aws-sdk-cloudfront 1.120.0 → 1.122.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1ef9b4399543f568a93660b1a4b689dbe3675c162a48f5e62e37725bb6baf17e
-  data.tar.gz: 35c65b45a4f39c1e189a08793f817d0f0304655826582e60fd84ee8f3d450f28
+  metadata.gz: 359d308a62d992c40396336c82b9cec4def4e69f8098c3d2cff847eb3849d408
+  data.tar.gz: d8169592f55c23b206e34458e89890b827910c05b3e3026ad370e6d7f7810763
 SHA512:
-  metadata.gz: 29fedbd5b7e2778aa542ca87c3c35ac061173b30e64636ac8775fc85fcef89a55606bf9a1572d2bd97d10a43087df8cad9c0016d59c84ddefad4d3f5dea5b7e1
-  data.tar.gz: 1489387cb2d8af3562df0d24518964a4bff522b529f79745474c60ea4091f268d55c9a44799f62a6e425ea57986d80ab4cad40c3ec159446ab7242dd188062d1
+  metadata.gz: 4e2bd53c1c3eeb65e9d0aa2b7cc5f5bdd71439170b079cba1ffeb4f3f6da5aabfbd60c438bbdfa0152321a07aa8ca6ac6069935b8f5e0c2d7543e0bb737aa01d
+  data.tar.gz: 75d4d1659f7e3be00ef258c488eddc725e7cd55799e96c3fea385dd9ef6ea78ccbe5a9a072b3cf371cd5b21c44c54ee1ac8736dd198a0b9c56c443a2ddb8d57e

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.122.0 (2025-07-30)
+------------------
+
+* Feature - This release adds new origin timeout options: 1) ResponseCompletionTimeout and 2) OriginReadTimeout (for S3 origins)
+
+1.121.0 (2025-07-21)
+------------------
+
+* Feature - Add dualstack endpoint support
+
 1.120.0 (2025-07-17)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.120.0
+1.122.0

