aws-sdk-cloudfront 1.48.0 → 1.53.0

data/VERSION

@@ -0,0 +1 @@
+1.53.0

data/lib/aws-sdk-cloudfront.rb

@@ -3,7 +3,7 @@
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:
-# https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
+# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
 #
 # WARNING ABOUT GENERATED CODE
 
@@ -29,7 +29,7 @@ require_relative 'aws-sdk-cloudfront/customizations'
 # structure.
 #
 #     cloud_front = Aws::CloudFront::Client.new
-#     resp = cloud_front.create_cache_policy(params)
+#     resp = cloud_front.associate_alias(params)
 #
 # See {Client} for more information.
 #
@@ -49,6 +49,6 @@ require_relative 'aws-sdk-cloudfront/customizations'
 # @!group service
 module Aws::CloudFront
 
-  GEM_VERSION = '1.48.0'
+  GEM_VERSION = '1.53.0'
 
 end

data/lib/aws-sdk-cloudfront/client.rb

@@ -3,7 +3,7 @@
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:
-# https://github.com/aws/aws-sdk-ruby/blob/master/CONTRIBUTING.md
+# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
 #
 # WARNING ABOUT GENERATED CODE
 
@@ -327,6 +327,50 @@ module Aws::CloudFront
 
     # @!group API Operations
 
+    # Associates an alias (also known as a CNAME or an alternate domain
+    # name) with a CloudFront distribution.
+    #
+    # With this operation you can move an alias that’s already in use on a
+    # CloudFront distribution to a different distribution in one step. This
+    # prevents the downtime that could occur if you first remove the alias
+    # from one distribution and then separately add the alias to another
+    # distribution.
+    #
+    # To use this operation to associate an alias with a distribution, you
+    # provide the alias and the ID of the target distribution for the alias.
+    # For more information, including how to set up the target distribution,
+    # prerequisites that you must complete, and other restrictions, see
+    # [Moving an alternate domain name to a different distribution][1] in
+    # the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/CNAMEs.html#alternate-domain-names-move
+    #
+    # @option params [required, String] :target_distribution_id
+    #   The ID of the distribution that you’re associating the alias with.
+    #
+    # @option params [required, String] :alias
+    #   The alias (also known as a CNAME) to add to the target distribution.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.associate_alias({
+    #     target_distribution_id: "string", # required
+    #     alias: "string", # required
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/AssociateAlias2020_05_31 AWS API Documentation
+    #
+    # @overload associate_alias(params = {})
+    # @param [Hash] params ({})
+    def associate_alias(params = {}, options = {})
+      req = build_request(:associate_alias, params)
+      req.send_request(options)
+    end
+
     # Creates a cache policy.
     #
     # After you create a cache policy, you can attach it to one or more
@@ -616,6 +660,15 @@ module Aws::CloudFront
     #             },
     #           ],
     #         },
+    #         function_associations: {
+    #           quantity: 1, # required
+    #           items: [
+    #             {
+    #               function_arn: "FunctionARN", # required
+    #               event_type: "viewer-request", # required, accepts viewer-request, viewer-response, origin-request, origin-response
+    #             },
+    #           ],
+    #         },
     #         field_level_encryption_id: "string",
     #         realtime_log_config_arn: "string",
     #         cache_policy_id: "string",
@@ -679,6 +732,15 @@ module Aws::CloudFront
     #                 },
     #               ],
     #             },
+    #             function_associations: {
+    #               quantity: 1, # required
+    #               items: [
+    #                 {
+    #                   function_arn: "FunctionARN", # required
+    #                   event_type: "viewer-request", # required, accepts viewer-request, viewer-response, origin-request, origin-response
+    #                 },
+    #               ],
+    #             },
     #             field_level_encryption_id: "string",
     #             realtime_log_config_arn: "string",
     #             cache_policy_id: "string",
@@ -732,7 +794,7 @@ module Aws::CloudFront
     #         iam_certificate_id: "string",
     #         acm_certificate_arn: "string",
     #         ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
-    #         minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019
+    #         minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019, TLSv1.2_2021
     #         certificate: "string",
     #         certificate_source: "cloudfront", # accepts cloudfront, iam, acm
     #       },
@@ -830,6 +892,10 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.quantity #=> Integer
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items #=> Array
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items[0].function_arn #=> String
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.default_cache_behavior.field_level_encryption_id #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.realtime_log_config_arn #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.cache_policy_id #=> String
@@ -874,6 +940,10 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.quantity #=> Integer
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items #=> Array
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items[0].function_arn #=> String
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.cache_behaviors.items[0].field_level_encryption_id #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].realtime_log_config_arn #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].cache_policy_id #=> String
@@ -909,7 +979,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.viewer_certificate.iam_certificate_id #=> String
     #   resp.distribution.distribution_config.viewer_certificate.acm_certificate_arn #=> String
     #   resp.distribution.distribution_config.viewer_certificate.ssl_support_method #=> String, one of "sni-only", "vip", "static-ip"
-    #   resp.distribution.distribution_config.viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019"
+    #   resp.distribution.distribution_config.viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019", "TLSv1.2_2021"
     #   resp.distribution.distribution_config.viewer_certificate.certificate #=> String
     #   resp.distribution.distribution_config.viewer_certificate.certificate_source #=> String, one of "cloudfront", "iam", "acm"
     #   resp.distribution.distribution_config.restrictions.geo_restriction.restriction_type #=> String, one of "blacklist", "whitelist", "none"
@@ -1050,6 +1120,15 @@ module Aws::CloudFront
     #               },
     #             ],
     #           },
+    #           function_associations: {
+    #             quantity: 1, # required
+    #             items: [
+    #               {
+    #                 function_arn: "FunctionARN", # required
+    #                 event_type: "viewer-request", # required, accepts viewer-request, viewer-response, origin-request, origin-response
+    #               },
+    #             ],
+    #           },
     #           field_level_encryption_id: "string",
     #           realtime_log_config_arn: "string",
     #           cache_policy_id: "string",
@@ -1113,6 +1192,15 @@ module Aws::CloudFront
     #                   },
     #                 ],
     #               },
+    #               function_associations: {
+    #                 quantity: 1, # required
+    #                 items: [
+    #                   {
+    #                     function_arn: "FunctionARN", # required
+    #                     event_type: "viewer-request", # required, accepts viewer-request, viewer-response, origin-request, origin-response
+    #                   },
+    #                 ],
+    #               },
     #               field_level_encryption_id: "string",
     #               realtime_log_config_arn: "string",
     #               cache_policy_id: "string",
@@ -1166,7 +1254,7 @@ module Aws::CloudFront
     #           iam_certificate_id: "string",
     #           acm_certificate_arn: "string",
     #           ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
-    #           minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019
+    #           minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019, TLSv1.2_2021
     #           certificate: "string",
     #           certificate_source: "cloudfront", # accepts cloudfront, iam, acm
     #         },
@@ -1273,6 +1361,10 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.quantity #=> Integer
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items #=> Array
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items[0].function_arn #=> String
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.default_cache_behavior.field_level_encryption_id #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.realtime_log_config_arn #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.cache_policy_id #=> String
@@ -1317,6 +1409,10 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.quantity #=> Integer
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items #=> Array
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items[0].function_arn #=> String
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.cache_behaviors.items[0].field_level_encryption_id #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].realtime_log_config_arn #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].cache_policy_id #=> String
@@ -1352,7 +1448,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.viewer_certificate.iam_certificate_id #=> String
     #   resp.distribution.distribution_config.viewer_certificate.acm_certificate_arn #=> String
     #   resp.distribution.distribution_config.viewer_certificate.ssl_support_method #=> String, one of "sni-only", "vip", "static-ip"
-    #   resp.distribution.distribution_config.viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019"
+    #   resp.distribution.distribution_config.viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019", "TLSv1.2_2021"
     #   resp.distribution.distribution_config.viewer_certificate.certificate #=> String
     #   resp.distribution.distribution_config.viewer_certificate.certificate_source #=> String, one of "cloudfront", "iam", "acm"
     #   resp.distribution.distribution_config.restrictions.geo_restriction.restriction_type #=> String, one of "blacklist", "whitelist", "none"
@@ -1511,6 +1607,76 @@ module Aws::CloudFront
       req.send_request(options)
     end
 
