aws-sdk-cloudfront 1.35.0 → 1.39.0

data/lib/aws-sdk-cloudfront/cookie_signer.rb

@@ -3,7 +3,6 @@
 require 'base64'
 require 'uri'
 require 'time'
-require 'json'
 require 'openssl'
 
 module Aws

data/lib/aws-sdk-cloudfront/errors.rb

@@ -79,6 +79,7 @@ module Aws::CloudFront
   # * {NoSuchOrigin}
   # * {NoSuchOriginRequestPolicy}
   # * {NoSuchPublicKey}
+  # * {NoSuchRealtimeLogConfig}
   # * {NoSuchResource}
   # * {NoSuchStreamingDistribution}
   # * {OriginRequestPolicyAlreadyExists}
@@ -87,6 +88,8 @@ module Aws::CloudFront
   # * {PublicKeyAlreadyExists}
   # * {PublicKeyInUse}
   # * {QueryArgProfileEmpty}
+  # * {RealtimeLogConfigAlreadyExists}
+  # * {RealtimeLogConfigInUse}
   # * {StreamingDistributionAlreadyExists}
   # * {StreamingDistributionNotDisabled}
   # * {TooManyCacheBehaviors}
@@ -122,6 +125,7 @@ module Aws::CloudFront
   # * {TooManyQueryStringParameters}
   # * {TooManyQueryStringsInCachePolicy}
   # * {TooManyQueryStringsInOriginRequestPolicy}
+  # * {TooManyRealtimeLogConfigs}
   # * {TooManyStreamingDistributionCNAMEs}
   # * {TooManyStreamingDistributions}
   # * {TooManyTrustedSigners}
@@ -913,6 +917,21 @@ module Aws::CloudFront
       end
     end
 
+    class NoSuchRealtimeLogConfig < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::CloudFront::Types::NoSuchRealtimeLogConfig] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
     class NoSuchResource < ServiceError
 
       # @param [Seahorse::Client::RequestContext] context
@@ -1033,6 +1052,36 @@ module Aws::CloudFront
       end
     end
 
+    class RealtimeLogConfigAlreadyExists < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::CloudFront::Types::RealtimeLogConfigAlreadyExists] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
+    class RealtimeLogConfigInUse < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::CloudFront::Types::RealtimeLogConfigInUse] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
     class StreamingDistributionAlreadyExists < ServiceError
 
       # @param [Seahorse::Client::RequestContext] context
@@ -1558,6 +1607,21 @@ module Aws::CloudFront
       end
     end
 
+    class TooManyRealtimeLogConfigs < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::CloudFront::Types::TooManyRealtimeLogConfigs] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
     class TooManyStreamingDistributionCNAMEs < ServiceError
 
       # @param [Seahorse::Client::RequestContext] context

data/lib/aws-sdk-cloudfront/signer.rb

@@ -3,7 +3,6 @@
 require 'base64'
 require 'uri'
 require 'time'
-require 'json'
 require 'openssl'
 
 module Aws
@@ -112,7 +111,7 @@ module Aws
               }
           ]
         }
-        JSON.dump(json_hash)
+        Aws::Json.dump(json_hash)
       end
 
       def encode(policy)

