {
-    #         job_id: "JobId", # required
-    #       }
-    #
     # @!attribute [rw] job_id
     #   The `JobId` that is returned by the `StartPolicyGeneration`
     #   operation. The `JobId` can be used with `GetGeneratedPolicy` to
@@ -538,22 +522,6 @@ module Aws::AccessAnalyzer
 
     # Contains information about CloudTrail access.
     #
-    # @note When making an API call, you may pass CloudTrailDetails
-    #   data as a hash:
-    #
-    #       {
-    #         trails: [ # required
-    #           {
-    #             cloud_trail_arn: "CloudTrailArn", # required
-    #             regions: ["String"],
-    #             all_regions: false,
-    #           },
-    #         ],
-    #         access_role: "RoleArn", # required
-    #         start_time: Time.now, # required
-    #         end_time: Time.now,
-    #       }
-    #
     # @!attribute [rw] trails
     #   A `Trail` object that contains settings for a trail.
     #   @return [Array<Types::Trail>]
@@ -727,111 +695,6 @@ module Aws::AccessAnalyzer
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass CreateAccessPreviewRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_arn: "AnalyzerArn", # required
-    #         configurations: { # required
-    #           "ConfigurationsMapKey" => {
-    #             ebs_snapshot: {
-    #               user_ids: ["EbsUserId"],
-    #               groups: ["EbsGroup"],
-    #               kms_key_id: "EbsSnapshotDataEncryptionKeyId",
-    #             },
-    #             ecr_repository: {
-    #               repository_policy: "EcrRepositoryPolicy",
-    #             },
-    #             iam_role: {
-    #               trust_policy: "IamTrustPolicy",
-    #             },
-    #             efs_file_system: {
-    #               file_system_policy: "EfsFileSystemPolicy",
-    #             },
-    #             kms_key: {
-    #               key_policies: {
-    #                 "PolicyName" => "KmsKeyPolicy",
-    #               },
-    #               grants: [
-    #                 {
-    #                   operations: ["CreateGrant"], # required, accepts CreateGrant, Decrypt, DescribeKey, Encrypt, GenerateDataKey, GenerateDataKeyPair, GenerateDataKeyPairWithoutPlaintext, GenerateDataKeyWithoutPlaintext, GetPublicKey, ReEncryptFrom, ReEncryptTo, RetireGrant, Sign, Verify
-    #                   grantee_principal: "GranteePrincipal", # required
-    #                   retiring_principal: "RetiringPrincipal",
-    #                   constraints: {
-    #                     encryption_context_equals: {
-    #                       "KmsConstraintsKey" => "KmsConstraintsValue",
-    #                     },
-    #                     encryption_context_subset: {
-    #                       "KmsConstraintsKey" => "KmsConstraintsValue",
-    #                     },
-    #                   },
-    #                   issuing_account: "IssuingAccount", # required
-    #                 },
-    #               ],
-    #             },
-    #             rds_db_cluster_snapshot: {
-    #               attributes: {
-    #                 "RdsDbClusterSnapshotAttributeName" => {
-    #                   account_ids: ["RdsDbClusterSnapshotAccountId"],
-    #                 },
-    #               },
-    #               kms_key_id: "RdsDbClusterSnapshotKmsKeyId",
-    #             },
-    #             rds_db_snapshot: {
-    #               attributes: {
-    #                 "RdsDbSnapshotAttributeName" => {
-    #                   account_ids: ["RdsDbSnapshotAccountId"],
-    #                 },
-    #               },
-    #               kms_key_id: "RdsDbSnapshotKmsKeyId",
-    #             },
-    #             secrets_manager_secret: {
-    #               kms_key_id: "SecretsManagerSecretKmsId",
-    #               secret_policy: "SecretsManagerSecretPolicy",
-    #             },
-    #             s3_bucket: {
-    #               bucket_policy: "S3BucketPolicy",
-    #               bucket_acl_grants: [
-    #                 {
-    #                   permission: "READ", # required, accepts READ, WRITE, READ_ACP, WRITE_ACP, FULL_CONTROL
-    #                   grantee: { # required
-    #                     id: "AclCanonicalId",
-    #                     uri: "AclUri",
-    #                   },
-    #                 },
-    #               ],
-    #               bucket_public_access_block: {
-    #                 ignore_public_acls: false, # required
-    #                 restrict_public_buckets: false, # required
-    #               },
-    #               access_points: {
-    #                 "AccessPointArn" => {
-    #                   access_point_policy: "AccessPointPolicy",
-    #                   public_access_block: {
-    #                     ignore_public_acls: false, # required
-    #                     restrict_public_buckets: false, # required
-    #                   },
-    #                   network_origin: {
-    #                     vpc_configuration: {
-    #                       vpc_id: "VpcId", # required
-    #                     },
-    #                     internet_configuration: {
-    #                     },
-    #                   },
-    #                 },
-    #               },
-    #             },
-    #             sns_topic: {
-    #               topic_policy: "SnsTopicPolicy",
-    #             },
-    #             sqs_queue: {
-    #               queue_policy: "SqsQueuePolicy",
-    #             },
-    #           },
-    #         },
-    #         client_token: "String",
-    #       }
-    #
     # @!attribute [rw] analyzer_arn
     #   The [ARN of the account analyzer][1] used to generate the access
     #   preview. You can only create an access preview for analyzers with an
@@ -881,31 +744,6 @@ module Aws::AccessAnalyzer
 