data/lib/aws-sdk-cloudfront/client.rb

@@ -95,7 +95,7 @@ module Aws::CloudFront
     #     class name or an instance of a plugin class.
     #
     #   @option options [required, Aws::CredentialProvider] :credentials
-    #     Your AWS credentials. This can be an instance of any one of the
+    #     Your AWS credentials used for authentication. This can be an instance of any one of the
     #     following classes:
     #
     #     * `Aws::Credentials` - Used for configuring static, non-refreshing
@@ -128,18 +128,23 @@ module Aws::CloudFront
     #     locations will be searched for credentials:
     #
     #     * `Aws.config[:credentials]`
+    #
     #     * The `:access_key_id`, `:secret_access_key`, `:session_token`, and
     #       `:account_id` options.
-    #     * ENV['AWS_ACCESS_KEY_ID'], ENV['AWS_SECRET_ACCESS_KEY'],
-    #       ENV['AWS_SESSION_TOKEN'], and ENV['AWS_ACCOUNT_ID']
+    #
+    #     * `ENV['AWS_ACCESS_KEY_ID']`, `ENV['AWS_SECRET_ACCESS_KEY']`,
+    #       `ENV['AWS_SESSION_TOKEN']`, and `ENV['AWS_ACCOUNT_ID']`.
+    #
     #     * `~/.aws/credentials`
+    #
     #     * `~/.aws/config`
+    #
     #     * EC2/ECS IMDS instance profile - When used by default, the timeouts
     #       are very aggressive. Construct and pass an instance of
     #       `Aws::InstanceProfileCredentials` or `Aws::ECSCredentials` to
     #       enable retries and extended timeouts. Instance profile credential
-    #       fetching can be disabled by setting ENV['AWS_EC2_METADATA_DISABLED']
-    #       to true.
+    #       fetching can be disabled by setting `ENV['AWS_EC2_METADATA_DISABLED']`
+    #       to `true`.
     #
     #   @option options [required, String] :region
     #     The AWS region to connect to.  The configured `:region` is
@@ -167,6 +172,11 @@ module Aws::CloudFront
     #     When false, the request will raise a `RetryCapacityNotAvailableError` and will
     #     not retry instead of sleeping.
     #
+    #   @option options [Array<String>] :auth_scheme_preference
+    #     A list of preferred authentication schemes to use when making a request. Supported values are:
+    #     `sigv4`, `sigv4a`, `httpBearerAuth`, and `noAuth`. When set using `ENV['AWS_AUTH_SCHEME_PREFERENCE']` or in
+    #     shared config as `auth_scheme_preference`, the value should be a comma-separated list.
+    #
     #   @option options [Boolean] :client_side_monitoring (false)
     #     When `true`, client-side metrics will be collected for all API requests from
     #     this client.
@@ -253,8 +263,8 @@ module Aws::CloudFront
     #     4 times. Used in `standard` and `adaptive` retry modes.
     #
     #   @option options [String] :profile ("default")
-    #     Used when loading credentials from the shared credentials file
-    #     at HOME/.aws/credentials.  When not specified, 'default' is used.
+    #     Used when loading credentials from the shared credentials file at `HOME/.aws/credentials`.
+    #     When not specified, 'default' is used.
     #
     #   @option options [String] :request_checksum_calculation ("when_supported")
     #     Determines when a checksum will be calculated for request payloads. Values are:
@@ -367,7 +377,7 @@ module Aws::CloudFront
     #     `Aws::Telemetry::OTelProvider` for telemetry provider.
     #
     #   @option options [Aws::TokenProvider] :token_provider
-    #     A Bearer Token Provider. This can be an instance of any one of the
+    #     Your Bearer token used for authentication. This can be an instance of any one of the
     #     following classes:
     #
     #     * `Aws::StaticTokenProvider` - Used for configuring static, non-refreshing
@@ -713,6 +723,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -726,6 +737,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_attempts #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution.distribution_config.origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution.distribution_config.origins.items[0].origin_access_control_id #=> String
@@ -954,6 +966,11 @@ module Aws::CloudFront
     # * The default, minimum, and maximum time to live (TTL) values that you
     #   want objects to stay in the CloudFront cache.
     #
+    #   If your minimum TTL is greater than 0, CloudFront will cache content
+    #   for at least the duration specified in the cache policy's minimum
+    #   TTL, even if the `Cache-Control: no-cache`, `no-store`, or `private`
+    #   directives are present in the origin headers.
+    #
     # The headers, cookies, and query strings that are included in the cache
     # key are also included in requests that CloudFront sends to the origin.
     # CloudFront sends a request when it can't find an object in its cache
@@ -1283,6 +1300,7 @@ module Aws::CloudFront
     #             },
     #             s3_origin_config: {
     #               origin_access_identity: "string", # required
+    #               origin_read_timeout: 1,
     #             },
     #             custom_origin_config: {
     #               http_port: 1, # required
@@ -1302,6 +1320,7 @@ module Aws::CloudFront
     #             },
     #             connection_attempts: 1,
     #             connection_timeout: 1,
+    #             response_completion_timeout: 1,
     #             origin_shield: {
     #               enabled: false, # required
     #               origin_shield_region: "OriginShieldRegion",
@@ -1505,7 +1524,7 @@ module Aws::CloudFront
     #       enabled: false, # required
     #       viewer_certificate: {
     #         cloud_front_default_certificate: false,
-    #         iam_certificate_id: "string",
+    #         iam_certificate_id: "ServerCertificateId",
     #         acm_certificate_arn: "string",
     #         ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
     #         minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019, TLSv1.2_2021
@@ -1531,7 +1550,7 @@ module Aws::CloudFront
     #             name: "ParameterName", # required
     #             definition: { # required
     #               string_schema: {
-    #                 comment: "string",
+    #                 comment: "sensitiveStringType",
     #                 default_value: "ParameterValue",
     #                 required: false, # required
     #               },
@@ -1580,6 +1599,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -1593,6 +1613,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_attempts #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution.distribution_config.origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution.distribution_config.origins.items[0].origin_access_control_id #=> String
@@ -1936,6 +1957,7 @@ module Aws::CloudFront
     #               },
     #               s3_origin_config: {
     #                 origin_access_identity: "string", # required
+    #                 origin_read_timeout: 1,
     #               },
     #               custom_origin_config: {
     #                 http_port: 1, # required
@@ -1955,6 +1977,7 @@ module Aws::CloudFront
     #               },
     #               connection_attempts: 1,
     #               connection_timeout: 1,
+    #               response_completion_timeout: 1,
     #               origin_shield: {
     #                 enabled: false, # required
     #                 origin_shield_region: "OriginShieldRegion",
@@ -2158,7 +2181,7 @@ module Aws::CloudFront
     #         enabled: false, # required
     #         viewer_certificate: {
     #           cloud_front_default_certificate: false,
-    #           iam_certificate_id: "string",
+    #           iam_certificate_id: "ServerCertificateId",
     #           acm_certificate_arn: "string",
     #           ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
     #           minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019, TLSv1.2_2021
@@ -2184,7 +2207,7 @@ module Aws::CloudFront
     #               name: "ParameterName", # required
     #               definition: { # required
     #                 string_schema: {
-    #                   comment: "string",
+    #                   comment: "sensitiveStringType",
     #                   default_value: "ParameterValue",
     #                   required: false, # required
     #                 },
@@ -2242,6 +2265,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -2255,6 +2279,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_attempts #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution.distribution_config.origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution.distribution_config.origins.items[0].origin_access_control_id #=> String
@@ -4013,7 +4038,7 @@ module Aws::CloudFront
     # @example Request syntax with placeholder values
     #
     #   resp = client.delete_function({
-    #     name: "string", # required
+    #     name: "FunctionName", # required
     #     if_match: "string", # required
     #   })
     #
@@ -4474,7 +4499,7 @@ module Aws::CloudFront
     # @example Request syntax with placeholder values
     #
     #   resp = client.describe_function({
-    #     name: "string", # required
+    #     name: "FunctionName", # required
     #     stage: "DEVELOPMENT", # accepts DEVELOPMENT, LIVE
     #   })
     #
@@ -5079,6 +5104,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -5092,6 +5118,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_attempts #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution.distribution_config.origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution.distribution_config.origins.items[0].origin_access_control_id #=> String
@@ -5291,6 +5318,7 @@ module Aws::CloudFront
     #   resp.distribution_config.origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution_config.origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution_config.origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution_config.origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution_config.origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution_config.origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution_config.origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -5304,6 +5332,7 @@ module Aws::CloudFront