data/lib/aws-sdk-cloudfront/types.rb

@@ -308,6 +308,7 @@ module Aws::CloudFront
     #           ],
     #         },
     #         field_level_encryption_id: "string",
+    #         realtime_log_config_arn: "string",
     #         cache_policy_id: "string",
     #         origin_request_policy_id: "string",
     #         forwarded_values: {
@@ -475,41 +476,79 @@ module Aws::CloudFront
     #   for this cache behavior.
     #   @return [String]
     #
+    # @!attribute [rw] realtime_log_config_arn
+    #   The Amazon Resource Name (ARN) of the real-time log configuration
+    #   that is attached to this cache behavior. For more information, see
+    #   [Real-time logs][1] in the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/real-time-logs.html
+    #   @return [String]
+    #
     # @!attribute [rw] cache_policy_id
     #   The unique identifier of the cache policy that is attached to this
-    #   cache behavior. For more information, see `CreateCachePolicy`.
+    #   cache behavior. For more information, see [Creating cache
+    #   policies][1] or [Using the managed cache policies][2] in the *Amazon
+    #   CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html
     #   @return [String]
     #
     # @!attribute [rw] origin_request_policy_id
     #   The unique identifier of the origin request policy that is attached
-    #   to this cache behavior. For more information, see
-    #   `CreateOriginRequestPolicy`.
+    #   to this cache behavior. For more information, see [Creating origin
+    #   request policies][1] or [Using the managed origin request
+    #   policies][2] in the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-origin-request-policies.html
     #   @return [String]
     #
     # @!attribute [rw] forwarded_values
     #   This field is deprecated. We recommend that you use a cache policy
-    #   or an origin request policy instead of this field.
+    #   or an origin request policy instead of this field. For more
+    #   information, see [Working with policies][1] in the *Amazon
+    #   CloudFront Developer Guide*.
     #
-    #   If you want to include values in the cache key, use a `CachePolicy`.
-    #   See `CreateCachePolicy`.
+    #   If you want to include values in the cache key, use a cache policy.
+    #   For more information, see [Creating cache policies][2] or [Using the
+    #   managed cache policies][3] in the *Amazon CloudFront Developer
+    #   Guide*.
     #
     #   If you want to send values to the origin but not include them in the
-    #   cache key, use an `OriginRequestPolicy`. See
-    #   `CreateOriginRequestPolicy`.
+    #   cache key, use an origin request policy. For more information, see
+    #   [Creating origin request policies][4] or [Using the managed origin
+    #   request policies][5] in the *Amazon CloudFront Developer Guide*.
     #
     #   A complex type that specifies how CloudFront handles query strings,
     #   cookies, and HTTP headers.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/working-with-policies.html
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [3]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html
+    #   [4]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy
+    #   [5]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-origin-request-policies.html
     #   @return [Types::ForwardedValues]
     #
     # @!attribute [rw] min_ttl
     #   This field is deprecated. We recommend that you use the `MinTTL`
-    #   field in `CachePolicyConfig` instead of this field.
+    #   field in a cache policy instead of this field. For more information,
+    #   see [Creating cache policies][1] or [Using the managed cache
+    #   policies][2] in the *Amazon CloudFront Developer Guide*.
     #
     #   The minimum amount of time that you want objects to stay in
     #   CloudFront caches before CloudFront forwards another request to your
     #   origin to determine whether the object has been updated. For more
     #   information, see [ Managing How Long Content Stays in an Edge Cache
-    #   (Expiration)][1] in the <i> Amazon CloudFront Developer Guide</i>.
+    #   (Expiration)][3] in the <i> Amazon CloudFront Developer Guide</i>.
     #
     #   You must specify `0` for `MinTTL` if you configure CloudFront to
     #   forward all headers to your origin (under `Headers`, if you specify
@@ -517,12 +556,16 @@ module Aws::CloudFront
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html
+    #   [3]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
     #   @return [Integer]
     #
     # @!attribute [rw] default_ttl
     #   This field is deprecated. We recommend that you use the `DefaultTTL`
-    #   field in `CachePolicyConfig` instead of this field.
+    #   field in a cache policy instead of this field. For more information,
+    #   see [Creating cache policies][1] or [Using the managed cache
+    #   policies][2] in the *Amazon CloudFront Developer Guide*.
     #
     #   The default amount of time that you want objects to stay in
     #   CloudFront caches before CloudFront forwards another request to your
@@ -530,17 +573,21 @@ module Aws::CloudFront
     #   that you specify applies only when your origin does not add HTTP
     #   headers such as `Cache-Control max-age`, `Cache-Control s-maxage`,
     #   and `Expires` to objects. For more information, see [Managing How
-    #   Long Content Stays in an Edge Cache (Expiration)][1] in the *Amazon
+    #   Long Content Stays in an Edge Cache (Expiration)][3] in the *Amazon
     #   CloudFront Developer Guide*.
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html
+    #   [3]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
     #   @return [Integer]
     #
     # @!attribute [rw] max_ttl
     #   This field is deprecated. We recommend that you use the `MaxTTL`
-    #   field in `CachePolicyConfig` instead of this field.
+    #   field in a cache policy instead of this field. For more information,
+    #   see [Creating cache policies][1] or [Using the managed cache
+    #   policies][2] in the *Amazon CloudFront Developer Guide*.
     #
     #   The maximum amount of time that you want objects to stay in
     #   CloudFront caches before CloudFront forwards another request to your
@@ -548,12 +595,14 @@ module Aws::CloudFront
     #   that you specify applies only when your origin adds HTTP headers
     #   such as `Cache-Control max-age`, `Cache-Control s-maxage`, and
     #   `Expires` to objects. For more information, see [Managing How Long
-    #   Content Stays in an Edge Cache (Expiration)][1] in the *Amazon
+    #   Content Stays in an Edge Cache (Expiration)][3] in the *Amazon
     #   CloudFront Developer Guide*.
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html
+    #   [3]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
     #   @return [Integer]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/CacheBehavior AWS API Documentation
@@ -568,6 +617,7 @@ module Aws::CloudFront
       :compress,
       :lambda_function_associations,
       :field_level_encryption_id,
+      :realtime_log_config_arn,
       :cache_policy_id,
       :origin_request_policy_id,
       :forwarded_values,
@@ -616,6 +666,7 @@ module Aws::CloudFront
     #               ],
     #             },
     #             field_level_encryption_id: "string",
+    #             realtime_log_config_arn: "string",
     #             cache_policy_id: "string",
     #             origin_request_policy_id: "string",
     #             forwarded_values: {
@@ -800,10 +851,10 @@ module Aws::CloudFront
     #   @return [Integer]
     #
     # @!attribute [rw] max_ttl
-    #   The maximum amount of time, in seconds, that you want objects to
-    #   stay in the CloudFront cache before CloudFront sends another request
-    #   to the origin to see if the object has been updated. CloudFront uses
-    #   this value only when the origin sends `Cache-Control` or `Expires`
+    #   The maximum amount of time, in seconds, that objects stay in the
+    #   CloudFront cache before CloudFront sends another request to the
+    #   origin to see if the object has been updated. CloudFront uses this
+    #   value only when the origin sends `Cache-Control` or `Expires`
