aws-sdk-acmpca 1.95.0 → 1.97.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4d1d9d2de090d579f921ef3643ddac1f75c104d1e7630a220686230338a47e4d
-  data.tar.gz: 108e677b04aba7e7664ec51127025b0b40472e9731d8c993ada8b311022b8356
+  metadata.gz: 797b487ec4f81c8144c931ff351369bbd179fab6299f113fd2f273b465e2afdc
+  data.tar.gz: b16edb629af7aa162b3bba9be5d606a91c25d9403ee7b6f1c60274622e833ae4
 SHA512:
-  metadata.gz: aa4aa436dac5547da84692c662938da6ad5530fa03ccf4175556fed78276052d9c5a5b6b3f171510d133a8e1eb8ddea72b310fcc927daeb298b78d3225b6181d
-  data.tar.gz: c6fada40d79b21911a2440a830bf9ea52b9d98e7be7666255a2a76f7d7ca7fefa80307da1689d2e150a2823ec7ef94320d6a9fdd96cd805906f3a1f43dadbf2c
+  metadata.gz: e6a88ed83b68cdc27ab7f0cfd68ee8be0f7162f0d7064f930725d557ec928994115e65b65b9766d3660a02b6af2a2e0803b0e38375847baf51fb95802c75424b
+  data.tar.gz: e58b55d11f5a67bb9ca24ed70e70d015e19ecc8c19a945bda560f0357df36f658165f65285a14b064993c5ee1023776913a81184a85a06b924946ed366d9fd68

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.97.0 (2025-08-01)
+------------------
+
+* Feature - Doc-only update to add more information to GetCertificate action.
+
+1.96.0 (2025-07-31)
+------------------
+
+* Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
+
 1.95.0 (2025-07-21)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.95.0
+1.97.0

data/lib/aws-sdk-acmpca/client.rb

@@ -569,22 +569,22 @@ module Aws::ACMPCA
     #   requesting multiple certificate authorities.
     #
     # @option params [String] :key_storage_security_standard
-    #   Specifies a cryptographic key management compliance standard used for
-    #   handling CA keys.
+    #   Specifies a cryptographic key management compliance standard for
+    #   handling and protecting CA keys.
     #
     #   Default: FIPS\_140\_2\_LEVEL\_3\_OR\_HIGHER
     #
-    #   <note markdown="1"> Some Amazon Web Services Regions do not support the default. When
-    #   creating a CA in these Regions, you must provide
-    #   `FIPS_140_2_LEVEL_2_OR_HIGHER` as the argument for
-    #   `KeyStorageSecurityStandard`. Failure to do this results in an
-    #   `InvalidArgsException` with the message, "A certificate authority
+    #   <note markdown="1"> Some Amazon Web Services Regions don't support the default value.
+    #   When you create a CA in these Regions, you must use
+    #   `CCPC_LEVEL_1_OR_HIGHER` for the `KeyStorageSecurityStandard`
+    #   parameter. If you don't, the operation returns an
+    #   `InvalidArgsException` with this message: "A certificate authority
     #   cannot be created in this region with the specified security
     #   standard."
     #
-    #    For information about security standard support in various Regions,
-    #   see [Storage and security compliance of Amazon Web Services Private CA
-    #   private keys][1].
+    #    For information about security standard support in different Amazon
+    #   Web Services Regions, see [Storage and security compliance of Amazon
+    #   Web Services Private CA private keys][1].
     #
     #    </note>
     #
@@ -916,6 +916,16 @@ module Aws::ACMPCA
     # state. To restore an eligible CA, call the
     # [RestoreCertificateAuthority][5] action.
     #
+    # A private CA can be deleted if it is in the `PENDING_CERTIFICATE`,
+    # `CREATING`, `EXPIRED`, `DISABLED`, or `FAILED` state. To delete a CA
+    # in the `ACTIVE` state, you must first disable it, or else the delete
+    # request results in an exception. If you are deleting a private CA in
+    # the `PENDING_CERTIFICATE` or `DISABLED` state, you can set the length
+    # of its restoration period to 7-30 days. The default is 30. During this
+    # time, the status is set to `DELETED` and the CA can be restored. A
+    # private CA deleted in the `CREATING` or `FAILED` state has no assigned
+    # restoration period and cannot be restored.
+    #
     #
     #
     # [1]: https://docs.aws.amazon.com/privateca/latest/APIReference/API_ListCertificateAuthorities.html
@@ -1310,7 +1320,7 @@ module Aws::ACMPCA
     # the [IssueCertificate][1] action. You must specify both the ARN of
     # your private CA and the ARN of the issued certificate when calling the
     # **GetCertificate** action. You can retrieve the certificate if it is
-    # in the **ISSUED** state. You can call the
+    # in the **ISSUED**, **EXPIRED**, or **REVOKED** state. You can call the
     # [CreateCertificateAuthorityAuditReport][2] action to create a report
     # that contains information about all of the certificates issued and
     # revoked by your private CA.
@@ -1498,7 +1508,7 @@ module Aws::ACMPCA
     # @option params [required, String] :resource_arn
     #   The Amazon Resource Number (ARN) of the private CA that will have its
     #   policy retrieved. You can find the CA's ARN by calling the
-    #   ListCertificateAuthorities action.      </p>
+    #   ListCertificateAuthorities action.
     #
     # @return [Types::GetPolicyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -2706,7 +2716,7 @@ module Aws::ACMPCA
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-acmpca'
-      context[:gem_version] = '1.95.0'
+      context[:gem_version] = '1.97.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-acmpca/client_api.rb

