aws-sdk-appsync 1.1.0 → 1.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: e850081ea9516331e5371af1fdde08778df5c6d8
-  data.tar.gz: 79fba034982c175755095dc14580382d49c65118
+  metadata.gz: ae0e8b29463ddb600eea0bb86fbc244ca9055ff8
+  data.tar.gz: 2e234364fcc7c4aa46dfb74a2cdfd44c3966f048
 SHA512:
-  metadata.gz: bd6ca2dddd1937bbfeb28b3298afa478799f064534777edb50ec84ac1601514ee025c16f89092900fec06a9fb3d6130e234938a4b761493b1d9297d03427005d
-  data.tar.gz: 07b77d888a53585ba0faba6e5340e469b2f757a1fb0ce5e0f026f112dc56384284b0d345aa0641aa82da1166675216c6b8c4149e79f3f1ade67af7a0aa76b1ac
+  metadata.gz: f7c6ea7f4a8ce66877d584a7c23f87c7c2eeaa1f74baf14f534ff3585bd0a7065617a4bae7f7eaf7696ef5aebbb45d6b35cb4fb0d53565edc72696eb959d9c49
+  data.tar.gz: 1dfbebaf5d168b3db258bffe4c50c27f29ff1880d4ca669d2d6ac58506732389b655b2a0d6e43ecc8cc9febac15af903ff1095ff1deb7b9585e78fb695b4c61e

data/lib/aws-sdk-appsync.rb

@@ -42,6 +42,6 @@ require_relative 'aws-sdk-appsync/customizations'
 # @service
 module Aws::AppSync
 
-  GEM_VERSION = '1.1.0'
+  GEM_VERSION = '1.2.0'
 