+    # Creates a CloudFront function.
+    #
+    # To create a function, you provide the function code and some
+    # configuration information about the function. The response contains an
+    # Amazon Resource Name (ARN) that uniquely identifies the function.
+    #
+    # When you create a function, it’s in the `DEVELOPMENT` stage. In this
+    # stage, you can test the function with `TestFunction`, and update it
+    # with `UpdateFunction`.
+    #
+    # When you’re ready to use your function with a CloudFront distribution,
+    # use `PublishFunction` to copy the function from the `DEVELOPMENT`
+    # stage to `LIVE`. When it’s live, you can attach the function to a
+    # distribution’s cache behavior, using the function’s ARN.
+    #
+    # @option params [required, String] :name
+    #   A name to identify the function.
+    #
+    # @option params [required, Types::FunctionConfig] :function_config
+    #   Configuration information about the function, including an optional
+    #   comment and the function’s runtime.
+    #
+    # @option params [required, String, StringIO, File] :function_code
+    #   The function code. For more information about writing a CloudFront
+    #   function, see [Writing function code for CloudFront Functions][1] in
+    #   the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/writing-function-code.html
+    #
+    # @return [Types::CreateFunctionResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::CreateFunctionResult#function_summary #function_summary} => Types::FunctionSummary
+    #   * {Types::CreateFunctionResult#location #location} => String
+    #   * {Types::CreateFunctionResult#etag #etag} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.create_function({
+    #     name: "FunctionName", # required
+    #     function_config: { # required
+    #       comment: "string", # required
+    #       runtime: "cloudfront-js-1.0", # required, accepts cloudfront-js-1.0
+    #     },
+    #     function_code: "data", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.function_summary.name #=> String
+    #   resp.function_summary.status #=> String
+    #   resp.function_summary.function_config.comment #=> String
+    #   resp.function_summary.function_config.runtime #=> String, one of "cloudfront-js-1.0"
+    #   resp.function_summary.function_metadata.function_arn #=> String
+    #   resp.function_summary.function_metadata.stage #=> String, one of "DEVELOPMENT", "LIVE"
+    #   resp.function_summary.function_metadata.created_time #=> Time
+    #   resp.function_summary.function_metadata.last_modified_time #=> Time
+    #   resp.location #=> String
+    #   resp.etag #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/CreateFunction2020_05_31 AWS API Documentation
+    #
+    # @overload create_function(params = {})
+    # @param [Hash] params ({})
+    def create_function(params = {}, options = {})
+      req = build_request(:create_function, params)
+      req.send_request(options)
+    end
+
     # Create a new invalidation.
     #
     # @option params [required, String] :distribution_id
@@ -2218,6 +2384,41 @@ module Aws::CloudFront
       req.send_request(options)
     end
 