     # Creates an analyzer.
     #
-    # @note When making an API call, you may pass CreateAnalyzerRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_name: "Name", # required
-    #         type: "ACCOUNT", # required, accepts ACCOUNT, ORGANIZATION
-    #         archive_rules: [
-    #           {
-    #             rule_name: "Name", # required
-    #             filter: { # required
-    #               "String" => {
-    #                 eq: ["String"],
-    #                 neq: ["String"],
-    #                 contains: ["String"],
-    #                 exists: false,
-    #               },
-    #             },
-    #           },
-    #         ],
-    #         tags: {
-    #           "String" => "String",
-    #         },
-    #         client_token: "String",
-    #       }
-    #
     # @!attribute [rw] analyzer_name
     #   The name of the analyzer to create.
     #   @return [String]
@@ -962,23 +800,6 @@ module Aws::AccessAnalyzer
 
     # Creates an archive rule.
     #
-    # @note When making an API call, you may pass CreateArchiveRuleRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_name: "Name", # required
-    #         rule_name: "Name", # required
-    #         filter: { # required
-    #           "String" => {
-    #             eq: ["String"],
-    #             neq: ["String"],
-    #             contains: ["String"],
-    #             exists: false,
-    #           },
-    #         },
-    #         client_token: "String",
-    #       }
-    #
     # @!attribute [rw] analyzer_name
     #   The name of the created analyzer.
     #   @return [String]
@@ -1009,17 +830,13 @@ module Aws::AccessAnalyzer
       include Aws::Structure
     end
 
-    # The criteria to use in the filter that defines the archive rule.
+    # The criteria to use in the filter that defines the archive rule. For
+    # more information on available filter keys, see [IAM Access Analyzer
+    # filter keys][1].
+    #
     #
-    # @note When making an API call, you may pass Criterion
-    #   data as a hash:
     #
-    #       {
-    #         eq: ["String"],
-    #         neq: ["String"],
-    #         contains: ["String"],
-    #         exists: false,
-    #       }
+    # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-reference-filter-keys.html
     #
     # @!attribute [rw] eq
     #   An "equals" operator to match for the filter used to create the
@@ -1054,14 +871,6 @@ module Aws::AccessAnalyzer
 
     # Deletes an analyzer.
     #
-    # @note When making an API call, you may pass DeleteAnalyzerRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_name: "Name", # required
-    #         client_token: "String",
-    #       }
-    #
     # @!attribute [rw] analyzer_name
     #   The name of the analyzer to delete.
     #   @return [String]
@@ -1084,15 +893,6 @@ module Aws::AccessAnalyzer
 