 end

data/lib/aws-sdk-appsync/client.rb

@@ -155,9 +155,10 @@ module Aws::AppSync
     #   A description of the purpose of the API key.
     #
     # @option params [Integer] :expires
-    #   The time after which the API key expires. The date is represented as
-    #   seconds since the epoch, rounded down to the nearest hour. The default
-    #   value for this parameter is 7 days from creation time.
+    #   The time from creation time after which the API key expires. The date
+    #   is represented as seconds since the epoch, rounded down to the nearest
+    #   hour. The default value for this parameter is 7 days from creation
+    #   time. For more information, see .
     #
     # @return [Types::CreateApiKeyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -267,12 +268,18 @@ module Aws::AppSync
     # @option params [required, String] :name
     #   A user-supplied name for the `GraphqlApi`.
     #
+    # @option params [Types::LogConfig] :log_config
+    #   The Amazon CloudWatch logs configuration.
+    #
     # @option params [required, String] :authentication_type
     #   The authentication type: API key, IAM, or Amazon Cognito User Pools.
     #
     # @option params [Types::UserPoolConfig] :user_pool_config
     #   The Amazon Cognito User Pool configuration.
     #
+    # @option params [Types::OpenIDConnectConfig] :open_id_connect_config
+    #   The Open Id Connect configuration configuration.
+    #
     # @return [Types::CreateGraphqlApiResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateGraphqlApiResponse#graphql_api #graphql_api} => Types::GraphqlApi
@@ -281,24 +288,40 @@ module Aws::AppSync
     #
     #   resp = client.create_graphql_api({
     #     name: "String", # required
-    #     authentication_type: "API_KEY", # required, accepts API_KEY, AWS_IAM, AMAZON_COGNITO_USER_POOLS
+    #     log_config: {
+    #       field_log_level: "NONE", # required, accepts NONE, ERROR, ALL
+    #       cloud_watch_logs_role_arn: "String", # required
+    #     },
+    #     authentication_type: "API_KEY", # required, accepts API_KEY, AWS_IAM, AMAZON_COGNITO_USER_POOLS, OPENID_CONNECT
     #     user_pool_config: {
     #       user_pool_id: "String", # required
     #       aws_region: "String", # required
     #       default_action: "ALLOW", # required, accepts ALLOW, DENY
     #       app_id_client_regex: "String",
     #     },
+    #     open_id_connect_config: {
+    #       issuer: "String", # required
+    #       client_id: "String",
+    #       iat_ttl: 1,
+    #       auth_ttl: 1,
+    #     },
     #   })
     #
     # @example Response structure
     #
     #   resp.graphql_api.name #=> String
     #   resp.graphql_api.api_id #=> String
-    #   resp.graphql_api.authentication_type #=> String, one of "API_KEY", "AWS_IAM", "AMAZON_COGNITO_USER_POOLS"
+    #   resp.graphql_api.authentication_type #=> String, one of "API_KEY", "AWS_IAM", "AMAZON_COGNITO_USER_POOLS", "OPENID_CONNECT"
+    #   resp.graphql_api.log_config.field_log_level #=> String, one of "NONE", "ERROR", "ALL"
+    #   resp.graphql_api.log_config.cloud_watch_logs_role_arn #=> String
     #   resp.graphql_api.user_pool_config.user_pool_id #=> String
     #   resp.graphql_api.user_pool_config.aws_region #=> String
     #   resp.graphql_api.user_pool_config.default_action #=> String, one of "ALLOW", "DENY"
     #   resp.graphql_api.user_pool_config.app_id_client_regex #=> String
+    #   resp.graphql_api.open_id_connect_config.issuer #=> String
+    #   resp.graphql_api.open_id_connect_config.client_id #=> String
+    #   resp.graphql_api.open_id_connect_config.iat_ttl #=> Integer
+    #   resp.graphql_api.open_id_connect_config.auth_ttl #=> Integer
     #   resp.graphql_api.arn #=> String
     #   resp.graphql_api.uris #=> Hash
     #   resp.graphql_api.uris["String"] #=> String
@@ -610,11 +633,17 @@ module Aws::AppSync
     #
     #   resp.graphql_api.name #=> String
     #   resp.graphql_api.api_id #=> String
-    #   resp.graphql_api.authentication_type #=> String, one of "API_KEY", "AWS_IAM", "AMAZON_COGNITO_USER_POOLS"
+    #   resp.graphql_api.authentication_type #=> String, one of "API_KEY", "AWS_IAM", "AMAZON_COGNITO_USER_POOLS", "OPENID_CONNECT"
+    #   resp.graphql_api.log_config.field_log_level #=> String, one of "NONE", "ERROR", "ALL"
+    #   resp.graphql_api.log_config.cloud_watch_logs_role_arn #=> String
     #   resp.graphql_api.user_pool_config.user_pool_id #=> String
     #   resp.graphql_api.user_pool_config.aws_region #=> String
     #   resp.graphql_api.user_pool_config.default_action #=> String, one of "ALLOW", "DENY"
     #   resp.graphql_api.user_pool_config.app_id_client_regex #=> String
+    #   resp.graphql_api.open_id_connect_config.issuer #=> String
+    #   resp.graphql_api.open_id_connect_config.client_id #=> String
+    #   resp.graphql_api.open_id_connect_config.iat_ttl #=> Integer
+    #   resp.graphql_api.open_id_connect_config.auth_ttl #=> Integer
     #   resp.graphql_api.arn #=> String
     #   resp.graphql_api.uris #=> Hash
     #   resp.graphql_api.uris["String"] #=> String
@@ -773,6 +802,13 @@ module Aws::AppSync
 