     #   headers with the object. For more information, see [Managing How
     #   Long Content Stays in an Edge Cache (Expiration)][1] in the *Amazon
     #   CloudFront Developer Guide*.
@@ -1490,12 +1541,14 @@ module Aws::CloudFront
     #   This field is deprecated. We recommend that you use a cache policy
     #   or an origin request policy instead of this field.
     #
-    #   If you want to include cookies in the cache key, use `CookiesConfig`
-    #   in a cache policy. See `CreateCachePolicy`.
+    #   If you want to include cookies in the cache key, use a cache policy.
+    #   For more information, see [Creating cache policies][1] in the
+    #   *Amazon CloudFront Developer Guide*.
     #
     #   If you want to send cookies to the origin but not include them in
-    #   the cache key, use `CookiesConfig` in an origin request policy. See
-    #   `CreateOriginRequestPolicy`.
+    #   the cache key, use origin request policy. For more information, see
+    #   [Creating origin request policies][2] in the *Amazon CloudFront
+    #   Developer Guide*.
     #
     #   Specifies which cookies to forward to the origin for this cache
     #   behavior: all, none, or the list of cookies specified in the
@@ -1504,18 +1557,25 @@ module Aws::CloudFront
     #   Amazon S3 doesn't process cookies. When the cache behavior is
     #   forwarding requests to an Amazon S3 origin, specify none for the
     #   `Forward` element.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy
     #   @return [String]
     #
     # @!attribute [rw] whitelisted_names
     #   This field is deprecated. We recommend that you use a cache policy
     #   or an origin request policy instead of this field.
     #
-    #   If you want to include cookies in the cache key, use `CookiesConfig`
-    #   in a cache policy. See `CreateCachePolicy`.
+    #   If you want to include cookies in the cache key, use a cache policy.
+    #   For more information, see [Creating cache policies][1] in the
+    #   *Amazon CloudFront Developer Guide*.
     #
     #   If you want to send cookies to the origin but not include them in
-    #   the cache key, use `CookiesConfig` in an origin request policy. See
-    #   `CreateOriginRequestPolicy`.
+    #   the cache key, use an origin request policy. For more information,
+    #   see [Creating origin request policies][2] in the *Amazon CloudFront
+    #   Developer Guide*.
     #
     #   Required if you specify `whitelist` for the value of `Forward`. A
     #   complex type that specifies how many different cookies you want
@@ -1529,12 +1589,14 @@ module Aws::CloudFront
     #   deletes them automatically.
     #
     #   For the current limit on the number of cookie names that you can
-    #   whitelist for each cache behavior, see [ CloudFront Limits][1] in
+    #   whitelist for each cache behavior, see [ CloudFront Limits][3] in
     #   the *AWS General Reference*.
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/general/latest/gr/xrefaws_service_limits.html#limits_cloudfront
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy
+    #   [3]: https://docs.aws.amazon.com/general/latest/gr/xrefaws_service_limits.html#limits_cloudfront
     #   @return [Types::CookieNames]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/CookiePreference AWS API Documentation
@@ -1774,6 +1836,7 @@ module Aws::CloudFront
     #               ],
     #             },
     #             field_level_encryption_id: "string",
+    #             realtime_log_config_arn: "string",
     #             cache_policy_id: "string",
     #             origin_request_policy_id: "string",
     #             forwarded_values: {
@@ -1831,6 +1894,7 @@ module Aws::CloudFront
     #                   ],
     #                 },
     #                 field_level_encryption_id: "string",
+    #                 realtime_log_config_arn: "string",
     #                 cache_policy_id: "string",
     #                 origin_request_policy_id: "string",
     #                 forwarded_values: {
@@ -1881,7 +1945,7 @@ module Aws::CloudFront
     #             cloud_front_default_certificate: false,
     #             iam_certificate_id: "string",
     #             acm_certificate_arn: "string",
-    #             ssl_support_method: "sni-only", # accepts sni-only, vip
+    #             ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
     #             minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019
     #             certificate: "string",
     #             certificate_source: "cloudfront", # accepts cloudfront, iam, acm
@@ -2036,6 +2100,7 @@ module Aws::CloudFront
     #                 ],
     #               },
     #               field_level_encryption_id: "string",
+    #               realtime_log_config_arn: "string",
     #               cache_policy_id: "string",
     #               origin_request_policy_id: "string",
     #               forwarded_values: {
@@ -2093,6 +2158,7 @@ module Aws::CloudFront
     #                     ],
     #                   },
     #                   field_level_encryption_id: "string",
+    #                   realtime_log_config_arn: "string",
     #                   cache_policy_id: "string",
     #                   origin_request_policy_id: "string",
     #                   forwarded_values: {
@@ -2143,7 +2209,7 @@ module Aws::CloudFront
     #               cloud_front_default_certificate: false,
     #               iam_certificate_id: "string",
     #               acm_certificate_arn: "string",
-    #               ssl_support_method: "sni-only", # accepts sni-only, vip
+    #               ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
     #               minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019
     #               certificate: "string",
     #               certificate_source: "cloudfront", # accepts cloudfront, iam, acm
@@ -2390,6 +2456,51 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass CreateMonitoringSubscriptionRequest
+    #   data as a hash:
+    #
+    #       {
+    #         distribution_id: "string", # required
+    #         monitoring_subscription: { # required
+    #           realtime_metrics_subscription_config: {
+    #             realtime_metrics_subscription_status: "Enabled", # required, accepts Enabled, Disabled
+    #           },
+    #         },
+    #       }
+    #
+    # @!attribute [rw] distribution_id
+    #   The ID of the distribution that you are enabling metrics for.
+    #   @return [String]
+    #
+    # @!attribute [rw] monitoring_subscription
+    #   A monitoring subscription. This structure contains information about
+    #   whether additional CloudWatch metrics are enabled for a given
+    #   CloudFront distribution.
+    #   @return [Types::MonitoringSubscription]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/CreateMonitoringSubscriptionRequest AWS API Documentation
+    #
+    class CreateMonitoringSubscriptionRequest < Struct.new(
+      :distribution_id,
+      :monitoring_subscription)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] monitoring_subscription
+    #   A monitoring subscription. This structure contains information about
+    #   whether additional CloudWatch metrics are enabled for a given
+    #   CloudFront distribution.
+    #   @return [Types::MonitoringSubscription]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/CreateMonitoringSubscriptionResult AWS API Documentation
+    #
+    class CreateMonitoringSubscriptionResult < Struct.new(
+      :monitoring_subscription)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass CreateOriginRequestPolicyRequest
     #   data as a hash:
     #
@@ -2502,6 +2613,74 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass CreateRealtimeLogConfigRequest
+    #   data as a hash:
+    #
+    #       {
+    #         end_points: [ # required
+    #           {
+    #             stream_type: "string", # required
+    #             kinesis_stream_config: {
+    #               role_arn: "string", # required
+    #               stream_arn: "string", # required
+    #             },
+    #           },
+    #         ],
+    #         fields: ["string"], # required
+    #         name: "string", # required
+    #         sampling_rate: 1, # required
+    #       }