     # Deletes an archive rule.
     #
-    # @note When making an API call, you may pass DeleteArchiveRuleRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_name: "Name", # required
-    #         rule_name: "Name", # required
-    #         client_token: "String",
-    #       }
-    #
     # @!attribute [rw] analyzer_name
     #   The name of the analyzer that associated with the archive rule to
     #   delete.
@@ -1129,15 +929,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_ModifySnapshotAttribute.html
     #
-    # @note When making an API call, you may pass EbsSnapshotConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         user_ids: ["EbsUserId"],
-    #         groups: ["EbsGroup"],
-    #         kms_key_id: "EbsSnapshotDataEncryptionKeyId",
-    #       }
-    #
     # @!attribute [rw] user_ids
     #   The IDs of the Amazon Web Services accounts that have access to the
     #   Amazon EBS volume snapshot.
@@ -1217,13 +1008,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/AmazonECR/latest/APIReference/API_Repository.html
     #
-    # @note When making an API call, you may pass EcrRepositoryConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         repository_policy: "EcrRepositoryPolicy",
-    #       }
-    #
     # @!attribute [rw] repository_policy
     #   The JSON repository policy text to apply to the Amazon ECR
     #   repository. For more information, see [Private repository policy
@@ -1263,13 +1047,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/efs/latest/ug/using-fs.html
     #
-    # @note When making an API call, you may pass EfsFileSystemConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         file_system_policy: "EfsFileSystemPolicy",
-    #       }
-    #
     # @!attribute [rw] file_system_policy
     #   The JSON policy definition to apply to the Amazon EFS file system.
     #   For more information on the elements that make up a file system
@@ -1404,10 +1181,16 @@ module Aws::AccessAnalyzer
     #   multi-region access point.
     #   @return [String]
     #
+    # @!attribute [rw] access_point_account
+    #   The account of the cross-account access point that generated the
+    #   finding.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/FindingSourceDetail AWS API Documentation
     #
     class FindingSourceDetail < Struct.new(
-      :access_point_arn)
+      :access_point_arn,
+      :access_point_account)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -1569,14 +1352,6 @@ module Aws::AccessAnalyzer
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass GetAccessPreviewRequest
-    #   data as a hash:
-    #
-    #       {
-    #         access_preview_id: "AccessPreviewId", # required
-    #         analyzer_arn: "AnalyzerArn", # required
-    #       }
-    #
     # @!attribute [rw] access_preview_id
     #   The unique ID for the access preview.
     #   @return [String]
@@ -1612,14 +1387,6 @@ module Aws::AccessAnalyzer
 
     # Retrieves an analyzed resource.
     #
-    # @note When making an API call, you may pass GetAnalyzedResourceRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_arn: "AnalyzerArn", # required
-    #         resource_arn: "ResourceArn", # required
-    #       }
-    #
     # @!attribute [rw] analyzer_arn
     #   The [ARN of the analyzer][1] to retrieve information from.
     #
@@ -1658,13 +1425,6 @@ module Aws::AccessAnalyzer
 
     # Retrieves an analyzer.
     #
-    # @note When making an API call, you may pass GetAnalyzerRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_name: "Name", # required
-    #       }
-    #
     # @!attribute [rw] analyzer_name
     #   The name of the analyzer retrieved.
     #   @return [String]
@@ -1694,14 +1454,6 @@ module Aws::AccessAnalyzer
 
     # Retrieves an archive rule.
     #
-    # @note When making an API call, you may pass GetArchiveRuleRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_name: "Name", # required
-    #         rule_name: "Name", # required
-    #       }
-    #
     # @!attribute [rw] analyzer_name
     #   The name of the analyzer to retrieve rules from.
     #   @return [String]
@@ -1735,14 +1487,6 @@ module Aws::AccessAnalyzer
 