     # Lists the API keys for a given API.
     #
+    # <note markdown="1"> API keys are deleted automatically sometime after they expire.
+    # However, they may still be included in the response until they have
+    # actually been deleted. You can safely call `DeleteApiKey` to manually
+    # delete a key before it's automatically deleted.
+    #
+    #  </note>
+    #
     # @option params [required, String] :api_id
     #   The API ID.
     #
@@ -892,11 +928,17 @@ module Aws::AppSync
     #   resp.graphql_apis #=> Array
     #   resp.graphql_apis[0].name #=> String
     #   resp.graphql_apis[0].api_id #=> String
-    #   resp.graphql_apis[0].authentication_type #=> String, one of "API_KEY", "AWS_IAM", "AMAZON_COGNITO_USER_POOLS"
+    #   resp.graphql_apis[0].authentication_type #=> String, one of "API_KEY", "AWS_IAM", "AMAZON_COGNITO_USER_POOLS", "OPENID_CONNECT"
+    #   resp.graphql_apis[0].log_config.field_log_level #=> String, one of "NONE", "ERROR", "ALL"
+    #   resp.graphql_apis[0].log_config.cloud_watch_logs_role_arn #=> String
     #   resp.graphql_apis[0].user_pool_config.user_pool_id #=> String
     #   resp.graphql_apis[0].user_pool_config.aws_region #=> String
     #   resp.graphql_apis[0].user_pool_config.default_action #=> String, one of "ALLOW", "DENY"
     #   resp.graphql_apis[0].user_pool_config.app_id_client_regex #=> String
+    #   resp.graphql_apis[0].open_id_connect_config.issuer #=> String
+    #   resp.graphql_apis[0].open_id_connect_config.client_id #=> String
+    #   resp.graphql_apis[0].open_id_connect_config.iat_ttl #=> Integer
+    #   resp.graphql_apis[0].open_id_connect_config.auth_ttl #=> Integer
     #   resp.graphql_apis[0].arn #=> String
     #   resp.graphql_apis[0].uris #=> Hash
     #   resp.graphql_apis[0].uris["String"] #=> String
@@ -1057,8 +1099,8 @@ module Aws::AppSync
     #   A description of the purpose of the API key.
     #
     # @option params [Integer] :expires
-    #   The time after which the API key expires. The date is represented as
-    #   seconds since the epoch.
+    #   The time from update time after which the API key expires. The date is
+    #   represented as seconds since the epoch. For more information, see .
     #
     # @return [Types::UpdateApiKeyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -1171,6 +1213,9 @@ module Aws::AppSync
     # @option params [required, String] :name
     #   The new name for the `GraphqlApi` object.
     #
+    # @option params [Types::LogConfig] :log_config
+    #   The Amazon CloudWatch logs configuration for the `GraphqlApi` object.
+    #
     # @option params [String] :authentication_type
     #   The new authentication type for the `GraphqlApi` object.
     #
@@ -1178,6 +1223,10 @@ module Aws::AppSync
     #   The new Amazon Cognito User Pool configuration for the `GraphqlApi`
     #   object.
     #
+    # @option params [Types::OpenIDConnectConfig] :open_id_connect_config
+    #   The Open Id Connect configuration configuration for the `GraphqlApi`
+    #   object.
+    #
     # @return [Types::UpdateGraphqlApiResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::UpdateGraphqlApiResponse#graphql_api #graphql_api} => Types::GraphqlApi
@@ -1187,24 +1236,40 @@ module Aws::AppSync
     #   resp = client.update_graphql_api({
     #     api_id: "String", # required
     #     name: "String", # required
-    #     authentication_type: "API_KEY", # accepts API_KEY, AWS_IAM, AMAZON_COGNITO_USER_POOLS
+    #     log_config: {
+    #       field_log_level: "NONE", # required, accepts NONE, ERROR, ALL
+    #       cloud_watch_logs_role_arn: "String", # required
+    #     },
+    #     authentication_type: "API_KEY", # accepts API_KEY, AWS_IAM, AMAZON_COGNITO_USER_POOLS, OPENID_CONNECT
     #     user_pool_config: {
     #       user_pool_id: "String", # required
     #       aws_region: "String", # required
     #       default_action: "ALLOW", # required, accepts ALLOW, DENY
     #       app_id_client_regex: "String",
     #     },
+    #     open_id_connect_config: {
+    #       issuer: "String", # required
+    #       client_id: "String",
+    #       iat_ttl: 1,
+    #       auth_ttl: 1,
+    #     },
     #   })
     #
     # @example Response structure
     #
     #   resp.graphql_api.name #=> String
     #   resp.graphql_api.api_id #=> String
-    #   resp.graphql_api.authentication_type #=> String, one of "API_KEY", "AWS_IAM", "AMAZON_COGNITO_USER_POOLS"
+    #   resp.graphql_api.authentication_type #=> String, one of "API_KEY", "AWS_IAM", "AMAZON_COGNITO_USER_POOLS", "OPENID_CONNECT"
+    #   resp.graphql_api.log_config.field_log_level #=> String, one of "NONE", "ERROR", "ALL"
+    #   resp.graphql_api.log_config.cloud_watch_logs_role_arn #=> String
     #   resp.graphql_api.user_pool_config.user_pool_id #=> String
     #   resp.graphql_api.user_pool_config.aws_region #=> String
     #   resp.graphql_api.user_pool_config.default_action #=> String, one of "ALLOW", "DENY"
     #   resp.graphql_api.user_pool_config.app_id_client_regex #=> String
+    #   resp.graphql_api.open_id_connect_config.issuer #=> String
+    #   resp.graphql_api.open_id_connect_config.client_id #=> String
+    #   resp.graphql_api.open_id_connect_config.iat_ttl #=> Integer
+    #   resp.graphql_api.open_id_connect_config.auth_ttl #=> Integer
     #   resp.graphql_api.arn #=> String
     #   resp.graphql_api.uris #=> Hash
     #   resp.graphql_api.uris["String"] #=> String
@@ -1328,7 +1393,7 @@ module Aws::AppSync
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-appsync'
-      context[:gem_version] = '1.1.0'
+      context[:gem_version] = '1.2.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-appsync/client_api.rb