+    # Deletes a CloudFront function.
+    #
+    # You cannot delete a function if it’s associated with a cache behavior.
+    # First, update your distributions to remove the function association
+    # from all cache behaviors, then delete the function.
+    #
+    # To delete a function, you must provide the function’s name and version
+    # (`ETag` value). To get these values, you can use `ListFunctions` and
+    # `DescribeFunction`.
+    #
+    # @option params [required, String] :name
+    #   The name of the function that you are deleting.
+    #
+    # @option params [required, String] :if_match
+    #   The current version (`ETag` value) of the function that you are
+    #   deleting, which you can get using `DescribeFunction`.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_function({
+    #     name: "string", # required
+    #     if_match: "string", # required
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/DeleteFunction2020_05_31 AWS API Documentation
+    #
+    # @overload delete_function(params = {})
+    # @param [Hash] params ({})
+    def delete_function(params = {}, options = {})
+      req = build_request(:delete_function, params)
+      req.send_request(options)
+    end
+
     # Deletes a key group.
     #
     # You cannot delete a key group that is referenced in a cache behavior.
@@ -2452,6 +2653,53 @@ module Aws::CloudFront
       req.send_request(options)
     end
 
+    # Gets configuration information and metadata about a CloudFront
+    # function, but not the function’s code. To get a function’s code, use
+    # `GetFunction`.
+    #
+    # To get configuration information and metadata about a function, you
+    # must provide the function’s name and stage. To get these values, you
+    # can use `ListFunctions`.
+    #
+    # @option params [required, String] :name
+    #   The name of the function that you are getting information about.
+    #
+    # @option params [String] :stage
+    #   The function’s stage, either `DEVELOPMENT` or `LIVE`.
+    #
+    # @return [Types::DescribeFunctionResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DescribeFunctionResult#function_summary #function_summary} => Types::FunctionSummary
+    #   * {Types::DescribeFunctionResult#etag #etag} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.describe_function({
+    #     name: "string", # required
+    #     stage: "DEVELOPMENT", # accepts DEVELOPMENT, LIVE
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.function_summary.name #=> String
+    #   resp.function_summary.status #=> String
+    #   resp.function_summary.function_config.comment #=> String
+    #   resp.function_summary.function_config.runtime #=> String, one of "cloudfront-js-1.0"
+    #   resp.function_summary.function_metadata.function_arn #=> String
+    #   resp.function_summary.function_metadata.stage #=> String, one of "DEVELOPMENT", "LIVE"
+    #   resp.function_summary.function_metadata.created_time #=> Time
+    #   resp.function_summary.function_metadata.last_modified_time #=> Time
+    #   resp.etag #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/DescribeFunction2020_05_31 AWS API Documentation
+    #
+    # @overload describe_function(params = {})
+    # @param [Hash] params ({})
+    def describe_function(params = {}, options = {})
+      req = build_request(:describe_function, params)
+      req.send_request(options)
+    end
+
     # Gets a cache policy, including the following metadata:
     #
     # * The policy’s identifier.
@@ -2737,6 +2985,10 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.quantity #=> Integer
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items #=> Array
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items[0].function_arn #=> String
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.default_cache_behavior.field_level_encryption_id #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.realtime_log_config_arn #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.cache_policy_id #=> String
@@ -2781,6 +3033,10 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.quantity #=> Integer
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items #=> Array
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items[0].function_arn #=> String
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.cache_behaviors.items[0].field_level_encryption_id #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].realtime_log_config_arn #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].cache_policy_id #=> String
@@ -2816,7 +3072,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.viewer_certificate.iam_certificate_id #=> String
     #   resp.distribution.distribution_config.viewer_certificate.acm_certificate_arn #=> String
     #   resp.distribution.distribution_config.viewer_certificate.ssl_support_method #=> String, one of "sni-only", "vip", "static-ip"
-    #   resp.distribution.distribution_config.viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019"
+    #   resp.distribution.distribution_config.viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019", "TLSv1.2_2021"
     #   resp.distribution.distribution_config.viewer_certificate.certificate #=> String
     #   resp.distribution.distribution_config.viewer_certificate.certificate_source #=> String, one of "cloudfront", "iam", "acm"
     #   resp.distribution.distribution_config.restrictions.geo_restriction.restriction_type #=> String, one of "blacklist", "whitelist", "none"
@@ -2923,6 +3179,10 @@ module Aws::CloudFront
     #   resp.distribution_config.default_cache_behavior.lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution_config.default_cache_behavior.lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_config.default_cache_behavior.lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution_config.default_cache_behavior.function_associations.quantity #=> Integer
+    #   resp.distribution_config.default_cache_behavior.function_associations.items #=> Array
+    #   resp.distribution_config.default_cache_behavior.function_associations.items[0].function_arn #=> String
+    #   resp.distribution_config.default_cache_behavior.function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_config.default_cache_behavior.field_level_encryption_id #=> String
     #   resp.distribution_config.default_cache_behavior.realtime_log_config_arn #=> String
     #   resp.distribution_config.default_cache_behavior.cache_policy_id #=> String
@@ -2967,6 +3227,10 @@ module Aws::CloudFront
     #   resp.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution_config.cache_behaviors.items[0].function_associations.quantity #=> Integer
+    #   resp.distribution_config.cache_behaviors.items[0].function_associations.items #=> Array
+    #   resp.distribution_config.cache_behaviors.items[0].function_associations.items[0].function_arn #=> String
+    #   resp.distribution_config.cache_behaviors.items[0].function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_config.cache_behaviors.items[0].field_level_encryption_id #=> String
     #   resp.distribution_config.cache_behaviors.items[0].realtime_log_config_arn #=> String
     #   resp.distribution_config.cache_behaviors.items[0].cache_policy_id #=> String
@@ -3002,7 +3266,7 @@ module Aws::CloudFront
     #   resp.distribution_config.viewer_certificate.iam_certificate_id #=> String
     #   resp.distribution_config.viewer_certificate.acm_certificate_arn #=> String
     #   resp.distribution_config.viewer_certificate.ssl_support_method #=> String, one of "sni-only", "vip", "static-ip"
-    #   resp.distribution_config.viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019"
+    #   resp.distribution_config.viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019", "TLSv1.2_2021"
     #   resp.distribution_config.viewer_certificate.certificate #=> String
     #   resp.distribution_config.viewer_certificate.certificate_source #=> String, one of "cloudfront", "iam", "acm"
     #   resp.distribution_config.restrictions.geo_restriction.restriction_type #=> String, one of "blacklist", "whitelist", "none"
@@ -3192,6 +3456,46 @@ module Aws::CloudFront
       req.send_request(options)
     end
 