     # Retrieves a finding.
     #
-    # @note When making an API call, you may pass GetFindingRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_arn: "AnalyzerArn", # required
-    #         id: "FindingId", # required
-    #       }
-    #
     # @!attribute [rw] analyzer_arn
     #   The [ARN of the analyzer][1] that generated the finding.
     #
@@ -1778,15 +1522,6 @@ module Aws::AccessAnalyzer
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass GetGeneratedPolicyRequest
-    #   data as a hash:
-    #
-    #       {
-    #         job_id: "JobId", # required
-    #         include_resource_placeholders: false,
-    #         include_service_level_template: false,
-    #       }
-    #
     # @!attribute [rw] job_id
     #   The `JobId` that is returned by the `StartPolicyGeneration`
     #   operation. The `JobId` can be used with `GetGeneratedPolicy` to
@@ -1856,13 +1591,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html
     #
-    # @note When making an API call, you may pass IamRoleConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         trust_policy: "IamTrustPolicy",
-    #       }
-    #
     # @!attribute [rw] trust_policy
     #   The proposed trust policy for the IAM role.
     #   @return [String]
@@ -1878,21 +1606,6 @@ module Aws::AccessAnalyzer
     # An criterion statement in an archive rule. Each archive rule may have
     # multiple criteria.
     #
-    # @note When making an API call, you may pass InlineArchiveRule
-    #   data as a hash:
-    #
-    #       {
-    #         rule_name: "Name", # required
-    #         filter: { # required
-    #           "String" => {
-    #             eq: ["String"],
-    #             neq: ["String"],
-    #             contains: ["String"],
-    #             exists: false,
-    #           },
-    #         },
-    #       }
-    #
     # @!attribute [rw] rule_name
     #   The name of the rule.
     #   @return [String]
@@ -2001,24 +1714,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/kms/latest/APIReference/API_CreateGrant.html
     #
-    # @note When making an API call, you may pass KmsGrantConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         operations: ["CreateGrant"], # required, accepts CreateGrant, Decrypt, DescribeKey, Encrypt, GenerateDataKey, GenerateDataKeyPair, GenerateDataKeyPairWithoutPlaintext, GenerateDataKeyWithoutPlaintext, GetPublicKey, ReEncryptFrom, ReEncryptTo, RetireGrant, Sign, Verify
-    #         grantee_principal: "GranteePrincipal", # required
-    #         retiring_principal: "RetiringPrincipal",
-    #         constraints: {
-    #           encryption_context_equals: {
-    #             "KmsConstraintsKey" => "KmsConstraintsValue",
-    #           },
-    #           encryption_context_subset: {
-    #             "KmsConstraintsKey" => "KmsConstraintsValue",
-    #           },
-    #         },
-    #         issuing_account: "IssuingAccount", # required
-    #       }
-    #
     # @!attribute [rw] operations
     #   A list of operations that the grant permits.
     #   @return [Array<String>]
@@ -2078,18 +1773,6 @@ module Aws::AccessAnalyzer
     # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#encrypt_context
     # [3]: https://docs.aws.amazon.com/kms/latest/APIReference/API_GrantConstraints.html
     #
-    # @note When making an API call, you may pass KmsGrantConstraints
-    #   data as a hash:
-    #
-    #       {
-    #         encryption_context_equals: {
-    #           "KmsConstraintsKey" => "KmsConstraintsValue",
-    #         },
-    #         encryption_context_subset: {
-    #           "KmsConstraintsKey" => "KmsConstraintsValue",
-    #         },
-    #       }
-    #
     # @!attribute [rw] encryption_context_equals
     #   A list of key-value pairs that must match the encryption context in
     #   the [cryptographic operation][1] request. The grant allows the
@@ -2140,31 +1823,6 @@ module Aws::AccessAnalyzer
     # [1]: https://docs.aws.amazon.com/kms/latest/developerguide/key-policies.html#key-policy-default
     # [2]: https://docs.aws.amazon.com/kms/latest/developerguide/resource-limits.html
     #
-    # @note When making an API call, you may pass KmsKeyConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         key_policies: {
-    #           "PolicyName" => "KmsKeyPolicy",
-    #         },
-    #         grants: [
-    #           {
-    #             operations: ["CreateGrant"], # required, accepts CreateGrant, Decrypt, DescribeKey, Encrypt, GenerateDataKey, GenerateDataKeyPair, GenerateDataKeyPairWithoutPlaintext, GenerateDataKeyWithoutPlaintext, GetPublicKey, ReEncryptFrom, ReEncryptTo, RetireGrant, Sign, Verify
-    #             grantee_principal: "GranteePrincipal", # required
-    #             retiring_principal: "RetiringPrincipal",
-    #             constraints: {
-    #               encryption_context_equals: {
-    #                 "KmsConstraintsKey" => "KmsConstraintsValue",
-    #               },
-    #               encryption_context_subset: {
-    #                 "KmsConstraintsKey" => "KmsConstraintsValue",
-    #               },
-    #             },
-    #             issuing_account: "IssuingAccount", # required
-    #           },
-    #         ],
-    #       }
-    #
     # @!attribute [rw] key_policies
     #   Resource policy configuration for the KMS key. The only valid value
     #   for the name of the key policy is `default`. For more information,
@@ -2192,24 +1850,6 @@ module Aws::AccessAnalyzer
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass ListAccessPreviewFindingsRequest
-    #   data as a hash:
-    #
-    #       {
-    #         access_preview_id: "AccessPreviewId", # required
-    #         analyzer_arn: "AnalyzerArn", # required
-    #         filter: {
-    #           "String" => {
-    #             eq: ["String"],
-    #             neq: ["String"],
-    #             contains: ["String"],
-    #             exists: false,
-    #           },
-    #         },
-    #         next_token: "Token",
-    #         max_results: 1,
-    #       }
-    #
     # @!attribute [rw] access_preview_id
     #   The unique ID for the access preview.
     #   @return [String]
@@ -2264,15 +1904,6 @@ module Aws::AccessAnalyzer
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass ListAccessPreviewsRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_arn: "AnalyzerArn", # required
-    #         next_token: "Token",
-    #         max_results: 1,
-    #       }
-    #
     # @!attribute [rw] analyzer_arn
     #   The [ARN of the analyzer][1] used to generate the access preview.
     #
@@ -2318,16 +1949,6 @@ module Aws::AccessAnalyzer
 