@@ -48,6 +48,7 @@ module Aws::AppSync
     DynamodbDataSourceConfig = Shapes::StructureShape.new(name: 'DynamodbDataSourceConfig')
     ElasticsearchDataSourceConfig = Shapes::StructureShape.new(name: 'ElasticsearchDataSourceConfig')
     ErrorMessage = Shapes::StringShape.new(name: 'ErrorMessage')
+    FieldLogLevel = Shapes::StringShape.new(name: 'FieldLogLevel')
     GetDataSourceRequest = Shapes::StructureShape.new(name: 'GetDataSourceRequest')
     GetDataSourceResponse = Shapes::StructureShape.new(name: 'GetDataSourceResponse')
     GetGraphqlApiRequest = Shapes::StructureShape.new(name: 'GetGraphqlApiRequest')
@@ -76,11 +77,13 @@ module Aws::AppSync
     ListResolversResponse = Shapes::StructureShape.new(name: 'ListResolversResponse')
     ListTypesRequest = Shapes::StructureShape.new(name: 'ListTypesRequest')
     ListTypesResponse = Shapes::StructureShape.new(name: 'ListTypesResponse')
+    LogConfig = Shapes::StructureShape.new(name: 'LogConfig')
     Long = Shapes::IntegerShape.new(name: 'Long')
     MapOfStringToString = Shapes::MapShape.new(name: 'MapOfStringToString')
     MappingTemplate = Shapes::StringShape.new(name: 'MappingTemplate')
     MaxResults = Shapes::IntegerShape.new(name: 'MaxResults')
     NotFoundException = Shapes::StructureShape.new(name: 'NotFoundException')
+    OpenIDConnectConfig = Shapes::StructureShape.new(name: 'OpenIDConnectConfig')
     OutputType = Shapes::StringShape.new(name: 'OutputType')
     PaginationToken = Shapes::StringShape.new(name: 'PaginationToken')
     Resolver = Shapes::StructureShape.new(name: 'Resolver')
@@ -135,8 +138,10 @@ module Aws::AppSync
     CreateDataSourceResponse.struct_class = Types::CreateDataSourceResponse
 
     CreateGraphqlApiRequest.add_member(:name, Shapes::ShapeRef.new(shape: String, required: true, location_name: "name"))
+    CreateGraphqlApiRequest.add_member(:log_config, Shapes::ShapeRef.new(shape: LogConfig, location_name: "logConfig"))
     CreateGraphqlApiRequest.add_member(:authentication_type, Shapes::ShapeRef.new(shape: AuthenticationType, required: true, location_name: "authenticationType"))
     CreateGraphqlApiRequest.add_member(:user_pool_config, Shapes::ShapeRef.new(shape: UserPoolConfig, location_name: "userPoolConfig"))
+    CreateGraphqlApiRequest.add_member(:open_id_connect_config, Shapes::ShapeRef.new(shape: OpenIDConnectConfig, location_name: "openIDConnectConfig"))
     CreateGraphqlApiRequest.struct_class = Types::CreateGraphqlApiRequest
 