     #   resp.distribution_config.origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution_config.origins.items[0].connection_attempts #=> Integer
     #   resp.distribution_config.origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution_config.origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution_config.origins.items[0].origin_access_control_id #=> String
@@ -5758,7 +5787,7 @@ module Aws::CloudFront
     # @example Request syntax with placeholder values
     #
     #   resp = client.get_function({
-    #     name: "string", # required
+    #     name: "FunctionName", # required
     #     stage: "DEVELOPMENT", # accepts DEVELOPMENT, LIVE
     #   })
     #
@@ -7237,6 +7266,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution_list.items[0].origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution_list.items[0].origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution_list.items[0].origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -7250,6 +7280,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].connection_attempts #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution_list.items[0].origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution_list.items[0].origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution_list.items[0].origins.items[0].origin_access_control_id #=> String
@@ -7454,6 +7485,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution_list.items[0].origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution_list.items[0].origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution_list.items[0].origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -7467,6 +7499,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].connection_attempts #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution_list.items[0].origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution_list.items[0].origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution_list.items[0].origins.items[0].origin_access_control_id #=> String
@@ -7682,7 +7715,7 @@ module Aws::CloudFront
     # @option params [required, String] :connection_mode
     #   This field specifies whether the connection mode is through a standard
     #   distribution (direct) or a multi-tenant distribution with distribution
-    #   tenants(tenant-only).
+    #   tenants (tenant-only).
     #
     # @return [Types::ListDistributionsByConnectionModeResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -7725,6 +7758,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution_list.items[0].origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution_list.items[0].origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution_list.items[0].origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -7738,6 +7772,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].connection_attempts #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution_list.items[0].origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution_list.items[0].origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution_list.items[0].origins.items[0].origin_access_control_id #=> String
@@ -8070,6 +8105,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution_list.items[0].origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution_list.items[0].origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution_list.items[0].origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -8083,6 +8119,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].connection_attempts #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution_list.items[0].origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution_list.items[0].origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution_list.items[0].origins.items[0].origin_access_control_id #=> String
@@ -8417,6 +8454,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution_list.items[0].origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution_list.items[0].origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution_list.items[0].origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -8430,6 +8468,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].connection_attempts #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution_list.items[0].origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution_list.items[0].origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution_list.items[0].origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution_list.items[0].origins.items[0].origin_access_control_id #=> String
@@ -9112,6 +9151,8 @@ module Aws::CloudFront
     #
     #   * {Types::ListOriginAccessControlsResult#origin_access_control_list #origin_access_control_list} => Types::OriginAccessControlList
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_origin_access_controls({
@@ -9625,7 +9666,7 @@ module Aws::CloudFront
     # @example Request syntax with placeholder values
     #
     #   resp = client.publish_function({
-    #     name: "string", # required
+    #     name: "FunctionName", # required
     #     if_match: "string", # required
     #   })
     #
@@ -9736,7 +9777,7 @@ module Aws::CloudFront
     # @example Request syntax with placeholder values
     #
     #   resp = client.test_function({
-    #     name: "string", # required
+    #     name: "FunctionName", # required
     #     if_match: "string", # required
     #     stage: "DEVELOPMENT", # accepts DEVELOPMENT, LIVE
     #     event_object: "data", # required
@@ -9820,6 +9861,11 @@ module Aws::CloudFront
     #     configuration, including the fields that you modified and those
     #     that you didn't.
     #
+    # If your minimum TTL is greater than 0, CloudFront will cache content
+    # for at least the duration specified in the cache policy's minimum
+    # TTL, even if the `Cache-Control: no-cache`, `no-store`, or `private`
+    # directives are present in the origin headers.
+    #
     # @option params [required, Types::CachePolicyConfig] :cache_policy_config
     #   A cache policy configuration.
     #
@@ -10180,6 +10226,7 @@ module Aws::CloudFront
     #             },
     #             s3_origin_config: {
     #               origin_access_identity: "string", # required
+    #               origin_read_timeout: 1,
     #             },
     #             custom_origin_config: {
     #               http_port: 1, # required
@@ -10199,6 +10246,7 @@ module Aws::CloudFront
     #             },
     #             connection_attempts: 1,
     #             connection_timeout: 1,
+    #             response_completion_timeout: 1,
     #             origin_shield: {
     #               enabled: false, # required
     #               origin_shield_region: "OriginShieldRegion",
@@ -10402,7 +10450,7 @@ module Aws::CloudFront
     #       enabled: false, # required
     #       viewer_certificate: {
     #         cloud_front_default_certificate: false,
-    #         iam_certificate_id: "string",
+    #         iam_certificate_id: "ServerCertificateId",
     #         acm_certificate_arn: "string",
     #         ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
     #         minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019, TLSv1.2_2021
@@ -10428,7 +10476,7 @@ module Aws::CloudFront
     #             name: "ParameterName", # required
     #             definition: { # required
     #               string_schema: {
-    #                 comment: "string",
+    #                 comment: "sensitiveStringType",
     #                 default_value: "ParameterValue",
     #                 required: false, # required
     #               },
@@ -10479,6 +10527,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -10492,6 +10541,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_attempts #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution.distribution_config.origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution.distribution_config.origins.items[0].origin_access_control_id #=> String
@@ -10867,6 +10917,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_name #=> String
     #   resp.distribution.distribution_config.origins.items[0].custom_headers.items[0].header_value #=> String
     #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_access_identity #=> String
+    #   resp.distribution.distribution_config.origins.items[0].s3_origin_config.origin_read_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.http_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.https_port #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].custom_origin_config.origin_protocol_policy #=> String, one of "http-only", "match-viewer", "https-only"
@@ -10880,6 +10931,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.origins.items[0].vpc_origin_config.origin_keepalive_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_attempts #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].connection_timeout #=> Integer
+    #   resp.distribution.distribution_config.origins.items[0].response_completion_timeout #=> Integer
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
     #   resp.distribution.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
     #   resp.distribution.distribution_config.origins.items[0].origin_access_control_id #=> String
@@ -11346,7 +11398,7 @@ module Aws::CloudFront
     # @example Request syntax with placeholder values
     #
     #   resp = client.update_function({
-    #     name: "string", # required
+    #     name: "FunctionName", # required
     #     if_match: "string", # required
     #     function_config: { # required
     #       comment: "string", # required
@@ -12232,7 +12284,7 @@ module Aws::CloudFront
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-cloudfront'
-      context[:gem_version] = '1.120.0'
+      context[:gem_version] = '1.122.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-cloudfront/client_api.rb