     # Retrieves a list of resources that have been analyzed.
     #
-    # @note When making an API call, you may pass ListAnalyzedResourcesRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_arn: "AnalyzerArn", # required
-    #         resource_type: "AWS::S3::Bucket", # accepts AWS::S3::Bucket, AWS::IAM::Role, AWS::SQS::Queue, AWS::Lambda::Function, AWS::Lambda::LayerVersion, AWS::KMS::Key, AWS::SecretsManager::Secret, AWS::EFS::FileSystem, AWS::EC2::Snapshot, AWS::ECR::Repository, AWS::RDS::DBSnapshot, AWS::RDS::DBClusterSnapshot, AWS::SNS::Topic
-    #         next_token: "Token",
-    #         max_results: 1,
-    #       }
-    #
     # @!attribute [rw] analyzer_arn
     #   The [ARN of the analyzer][1] to retrieve a list of analyzed
     #   resources from.
@@ -2381,15 +2002,6 @@ module Aws::AccessAnalyzer
 
     # Retrieves a list of analyzers.
     #
-    # @note When making an API call, you may pass ListAnalyzersRequest
-    #   data as a hash:
-    #
-    #       {
-    #         next_token: "Token",
-    #         max_results: 1,
-    #         type: "ACCOUNT", # accepts ACCOUNT, ORGANIZATION
-    #       }
-    #
     # @!attribute [rw] next_token
     #   A token used for pagination of results returned.
     #   @return [String]
@@ -2433,15 +2045,6 @@ module Aws::AccessAnalyzer
 
     # Retrieves a list of archive rules created for the specified analyzer.
     #
-    # @note When making an API call, you may pass ListArchiveRulesRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_name: "Name", # required
-    #         next_token: "Token",
-    #         max_results: 1,
-    #       }
-    #
     # @!attribute [rw] analyzer_name
     #   The name of the analyzer to retrieve rules from.
     #   @return [String]
@@ -2485,27 +2088,6 @@ module Aws::AccessAnalyzer
 
     # Retrieves a list of findings generated by the specified analyzer.
     #
-    # @note When making an API call, you may pass ListFindingsRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_arn: "AnalyzerArn", # required
-    #         filter: {
-    #           "String" => {
-    #             eq: ["String"],
-    #             neq: ["String"],
-    #             contains: ["String"],
-    #             exists: false,
-    #           },
-    #         },
-    #         sort: {
-    #           attribute_name: "String",
-    #           order_by: "ASC", # accepts ASC, DESC
-    #         },
-    #         next_token: "Token",
-    #         max_results: 1,
-    #       }
-    #
     # @!attribute [rw] analyzer_arn
     #   The [ARN of the analyzer][1] to retrieve findings from.
     #
@@ -2562,15 +2144,6 @@ module Aws::AccessAnalyzer
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass ListPolicyGenerationsRequest
-    #   data as a hash:
-    #
-    #       {
-    #         principal_arn: "PrincipalArn",
-    #         max_results: 1,
-    #         next_token: "Token",
-    #       }
-    #
     # @!attribute [rw] principal_arn
     #   The ARN of the IAM entity (user or role) for which you are
     #   generating a policy. Use this with `ListGeneratedPolicies` to filter
@@ -2615,13 +2188,6 @@ module Aws::AccessAnalyzer
 