     CreateGraphqlApiResponse.add_member(:graphql_api, Shapes::ShapeRef.new(shape: GraphqlApi, location_name: "graphqlApi"))
@@ -260,7 +265,9 @@ module Aws::AppSync
     GraphqlApi.add_member(:name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "name"))
     GraphqlApi.add_member(:api_id, Shapes::ShapeRef.new(shape: String, location_name: "apiId"))
     GraphqlApi.add_member(:authentication_type, Shapes::ShapeRef.new(shape: AuthenticationType, location_name: "authenticationType"))
+    GraphqlApi.add_member(:log_config, Shapes::ShapeRef.new(shape: LogConfig, location_name: "logConfig"))
     GraphqlApi.add_member(:user_pool_config, Shapes::ShapeRef.new(shape: UserPoolConfig, location_name: "userPoolConfig"))
+    GraphqlApi.add_member(:open_id_connect_config, Shapes::ShapeRef.new(shape: OpenIDConnectConfig, location_name: "openIDConnectConfig"))
     GraphqlApi.add_member(:arn, Shapes::ShapeRef.new(shape: String, location_name: "arn"))
     GraphqlApi.add_member(:uris, Shapes::ShapeRef.new(shape: MapOfStringToString, location_name: "uris"))
     GraphqlApi.struct_class = Types::GraphqlApi
@@ -316,9 +323,19 @@ module Aws::AppSync
     ListTypesResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: PaginationToken, location_name: "nextToken"))
     ListTypesResponse.struct_class = Types::ListTypesResponse
 
+    LogConfig.add_member(:field_log_level, Shapes::ShapeRef.new(shape: FieldLogLevel, required: true, location_name: "fieldLogLevel"))
+    LogConfig.add_member(:cloud_watch_logs_role_arn, Shapes::ShapeRef.new(shape: String, required: true, location_name: "cloudWatchLogsRoleArn"))
+    LogConfig.struct_class = Types::LogConfig
+
     MapOfStringToString.key = Shapes::ShapeRef.new(shape: String)
     MapOfStringToString.value = Shapes::ShapeRef.new(shape: String)
 
+    OpenIDConnectConfig.add_member(:issuer, Shapes::ShapeRef.new(shape: String, required: true, location_name: "issuer"))
+    OpenIDConnectConfig.add_member(:client_id, Shapes::ShapeRef.new(shape: String, location_name: "clientId"))
+    OpenIDConnectConfig.add_member(:iat_ttl, Shapes::ShapeRef.new(shape: Long, location_name: "iatTTL"))
+    OpenIDConnectConfig.add_member(:auth_ttl, Shapes::ShapeRef.new(shape: Long, location_name: "authTTL"))
+    OpenIDConnectConfig.struct_class = Types::OpenIDConnectConfig
+
     Resolver.add_member(:type_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "typeName"))
     Resolver.add_member(:field_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "fieldName"))
     Resolver.add_member(:data_source_name, Shapes::ShapeRef.new(shape: ResourceName, location_name: "dataSourceName"))
@@ -369,8 +386,10 @@ module Aws::AppSync
 
     UpdateGraphqlApiRequest.add_member(:api_id, Shapes::ShapeRef.new(shape: String, required: true, location: "uri", location_name: "apiId"))
     UpdateGraphqlApiRequest.add_member(:name, Shapes::ShapeRef.new(shape: String, required: true, location_name: "name"))
+    UpdateGraphqlApiRequest.add_member(:log_config, Shapes::ShapeRef.new(shape: LogConfig, location_name: "logConfig"))
     UpdateGraphqlApiRequest.add_member(:authentication_type, Shapes::ShapeRef.new(shape: AuthenticationType, location_name: "authenticationType"))
     UpdateGraphqlApiRequest.add_member(:user_pool_config, Shapes::ShapeRef.new(shape: UserPoolConfig, location_name: "userPoolConfig"))
+    UpdateGraphqlApiRequest.add_member(:open_id_connect_config, Shapes::ShapeRef.new(shape: OpenIDConnectConfig, location_name: "openIDConnectConfig"))
     UpdateGraphqlApiRequest.struct_class = Types::UpdateGraphqlApiRequest
 