@@ -618,6 +618,7 @@ module Aws::CloudFront
     S3OriginConfig = Shapes::StructureShape.new(name: 'S3OriginConfig')
     SSLSupportMethod = Shapes::StringShape.new(name: 'SSLSupportMethod')
     SamplingRate = Shapes::FloatShape.new(name: 'SamplingRate')
+    ServerCertificateId = Shapes::StringShape.new(name: 'ServerCertificateId')
     SessionStickinessConfig = Shapes::StructureShape.new(name: 'SessionStickinessConfig')
     Signer = Shapes::StructureShape.new(name: 'Signer')
     SignerList = Shapes::ListShape.new(name: 'SignerList')
@@ -1485,7 +1486,7 @@ module Aws::CloudFront
     DeleteFieldLevelEncryptionProfileRequest.add_member(:if_match, Shapes::ShapeRef.new(shape: string, location: "header", location_name: "If-Match"))
     DeleteFieldLevelEncryptionProfileRequest.struct_class = Types::DeleteFieldLevelEncryptionProfileRequest
 
-    DeleteFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: string, required: true, location: "uri", location_name: "Name"))
+    DeleteFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: FunctionName, required: true, location: "uri", location_name: "Name"))
     DeleteFunctionRequest.add_member(:if_match, Shapes::ShapeRef.new(shape: string, required: true, location: "header", location_name: "If-Match"))
     DeleteFunctionRequest.struct_class = Types::DeleteFunctionRequest
 
@@ -1536,7 +1537,7 @@ module Aws::CloudFront
     DeleteVpcOriginResult[:payload] = :vpc_origin
     DeleteVpcOriginResult[:payload_member] = DeleteVpcOriginResult.member(:vpc_origin)
 
-    DescribeFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: string, required: true, location: "uri", location_name: "Name"))
+    DescribeFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: FunctionName, required: true, location: "uri", location_name: "Name"))
     DescribeFunctionRequest.add_member(:stage, Shapes::ShapeRef.new(shape: FunctionStage, location: "querystring", location_name: "Stage"))
     DescribeFunctionRequest.struct_class = Types::DescribeFunctionRequest
 
@@ -1651,7 +1652,7 @@ module Aws::CloudFront
     DistributionSummary.add_member(:default_cache_behavior, Shapes::ShapeRef.new(shape: DefaultCacheBehavior, required: true, location_name: "DefaultCacheBehavior"))
     DistributionSummary.add_member(:cache_behaviors, Shapes::ShapeRef.new(shape: CacheBehaviors, required: true, location_name: "CacheBehaviors"))
     DistributionSummary.add_member(:custom_error_responses, Shapes::ShapeRef.new(shape: CustomErrorResponses, required: true, location_name: "CustomErrorResponses"))
-    DistributionSummary.add_member(:comment, Shapes::ShapeRef.new(shape: string, required: true, location_name: "Comment"))
+    DistributionSummary.add_member(:comment, Shapes::ShapeRef.new(shape: sensitiveStringType, required: true, location_name: "Comment"))
     DistributionSummary.add_member(:price_class, Shapes::ShapeRef.new(shape: PriceClass, required: true, location_name: "PriceClass"))
     DistributionSummary.add_member(:enabled, Shapes::ShapeRef.new(shape: boolean, required: true, location_name: "Enabled"))
     DistributionSummary.add_member(:viewer_certificate, Shapes::ShapeRef.new(shape: ViewerCertificate, required: true, location_name: "ViewerCertificate"))
@@ -2046,7 +2047,7 @@ module Aws::CloudFront
     GetFieldLevelEncryptionResult[:payload] = :field_level_encryption
     GetFieldLevelEncryptionResult[:payload_member] = GetFieldLevelEncryptionResult.member(:field_level_encryption)
 
-    GetFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: string, required: true, location: "uri", location_name: "Name"))
+    GetFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: FunctionName, required: true, location: "uri", location_name: "Name"))
     GetFunctionRequest.add_member(:stage, Shapes::ShapeRef.new(shape: FunctionStage, location: "querystring", location_name: "Stage"))
     GetFunctionRequest.struct_class = Types::GetFunctionRequest
 
@@ -2841,6 +2842,7 @@ module Aws::CloudFront
     Origin.add_member(:vpc_origin_config, Shapes::ShapeRef.new(shape: VpcOriginConfig, location_name: "VpcOriginConfig"))
     Origin.add_member(:connection_attempts, Shapes::ShapeRef.new(shape: integer, location_name: "ConnectionAttempts"))
     Origin.add_member(:connection_timeout, Shapes::ShapeRef.new(shape: integer, location_name: "ConnectionTimeout"))
+    Origin.add_member(:response_completion_timeout, Shapes::ShapeRef.new(shape: integer, location_name: "ResponseCompletionTimeout"))
     Origin.add_member(:origin_shield, Shapes::ShapeRef.new(shape: OriginShield, location_name: "OriginShield"))
     Origin.add_member(:origin_access_control_id, Shapes::ShapeRef.new(shape: string, location_name: "OriginAccessControlId"))
     Origin.struct_class = Types::Origin
@@ -3031,7 +3033,7 @@ module Aws::CloudFront
 
     PublicKeySummaryList.member = Shapes::ShapeRef.new(shape: PublicKeySummary, location_name: "PublicKeySummary")
 
-    PublishFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: string, required: true, location: "uri", location_name: "Name"))
+    PublishFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: FunctionName, required: true, location: "uri", location_name: "Name"))
     PublishFunctionRequest.add_member(:if_match, Shapes::ShapeRef.new(shape: string, required: true, location: "header", location_name: "If-Match"))
     PublishFunctionRequest.struct_class = Types::PublishFunctionRequest
 
@@ -3227,6 +3229,7 @@ module Aws::CloudFront
     S3Origin.struct_class = Types::S3Origin
 
     S3OriginConfig.add_member(:origin_access_identity, Shapes::ShapeRef.new(shape: string, required: true, location_name: "OriginAccessIdentity"))
+    S3OriginConfig.add_member(:origin_read_timeout, Shapes::ShapeRef.new(shape: integer, location_name: "OriginReadTimeout"))
     S3OriginConfig.struct_class = Types::S3OriginConfig
 