     # Retrieves a list of tags applied to the specified resource.
     #
-    # @note When making an API call, you may pass ListTagsForResourceRequest
-    #   data as a hash:
-    #
-    #       {
-    #         resource_arn: "String", # required
-    #       }
-    #
     # @!attribute [rw] resource_arn
     #   The ARN of the resource to retrieve tags from.
     #   @return [String]
@@ -2796,13 +2362,6 @@ module Aws::AccessAnalyzer
     # Contains the ARN details about the IAM entity for which the policy is
     # generated.
     #
-    # @note When making an API call, you may pass PolicyGenerationDetails
-    #   data as a hash:
-    #
-    #       {
-    #         principal_arn: "PrincipalArn", # required
-    #       }
-    #
     # @!attribute [rw] principal_arn
     #   The ARN of the IAM entity (user or role) for which you are
     #   generating a policy.
@@ -2892,18 +2451,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBClusterSnapshotAttribute.html
     #
-    # @note When making an API call, you may pass RdsDbClusterSnapshotConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         attributes: {
-    #           "RdsDbClusterSnapshotAttributeName" => {
-    #             account_ids: ["RdsDbClusterSnapshotAccountId"],
-    #           },
-    #         },
-    #         kms_key_id: "RdsDbClusterSnapshotKmsKeyId",
-    #       }
-    #
     # @!attribute [rw] attributes
     #   The names and values of manual DB cluster snapshot attributes.
     #   Manual DB cluster snapshot attributes are used to authorize other
@@ -2988,18 +2535,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/AmazonRDS/latest/APIReference/API_ModifyDBSnapshotAttribute.html
     #
-    # @note When making an API call, you may pass RdsDbSnapshotConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         attributes: {
-    #           "RdsDbSnapshotAttributeName" => {
-    #             account_ids: ["RdsDbSnapshotAccountId"],
-    #           },
-    #         },
-    #         kms_key_id: "RdsDbSnapshotKmsKeyId",
-    #       }
-    #
     # @!attribute [rw] attributes
     #   The names and values of manual DB snapshot attributes. Manual DB
     #   snapshot attributes are used to authorize other Amazon Web Services
@@ -3070,24 +2605,6 @@ module Aws::AccessAnalyzer
     # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/creating-access-points.html
     # [2]: https://docs.aws.amazon.com/AmazonS3/latest/dev/access-points-restrictions-limitations.html
     #
-    # @note When making an API call, you may pass S3AccessPointConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         access_point_policy: "AccessPointPolicy",
-    #         public_access_block: {
-    #           ignore_public_acls: false, # required
-    #           restrict_public_buckets: false, # required
-    #         },
-    #         network_origin: {
-    #           vpc_configuration: {
-    #             vpc_id: "VpcId", # required
-    #           },
-    #           internet_configuration: {
-    #           },
-    #         },
-    #       }
-    #
     # @!attribute [rw] access_point_policy
     #   The access point or multi-region access point policy.
     #   @return [String]
@@ -3124,17 +2641,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#setting-acls
     #
-    # @note When making an API call, you may pass S3BucketAclGrantConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         permission: "READ", # required, accepts READ, WRITE, READ_ACP, WRITE_ACP, FULL_CONTROL
-    #         grantee: { # required
-    #           id: "AclCanonicalId",
-    #           uri: "AclUri",
-    #         },
-    #       }
-    #
     # @!attribute [rw] permission
     #   The permissions being granted.
     #   @return [String]
@@ -3170,42 +2676,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/example-bucket-policies.html
     #
-    # @note When making an API call, you may pass S3BucketConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         bucket_policy: "S3BucketPolicy",
-    #         bucket_acl_grants: [
-    #           {
-    #             permission: "READ", # required, accepts READ, WRITE, READ_ACP, WRITE_ACP, FULL_CONTROL
-    #             grantee: { # required
-    #               id: "AclCanonicalId",
-    #               uri: "AclUri",
-    #             },
-    #           },
-    #         ],
-    #         bucket_public_access_block: {
-    #           ignore_public_acls: false, # required
-    #           restrict_public_buckets: false, # required
-    #         },
-    #         access_points: {
-    #           "AccessPointArn" => {
-    #             access_point_policy: "AccessPointPolicy",
-    #             public_access_block: {
-    #               ignore_public_acls: false, # required
-    #               restrict_public_buckets: false, # required
-    #             },
-    #             network_origin: {
-    #               vpc_configuration: {
-    #                 vpc_id: "VpcId", # required
-    #               },
-    #               internet_configuration: {
-    #               },
-    #             },
-    #           },
-    #         },
-    #       }
-    #
     # @!attribute [rw] bucket_policy
     #   The proposed bucket policy for the Amazon S3 bucket.
     #   @return [String]
@@ -3255,14 +2725,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3-bucket-publicaccessblockconfiguration.html
     #
-    # @note When making an API call, you may pass S3PublicAccessBlockConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         ignore_public_acls: false, # required
-    #         restrict_public_buckets: false, # required
-    #       }
-    #
     # @!attribute [rw] ignore_public_acls
     #   Specifies whether Amazon S3 should ignore public ACLs for this
     #   bucket and objects in this bucket.
@@ -3305,14 +2767,6 @@ module Aws::AccessAnalyzer
     # [1]: https://docs.aws.amazon.com/secretsmanager/latest/apireference/API_CreateSecret.html
     # [2]: https://docs.aws.amazon.com/secretsmanager/latest/userguide/reference_limits.html
     #
-    # @note When making an API call, you may pass SecretsManagerSecretConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         kms_key_id: "SecretsManagerSecretKmsId",
-    #         secret_policy: "SecretsManagerSecretPolicy",
-    #       }
-    #
     # @!attribute [rw] kms_key_id
     #   The proposed ARN, key ID, or alias of the KMS key.
     #   @return [String]
@@ -3370,13 +2824,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/sns/latest/api/API_Topic.html
     #
-    # @note When making an API call, you may pass SnsTopicConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         topic_policy: "SnsTopicPolicy",
-    #       }
-    #
     # @!attribute [rw] topic_policy
     #   The JSON policy text that defines who can access an Amazon SNS
     #   topic. For more information, see [Example cases for Amazon SNS
@@ -3397,14 +2844,6 @@ module Aws::AccessAnalyzer
 