     UpdateGraphqlApiResponse.add_member(:graphql_api, Shapes::ShapeRef.new(shape: GraphqlApi, location_name: "graphqlApi"))
@@ -457,7 +476,6 @@ module Aws::AppSync
         o.errors << Shapes::ShapeRef.new(shape: ConcurrentModificationException)
         o.errors << Shapes::ShapeRef.new(shape: UnauthorizedException)
         o.errors << Shapes::ShapeRef.new(shape: InternalFailureException)
-        o.errors << Shapes::ShapeRef.new(shape: LimitExceededException)
         o.errors << Shapes::ShapeRef.new(shape: ApiLimitExceededException)
       end)
 

data/lib/aws-sdk-appsync/types.rb

@@ -10,6 +10,43 @@ module Aws::AppSync
 
     # Describes an API key.
     #
+    # Customers invoke AWS AppSync GraphQL APIs with API keys as an identity
+    # mechanism. There are two key versions:
+    #
+    # **da1**\: This version was introduced at launch in November 2017.
+    # These keys always expire after 7 days. Key expiration is managed by
+    # DynamoDB TTL. The keys will cease to be valid after Feb 21, 2018 and
+    # should not be used after that date.
+    #
+    # * `ListApiKeys` returns the expiration time in milliseconds.
+    #
+    # * `CreateApiKey` returns the expiration time in milliseconds.
+    #
+    # * `UpdateApiKey` is not available for this key version.
+    #
+    # * `DeleteApiKey` deletes the item from the table.
+    #
+    # * Expiration is stored in DynamoDB as milliseconds. This results in a
+    #   bug where keys are not automatically deleted because DynamoDB
+    #   expects the TTL to be stored in seconds. As a one-time action, we
+    #   will delete these keys from the table after Feb 21, 2018.
+    #
+    # **da2**\: This version was introduced in February 2018 when AppSync
+    # added support to extend key expiration.
+    #
+    # * `ListApiKeys` returns the expiration time in seconds.
+    #
+    # * `CreateApiKey` returns the expiration time in seconds and accepts a
+    #   user-provided expiration time in seconds.
+    #
+    # * `UpdateApiKey` returns the expiration time in seconds and accepts a
+    #   user-provided expiration time in seconds. Key expiration can only be
+    #   updated while the key has not expired.
+    #
+    # * `DeleteApiKey` deletes the item from the table.
+    #
+    # * Expiration is stored in DynamoDB as seconds.
+    #
     # @!attribute [rw] id
     #   The API key ID.
     #   @return [String]
@@ -50,9 +87,10 @@ module Aws::AppSync
     #   @return [String]
     #
     # @!attribute [rw] expires
-    #   The time after which the API key expires. The date is represented as
-    #   seconds since the epoch, rounded down to the nearest hour. The
-    #   default value for this parameter is 7 days from creation time.
+    #   The time from creation time after which the API key expires. The
+    #   date is represented as seconds since the epoch, rounded down to the
+    #   nearest hour. The default value for this parameter is 7 days from
+    #   creation time. For more information, see .
     #   @return [Integer]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/appsync-2017-07-25/CreateApiKeyRequest AWS API Documentation
@@ -161,19 +199,33 @@ module Aws::AppSync
     #
     #       {
     #         name: "String", # required
-    #         authentication_type: "API_KEY", # required, accepts API_KEY, AWS_IAM, AMAZON_COGNITO_USER_POOLS
+    #         log_config: {
+    #           field_log_level: "NONE", # required, accepts NONE, ERROR, ALL
+    #           cloud_watch_logs_role_arn: "String", # required
+    #         },
+    #         authentication_type: "API_KEY", # required, accepts API_KEY, AWS_IAM, AMAZON_COGNITO_USER_POOLS, OPENID_CONNECT
     #         user_pool_config: {
     #           user_pool_id: "String", # required
     #           aws_region: "String", # required
     #           default_action: "ALLOW", # required, accepts ALLOW, DENY
     #           app_id_client_regex: "String",
     #         },
+    #         open_id_connect_config: {
+    #           issuer: "String", # required
+    #           client_id: "String",
+    #           iat_ttl: 1,
+    #           auth_ttl: 1,
+    #         },
     #       }
     #
     # @!attribute [rw] name
     #   A user-supplied name for the `GraphqlApi`.
     #   @return [String]
     #
+    # @!attribute [rw] log_config
+    #   The Amazon CloudWatch logs configuration.
+    #   @return [Types::LogConfig]
+    #
     # @!attribute [rw] authentication_type
     #   The authentication type: API key, IAM, or Amazon Cognito User Pools.
     #   @return [String]
@@ -182,12 +234,18 @@ module Aws::AppSync
     #   The Amazon Cognito User Pool configuration.
     #   @return [Types::UserPoolConfig]
     #
+    # @!attribute [rw] open_id_connect_config
+    #   The Open Id Connect configuration configuration.
+    #   @return [Types::OpenIDConnectConfig]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/appsync-2017-07-25/CreateGraphqlApiRequest AWS API Documentation
     #
     class CreateGraphqlApiRequest < Struct.new(
       :name,
+      :log_config,
       :authentication_type,
-      :user_pool_config)
+      :user_pool_config,
+      :open_id_connect_config)
       include Aws::Structure
     end
 