+    #
+    # @!attribute [rw] end_points
+    #   Contains information about the Amazon Kinesis data stream where you
+    #   are sending real-time log data.
+    #   @return [Array<Types::EndPoint>]
+    #
+    # @!attribute [rw] fields
+    #   A list of fields to include in each real-time log record.
+    #
+    #   For more information about fields, see [Real-time log configuration
+    #   fields][1] in the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/real-time-logs.html#understand-real-time-log-config-fields
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] name
+    #   A unique name to identify this real-time log configuration.
+    #   @return [String]
+    #
+    # @!attribute [rw] sampling_rate
+    #   The sampling rate for this real-time log configuration. The sampling
+    #   rate determines the percentage of viewer requests that are
+    #   represented in the real-time log data. You must provide an integer
+    #   between 1 and 100, inclusive.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/CreateRealtimeLogConfigRequest AWS API Documentation
+    #
+    class CreateRealtimeLogConfigRequest < Struct.new(
+      :end_points,
+      :fields,
+      :name,
+      :sampling_rate)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] realtime_log_config
+    #   A real-time log configuration.
+    #   @return [Types::RealtimeLogConfig]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/CreateRealtimeLogConfigResult AWS API Documentation
+    #
+    class CreateRealtimeLogConfigResult < Struct.new(
+      :realtime_log_config)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The request to create a new streaming distribution.
     #
     # @note When making an API call, you may pass CreateStreamingDistributionRequest
@@ -2983,6 +3162,7 @@ module Aws::CloudFront
     #           ],
     #         },
     #         field_level_encryption_id: "string",
+    #         realtime_log_config_arn: "string",
     #         cache_policy_id: "string",
     #         origin_request_policy_id: "string",
     #         forwarded_values: {
@@ -3125,41 +3305,79 @@ module Aws::CloudFront
     #   for the default cache behavior.
     #   @return [String]
     #
+    # @!attribute [rw] realtime_log_config_arn
+    #   The Amazon Resource Name (ARN) of the real-time log configuration
+    #   that is attached to this cache behavior. For more information, see
+    #   [Real-time logs][1] in the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/real-time-logs.html
+    #   @return [String]
+    #
     # @!attribute [rw] cache_policy_id
     #   The unique identifier of the cache policy that is attached to the
-    #   default cache behavior. For more information, see CachePolicy.
+    #   default cache behavior. For more information, see [Creating cache
+    #   policies][1] or [Using the managed cache policies][2] in the *Amazon
+    #   CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html
     #   @return [String]
     #
     # @!attribute [rw] origin_request_policy_id
     #   The unique identifier of the origin request policy that is attached
-    #   to the default cache behavior. For more information, see
-    #   OriginRequestPolicy.
+    #   to the default cache behavior. For more information, see [Creating
+    #   origin request policies][1] or [Using the managed origin request
+    #   policies][2] in the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-origin-request-policies.html
     #   @return [String]
     #
     # @!attribute [rw] forwarded_values
     #   This field is deprecated. We recommend that you use a cache policy
-    #   or an origin request policy instead of this field.
+    #   or an origin request policy instead of this field. For more
+    #   information, see [Working with policies][1] in the *Amazon
+    #   CloudFront Developer Guide*.
     #
-    #   If you want to include values in the cache key, use a `CachePolicy`.
-    #   See `CreateCachePolicy`.
+    #   If you want to include values in the cache key, use a cache policy.
+    #   For more information, see [Creating cache policies][2] or [Using the
+    #   managed cache policies][3] in the *Amazon CloudFront Developer
+    #   Guide*.
     #
     #   If you want to send values to the origin but not include them in the
-    #   cache key, use an `OriginRequestPolicy`. See
-    #   `CreateOriginRequestPolicy`.
+    #   cache key, use an origin request policy. For more information, see
+    #   [Creating origin request policies][4] or [Using the managed origin
+    #   request policies][5] in the *Amazon CloudFront Developer Guide*.
     #
     #   A complex type that specifies how CloudFront handles query strings,
     #   cookies, and HTTP headers.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/working-with-policies.html
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [3]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html
+    #   [4]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy
+    #   [5]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-origin-request-policies.html
     #   @return [Types::ForwardedValues]
     #
     # @!attribute [rw] min_ttl
     #   This field is deprecated. We recommend that you use the `MinTTL`
-    #   field in `CachePolicyConfig` instead of this field.
+    #   field in a cache policy instead of this field. For more information,
+    #   see [Creating cache policies][1] or [Using the managed cache
+    #   policies][2] in the *Amazon CloudFront Developer Guide*.
     #
     #   The minimum amount of time that you want objects to stay in
     #   CloudFront caches before CloudFront forwards another request to your
     #   origin to determine whether the object has been updated. For more
     #   information, see [Managing How Long Content Stays in an Edge Cache
-    #   (Expiration)][1] in the *Amazon CloudFront Developer Guide*.
+    #   (Expiration)][3] in the *Amazon CloudFront Developer Guide*.
     #
     #   You must specify `0` for `MinTTL` if you configure CloudFront to
     #   forward all headers to your origin (under `Headers`, if you specify
@@ -3167,12 +3385,16 @@ module Aws::CloudFront
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html
+    #   [3]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
     #   @return [Integer]
     #
     # @!attribute [rw] default_ttl
     #   This field is deprecated. We recommend that you use the `DefaultTTL`
-    #   field in `CachePolicyConfig` instead of this field.
+    #   field in a cache policy instead of this field. For more information,
+    #   see [Creating cache policies][1] or [Using the managed cache
+    #   policies][2] in the *Amazon CloudFront Developer Guide*.
     #
     #   The default amount of time that you want objects to stay in
     #   CloudFront caches before CloudFront forwards another request to your
@@ -3180,17 +3402,21 @@ module Aws::CloudFront
     #   that you specify applies only when your origin does not add HTTP
     #   headers such as `Cache-Control max-age`, `Cache-Control s-maxage`,
     #   and `Expires` to objects. For more information, see [Managing How
-    #   Long Content Stays in an Edge Cache (Expiration)][1] in the *Amazon
+    #   Long Content Stays in an Edge Cache (Expiration)][3] in the *Amazon
     #   CloudFront Developer Guide*.
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html
+    #   [3]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
     #   @return [Integer]
     #
     # @!attribute [rw] max_ttl
     #   This field is deprecated. We recommend that you use the `MaxTTL`
-    #   field in `CachePolicyConfig` instead of this field.
+    #   field in a cache policy instead of this field. For more information,
+    #   see [Creating cache policies][1] or [Using the managed cache
+    #   policies][2] in the *Amazon CloudFront Developer Guide*.
     #
     #   The maximum amount of time that you want objects to stay in
     #   CloudFront caches before CloudFront forwards another request to your
@@ -3198,12 +3424,14 @@ module Aws::CloudFront
     #   that you specify applies only when your origin adds HTTP headers
     #   such as `Cache-Control max-age`, `Cache-Control s-maxage`, and
     #   `Expires` to objects. For more information, see [Managing How Long