+    # Gets the code of a CloudFront function. To get configuration
+    # information and metadata about a function, use `DescribeFunction`.
+    #
+    # To get a function’s code, you must provide the function’s name and
+    # stage. To get these values, you can use `ListFunctions`.
+    #
+    # @option params [required, String] :name
+    #   The name of the function whose code you are getting.
+    #
+    # @option params [String] :stage
+    #   The function’s stage, either `DEVELOPMENT` or `LIVE`.
+    #
+    # @return [Types::GetFunctionResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetFunctionResult#function_code #function_code} => String
+    #   * {Types::GetFunctionResult#etag #etag} => String
+    #   * {Types::GetFunctionResult#content_type #content_type} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_function({
+    #     name: "string", # required
+    #     stage: "DEVELOPMENT", # accepts DEVELOPMENT, LIVE
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.function_code #=> String
+    #   resp.etag #=> String
+    #   resp.content_type #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/GetFunction2020_05_31 AWS API Documentation
+    #
+    # @overload get_function(params = {})
+    # @param [Hash] params ({})
+    def get_function(params = {}, options = {})
+      req = build_request(:get_function, params)
+      req.send_request(options)
+    end
+
     # Get the information about an invalidation.
     #
     # @option params [required, String] :distribution_id
@@ -3691,8 +3995,8 @@ module Aws::CloudFront
     # Gets a list of cache policies.
     #
     # You can optionally apply a filter to return only the managed policies
-    # created by AWS, or only the custom policies created in your AWS
-    # account.
+    # created by Amazon Web Services, or only the custom policies created in
+    # your account.
     #
     # You can optionally specify the maximum number of items to receive in
     # the response. If the total number of items in the list exceeds the
@@ -3705,10 +4009,10 @@ module Aws::CloudFront
     #   A filter to return only the specified kinds of cache policies. Valid
     #   values are:
     #
-    #   * `managed` – Returns only the managed policies created by AWS.
+    #   * `managed` – Returns only the managed policies created by Amazon Web
+    #     Services.
     #
-    #   * `custom` – Returns only the custom policies created in your AWS
-    #     account.
+    #   * `custom` – Returns only the custom policies created in your account.
     #
     # @option params [String] :marker
     #   Use this field when paginating results to indicate where to begin in
@@ -3818,6 +4122,91 @@ module Aws::CloudFront
       req.send_request(options)
     end
 