@@ -338,9 +396,10 @@ module Aws::AppSync
     #
     #   * **AWS\_LAMBDA**\: The data source is an AWS Lambda function.
     #
-    #   * **NONE**\: There is no data source. This type is used when the
-    #     required information can be computed on the fly without connecting
-    #     to a back-end data source.
+    #   * **NONE**\: There is no data source. This type is used when when
+    #     you wish to invoke a GraphQL operation without connecting to a
+    #     data source, such as performing data transformation with resolvers
+    #     or triggering a subscription to be invoked from a mutation.
     #   @return [String]
     #
     # @!attribute [rw] service_role_arn
@@ -809,10 +868,18 @@ module Aws::AppSync
     #   The authentication type.
     #   @return [String]
     #
+    # @!attribute [rw] log_config
+    #   The Amazon CloudWatch Logs configuration.
+    #   @return [Types::LogConfig]
+    #
     # @!attribute [rw] user_pool_config
     #   The Amazon Cognito User Pool configuration.
     #   @return [Types::UserPoolConfig]
     #
+    # @!attribute [rw] open_id_connect_config
+    #   The Open Id Connect configuration.
+    #   @return [Types::OpenIDConnectConfig]
+    #
     # @!attribute [rw] arn
     #   The ARN.
     #   @return [String]
@@ -827,7 +894,9 @@ module Aws::AppSync
       :name,
       :api_id,
       :authentication_type,
+      :log_config,
       :user_pool_config,
+      :open_id_connect_config,
       :arn,
       :uris)
       include Aws::Structure
@@ -1104,6 +1173,99 @@ module Aws::AppSync
       include Aws::Structure
     end
 