     SessionStickinessConfig.add_member(:idle_ttl, Shapes::ShapeRef.new(shape: integer, required: true, location_name: "IdleTTL"))
@@ -3313,7 +3316,7 @@ module Aws::CloudFront
     StreamingLoggingConfig.add_member(:prefix, Shapes::ShapeRef.new(shape: string, required: true, location_name: "Prefix"))
     StreamingLoggingConfig.struct_class = Types::StreamingLoggingConfig
 
-    StringSchemaConfig.add_member(:comment, Shapes::ShapeRef.new(shape: string, location_name: "Comment"))
+    StringSchemaConfig.add_member(:comment, Shapes::ShapeRef.new(shape: sensitiveStringType, location_name: "Comment"))
     StringSchemaConfig.add_member(:default_value, Shapes::ShapeRef.new(shape: ParameterValue, location_name: "DefaultValue"))
     StringSchemaConfig.add_member(:required, Shapes::ShapeRef.new(shape: boolean, required: true, location_name: "Required"))
     StringSchemaConfig.struct_class = Types::StringSchemaConfig
@@ -3344,7 +3347,7 @@ module Aws::CloudFront
     TestFunctionFailed.add_member(:message, Shapes::ShapeRef.new(shape: string, location_name: "Message"))
     TestFunctionFailed.struct_class = Types::TestFunctionFailed
 
-    TestFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: string, required: true, location: "uri", location_name: "Name"))
+    TestFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: FunctionName, required: true, location: "uri", location_name: "Name"))
     TestFunctionRequest.add_member(:if_match, Shapes::ShapeRef.new(shape: string, required: true, location: "header", location_name: "If-Match"))
     TestFunctionRequest.add_member(:stage, Shapes::ShapeRef.new(shape: FunctionStage, location_name: "Stage"))
     TestFunctionRequest.add_member(:event_object, Shapes::ShapeRef.new(shape: FunctionEventObject, required: true, location_name: "EventObject"))
@@ -3679,7 +3682,7 @@ module Aws::CloudFront
     UpdateFieldLevelEncryptionProfileResult[:payload] = :field_level_encryption_profile
     UpdateFieldLevelEncryptionProfileResult[:payload_member] = UpdateFieldLevelEncryptionProfileResult.member(:field_level_encryption_profile)
 
-    UpdateFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: string, required: true, location: "uri", location_name: "Name"))
+    UpdateFunctionRequest.add_member(:name, Shapes::ShapeRef.new(shape: FunctionName, required: true, location: "uri", location_name: "Name"))
     UpdateFunctionRequest.add_member(:if_match, Shapes::ShapeRef.new(shape: string, required: true, location: "header", location_name: "If-Match"))
     UpdateFunctionRequest.add_member(:function_config, Shapes::ShapeRef.new(shape: FunctionConfig, required: true, location_name: "FunctionConfig"))
     UpdateFunctionRequest.add_member(:function_code, Shapes::ShapeRef.new(shape: FunctionBlob, required: true, location_name: "FunctionCode"))
@@ -3818,7 +3821,7 @@ module Aws::CloudFront
     VerifyDnsConfigurationResult.struct_class = Types::VerifyDnsConfigurationResult
 
     ViewerCertificate.add_member(:cloud_front_default_certificate, Shapes::ShapeRef.new(shape: boolean, location_name: "CloudFrontDefaultCertificate"))
-    ViewerCertificate.add_member(:iam_certificate_id, Shapes::ShapeRef.new(shape: string, location_name: "IAMCertificateId"))
+    ViewerCertificate.add_member(:iam_certificate_id, Shapes::ShapeRef.new(shape: ServerCertificateId, location_name: "IAMCertificateId"))
     ViewerCertificate.add_member(:acm_certificate_arn, Shapes::ShapeRef.new(shape: string, location_name: "ACMCertificateArn"))
     ViewerCertificate.add_member(:ssl_support_method, Shapes::ShapeRef.new(shape: SSLSupportMethod, location_name: "SSLSupportMethod"))
     ViewerCertificate.add_member(:minimum_protocol_version, Shapes::ShapeRef.new(shape: MinimumProtocolVersion, location_name: "MinimumProtocolVersion"))
@@ -5585,6 +5588,12 @@ module Aws::CloudFront
         o.input = Shapes::ShapeRef.new(shape: ListOriginAccessControlsRequest)
         o.output = Shapes::ShapeRef.new(shape: ListOriginAccessControlsResult)
         o.errors << Shapes::ShapeRef.new(shape: InvalidArgument)
+        o[:pager] = Aws::Pager.new(
+          limit_key: "max_items",
+          tokens: {
+            "origin_access_control_list.next_marker" => "marker"
+          }
+        )
       end)
 
       api.add_operation(:list_origin_request_policies, Seahorse::Model::Operation.new.tap do |o|

data/lib/aws-sdk-cloudfront/endpoint_parameters.rb

@@ -10,11 +10,6 @@
 module Aws::CloudFront
   # Endpoint parameters used to influence endpoints per request.
   #
-  # @!attribute region
-  #   The AWS region used to dispatch the request.
-  #
-  #   @return [String]
-  #
   # @!attribute use_dual_stack
   #   When true, use the dual-stack endpoint. If the configured endpoint does not support dual-stack, dispatching the request MAY return an error.
   #
@@ -30,39 +25,44 @@ module Aws::CloudFront
   #
   #   @return [String]
   #
+  # @!attribute region
+  #   The AWS region used to dispatch the request.
+  #
+  #   @return [String]
+  #
   EndpointParameters = Struct.new(
-    :region,
     :use_dual_stack,
     :use_fips,
     :endpoint,
+    :region,
   ) do
     include Aws::Structure
 