-    #   Content Stays in an Edge Cache (Expiration)][1] in the *Amazon
+    #   Content Stays in an Edge Cache (Expiration)][3] in the *Amazon
     #   CloudFront Developer Guide*.
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/using-managed-cache-policies.html
+    #   [3]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Expiration.html
     #   @return [Integer]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/DefaultCacheBehavior AWS API Documentation
@@ -3217,6 +3445,7 @@ module Aws::CloudFront
       :compress,
       :lambda_function_associations,
       :field_level_encryption_id,
+      :realtime_log_config_arn,
       :cache_policy_id,
       :origin_request_policy_id,
       :forwarded_values,
@@ -3405,6 +3634,29 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass DeleteMonitoringSubscriptionRequest
+    #   data as a hash:
+    #
+    #       {
+    #         distribution_id: "string", # required
+    #       }
+    #
+    # @!attribute [rw] distribution_id
+    #   The ID of the distribution that you are disabling metrics for.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/DeleteMonitoringSubscriptionRequest AWS API Documentation
+    #
+    class DeleteMonitoringSubscriptionRequest < Struct.new(
+      :distribution_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/DeleteMonitoringSubscriptionResult AWS API Documentation
+    #
+    class DeleteMonitoringSubscriptionResult < Aws::EmptyStructure; end
+
     # @note When making an API call, you may pass DeleteOriginRequestPolicyRequest
     #   data as a hash:
     #
@@ -3461,6 +3713,32 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass DeleteRealtimeLogConfigRequest
+    #   data as a hash:
+    #
+    #       {
+    #         name: "string",
+    #         arn: "string",
+    #       }
+    #
+    # @!attribute [rw] name
+    #   The name of the real-time log configuration to delete.
+    #   @return [String]
+    #
+    # @!attribute [rw] arn
+    #   The Amazon Resource Name (ARN) of the real-time log configuration to
+    #   delete.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/DeleteRealtimeLogConfigRequest AWS API Documentation
+    #
+    class DeleteRealtimeLogConfigRequest < Struct.new(
+      :name,
+      :arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The request to delete a streaming distribution.
     #
     # @note When making an API call, you may pass DeleteStreamingDistributionRequest
@@ -3682,6 +3960,7 @@ module Aws::CloudFront
     #             ],
     #           },
     #           field_level_encryption_id: "string",
+    #           realtime_log_config_arn: "string",
     #           cache_policy_id: "string",
     #           origin_request_policy_id: "string",
     #           forwarded_values: {
@@ -3739,6 +4018,7 @@ module Aws::CloudFront
     #                 ],
     #               },
     #               field_level_encryption_id: "string",
+    #               realtime_log_config_arn: "string",
     #               cache_policy_id: "string",
     #               origin_request_policy_id: "string",
     #               forwarded_values: {
@@ -3789,7 +4069,7 @@ module Aws::CloudFront
     #           cloud_front_default_certificate: false,
     #           iam_certificate_id: "string",
     #           acm_certificate_arn: "string",
-    #           ssl_support_method: "sni-only", # accepts sni-only, vip
+    #           ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
     #           minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019
     #           certificate: "string",
     #           certificate_source: "cloudfront", # accepts cloudfront, iam, acm
@@ -4163,6 +4443,7 @@ module Aws::CloudFront
     #               ],
     #             },
     #             field_level_encryption_id: "string",
+    #             realtime_log_config_arn: "string",
     #             cache_policy_id: "string",
     #             origin_request_policy_id: "string",
     #             forwarded_values: {
@@ -4220,6 +4501,7 @@ module Aws::CloudFront
     #                   ],
     #                 },
     #                 field_level_encryption_id: "string",
+    #                 realtime_log_config_arn: "string",
     #                 cache_policy_id: "string",
     #                 origin_request_policy_id: "string",
     #                 forwarded_values: {
@@ -4270,7 +4552,7 @@ module Aws::CloudFront
     #             cloud_front_default_certificate: false,
     #             iam_certificate_id: "string",
     #             acm_certificate_arn: "string",
-    #             ssl_support_method: "sni-only", # accepts sni-only, vip
+    #             ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
     #             minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019
     #             certificate: "string",
     #             certificate_source: "cloudfront", # accepts cloudfront, iam, acm
@@ -4642,6 +4924,39 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # Contains information about the Amazon Kinesis data stream where you
+    # are sending real-time log data in a real-time log configuration.
+    #
+    # @note When making an API call, you may pass EndPoint
+    #   data as a hash:
+    #
+    #       {
+    #         stream_type: "string", # required
+    #         kinesis_stream_config: {
+    #           role_arn: "string", # required
+    #           stream_arn: "string", # required
+    #         },
+    #       }
+    #
+    # @!attribute [rw] stream_type
+    #   The type of data stream where you are sending real-time log data.
+    #   The only valid value is `Kinesis`.
+    #   @return [String]
+    #
+    # @!attribute [rw] kinesis_stream_config
+    #   Contains information about the Amazon Kinesis data stream where you
+    #   are sending real-time log data.
+    #   @return [Types::KinesisStreamConfig]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/EndPoint AWS API Documentation
+    #
+    class EndPoint < Struct.new(
+      :stream_type,
+      :kinesis_stream_config)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # A complex data type that includes the profile configurations and other
     # options specified for field-level encryption.
     #
@@ -5049,16 +5364,23 @@ module Aws::CloudFront
     # This field is deprecated. We recommend that you use a cache policy or
     # an origin request policy instead of this field.
     #
-    # If you want to include values in the cache key, use a `CachePolicy`.
-    # See `CreateCachePolicy`.
+    # If you want to include values in the cache key, use a cache policy.
+    # For more information, see [Creating cache policies][1] in the *Amazon
+    # CloudFront Developer Guide*.
     #
     # If you want to send values to the origin but not include them in the
-    # cache key, use an `OriginRequestPolicy`. See
-    # `CreateOriginRequestPolicy`.
+    # cache key, use an origin request policy. For more information, see
+    # [Creating origin request policies][2] in the *Amazon CloudFront
+    # Developer Guide*.
     #
     # A complex type that specifies how CloudFront handles query strings,
     # cookies, and HTTP headers.
     #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    # [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy
+    #
     # @note When making an API call, you may pass ForwardedValues
     #   data as a hash:
     #
@@ -5085,12 +5407,14 @@ module Aws::CloudFront
     #   This field is deprecated. We recommend that you use a cache policy
     #   or an origin request policy instead of this field.
     #
-    #   If you want to include query strings in the cache key, use
-    #   `QueryStringsConfig` in a cache policy. See `CreateCachePolicy`.
+    #   If you want to include query strings in the cache key, use a cache
+    #   policy. For more information, see [Creating cache policies][1] in
+    #   the *Amazon CloudFront Developer Guide*.
     #
     #   If you want to send query strings to the origin but not include them
-    #   in the cache key, use `QueryStringsConfig` in an origin request
-    #   policy. See `CreateOriginRequestPolicy`.
+    #   in the cache key, use an origin request policy. For more
+    #   information, see [Creating origin request policies][2] in the