     # The criteria used to sort.
     #
-    # @note When making an API call, you may pass SortCriteria
-    #   data as a hash:
-    #
-    #       {
-    #         attribute_name: "String",
-    #         order_by: "ASC", # accepts ASC, DESC
-    #       }
-    #
     # @!attribute [rw] attribute_name
     #   The name of the attribute to sort on.
     #   @return [String]
@@ -3458,13 +2897,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/AWSSimpleQueueService/latest/SQSDeveloperGuide/quotas-policies.html
     #
-    # @note When making an API call, you may pass SqsQueueConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         queue_policy: "SqsQueuePolicy",
-    #       }
-    #
     # @!attribute [rw] queue_policy
     #   The proposed resource policy for the Amazon SQS queue.
     #   @return [String]
@@ -3477,28 +2909,6 @@ module Aws::AccessAnalyzer
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass StartPolicyGenerationRequest
-    #   data as a hash:
-    #
-    #       {
-    #         policy_generation_details: { # required
-    #           principal_arn: "PrincipalArn", # required
-    #         },
-    #         cloud_trail_details: {
-    #           trails: [ # required
-    #             {
-    #               cloud_trail_arn: "CloudTrailArn", # required
-    #               regions: ["String"],
-    #               all_regions: false,
-    #             },
-    #           ],
-    #           access_role: "RoleArn", # required
-    #           start_time: Time.now, # required
-    #           end_time: Time.now,
-    #         },
-    #         client_token: "String",
-    #       }
-    #
     # @!attribute [rw] policy_generation_details
     #   Contains the ARN of the IAM entity (user or role) for which you are
     #   generating a policy.
@@ -3551,15 +2961,6 @@ module Aws::AccessAnalyzer
 
     # Starts a scan of the policies applied to the specified resource.
     #
-    # @note When making an API call, you may pass StartResourceScanRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_arn: "AnalyzerArn", # required
-    #         resource_arn: "ResourceArn", # required
-    #         resource_owner_account: "String",
-    #       }
-    #
     # @!attribute [rw] analyzer_arn
     #   The [ARN of the analyzer][1] to use to scan the policies applied to
     #   the specified resource.
@@ -3628,16 +3029,6 @@ module Aws::AccessAnalyzer
 