+    # Gets a list of aliases (also called CNAMEs or alternate domain names)
+    # that conflict or overlap with the provided alias, and the associated
+    # CloudFront distributions and Amazon Web Services accounts for each
+    # conflicting alias. In the returned list, the distribution and account
+    # IDs are partially hidden, which allows you to identify the
+    # distributions and accounts that you own, but helps to protect the
+    # information of ones that you don’t own.
+    #
+    # Use this operation to find aliases that are in use in CloudFront that
+    # conflict or overlap with the provided alias. For example, if you
+    # provide `www.example.com` as input, the returned list can include
+    # `www.example.com` and the overlapping wildcard alternate domain name
+    # (`*.example.com`), if they exist. If you provide `*.example.com` as
+    # input, the returned list can include `*.example.com` and any alternate
+    # domain names covered by that wildcard (for example, `www.example.com`,
+    # `test.example.com`, `dev.example.com`, and so on), if they exist.
+    #
+    # To list conflicting aliases, you provide the alias to search and the
+    # ID of a distribution in your account that has an attached SSL/TLS
+    # certificate that includes the provided alias. For more information,
+    # including how to set up the distribution and certificate, see [Moving
+    # an alternate domain name to a different distribution][1] in the
+    # *Amazon CloudFront Developer Guide*.
+    #
+    # You can optionally specify the maximum number of items to receive in
+    # the response. If the total number of items in the list exceeds the
+    # maximum that you specify, or the default maximum, the response is
+    # paginated. To get the next page of items, send a subsequent request
+    # that specifies the `NextMarker` value from the current response as the
+    # `Marker` value in the subsequent request.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/CNAMEs.html#alternate-domain-names-move
+    #
+    # @option params [required, String] :distribution_id
+    #   The ID of a distribution in your account that has an attached SSL/TLS
+    #   certificate that includes the provided alias.
+    #
+    # @option params [required, String] :alias
+    #   The alias (also called a CNAME) to search for conflicting aliases.
+    #
+    # @option params [String] :marker
+    #   Use this field when paginating results to indicate where to begin in
+    #   the list of conflicting aliases. The response includes conflicting
+    #   aliases in the list that occur after the marker. To get the next page
+    #   of the list, set this field’s value to the value of `NextMarker` from
+    #   the current page’s response.
+    #
+    # @option params [Integer] :max_items
+    #   The maximum number of conflicting aliases that you want in the
+    #   response.
+    #
+    # @return [Types::ListConflictingAliasesResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListConflictingAliasesResult#conflicting_aliases_list #conflicting_aliases_list} => Types::ConflictingAliasesList
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_conflicting_aliases({
+    #     distribution_id: "distributionIdString", # required
+    #     alias: "aliasString", # required
+    #     marker: "string",
+    #     max_items: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.conflicting_aliases_list.next_marker #=> String
+    #   resp.conflicting_aliases_list.max_items #=> Integer
+    #   resp.conflicting_aliases_list.quantity #=> Integer
+    #   resp.conflicting_aliases_list.items #=> Array
+    #   resp.conflicting_aliases_list.items[0].alias #=> String
+    #   resp.conflicting_aliases_list.items[0].distribution_id #=> String
+    #   resp.conflicting_aliases_list.items[0].account_id #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/ListConflictingAliases2020_05_31 AWS API Documentation
+    #
+    # @overload list_conflicting_aliases(params = {})
+    # @param [Hash] params ({})
+    def list_conflicting_aliases(params = {}, options = {})
+      req = build_request(:list_conflicting_aliases, params)
+      req.send_request(options)
+    end
+
     # List CloudFront distributions.
     #
     # @option params [String] :marker
@@ -3913,6 +4302,10 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].default_cache_behavior.lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution_list.items[0].default_cache_behavior.lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].default_cache_behavior.lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.quantity #=> Integer
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.items #=> Array
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.items[0].function_arn #=> String
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].default_cache_behavior.field_level_encryption_id #=> String
     #   resp.distribution_list.items[0].default_cache_behavior.realtime_log_config_arn #=> String
     #   resp.distribution_list.items[0].default_cache_behavior.cache_policy_id #=> String
@@ -3957,6 +4350,10 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].cache_behaviors.items[0].lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution_list.items[0].cache_behaviors.items[0].lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].cache_behaviors.items[0].lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.quantity #=> Integer
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.items #=> Array
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.items[0].function_arn #=> String
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].cache_behaviors.items[0].field_level_encryption_id #=> String
     #   resp.distribution_list.items[0].cache_behaviors.items[0].realtime_log_config_arn #=> String
     #   resp.distribution_list.items[0].cache_behaviors.items[0].cache_policy_id #=> String
@@ -3988,7 +4385,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].viewer_certificate.iam_certificate_id #=> String
     #   resp.distribution_list.items[0].viewer_certificate.acm_certificate_arn #=> String
     #   resp.distribution_list.items[0].viewer_certificate.ssl_support_method #=> String, one of "sni-only", "vip", "static-ip"
-    #   resp.distribution_list.items[0].viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019"
+    #   resp.distribution_list.items[0].viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019", "TLSv1.2_2021"
     #   resp.distribution_list.items[0].viewer_certificate.certificate #=> String
     #   resp.distribution_list.items[0].viewer_certificate.certificate_source #=> String, one of "cloudfront", "iam", "acm"
     #   resp.distribution_list.items[0].restrictions.geo_restriction.restriction_type #=> String, one of "blacklist", "whitelist", "none"
@@ -4292,6 +4689,10 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].default_cache_behavior.lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution_list.items[0].default_cache_behavior.lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].default_cache_behavior.lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.quantity #=> Integer
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.items #=> Array
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.items[0].function_arn #=> String
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].default_cache_behavior.field_level_encryption_id #=> String
     #   resp.distribution_list.items[0].default_cache_behavior.realtime_log_config_arn #=> String
     #   resp.distribution_list.items[0].default_cache_behavior.cache_policy_id #=> String
@@ -4336,6 +4737,10 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].cache_behaviors.items[0].lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution_list.items[0].cache_behaviors.items[0].lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].cache_behaviors.items[0].lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.quantity #=> Integer
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.items #=> Array
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.items[0].function_arn #=> String
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].cache_behaviors.items[0].field_level_encryption_id #=> String
     #   resp.distribution_list.items[0].cache_behaviors.items[0].realtime_log_config_arn #=> String
     #   resp.distribution_list.items[0].cache_behaviors.items[0].cache_policy_id #=> String
@@ -4367,7 +4772,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].viewer_certificate.iam_certificate_id #=> String
     #   resp.distribution_list.items[0].viewer_certificate.acm_certificate_arn #=> String
     #   resp.distribution_list.items[0].viewer_certificate.ssl_support_method #=> String, one of "sni-only", "vip", "static-ip"
-    #   resp.distribution_list.items[0].viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019"
+    #   resp.distribution_list.items[0].viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019", "TLSv1.2_2021"
     #   resp.distribution_list.items[0].viewer_certificate.certificate #=> String
     #   resp.distribution_list.items[0].viewer_certificate.certificate_source #=> String, one of "cloudfront", "iam", "acm"
     #   resp.distribution_list.items[0].restrictions.geo_restriction.restriction_type #=> String, one of "blacklist", "whitelist", "none"
@@ -4390,8 +4795,8 @@ module Aws::CloudFront
       req.send_request(options)
     end
 