@@ -589,10 +589,10 @@ module Aws::ACMPCA
         o.input = Shapes::ShapeRef.new(shape: CreateCertificateAuthorityAuditReportRequest)
         o.output = Shapes::ShapeRef.new(shape: CreateCertificateAuthorityAuditReportResponse)
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
-        o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArgsException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: RequestInProgressException)
       end)
 
@@ -606,8 +606,8 @@ module Aws::ACMPCA
         o.errors << Shapes::ShapeRef.new(shape: PermissionAlreadyExistsException)
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
       end)
 
       api.add_operation(:delete_certificate_authority, Seahorse::Model::Operation.new.tap do |o|
@@ -630,8 +630,8 @@ module Aws::ACMPCA
         o.output = Shapes::ShapeRef.new(shape: Shapes::StructureShape.new(struct_class: Aws::EmptyStructure))
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
       end)
 
       api.add_operation(:delete_policy, Seahorse::Model::Operation.new.tap do |o|
@@ -643,8 +643,8 @@ module Aws::ACMPCA
         o.errors << Shapes::ShapeRef.new(shape: LockoutPreventedException)
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: ConcurrentModificationException)
       end)
 
@@ -665,8 +665,8 @@ module Aws::ACMPCA
         o.input = Shapes::ShapeRef.new(shape: DescribeCertificateAuthorityAuditReportRequest)
         o.output = Shapes::ShapeRef.new(shape: DescribeCertificateAuthorityAuditReportResponse)
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
-        o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArgsException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
       end)
 
       api.add_operation(:get_certificate, Seahorse::Model::Operation.new.tap do |o|
@@ -677,8 +677,8 @@ module Aws::ACMPCA
         o.output = Shapes::ShapeRef.new(shape: GetCertificateResponse)
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: RequestInProgressException)
       end)
 
@@ -701,8 +701,8 @@ module Aws::ACMPCA
         o.output = Shapes::ShapeRef.new(shape: GetCertificateAuthorityCsrResponse)
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: RequestInProgressException)
       end)
 
@@ -714,8 +714,8 @@ module Aws::ACMPCA
         o.output = Shapes::ShapeRef.new(shape: GetPolicyResponse)
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
       end)
 
       api.add_operation(:import_certificate_authority_certificate, Seahorse::Model::Operation.new.tap do |o|
@@ -729,8 +729,8 @@ module Aws::ACMPCA
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: ConcurrentModificationException)
         o.errors << Shapes::ShapeRef.new(shape: RequestInProgressException)
       end)
@@ -743,8 +743,8 @@ module Aws::ACMPCA
         o.output = Shapes::ShapeRef.new(shape: IssueCertificateResponse)
         o.errors << Shapes::ShapeRef.new(shape: LimitExceededException)
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
-        o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArgsException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
         o.errors << Shapes::ShapeRef.new(shape: MalformedCSRException)
       end)
@@ -772,8 +772,8 @@ module Aws::ACMPCA
         o.output = Shapes::ShapeRef.new(shape: ListPermissionsResponse)
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidNextTokenException)
         o[:pager] = Aws::Pager.new(
           limit_key: "max_results",
@@ -791,8 +791,8 @@ module Aws::ACMPCA
         o.output = Shapes::ShapeRef.new(shape: ListTagsResponse)
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o[:pager] = Aws::Pager.new(
           limit_key: "max_results",
           tokens: {
@@ -810,8 +810,8 @@ module Aws::ACMPCA
         o.errors << Shapes::ShapeRef.new(shape: LockoutPreventedException)
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: ConcurrentModificationException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidPolicyException)
       end)
@@ -838,8 +838,8 @@ module Aws::ACMPCA
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidRequestException)
-        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
+        o.errors << Shapes::ShapeRef.new(shape: RequestFailedException)
         o.errors << Shapes::ShapeRef.new(shape: ConcurrentModificationException)
         o.errors << Shapes::ShapeRef.new(shape: RequestInProgressException)
       end)
@@ -876,8 +876,8 @@ module Aws::ACMPCA
         o.input = Shapes::ShapeRef.new(shape: UpdateCertificateAuthorityRequest)
         o.output = Shapes::ShapeRef.new(shape: Shapes::StructureShape.new(struct_class: Aws::EmptyStructure))
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
-        o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArgsException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidArnException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidStateException)
         o.errors << Shapes::ShapeRef.new(shape: ConcurrentModificationException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidPolicyException)