+    #   *Amazon CloudFront Developer Guide*.
     #
     #   Indicates whether you want CloudFront to forward query strings to
     #   the origin that is associated with this cache behavior and cache
@@ -5115,46 +5439,54 @@ module Aws::CloudFront
     #   on query string parameters.
     #
     #   For more information, see [Configuring CloudFront to Cache Based on
-    #   Query String Parameters][1] in the *Amazon CloudFront Developer
+    #   Query String Parameters][3] in the *Amazon CloudFront Developer
     #   Guide*.
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/QueryStringParameters.html
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy
+    #   [3]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/QueryStringParameters.html
     #   @return [Boolean]
     #
     # @!attribute [rw] cookies
     #   This field is deprecated. We recommend that you use a cache policy
     #   or an origin request policy instead of this field.
     #
-    #   If you want to include cookies in the cache key, use `CookiesConfig`
-    #   in a cache policy. See `CreateCachePolicy`.
+    #   If you want to include cookies in the cache key, use a cache policy.
+    #   For more information, see [Creating cache policies][1] in the
+    #   *Amazon CloudFront Developer Guide*.
     #
     #   If you want to send cookies to the origin but not include them in
-    #   the cache key, use `CookiesConfig` in an origin request policy. See
-    #   `CreateOriginRequestPolicy`.
+    #   the cache key, use an origin request policy. For more information,
+    #   see [Creating origin request policies][2] in the *Amazon CloudFront
+    #   Developer Guide*.
     #
     #   A complex type that specifies whether you want CloudFront to forward
     #   cookies to the origin and, if so, which ones. For more information
     #   about forwarding cookies to the origin, see [How CloudFront
-    #   Forwards, Caches, and Logs Cookies][1] in the *Amazon CloudFront
+    #   Forwards, Caches, and Logs Cookies][3] in the *Amazon CloudFront
     #   Developer Guide*.
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Cookies.html
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy
+    #   [3]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/Cookies.html
     #   @return [Types::CookiePreference]
     #
     # @!attribute [rw] headers
     #   This field is deprecated. We recommend that you use a cache policy
     #   or an origin request policy instead of this field.
     #
-    #   If you want to include headers in the cache key, use `HeadersConfig`
-    #   in a cache policy. See `CreateCachePolicy`.
+    #   If you want to include headers in the cache key, use a cache policy.
+    #   For more information, see [Creating cache policies][1] in the
+    #   *Amazon CloudFront Developer Guide*.
     #
     #   If you want to send headers to the origin but not include them in
-    #   the cache key, use `HeadersConfig` in an origin request policy. See
-    #   `CreateOriginRequestPolicy`.
+    #   the cache key, use an origin request policy. For more information,
+    #   see [Creating origin request policies][2] in the *Amazon CloudFront
+    #   Developer Guide*.
     #
     #   A complex type that specifies the `Headers`, if any, that you want
     #   CloudFront to forward to the origin for this cache behavior
@@ -5163,27 +5495,36 @@ module Aws::CloudFront
     #   the header values in viewer requests.
     #
     #   For more information, see [ Caching Content Based on Request
-    #   Headers][1] in the *Amazon CloudFront Developer Guide*.
+    #   Headers][3] in the *Amazon CloudFront Developer Guide*.
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/header-caching.html
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy
+    #   [3]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/header-caching.html
     #   @return [Types::Headers]
     #
     # @!attribute [rw] query_string_cache_keys
     #   This field is deprecated. We recommend that you use a cache policy
     #   or an origin request policy instead of this field.
     #
-    #   If you want to include query strings in the cache key, use
-    #   `QueryStringsConfig` in a cache policy. See `CreateCachePolicy`.
+    #   If you want to include query strings in the cache key, use a cache
+    #   policy. For more information, see [Creating cache policies][1] in
+    #   the *Amazon CloudFront Developer Guide*.
     #
     #   If you want to send query strings to the origin but not include them
-    #   in the cache key, use an `QueryStringsConfig` in an origin request
-    #   policy. See `CreateOriginRequestPolicy`.
+    #   in the cache key, use an origin request policy. For more
+    #   information, see [Creating origin request policies][2] in the
+    #   *Amazon CloudFront Developer Guide*.
     #
     #   A complex type that contains information about the query string
     #   parameters that you want CloudFront to use for caching for this
     #   cache behavior.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-the-cache-key.html#cache-key-create-cache-policy
+    #   [2]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/controlling-origin-requests.html#origin-request-create-origin-request-policy
     #   @return [Types::QueryStringCacheKeys]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/ForwardedValues AWS API Documentation
@@ -5705,6 +6046,40 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass GetMonitoringSubscriptionRequest
+    #   data as a hash:
+    #
+    #       {
+    #         distribution_id: "string", # required
+    #       }
+    #
+    # @!attribute [rw] distribution_id
+    #   The ID of the distribution that you are getting metrics information
+    #   for.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/GetMonitoringSubscriptionRequest AWS API Documentation
+    #
+    class GetMonitoringSubscriptionRequest < Struct.new(
+      :distribution_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] monitoring_subscription
+    #   A monitoring subscription. This structure contains information about
+    #   whether additional CloudWatch metrics are enabled for a given
+    #   CloudFront distribution.
+    #   @return [Types::MonitoringSubscription]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/GetMonitoringSubscriptionResult AWS API Documentation
+    #
+    class GetMonitoringSubscriptionResult < Struct.new(
+      :monitoring_subscription)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass GetOriginRequestPolicyConfigRequest
     #   data as a hash:
     #
@@ -5861,6 +6236,44 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass GetRealtimeLogConfigRequest
+    #   data as a hash:
+    #
+    #       {
+    #         name: "string",
+    #         arn: "string",
+    #       }
+    #
+    # @!attribute [rw] name
+    #   The name of the real-time log configuration to get.
+    #   @return [String]
+    #
+    # @!attribute [rw] arn
+    #   The Amazon Resource Name (ARN) of the real-time log configuration to
+    #   get.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/GetRealtimeLogConfigRequest AWS API Documentation
+    #
+    class GetRealtimeLogConfigRequest < Struct.new(
+      :name,
+      :arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] realtime_log_config
+    #   A real-time log configuration.
+    #   @return [Types::RealtimeLogConfig]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/GetRealtimeLogConfigResult AWS API Documentation
+    #
+    class GetRealtimeLogConfigResult < Struct.new(
+      :realtime_log_config)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # To request to get a streaming distribution configuration.
     #
     # @note When making an API call, you may pass GetStreamingDistributionConfigRequest
@@ -6537,6 +6950,44 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # Contains information about the Amazon Kinesis data stream where you
+    # are sending real-time log data.
+    #
+    # @note When making an API call, you may pass KinesisStreamConfig
+    #   data as a hash:
+    #
+    #       {
+    #         role_arn: "string", # required
+    #         stream_arn: "string", # required
+    #       }
+    #
+    # @!attribute [rw] role_arn