-    # List the distributions that are associated with a specified AWS WAF
-    # web ACL.
+    # List the distributions that are associated with a specified WAF web
+    # ACL.
     #
     # @option params [String] :marker
     #   Use `Marker` and `MaxItems` to control pagination of results. If you
@@ -4406,7 +4811,7 @@ module Aws::CloudFront
     #   in the response body. The maximum and default values are both 100.
     #
     # @option params [required, String] :web_acl_id
-    #   The ID of the AWS WAF web ACL that you want to list the associated
+    #   The ID of the WAF web ACL that you want to list the associated
     #   distributions. If you specify "null" for the ID, the request returns
     #   a list of the distributions that aren't associated with a web ACL.
     #
@@ -4492,6 +4897,10 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].default_cache_behavior.lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution_list.items[0].default_cache_behavior.lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].default_cache_behavior.lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.quantity #=> Integer
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.items #=> Array
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.items[0].function_arn #=> String
+    #   resp.distribution_list.items[0].default_cache_behavior.function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].default_cache_behavior.field_level_encryption_id #=> String
     #   resp.distribution_list.items[0].default_cache_behavior.realtime_log_config_arn #=> String
     #   resp.distribution_list.items[0].default_cache_behavior.cache_policy_id #=> String
@@ -4536,6 +4945,10 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].cache_behaviors.items[0].lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution_list.items[0].cache_behaviors.items[0].lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].cache_behaviors.items[0].lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.quantity #=> Integer
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.items #=> Array
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.items[0].function_arn #=> String
+    #   resp.distribution_list.items[0].cache_behaviors.items[0].function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution_list.items[0].cache_behaviors.items[0].field_level_encryption_id #=> String
     #   resp.distribution_list.items[0].cache_behaviors.items[0].realtime_log_config_arn #=> String
     #   resp.distribution_list.items[0].cache_behaviors.items[0].cache_policy_id #=> String
@@ -4567,7 +4980,7 @@ module Aws::CloudFront
     #   resp.distribution_list.items[0].viewer_certificate.iam_certificate_id #=> String
     #   resp.distribution_list.items[0].viewer_certificate.acm_certificate_arn #=> String
     #   resp.distribution_list.items[0].viewer_certificate.ssl_support_method #=> String, one of "sni-only", "vip", "static-ip"
-    #   resp.distribution_list.items[0].viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019"
+    #   resp.distribution_list.items[0].viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019", "TLSv1.2_2021"
     #   resp.distribution_list.items[0].viewer_certificate.certificate #=> String
     #   resp.distribution_list.items[0].viewer_certificate.certificate_source #=> String, one of "cloudfront", "iam", "acm"
     #   resp.distribution_list.items[0].restrictions.geo_restriction.restriction_type #=> String, one of "blacklist", "whitelist", "none"
@@ -4698,6 +5111,68 @@ module Aws::CloudFront
       req.send_request(options)
     end
 
+    # Gets a list of all CloudFront functions in your account.
+    #
+    # You can optionally apply a filter to return only the functions that
+    # are in the specified stage, either `DEVELOPMENT` or `LIVE`.
+    #
+    # You can optionally specify the maximum number of items to receive in
+    # the response. If the total number of items in the list exceeds the
+    # maximum that you specify, or the default maximum, the response is
+    # paginated. To get the next page of items, send a subsequent request
+    # that specifies the `NextMarker` value from the current response as the
+    # `Marker` value in the subsequent request.
+    #
+    # @option params [String] :marker
+    #   Use this field when paginating results to indicate where to begin in
+    #   your list of functions. The response includes functions in the list
+    #   that occur after the marker. To get the next page of the list, set
+    #   this field’s value to the value of `NextMarker` from the current
+    #   page’s response.
+    #
+    # @option params [Integer] :max_items
+    #   The maximum number of functions that you want in the response.
+    #
+    # @option params [String] :stage
+    #   An optional filter to return only the functions that are in the
+    #   specified stage, either `DEVELOPMENT` or `LIVE`.
+    #
+    # @return [Types::ListFunctionsResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListFunctionsResult#function_list #function_list} => Types::FunctionList
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_functions({
+    #     marker: "string",
+    #     max_items: 1,
+    #     stage: "DEVELOPMENT", # accepts DEVELOPMENT, LIVE
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.function_list.next_marker #=> String
+    #   resp.function_list.max_items #=> Integer
+    #   resp.function_list.quantity #=> Integer
+    #   resp.function_list.items #=> Array
+    #   resp.function_list.items[0].name #=> String
+    #   resp.function_list.items[0].status #=> String
+    #   resp.function_list.items[0].function_config.comment #=> String
+    #   resp.function_list.items[0].function_config.runtime #=> String, one of "cloudfront-js-1.0"
+    #   resp.function_list.items[0].function_metadata.function_arn #=> String
+    #   resp.function_list.items[0].function_metadata.stage #=> String, one of "DEVELOPMENT", "LIVE"
+    #   resp.function_list.items[0].function_metadata.created_time #=> Time
+    #   resp.function_list.items[0].function_metadata.last_modified_time #=> Time
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/ListFunctions2020_05_31 AWS API Documentation
+    #
+    # @overload list_functions(params = {})
+    # @param [Hash] params ({})
+    def list_functions(params = {}, options = {})
+      req = build_request(:list_functions, params)
+      req.send_request(options)
+    end
+
     # Lists invalidation batches.
     #
     # @option params [required, String] :distribution_id
@@ -4807,8 +5282,8 @@ module Aws::CloudFront
     # Gets a list of origin request policies.
     #
     # You can optionally apply a filter to return only the managed policies
-    # created by AWS, or only the custom policies created in your AWS
-    # account.
+    # created by Amazon Web Services, or only the custom policies created in
+    # your account.
     #
     # You can optionally specify the maximum number of items to receive in
     # the response. If the total number of items in the list exceeds the
@@ -4821,10 +5296,10 @@ module Aws::CloudFront
     #   A filter to return only the specified kinds of origin request
     #   policies. Valid values are:
     #
-    #   * `managed` – Returns only the managed policies created by AWS.
+    #   * `managed` – Returns only the managed policies created by Amazon Web
+    #     Services.
     #
-    #   * `custom` – Returns only the custom policies created in your AWS
-    #     account.
+    #   * `custom` – Returns only the custom policies created in your account.
     #
     # @option params [String] :marker
     #   Use this field when paginating results to indicate where to begin in
@@ -5070,6 +5545,57 @@ module Aws::CloudFront
       req.send_request(options)
     end
 