     # @api private
     class << self
       PARAM_MAP = {
-        'Region' => :region,
         'UseDualStack' => :use_dual_stack,
         'UseFIPS' => :use_fips,
         'Endpoint' => :endpoint,
+        'Region' => :region,
       }.freeze
     end
 
     def initialize(options = {})
-      self[:region] = options[:region]
       self[:use_dual_stack] = options[:use_dual_stack]
       self[:use_dual_stack] = false if self[:use_dual_stack].nil?
       self[:use_fips] = options[:use_fips]
       self[:use_fips] = false if self[:use_fips].nil?
       self[:endpoint] = options[:endpoint]
+      self[:region] = options[:region]
     end
 
     def self.create(config, options={})
       new({
-        region: config.region,
         use_dual_stack: config.use_dualstack_endpoint,
         use_fips: config.use_fips_endpoint,
         endpoint: (config.endpoint.to_s unless config.regional_endpoint),
+        region: config.region,
       }.merge(options))
     end
   end

data/lib/aws-sdk-cloudfront/endpoint_provider.rb

@@ -21,34 +21,37 @@ module Aws::CloudFront
       end
       if Aws::Endpoints::Matchers.set?(parameters.region)
         if (partition_result = Aws::Endpoints::Matchers.aws_partition(parameters.region))
-          if Aws::Endpoints::Matchers.string_equals?(Aws::Endpoints::Matchers.attr(partition_result, "name"), "aws") && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, false) && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, false)
-            return Aws::Endpoints::Endpoint.new(url: "https://cloudfront.amazonaws.com", headers: {}, properties: {"authSchemes" => [{"name" => "sigv4", "signingName" => "cloudfront", "signingRegion" => "us-east-1"}]})
+          if Aws::Endpoints::Matchers.string_equals?(Aws::Endpoints::Matchers.attr(partition_result, "name"), "aws") && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, false) && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, true)
+            return Aws::Endpoints::Endpoint.new(url: "https://cloudfront.global.api.aws", headers: {}, properties: {"authSchemes" => [{"name" => "sigv4", "signingRegion" => "us-east-1"}]})
           end
-          if Aws::Endpoints::Matchers.string_equals?(Aws::Endpoints::Matchers.attr(partition_result, "name"), "aws") && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, false)
-            return Aws::Endpoints::Endpoint.new(url: "https://cloudfront-fips.amazonaws.com", headers: {}, properties: {"authSchemes" => [{"name" => "sigv4", "signingName" => "cloudfront", "signingRegion" => "us-east-1"}]})
+          if Aws::Endpoints::Matchers.string_equals?(Aws::Endpoints::Matchers.attr(partition_result, "name"), "aws") && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, true)
+            return Aws::Endpoints::Endpoint.new(url: "https://cloudfront-fips.global.api.aws", headers: {}, properties: {"authSchemes" => [{"name" => "sigv4", "signingRegion" => "us-east-1"}]})
           end
           if Aws::Endpoints::Matchers.string_equals?(Aws::Endpoints::Matchers.attr(partition_result, "name"), "aws-cn") && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, false) && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, false)
-            return Aws::Endpoints::Endpoint.new(url: "https://cloudfront.cn-northwest-1.amazonaws.com.cn", headers: {}, properties: {"authSchemes" => [{"name" => "sigv4", "signingName" => "cloudfront", "signingRegion" => "cn-northwest-1"}]})
+            return Aws::Endpoints::Endpoint.new(url: "https://cloudfront.cn-northwest-1.amazonaws.com.cn", headers: {}, properties: {"authSchemes" => [{"name" => "sigv4", "signingRegion" => "cn-northwest-1"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(Aws::Endpoints::Matchers.attr(partition_result, "name"), "aws-cn") && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, false)
+            return Aws::Endpoints::Endpoint.new(url: "https://cloudfront-fips.cn-northwest-1.amazonaws.com.cn", headers: {}, properties: {"authSchemes" => [{"name" => "sigv4", "signingRegion" => "cn-northwest-1"}]})
           end
           if Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, true)
             if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
-              return Aws::Endpoints::Endpoint.new(url: "https://cloudfront-fips.#{parameters.region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+              return Aws::Endpoints::Endpoint.new(url: "https://cloudfront-fips.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {"authSchemes" => [{"name" => "sigv4", "signingRegion" => "#{partition_result['implicitGlobalRegion']}"}]})
             end
             raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
           end
-          if Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, true)
+          if Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, false)
             if Aws::Endpoints::Matchers.boolean_equals?(Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"), true)
-              return Aws::Endpoints::Endpoint.new(url: "https://cloudfront-fips.#{parameters.region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+              return Aws::Endpoints::Endpoint.new(url: "https://cloudfront-fips.#{partition_result['dnsSuffix']}", headers: {}, properties: {"authSchemes" => [{"name" => "sigv4", "signingRegion" => "#{partition_result['implicitGlobalRegion']}"}]})
             end
             raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
           end
-          if Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, true)
+          if Aws::Endpoints::Matchers.boolean_equals?(parameters.use_fips, false) && Aws::Endpoints::Matchers.boolean_equals?(parameters.use_dual_stack, true)
             if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
-              return Aws::Endpoints::Endpoint.new(url: "https://cloudfront.#{parameters.region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+              return Aws::Endpoints::Endpoint.new(url: "https://cloudfront.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {"authSchemes" => [{"name" => "sigv4", "signingRegion" => "#{partition_result['implicitGlobalRegion']}"}]})
             end
             raise ArgumentError, "DualStack is enabled but this partition does not support DualStack"
           end
-          return Aws::Endpoints::Endpoint.new(url: "https://cloudfront.#{parameters.region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+          return Aws::Endpoints::Endpoint.new(url: "https://cloudfront.#{partition_result['dnsSuffix']}", headers: {}, properties: {"authSchemes" => [{"name" => "sigv4", "signingRegion" => "#{partition_result['implicitGlobalRegion']}"}]})
         end
       end
       raise ArgumentError, "Invalid Configuration: Missing Region"