data/lib/aws-sdk-acmpca/types.rb

@@ -296,17 +296,24 @@ module Aws::ACMPCA
     #   @return [Time]
     #
     # @!attribute [rw] key_storage_security_standard
-    #   Defines a cryptographic key management compliance standard used for
-    #   handling CA keys.
+    #   Defines a cryptographic key management compliance standard for
+    #   handling and protecting CA keys.
     #
     #   Default: FIPS\_140\_2\_LEVEL\_3\_OR\_HIGHER
     #
-    #   Note: Amazon Web Services Region ap-northeast-3 supports only
-    #   FIPS\_140\_2\_LEVEL\_2\_OR\_HIGHER. You must explicitly specify this
-    #   parameter and value when creating a CA in that Region. Specifying a
-    #   different value (or no value) results in an `InvalidArgsException`
-    #   with the message "A certificate authority cannot be created in this
-    #   region with the specified security standard."
+    #   <note markdown="1"> Starting January 26, 2023, Amazon Web Services Private CA protects
+    #   all CA private keys in non-China regions using hardware security
+    #   modules (HSMs) that comply with FIPS PUB 140-2 Level 3.
+    #
+    #    For information about security standard support in different Amazon
+    #   Web Services Regions, see [Storage and security compliance of Amazon
+    #   Web Services Private CA private keys][1].
+    #
+    #    </note>
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/privateca/latest/userguide/data-protection.html#private-keys
     #   @return [String]
     #
     # @!attribute [rw] usage_mode
@@ -516,22 +523,22 @@ module Aws::ACMPCA
     #   @return [String]
     #
     # @!attribute [rw] key_storage_security_standard
-    #   Specifies a cryptographic key management compliance standard used
-    #   for handling CA keys.
+    #   Specifies a cryptographic key management compliance standard for
+    #   handling and protecting CA keys.
     #
     #   Default: FIPS\_140\_2\_LEVEL\_3\_OR\_HIGHER
     #
-    #   <note markdown="1"> Some Amazon Web Services Regions do not support the default. When
-    #   creating a CA in these Regions, you must provide
-    #   `FIPS_140_2_LEVEL_2_OR_HIGHER` as the argument for
-    #   `KeyStorageSecurityStandard`. Failure to do this results in an
-    #   `InvalidArgsException` with the message, "A certificate authority
+    #   <note markdown="1"> Some Amazon Web Services Regions don't support the default value.
+    #   When you create a CA in these Regions, you must use
+    #   `CCPC_LEVEL_1_OR_HIGHER` for the `KeyStorageSecurityStandard`
+    #   parameter. If you don't, the operation returns an
+    #   `InvalidArgsException` with this message: "A certificate authority
     #   cannot be created in this region with the specified security
     #   standard."
     #
-    #    For information about security standard support in various Regions,
-    #   see [Storage and security compliance of Amazon Web Services Private
-    #   CA private keys][1].
+    #    For information about security standard support in different Amazon
+    #   Web Services Regions, see [Storage and security compliance of Amazon
+    #   Web Services Private CA private keys][1].
     #
     #    </note>
     #
@@ -1434,7 +1441,7 @@ module Aws::ACMPCA
     # @!attribute [rw] resource_arn
     #   The Amazon Resource Number (ARN) of the private CA that will have
     #   its policy retrieved. You can find the CA's ARN by calling the
-    #   ListCertificateAuthorities action.      </p>
+    #   ListCertificateAuthorities action.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/acm-pca-2017-08-22/GetPolicyRequest AWS API Documentation

data/lib/aws-sdk-acmpca.rb

@@ -55,7 +55,7 @@ module Aws::ACMPCA
   autoload :EndpointProvider, 'aws-sdk-acmpca/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-acmpca/endpoints'
 
-  GEM_VERSION = '1.95.0'
+  GEM_VERSION = '1.97.0'
 
 end
 

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-acmpca
 version: !ruby/object:Gem::Version
-  version: 1.95.0
+  version: 1.97.0
 platform: ruby
 authors:
 - Amazon Web Services
@@ -18,7 +18,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.227.0
+        version: 3.228.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -28,7 +28,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.227.0
+        version: 3.228.0
 - !ruby/object:Gem::Dependency
   name: aws-sigv4
   requirement: !ruby/object:Gem::Requirement