+    # Publishes a CloudFront function by copying the function code from the
+    # `DEVELOPMENT` stage to `LIVE`. This automatically updates all cache
+    # behaviors that are using this function to use the newly published copy
+    # in the `LIVE` stage.
+    #
+    # When a function is published to the `LIVE` stage, you can attach the
+    # function to a distribution’s cache behavior, using the function’s
+    # Amazon Resource Name (ARN).
+    #
+    # To publish a function, you must provide the function’s name and
+    # version (`ETag` value). To get these values, you can use
+    # `ListFunctions` and `DescribeFunction`.
+    #
+    # @option params [required, String] :name
+    #   The name of the function that you are publishing.
+    #
+    # @option params [required, String] :if_match
+    #   The current version (`ETag` value) of the function that you are
+    #   publishing, which you can get using `DescribeFunction`.
+    #
+    # @return [Types::PublishFunctionResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::PublishFunctionResult#function_summary #function_summary} => Types::FunctionSummary
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.publish_function({
+    #     name: "string", # required
+    #     if_match: "string", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.function_summary.name #=> String
+    #   resp.function_summary.status #=> String
+    #   resp.function_summary.function_config.comment #=> String
+    #   resp.function_summary.function_config.runtime #=> String, one of "cloudfront-js-1.0"
+    #   resp.function_summary.function_metadata.function_arn #=> String
+    #   resp.function_summary.function_metadata.stage #=> String, one of "DEVELOPMENT", "LIVE"
+    #   resp.function_summary.function_metadata.created_time #=> Time
+    #   resp.function_summary.function_metadata.last_modified_time #=> Time
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/PublishFunction2020_05_31 AWS API Documentation
+    #
+    # @overload publish_function(params = {})
+    # @param [Hash] params ({})
+    def publish_function(params = {}, options = {})
+      req = build_request(:publish_function, params)
+      req.send_request(options)
+    end
+
     # Add tags to a CloudFront resource.
     #
     # @option params [required, String] :resource
@@ -5103,6 +5629,83 @@ module Aws::CloudFront
       req.send_request(options)
     end
 
+    # Tests a CloudFront function.
+    #
+    # To test a function, you provide an *event object* that represents an
+    # HTTP request or response that your CloudFront distribution could
+    # receive in production. CloudFront runs the function, passing it the
+    # event object that you provided, and returns the function’s result (the
+    # modified event object) in the response. The response also contains
+    # function logs and error messages, if any exist. For more information
+    # about testing functions, see [Testing functions][1] in the *Amazon
+    # CloudFront Developer Guide*.
+    #
+    # To test a function, you provide the function’s name and version
+    # (`ETag` value) along with the event object. To get the function’s name
+    # and version, you can use `ListFunctions` and `DescribeFunction`.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/managing-functions.html#test-function
+    #
+    # @option params [required, String] :name
+    #   The name of the function that you are testing.
+    #
+    # @option params [required, String] :if_match
+    #   The current version (`ETag` value) of the function that you are
+    #   testing, which you can get using `DescribeFunction`.
+    #
+    # @option params [String] :stage
+    #   The stage of the function that you are testing, either `DEVELOPMENT`
+    #   or `LIVE`.
+    #
+    # @option params [required, String, StringIO, File] :event_object
+    #   The event object to test the function with. For more information about
+    #   the structure of the event object, see [Testing functions][1] in the
+    #   *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/managing-functions.html#test-function
+    #
+    # @return [Types::TestFunctionResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::TestFunctionResult#test_result #test_result} => Types::TestResult
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.test_function({
+    #     name: "string", # required
+    #     if_match: "string", # required
+    #     stage: "DEVELOPMENT", # accepts DEVELOPMENT, LIVE
+    #     event_object: "data", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.test_result.function_summary.name #=> String
+    #   resp.test_result.function_summary.status #=> String
+    #   resp.test_result.function_summary.function_config.comment #=> String
+    #   resp.test_result.function_summary.function_config.runtime #=> String, one of "cloudfront-js-1.0"
+    #   resp.test_result.function_summary.function_metadata.function_arn #=> String
+    #   resp.test_result.function_summary.function_metadata.stage #=> String, one of "DEVELOPMENT", "LIVE"
+    #   resp.test_result.function_summary.function_metadata.created_time #=> Time
+    #   resp.test_result.function_summary.function_metadata.last_modified_time #=> Time
+    #   resp.test_result.compute_utilization #=> String
+    #   resp.test_result.function_execution_logs #=> Array
+    #   resp.test_result.function_execution_logs[0] #=> String
+    #   resp.test_result.function_error_message #=> String
+    #   resp.test_result.function_output #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/TestFunction2020_05_31 AWS API Documentation
+    #
+    # @overload test_function(params = {})
+    # @param [Hash] params ({})
+    def test_function(params = {}, options = {})
+      req = build_request(:test_function, params)
+      req.send_request(options)
+    end
+
     # Remove tags from a CloudFront resource.
     #
     # @option params [required, String] :resource
@@ -5479,6 +6082,15 @@ module Aws::CloudFront
     #             },
     #           ],
     #         },
+    #         function_associations: {
+    #           quantity: 1, # required
+    #           items: [
+    #             {
+    #               function_arn: "FunctionARN", # required
+    #               event_type: "viewer-request", # required, accepts viewer-request, viewer-response, origin-request, origin-response
+    #             },
+    #           ],
+    #         },
     #         field_level_encryption_id: "string",
     #         realtime_log_config_arn: "string",
     #         cache_policy_id: "string",
@@ -5542,6 +6154,15 @@ module Aws::CloudFront
     #                 },
     #               ],
     #             },
+    #             function_associations: {
+    #               quantity: 1, # required
+    #               items: [
+    #                 {
+    #                   function_arn: "FunctionARN", # required
+    #                   event_type: "viewer-request", # required, accepts viewer-request, viewer-response, origin-request, origin-response
+    #                 },
+    #               ],
+    #             },
     #             field_level_encryption_id: "string",
     #             realtime_log_config_arn: "string",
     #             cache_policy_id: "string",
@@ -5595,7 +6216,7 @@ module Aws::CloudFront
     #         iam_certificate_id: "string",
     #         acm_certificate_arn: "string",
     #         ssl_support_method: "sni-only", # accepts sni-only, vip, static-ip
-    #         minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019
+    #         minimum_protocol_version: "SSLv3", # accepts SSLv3, TLSv1, TLSv1_2016, TLSv1.1_2016, TLSv1.2_2018, TLSv1.2_2019, TLSv1.2_2021
     #         certificate: "string",
     #         certificate_source: "cloudfront", # accepts cloudfront, iam, acm
     #       },
@@ -5695,6 +6316,10 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.default_cache_behavior.lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.quantity #=> Integer
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items #=> Array
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items[0].function_arn #=> String
+    #   resp.distribution.distribution_config.default_cache_behavior.function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.default_cache_behavior.field_level_encryption_id #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.realtime_log_config_arn #=> String
     #   resp.distribution.distribution_config.default_cache_behavior.cache_policy_id #=> String
@@ -5739,6 +6364,10 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].lambda_function_arn #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.cache_behaviors.items[0].lambda_function_associations.items[0].include_body #=> Boolean
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.quantity #=> Integer
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items #=> Array
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items[0].function_arn #=> String
+    #   resp.distribution.distribution_config.cache_behaviors.items[0].function_associations.items[0].event_type #=> String, one of "viewer-request", "viewer-response", "origin-request", "origin-response"
     #   resp.distribution.distribution_config.cache_behaviors.items[0].field_level_encryption_id #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].realtime_log_config_arn #=> String
     #   resp.distribution.distribution_config.cache_behaviors.items[0].cache_policy_id #=> String
@@ -5774,7 +6403,7 @@ module Aws::CloudFront
     #   resp.distribution.distribution_config.viewer_certificate.iam_certificate_id #=> String
     #   resp.distribution.distribution_config.viewer_certificate.acm_certificate_arn #=> String
     #   resp.distribution.distribution_config.viewer_certificate.ssl_support_method #=> String, one of "sni-only", "vip", "static-ip"
-    #   resp.distribution.distribution_config.viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019"
+    #   resp.distribution.distribution_config.viewer_certificate.minimum_protocol_version #=> String, one of "SSLv3", "TLSv1", "TLSv1_2016", "TLSv1.1_2016", "TLSv1.2_2018", "TLSv1.2_2019", "TLSv1.2_2021"
     #   resp.distribution.distribution_config.viewer_certificate.certificate #=> String
     #   resp.distribution.distribution_config.viewer_certificate.certificate_source #=> String, one of "cloudfront", "iam", "acm"
     #   resp.distribution.distribution_config.restrictions.geo_restriction.restriction_type #=> String, one of "blacklist", "whitelist", "none"
@@ -5946,6 +6575,72 @@ module Aws::CloudFront
       req.send_request(options)
     end
 