data/lib/aws-sdk-cloudfront/types.rb

@@ -517,6 +517,11 @@ module Aws::CloudFront
     # distribution configuration and specify all of the cache behaviors that
     # you want to include in the updated distribution.
     #
+    # If your minimum TTL is greater than 0, CloudFront will cache content
+    # for at least the duration specified in the cache policy's minimum
+    # TTL, even if the `Cache-Control: no-cache`, `no-store`, or `private`
+    # directives are present in the origin headers.
+    #
     # For more information about cache behaviors, see [Cache Behavior
     # Settings][3] in the *Amazon CloudFront Developer Guide*.
     #
@@ -995,6 +1000,11 @@ module Aws::CloudFront
     # * The default, minimum, and maximum time to live (TTL) values that you
     #   want objects to stay in the CloudFront cache.
     #
+    #   If your minimum TTL is greater than 0, CloudFront will cache content
+    #   for at least the duration specified in the cache policy's minimum
+    #   TTL, even if the `Cache-Control: no-cache`, `no-store`, or `private`
+    #   directives are present in the origin headers.
+    #
     # The headers, cookies, and query strings that are included in the cache
     # key are also included in requests that CloudFront sends to the origin.
     # CloudFront sends a request when it can't find a valid object in its
@@ -3397,8 +3407,8 @@ module Aws::CloudFront
     #   minimum timeout is 1 second, the maximum is 120 seconds, and the
     #   default (if you don't specify otherwise) is 30 seconds.
     #
-    #   For more information, see [Response timeout (custom origins
-    #   only)][1] in the *Amazon CloudFront Developer Guide*.
+    #   For more information, see [Response timeout][1] in the *Amazon
+    #   CloudFront Developer Guide*.
     #
     #
     #
@@ -3466,6 +3476,11 @@ module Aws::CloudFront
     # of the values of `PathPattern` in `CacheBehavior` elements. You must
     # create exactly one default cache behavior.
     #
+    # If your minimum TTL is greater than 0, CloudFront will cache content
+    # for at least the duration specified in the cache policy's minimum
+    # TTL, even if the `Cache-Control: no-cache`, `no-store`, or `private`
+    # directives are present in the origin headers.
+    #
     # @!attribute [rw] target_origin_id
     #   The value of `ID` for the origin that you want CloudFront to route
     #   requests to when they use the default cache behavior.
@@ -4834,7 +4849,7 @@ module Aws::CloudFront
     # @!attribute [rw] connection_mode
     #   This field specifies whether the connection mode is through a
     #   standard distribution (direct) or a multi-tenant distribution with
-    #   distribution tenants(tenant-only).
+    #   distribution tenants (tenant-only).
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/DistributionConfig AWS API Documentation
@@ -5149,7 +5164,7 @@ module Aws::CloudFront
     # @!attribute [rw] connection_mode
     #   This field specifies whether the connection mode is through a
     #   standard distribution (direct) or a multi-tenant distribution with
-    #   distribution tenants(tenant-only).
+    #   distribution tenants (tenant-only).
     #   @return [String]
     #
     # @!attribute [rw] anycast_ip_list_id
@@ -5184,7 +5199,7 @@ module Aws::CloudFront
       :staging,
       :connection_mode,
       :anycast_ip_list_id)
-      SENSITIVE = []
+      SENSITIVE = [:comment]
       include Aws::Structure
     end
 
@@ -9011,7 +9026,7 @@ module Aws::CloudFront
     # @!attribute [rw] connection_mode
     #   This field specifies whether the connection mode is through a
     #   standard distribution (direct) or a multi-tenant distribution with
-    #   distribution tenants(tenant-only).
+    #   distribution tenants (tenant-only).
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/ListDistributionsByConnectionModeRequest AWS API Documentation
@@ -10494,6 +10509,25 @@ module Aws::CloudFront
     #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/distribution-web-values-specify.html#origin-connection-timeout
     #   @return [Integer]
     #
+    # @!attribute [rw] response_completion_timeout
+    #   The time (in seconds) that a request from CloudFront to the origin
+    #   can stay open and wait for a response. If the complete response
+    #   isn't received from the origin by this time, CloudFront ends the
+    #   connection.
+    #
+    #   The value for `ResponseCompletionTimeout` must be equal to or
+    #   greater than the value for `OriginReadTimeout`. If you don't set a
+    #   value for `ResponseCompletionTimeout`, CloudFront doesn't enforce a
+    #   maximum value.
+    #
+    #   For more information, see [Response completion timeout][1] in the
+    #   *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/DownloadDistValuesOrigin.html#response-completion-timeout
+    #   @return [Integer]
+    #
     # @!attribute [rw] origin_shield
     #   CloudFront Origin Shield. Using Origin Shield can help reduce the
     #   load on your origin.
@@ -10529,6 +10563,7 @@ module Aws::CloudFront
       :vpc_origin_config,
       :connection_attempts,
       :connection_timeout,
+      :response_completion_timeout,
       :origin_shield,
       :origin_access_control_id)
       SENSITIVE = []
@@ -13032,10 +13067,25 @@ module Aws::CloudFront
     #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/PrivateContent.html
     #   @return [String]
     #
+    # @!attribute [rw] origin_read_timeout
+    #   Specifies how long, in seconds, CloudFront waits for a response from
+    #   the origin. This is also known as the *origin response timeout*. The
+    #   minimum timeout is 1 second, the maximum is 120 seconds, and the
+    #   default (if you don't specify otherwise) is 30 seconds.
+    #
+    #   For more information, see [Response timeout][1] in the *Amazon
+    #   CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/DownloadDistValuesOrigin.html#DownloadDistValuesOriginResponseTimeout
+    #   @return [Integer]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/S3OriginConfig AWS API Documentation
     #
     class S3OriginConfig < Struct.new(
-      :origin_access_identity)
+      :origin_access_identity,
+      :origin_read_timeout)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -13537,7 +13587,7 @@ module Aws::CloudFront
       :comment,
       :default_value,
       :required)
-      SENSITIVE = []
+      SENSITIVE = [:comment]
       include Aws::Structure
     end
 