+    #   The Amazon Resource Name (ARN) of an AWS Identity and Access
+    #   Management (IAM) role that CloudFront can use to send real-time log
+    #   data to your Kinesis data stream.
+    #
+    #   For more information the IAM role, see [Real-time log configuration
+    #   IAM role][1] in the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/real-time-logs.html#understand-real-time-log-config-iam-role
+    #   @return [String]
+    #
+    # @!attribute [rw] stream_arn
+    #   The Amazon Resource Name (ARN) of the Kinesis data stream where you
+    #   are sending real-time log data.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/KinesisStreamConfig AWS API Documentation
+    #
+    class KinesisStreamConfig < Struct.new(
+      :role_arn,
+      :stream_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # A complex type that contains a Lambda function association.
     #
     # @note When making an API call, you may pass LambdaFunctionAssociation
@@ -6843,6 +7294,61 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass ListDistributionsByRealtimeLogConfigRequest
+    #   data as a hash:
+    #
+    #       {
+    #         marker: "string",
+    #         max_items: 1,
+    #         realtime_log_config_name: "string",
+    #         realtime_log_config_arn: "string",
+    #       }
+    #
+    # @!attribute [rw] marker
+    #   Use this field when paginating results to indicate where to begin in
+    #   your list of distributions. The response includes distributions in
+    #   the list that occur after the marker. To get the next page of the
+    #   list, set this field’s value to the value of `NextMarker` from the
+    #   current page’s response.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_items
+    #   The maximum number of distributions that you want in the response.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] realtime_log_config_name
+    #   The name of the real-time log configuration whose associated
+    #   distributions you want to list.
+    #   @return [String]
+    #
+    # @!attribute [rw] realtime_log_config_arn
+    #   The Amazon Resource Name (ARN) of the real-time log configuration
+    #   whose associated distributions you want to list.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/ListDistributionsByRealtimeLogConfigRequest AWS API Documentation
+    #
+    class ListDistributionsByRealtimeLogConfigRequest < Struct.new(
+      :marker,
+      :max_items,
+      :realtime_log_config_name,
+      :realtime_log_config_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] distribution_list
+    #   A distribution list.
+    #   @return [Types::DistributionList]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/ListDistributionsByRealtimeLogConfigResult AWS API Documentation
+    #
+    class ListDistributionsByRealtimeLogConfigResult < Struct.new(
+      :distribution_list)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The request to list distributions that are associated with a specified
     # AWS WAF web ACL.
     #
@@ -7187,6 +7693,48 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass ListRealtimeLogConfigsRequest
+    #   data as a hash:
+    #
+    #       {
+    #         max_items: 1,
+    #         marker: "string",
+    #       }
+    #
+    # @!attribute [rw] max_items
+    #   The maximum number of real-time log configurations that you want in
+    #   the response.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] marker
+    #   Use this field when paginating results to indicate where to begin in
+    #   your list of real-time log configurations. The response includes
+    #   real-time log configurations in the list that occur after the
+    #   marker. To get the next page of the list, set this field’s value to
+    #   the value of `NextMarker` from the current page’s response.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/ListRealtimeLogConfigsRequest AWS API Documentation
+    #
+    class ListRealtimeLogConfigsRequest < Struct.new(
+      :max_items,
+      :marker)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] realtime_log_configs
+    #   A list of real-time log configurations.
+    #   @return [Types::RealtimeLogConfigs]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/ListRealtimeLogConfigsResult AWS API Documentation
+    #
+    class ListRealtimeLogConfigsResult < Struct.new(
+      :realtime_log_configs)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The request to list your streaming distributions.
     #
     # @note When making an API call, you may pass ListStreamingDistributionsRequest
@@ -7334,6 +7882,31 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # A monitoring subscription. This structure contains information about
+    # whether additional CloudWatch metrics are enabled for a given
+    # CloudFront distribution.
+    #
+    # @note When making an API call, you may pass MonitoringSubscription
+    #   data as a hash:
+    #
+    #       {
+    #         realtime_metrics_subscription_config: {
+    #           realtime_metrics_subscription_status: "Enabled", # required, accepts Enabled, Disabled
+    #         },
+    #       }
+    #
+    # @!attribute [rw] realtime_metrics_subscription_config
+    #   A subscription configuration for additional CloudWatch metrics.
+    #   @return [Types::RealtimeMetricsSubscriptionConfig]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/MonitoringSubscription AWS API Documentation
+    #
+    class MonitoringSubscription < Struct.new(
+      :realtime_metrics_subscription_config)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The cache policy does not exist.
     #
     # @!attribute [rw] message
@@ -7451,6 +8024,19 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # The real-time log configuration does not exist.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/NoSuchRealtimeLogConfig AWS API Documentation
+    #
+    class NoSuchRealtimeLogConfig < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # A resource that was specified is not valid.
     #
     # @!attribute [rw] message
@@ -8807,6 +9393,144 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # A real-time log configuration.
+    #
+    # @!attribute [rw] arn
+    #   The Amazon Resource Name (ARN) of this real-time log configuration.
+    #   @return [String]
+    #
+    # @!attribute [rw] name
+    #   The unique name of this real-time log configuration.
+    #   @return [String]
+    #
+    # @!attribute [rw] sampling_rate
+    #   The sampling rate for this real-time log configuration. The sampling
+    #   rate determines the percentage of viewer requests that are
+    #   represented in the real-time log data. The sampling rate is an
+    #   integer between 1 and 100, inclusive.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] end_points
+    #   Contains information about the Amazon Kinesis data stream where you
+    #   are sending real-time log data for this real-time log configuration.
+    #   @return [Array<Types::EndPoint>]
+    #
+    # @!attribute [rw] fields
+    #   A list of fields that are included in each real-time log record. In
+    #   an API response, the fields are provided in the same order in which
+    #   they are sent to the Amazon Kinesis data stream.
+    #
+    #   For more information about fields, see [Real-time log configuration
+    #   fields][1] in the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/real-time-logs.html#understand-real-time-log-config-fields
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/RealtimeLogConfig AWS API Documentation
+    #
+    class RealtimeLogConfig < Struct.new(
+      :arn,
+      :name,
+      :sampling_rate,
+      :end_points,
+      :fields)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # A real-time log configuration with this name already exists. You must
+    # provide a unique name. To modify an existing real-time log
+    # configuration, use `UpdateRealtimeLogConfig`.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/RealtimeLogConfigAlreadyExists AWS API Documentation
+    #
+    class RealtimeLogConfigAlreadyExists < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Cannot delete the real-time log configuration because it is attached
+    # to one or more cache behaviors.