     # Adds a tag to the specified resource.
     #
-    # @note When making an API call, you may pass TagResourceRequest
-    #   data as a hash:
-    #
-    #       {
-    #         resource_arn: "String", # required
-    #         tags: { # required
-    #           "String" => "String",
-    #         },
-    #       }
-    #
     # @!attribute [rw] resource_arn
     #   The ARN of the resource to add the tag to.
     #   @return [String]
@@ -3682,15 +3073,6 @@ module Aws::AccessAnalyzer
     # Contains details about the CloudTrail trail being analyzed to generate
     # a policy.
     #
-    # @note When making an API call, you may pass Trail
-    #   data as a hash:
-    #
-    #       {
-    #         cloud_trail_arn: "CloudTrailArn", # required
-    #         regions: ["String"],
-    #         all_regions: false,
-    #       }
-    #
     # @!attribute [rw] cloud_trail_arn
     #   Specifies the ARN of the trail. The format of a trail ARN is
     #   `arn:aws:cloudtrail:us-east-2:123456789012:trail/MyTrail`.
@@ -3748,14 +3130,6 @@ module Aws::AccessAnalyzer
 
     # Removes a tag from the specified resource.
     #
-    # @note When making an API call, you may pass UntagResourceRequest
-    #   data as a hash:
-    #
-    #       {
-    #         resource_arn: "String", # required
-    #         tag_keys: ["String"], # required
-    #       }
-    #
     # @!attribute [rw] resource_arn
     #   The ARN of the resource to remove the tag from.
     #   @return [String]
@@ -3781,23 +3155,6 @@ module Aws::AccessAnalyzer
 
     # Updates the specified archive rule.
     #
-    # @note When making an API call, you may pass UpdateArchiveRuleRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_name: "Name", # required
-    #         rule_name: "Name", # required
-    #         filter: { # required
-    #           "String" => {
-    #             eq: ["String"],
-    #             neq: ["String"],
-    #             contains: ["String"],
-    #             exists: false,
-    #           },
-    #         },
-    #         client_token: "String",
-    #       }
-    #
     # @!attribute [rw] analyzer_name
     #   The name of the analyzer to update the archive rules for.
     #   @return [String]
@@ -3831,17 +3188,6 @@ module Aws::AccessAnalyzer
 
     # Updates findings with the new values provided in the request.
     #
-    # @note When making an API call, you may pass UpdateFindingsRequest
-    #   data as a hash:
-    #
-    #       {
-    #         analyzer_arn: "AnalyzerArn", # required
-    #         status: "ACTIVE", # required, accepts ACTIVE, ARCHIVED
-    #         ids: ["FindingId"],
-    #         resource_arn: "ResourceArn",
-    #         client_token: "String",
-    #       }
-    #
     # @!attribute [rw] analyzer_arn
     #   The [ARN of the analyzer][1] that generated the findings to update.
     #
@@ -3934,18 +3280,6 @@ module Aws::AccessAnalyzer
       include Aws::Structure
     end
 
-    # @note When making an API call, you may pass ValidatePolicyRequest
-    #   data as a hash:
-    #
-    #       {
-    #         locale: "DE", # accepts DE, EN, ES, FR, IT, JA, KO, PT_BR, ZH_CN, ZH_TW
-    #         max_results: 1,
-    #         next_token: "Token",
-    #         policy_document: "PolicyDocument", # required
-    #         policy_type: "IDENTITY_POLICY", # required, accepts IDENTITY_POLICY, RESOURCE_POLICY, SERVICE_CONTROL_POLICY
-    #         validate_policy_resource_type: "AWS::S3::Bucket", # accepts AWS::S3::Bucket, AWS::S3::AccessPoint, AWS::S3::MultiRegionAccessPoint, AWS::S3ObjectLambda::AccessPoint, AWS::IAM::AssumeRolePolicyDocument
-    #       }
-    #
     # @!attribute [rw] locale
     #   The locale to use for localizing the findings.
     #   @return [String]
@@ -4072,13 +3406,6 @@ module Aws::AccessAnalyzer
     #
     # [1]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_VpcConfiguration.html
     #
-    # @note When making an API call, you may pass VpcConfiguration
-    #   data as a hash:
-    #
-    #       {
-    #         vpc_id: "VpcId", # required
-    #       }
-    #
     # @!attribute [rw] vpc_id
     #   If this field is specified, this access point will only allow
     #   connections from the specified VPC ID.

data/lib/aws-sdk-accessanalyzer.rb

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-accessanalyzer/customizations'
 # @!group service
 module Aws::AccessAnalyzer
 
-  GEM_VERSION = '1.31.0'
+  GEM_VERSION = '1.33.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-accessanalyzer
 version: !ruby/object:Gem::Version
-  version: 1.31.0
+  version: 1.33.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-10-25 00:00:00.000000000 Z
+date: 2023-01-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core