@@ -15997,8 +16047,8 @@ module Aws::CloudFront
     #   minimum timeout is 1 second, the maximum is 120 seconds, and the
     #   default (if you don't specify otherwise) is 30 seconds.
     #
-    #   For more information, see [Response timeout (custom origins
-    #   only)][1] in the *Amazon CloudFront Developer Guide*.
+    #   For more information, see [Response timeout][1] in the *Amazon
+    #   CloudFront Developer Guide*.
     #
     #
     #

data/lib/aws-sdk-cloudfront.rb

@@ -55,7 +55,7 @@ module Aws::CloudFront
   autoload :EndpointProvider, 'aws-sdk-cloudfront/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-cloudfront/endpoints'
 
-  GEM_VERSION = '1.120.0'
+  GEM_VERSION = '1.122.0'
 
 end
 

data/sig/client.rbs

@@ -18,6 +18,7 @@ module Aws
                       ?account_id: String,
                       ?active_endpoint_cache: bool,
                       ?adaptive_retry_wait_to_fill: bool,
+                      ?auth_scheme_preference: Array[String],
                       ?client_side_monitoring: bool,
                       ?client_side_monitoring_client_id: String,
                       ?client_side_monitoring_host: String,
@@ -292,7 +293,8 @@ module Aws
                                            ]?
                                          }?,
                                          s3_origin_config: {
-                                           origin_access_identity: ::String
+                                           origin_access_identity: ::String,
+                                           origin_read_timeout: ::Integer?
                                          }?,
                                          custom_origin_config: {
                                            http_port: ::Integer,
@@ -312,6 +314,7 @@ module Aws
                                          }?,
                                          connection_attempts: ::Integer?,
                                          connection_timeout: ::Integer?,
+                                         response_completion_timeout: ::Integer?,
                                          origin_shield: {
                                            enabled: bool,
                                            origin_shield_region: ::String?
@@ -638,7 +641,8 @@ module Aws
                                                        ]?
                                                      }?,
                                                      s3_origin_config: {
-                                                       origin_access_identity: ::String
+                                                       origin_access_identity: ::String,
+                                                       origin_read_timeout: ::Integer?
                                                      }?,
                                                      custom_origin_config: {
                                                        http_port: ::Integer,
@@ -658,6 +662,7 @@ module Aws
                                                      }?,
                                                      connection_attempts: ::Integer?,
                                                      connection_timeout: ::Integer?,
+                                                     response_completion_timeout: ::Integer?,
                                                      origin_shield: {
                                                        enabled: bool,
                                                        origin_shield_region: ::String?
@@ -2562,7 +2567,8 @@ module Aws
                                            ]?
                                          }?,
                                          s3_origin_config: {
-                                           origin_access_identity: ::String
+                                           origin_access_identity: ::String,
+                                           origin_read_timeout: ::Integer?
                                          }?,
                                          custom_origin_config: {
                                            http_port: ::Integer,
@@ -2582,6 +2588,7 @@ module Aws
                                          }?,
                                          connection_attempts: ::Integer?,
                                          connection_timeout: ::Integer?,
+                                         response_completion_timeout: ::Integer?,
                                          origin_shield: {
                                            enabled: bool,
                                            origin_shield_region: ::String?

data/sig/resource.rbs

@@ -18,6 +18,7 @@ module Aws
                         ?account_id: String,
                         ?active_endpoint_cache: bool,
                         ?adaptive_retry_wait_to_fill: bool,
+                        ?auth_scheme_preference: Array[String],
                         ?client_side_monitoring: bool,
                         ?client_side_monitoring_client_id: String,
                         ?client_side_monitoring_host: String,

data/sig/types.rbs

@@ -1069,7 +1069,7 @@ module Aws::CloudFront
       attr_accessor staging: bool
       attr_accessor connection_mode: ("direct" | "tenant-only")
       attr_accessor anycast_ip_list_id: ::String
-      SENSITIVE: []
+      SENSITIVE: [:comment]
     end
 
     class DistributionTenant
@@ -2581,6 +2581,7 @@ module Aws::CloudFront
       attr_accessor vpc_origin_config: Types::VpcOriginConfig
       attr_accessor connection_attempts: ::Integer
       attr_accessor connection_timeout: ::Integer
+      attr_accessor response_completion_timeout: ::Integer
       attr_accessor origin_shield: Types::OriginShield
       attr_accessor origin_access_control_id: ::String
       SENSITIVE: []
@@ -3085,6 +3086,7 @@ module Aws::CloudFront
 
     class S3OriginConfig
       attr_accessor origin_access_identity: ::String
+      attr_accessor origin_read_timeout: ::Integer
       SENSITIVE: []
     end
 
@@ -3192,7 +3194,7 @@ module Aws::CloudFront
       attr_accessor comment: ::String
       attr_accessor default_value: ::String
       attr_accessor required: bool
-      SENSITIVE: []
+      SENSITIVE: [:comment]
     end
 
     class Tag

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-cloudfront
 version: !ruby/object:Gem::Version
-  version: 1.120.0
+  version: 1.122.0
 platform: ruby
 authors:
 - Amazon Web Services
@@ -18,7 +18,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.225.0
+        version: 3.227.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -28,7 +28,7 @@ dependencies:
         version: '3'
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.225.0
+        version: 3.227.0
 - !ruby/object:Gem::Dependency
   name: aws-sigv4
   requirement: !ruby/object:Gem::Requirement