+    # Updates a CloudFront function.
+    #
+    # You can update a function’s code or the comment that describes the
+    # function. You cannot update a function’s name.
+    #
+    # To update a function, you provide the function’s name and version
+    # (`ETag` value) along with the updated function code. To get the name
+    # and version, you can use `ListFunctions` and `DescribeFunction`.
+    #
+    # @option params [required, String] :name
+    #   The name of the function that you are updating.
+    #
+    # @option params [required, String] :if_match
+    #   The current version (`ETag` value) of the function that you are
+    #   updating, which you can get using `DescribeFunction`.
+    #
+    # @option params [required, Types::FunctionConfig] :function_config
+    #   Configuration information about the function.
+    #
+    # @option params [required, String, StringIO, File] :function_code
+    #   The function code. For more information about writing a CloudFront
+    #   function, see [Writing function code for CloudFront Functions][1] in
+    #   the *Amazon CloudFront Developer Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/writing-function-code.html
+    #
+    # @return [Types::UpdateFunctionResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::UpdateFunctionResult#function_summary #function_summary} => Types::FunctionSummary
+    #   * {Types::UpdateFunctionResult#etag #etag} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_function({
+    #     name: "string", # required
+    #     if_match: "string", # required
+    #     function_config: { # required
+    #       comment: "string", # required
+    #       runtime: "cloudfront-js-1.0", # required, accepts cloudfront-js-1.0
+    #     },
+    #     function_code: "data", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.function_summary.name #=> String
+    #   resp.function_summary.status #=> String
+    #   resp.function_summary.function_config.comment #=> String
+    #   resp.function_summary.function_config.runtime #=> String, one of "cloudfront-js-1.0"
+    #   resp.function_summary.function_metadata.function_arn #=> String
+    #   resp.function_summary.function_metadata.stage #=> String, one of "DEVELOPMENT", "LIVE"
+    #   resp.function_summary.function_metadata.created_time #=> Time
+    #   resp.function_summary.function_metadata.last_modified_time #=> Time
+    #   resp.etag #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/UpdateFunction2020_05_31 AWS API Documentation
+    #
+    # @overload update_function(params = {})
+    # @param [Hash] params ({})
+    def update_function(params = {}, options = {})
+      req = build_request(:update_function, params)
+      req.send_request(options)
+    end
+
     # Updates a key group.
     #
     # When you update a key group, all the fields are updated with the
@@ -6345,7 +7040,7 @@ module Aws::CloudFront
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-cloudfront'
-      context[:gem_version] = '1.48.0'
+      context[:gem_version] = '1.53.0'
       Seahorse::Client::Request.new(handlers, context)
     end