+    # The CloudWatch Logs configuration.
+    #
+    # @note When making an API call, you may pass LogConfig
+    #   data as a hash:
+    #
+    #       {
+    #         field_log_level: "NONE", # required, accepts NONE, ERROR, ALL
+    #         cloud_watch_logs_role_arn: "String", # required
+    #       }
+    #
+    # @!attribute [rw] field_log_level
+    #   The field logging level. Values can be NONE, ERROR, ALL.
+    #
+    #   * **NONE**\: No field-level logs are captured.
+    #
+    #   * **ERROR**\: Logs the following information only for the fields
+    #     that are in error:
+    #
+    #     * The error section in the server response.
+    #
+    #     * Field-level errors.
+    #
+    #     * The generated request/response functions that got resolved for
+    #       error fields.
+    #
+    #   * **ALL**\: The following information is logged for all fields in
+    #     the query:
+    #
+    #     * Field-level tracing information.
+    #
+    #     * The generated request/response functions that got resolved for
+    #       each field.
+    #   @return [String]
+    #
+    # @!attribute [rw] cloud_watch_logs_role_arn
+    #   The service role that AWS AppSync will assume to publish to Amazon
+    #   CloudWatch logs in your account.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/appsync-2017-07-25/LogConfig AWS API Documentation
+    #
+    class LogConfig < Struct.new(
+      :field_log_level,
+      :cloud_watch_logs_role_arn)
+      include Aws::Structure
+    end
+
+    # Describes an Open Id Connect configuration.
+    #
+    # @note When making an API call, you may pass OpenIDConnectConfig
+    #   data as a hash:
+    #
+    #       {
+    #         issuer: "String", # required
+    #         client_id: "String",
+    #         iat_ttl: 1,
+    #         auth_ttl: 1,
+    #       }
+    #
+    # @!attribute [rw] issuer
+    #   The issuer for the open id connect configuration. The issuer
+    #   returned by discovery MUST exactly match the value of iss in the ID
+    #   Token.
+    #   @return [String]
+    #
+    # @!attribute [rw] client_id
+    #   The client identifier of the Relying party at the OpenID Provider.
+    #   This identifier is typically obtained when the Relying party is
+    #   registered with the OpenID Provider. You can specify a regular
+    #   expression so the AWS AppSync can validate against multiple client
+    #   identifiers at a time
+    #   @return [String]
+    #
+    # @!attribute [rw] iat_ttl
+    #   The number of milliseconds a token is valid after being issued to a
+    #   user.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] auth_ttl
+    #   The number of milliseconds a token is valid after being
+    #   authenticated.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/appsync-2017-07-25/OpenIDConnectConfig AWS API Documentation
+    #
+    class OpenIDConnectConfig < Struct.new(
+      :issuer,
+      :client_id,
+      :iat_ttl,
+      :auth_ttl)
+      include Aws::Structure
+    end
+
     # Describes a resolver.
     #
     # @!attribute [rw] type_name
@@ -1234,8 +1396,9 @@ module Aws::AppSync
     #   @return [String]
     #
     # @!attribute [rw] expires
-    #   The time after which the API key expires. The date is represented as
-    #   seconds since the epoch.
+    #   The time from update time after which the API key expires. The date
+    #   is represented as seconds since the epoch. For more information, see
+    #   .
     #   @return [Integer]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/appsync-2017-07-25/UpdateApiKeyRequest AWS API Documentation
@@ -1345,13 +1508,23 @@ module Aws::AppSync
     #       {
     #         api_id: "String", # required
     #         name: "String", # required
-    #         authentication_type: "API_KEY", # accepts API_KEY, AWS_IAM, AMAZON_COGNITO_USER_POOLS
+    #         log_config: {
+    #           field_log_level: "NONE", # required, accepts NONE, ERROR, ALL
+    #           cloud_watch_logs_role_arn: "String", # required
+    #         },
+    #         authentication_type: "API_KEY", # accepts API_KEY, AWS_IAM, AMAZON_COGNITO_USER_POOLS, OPENID_CONNECT
     #         user_pool_config: {
     #           user_pool_id: "String", # required
     #           aws_region: "String", # required
     #           default_action: "ALLOW", # required, accepts ALLOW, DENY
     #           app_id_client_regex: "String",
     #         },
+    #         open_id_connect_config: {
+    #           issuer: "String", # required
+    #           client_id: "String",
+    #           iat_ttl: 1,
+    #           auth_ttl: 1,
+    #         },
     #       }
     #
     # @!attribute [rw] api_id
@@ -1362,6 +1535,11 @@ module Aws::AppSync
     #   The new name for the `GraphqlApi` object.
     #   @return [String]
     #
+    # @!attribute [rw] log_config
+    #   The Amazon CloudWatch logs configuration for the `GraphqlApi`
+    #   object.
+    #   @return [Types::LogConfig]
+    #
     # @!attribute [rw] authentication_type
     #   The new authentication type for the `GraphqlApi` object.
     #   @return [String]
@@ -1371,13 +1549,20 @@ module Aws::AppSync
     #   object.
     #   @return [Types::UserPoolConfig]
     #
+    # @!attribute [rw] open_id_connect_config
+    #   The Open Id Connect configuration configuration for the `GraphqlApi`
+    #   object.
+    #   @return [Types::OpenIDConnectConfig]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/appsync-2017-07-25/UpdateGraphqlApiRequest AWS API Documentation
     #
     class UpdateGraphqlApiRequest < Struct.new(
       :api_id,
       :name,
+      :log_config,
       :authentication_type,
-      :user_pool_config)
+      :user_pool_config,
+      :open_id_connect_config)
       include Aws::Structure
     end
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-appsync
 version: !ruby/object:Gem::Version
-  version: 1.1.0
+  version: 1.2.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-02-14 00:00:00.000000000 Z
+date: 2018-05-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core
@@ -75,7 +75,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.5.1
+rubygems_version: 2.5.2.3
 signing_key: 
 specification_version: 4
 summary: AWS SDK for Ruby - AWSAppSync