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/RealtimeLogConfigInUse AWS API Documentation
+    #
+    class RealtimeLogConfigInUse < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # A list of real-time log configurations.
+    #
+    # @!attribute [rw] max_items
+    #   The maximum number of real-time log configurations requested.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] items
+    #   Contains the list of real-time log configurations.
+    #   @return [Array<Types::RealtimeLogConfig>]
+    #
+    # @!attribute [rw] is_truncated
+    #   A flag that indicates whether there are more real-time log
+    #   configurations than are contained in this list.
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] marker
+    #   This parameter indicates where this list of real-time log
+    #   configurations begins. This list includes real-time log
+    #   configurations that occur after the marker.
+    #   @return [String]
+    #
+    # @!attribute [rw] next_marker
+    #   If there are more items in the list than are in this response, this
+    #   element is present. It contains the value that you should use in the
+    #   `Marker` field of a subsequent request to continue listing real-time
+    #   log configurations where you left off.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/RealtimeLogConfigs AWS API Documentation
+    #
+    class RealtimeLogConfigs < Struct.new(
+      :max_items,
+      :items,
+      :is_truncated,
+      :marker,
+      :next_marker)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # A subscription configuration for additional CloudWatch metrics.
+    #
+    # @note When making an API call, you may pass RealtimeMetricsSubscriptionConfig
+    #   data as a hash:
+    #
+    #       {
+    #         realtime_metrics_subscription_status: "Enabled", # required, accepts Enabled, Disabled
+    #       }
+    #
+    # @!attribute [rw] realtime_metrics_subscription_status
+    #   A flag that indicates whether additional CloudWatch metrics are
+    #   enabled for a given CloudFront distribution.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/RealtimeMetricsSubscriptionConfig AWS API Documentation
+    #
+    class RealtimeMetricsSubscriptionConfig < Struct.new(
+      :realtime_metrics_subscription_status)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # A complex type that identifies ways in which you want to restrict
     # distribution of your content.
     #
@@ -10056,6 +10780,25 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # You have reached the maximum number of real-time log configurations
+    # for this AWS account. For more information, see [Quotas][1] (formerly
+    # known as limits) in the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/cloudfront-limits.html
+    #
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/TooManyRealtimeLogConfigs AWS API Documentation
+    #
+    class TooManyRealtimeLogConfigs < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Your request contains more CNAMEs than are allowed per distribution.
     #
     # @!attribute [rw] message
@@ -10437,6 +11180,7 @@ module Aws::CloudFront
     #               ],
     #             },
     #             field_level_encryption_id: "string",
+    #             realtime_log_config_arn: "string",
     #             cache_policy_id: "string",
     #             origin_request_policy_id: "string",
     #             forwarded_values: {
@@ -10494,6 +11238,7 @@ module Aws::CloudFront
     #                   ],
     #                 },
     #                 field_level_encryption_id: "string",
+    #                 realtime_log_config_arn: "string",
     #                 cache_policy_id: "string",
     #                 origin_request_policy_id: "string",
     #                 forwarded_values: {
@@ -10544,7 +11289,7 @@ module Aws::CloudFront
     #             cloud_front_default_certificate: false,
     #             iam_certificate_id: "string",
     #             acm_certificate_arn: "string",
-    #             ssl_support_method: "sni-only", # accepts sni-only, vip
+    #             ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
     #             minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019
     #             certificate: "string",
     #             certificate_source: "cloudfront", # accepts cloudfront, iam, acm
@@ -10883,6 +11628,80 @@ module Aws::CloudFront
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass UpdateRealtimeLogConfigRequest
+    #   data as a hash:
+    #
+    #       {
+    #         end_points: [
+    #           {
+    #             stream_type: "string", # required
+    #             kinesis_stream_config: {
+    #               role_arn: "string", # required
+    #               stream_arn: "string", # required
+    #             },
+    #           },
+    #         ],
+    #         fields: ["string"],
+    #         name: "string",
+    #         arn: "string",
+    #         sampling_rate: 1,
+    #       }
+    #
+    # @!attribute [rw] end_points
+    #   Contains information about the Amazon Kinesis data stream where you
+    #   are sending real-time log data.
+    #   @return [Array<Types::EndPoint>]
+    #
+    # @!attribute [rw] fields
+    #   A list of fields to include in each real-time log record.
+    #
+    #   For more information about fields, see [Real-time log configuration
+    #   fields][1] in the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/real-time-logs.html#understand-real-time-log-config-fields
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] name
+    #   The name for this real-time log configuration.
+    #   @return [String]
+    #
+    # @!attribute [rw] arn
+    #   The Amazon Resource Name (ARN) for this real-time log configuration.
+    #   @return [String]
+    #
+    # @!attribute [rw] sampling_rate
+    #   The sampling rate for this real-time log configuration. The sampling
+    #   rate determines the percentage of viewer requests that are
+    #   represented in the real-time log data. You must provide an integer
+    #   between 1 and 100, inclusive.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/UpdateRealtimeLogConfigRequest AWS API Documentation
+    #
+    class UpdateRealtimeLogConfigRequest < Struct.new(
+      :end_points,
+      :fields,
+      :name,
+      :arn,
+      :sampling_rate)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] realtime_log_config
+    #   A real-time log configuration.
+    #   @return [Types::RealtimeLogConfig]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/UpdateRealtimeLogConfigResult AWS API Documentation
+    #
+    class UpdateRealtimeLogConfigResult < Struct.new(
+      :realtime_log_config)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # The request to update a streaming distribution.
     #
     # @note When making an API call, you may pass UpdateStreamingDistributionRequest
@@ -11027,7 +11846,7 @@ module Aws::CloudFront
     #         cloud_front_default_certificate: false,
     #         iam_certificate_id: "string",
     #         acm_certificate_arn: "string",
-    #         ssl_support_method: "sni-only", # accepts sni-only, vip
+    #         ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
     #         minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019
     #         certificate: "string",
     #         certificate_source: "cloudfront", # accepts cloudfront, iam, acm
@@ -11092,12 +11911,19 @@ module Aws::CloudFront
     #     recommended, and results in additional monthly charges from
     #     CloudFront.
     #
+    #   * `static-ip` - Do not specify this value unless your distribution
+    #     has been enabled for this feature by the CloudFront team. If you
+    #     have a use case that requires static IP addresses for a
+    #     distribution, contact CloudFront through the [AWS Support
+    #     Center][2].
+    #
     #   If the distribution uses the CloudFront domain name such as
     #   `d111111abcdef8.cloudfront.net`, don’t set a value for this field.
     #
     #
     #
     #   [1]: https://en.wikipedia.org/wiki/Server_Name_Indication
+    #   [2]: https://console.aws.amazon.com/support/home
     #   @return [String]
     #
     # @!attribute [rw] minimum_protocol_version