aws-sdk-cloudfront 1.64.0 → 1.67.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 0a5df1416e2e2280e5c75b280b6ac408bc732e86250c299f62ef4cb53b1bfff8
4
- data.tar.gz: 1b5b32525e24503c4cc7ac27fd6ae619670c828762e43400c0a76f4f1b627601
3
+ metadata.gz: dd882b09e0b243d7600e640e76c4cd53b61b2291cd2bd61b2c65234eb78e162d
4
+ data.tar.gz: 3c54216dea65196bf0d783385f3bdf94a1e4ebeb2ca4b3070730db248bb6507e
5
5
  SHA512:
6
- metadata.gz: b2dc665a2687560c782ba3768e22de54840cad78809c5e4c263833ee9c46d71799e615835b2243f68f53a1eea85f53dd4a1bb73fb1cab295fd6d5ebd3509ae9e
7
- data.tar.gz: b2fc727f24a41ce236327bafddd7c375ba5b83ea5cd271c8c56da37cdc190eb986f906188e43be1b5ea8645e39e1740b05ad396a4d26263ec1bf8b27890c8011
6
+ metadata.gz: 9f1c73ea7b4ba2d221241da9b47727debc7f2b924d4128874e1bb0c40499414746d77ee7a2ff44feb6f838c19b24b6ffff272cf85ed7a3f5fdc88a0ca64e8c06
7
+ data.tar.gz: d6383aa78bd30f23a51c462ecdc0a38567b9fb29f09d1f178b108b7bcfbd3b3b47c9c16850dc22877b5c847dd22c8bce53211773853ef1655ff234667f9f61c9
data/CHANGELOG.md CHANGED
@@ -1,6 +1,21 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.67.0 (2022-08-24)
5
+ ------------------
6
+
7
+ * Feature - Adds support for CloudFront origin access control (OAC), making it possible to restrict public access to S3 bucket origins in all AWS Regions, those with SSE-KMS, and more.
8
+
9
+ 1.66.0 (2022-08-15)
10
+ ------------------
11
+
12
+ * Feature - Adds Http 3 support to distributions
13
+
14
+ 1.65.0 (2022-05-16)
15
+ ------------------
16
+
17
+ * Feature - Introduced a new error (TooLongCSPInResponseHeadersPolicy) that is returned when the value of the Content-Security-Policy header in a response headers policy exceeds the maximum allowed length.
18
+
4
19
  1.64.0 (2022-04-26)
5
20
  ------------------
6
21
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.64.0
1
+ 1.67.0
@@ -626,6 +626,7 @@ module Aws::CloudFront
626
626
  # enabled: false, # required
627
627
  # origin_shield_region: "OriginShieldRegion",
628
628
  # },
629
+ # origin_access_control_id: "string",
629
630
  # },
630
631
  # ],
631
632
  # },
@@ -832,7 +833,7 @@ module Aws::CloudFront
832
833
  # },
833
834
  # },
834
835
  # web_acl_id: "string",
835
- # http_version: "http1.1", # accepts http1.1, http2
836
+ # http_version: "http1.1", # accepts http1.1, http2, http3, http2and3
836
837
  # is_ipv6_enabled: false,
837
838
  # },
838
839
  # })
@@ -886,6 +887,7 @@ module Aws::CloudFront
886
887
  # resp.distribution.distribution_config.origins.items[0].connection_timeout #=> Integer
887
888
  # resp.distribution.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
888
889
  # resp.distribution.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
890
+ # resp.distribution.distribution_config.origins.items[0].origin_access_control_id #=> String
889
891
  # resp.distribution.distribution_config.origin_groups.quantity #=> Integer
890
892
  # resp.distribution.distribution_config.origin_groups.items #=> Array
891
893
  # resp.distribution.distribution_config.origin_groups.items[0].id #=> String
@@ -1015,7 +1017,7 @@ module Aws::CloudFront
1015
1017
  # resp.distribution.distribution_config.restrictions.geo_restriction.items #=> Array
1016
1018
  # resp.distribution.distribution_config.restrictions.geo_restriction.items[0] #=> String
1017
1019
  # resp.distribution.distribution_config.web_acl_id #=> String
1018
- # resp.distribution.distribution_config.http_version #=> String, one of "http1.1", "http2"
1020
+ # resp.distribution.distribution_config.http_version #=> String, one of "http1.1", "http2", "http3", "http2and3"
1019
1021
  # resp.distribution.distribution_config.is_ipv6_enabled #=> Boolean
1020
1022
  # resp.distribution.alias_icp_recordals #=> Array
1021
1023
  # resp.distribution.alias_icp_recordals[0].cname #=> String
@@ -1090,6 +1092,7 @@ module Aws::CloudFront
1090
1092
  # enabled: false, # required
1091
1093
  # origin_shield_region: "OriginShieldRegion",
1092
1094
  # },
1095
+ # origin_access_control_id: "string",
1093
1096
  # },
1094
1097
  # ],
1095
1098
  # },
@@ -1296,7 +1299,7 @@ module Aws::CloudFront
1296
1299
  # },
1297
1300
  # },
1298
1301
  # web_acl_id: "string",
1299
- # http_version: "http1.1", # accepts http1.1, http2
1302
+ # http_version: "http1.1", # accepts http1.1, http2, http3, http2and3
1300
1303
  # is_ipv6_enabled: false,
1301
1304
  # },
1302
1305
  # tags: { # required
@@ -1359,6 +1362,7 @@ module Aws::CloudFront
1359
1362
  # resp.distribution.distribution_config.origins.items[0].connection_timeout #=> Integer
1360
1363
  # resp.distribution.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
1361
1364
  # resp.distribution.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
1365
+ # resp.distribution.distribution_config.origins.items[0].origin_access_control_id #=> String
1362
1366
  # resp.distribution.distribution_config.origin_groups.quantity #=> Integer
1363
1367
  # resp.distribution.distribution_config.origin_groups.items #=> Array
1364
1368
  # resp.distribution.distribution_config.origin_groups.items[0].id #=> String
@@ -1488,7 +1492,7 @@ module Aws::CloudFront
1488
1492
  # resp.distribution.distribution_config.restrictions.geo_restriction.items #=> Array
1489
1493
  # resp.distribution.distribution_config.restrictions.geo_restriction.items[0] #=> String
1490
1494
  # resp.distribution.distribution_config.web_acl_id #=> String
1491
- # resp.distribution.distribution_config.http_version #=> String, one of "http1.1", "http2"
1495
+ # resp.distribution.distribution_config.http_version #=> String, one of "http1.1", "http2", "http3", "http2and3"
1492
1496
  # resp.distribution.distribution_config.is_ipv6_enabled #=> Boolean
1493
1497
  # resp.distribution.alias_icp_recordals #=> Array
1494
1498
  # resp.distribution.alias_icp_recordals[0].cname #=> String
@@ -1858,6 +1862,64 @@ module Aws::CloudFront
1858
1862
  req.send_request(options)
1859
1863
  end
1860
1864
 
1865
+ # Creates a new origin access control in CloudFront. After you create an
1866
+ # origin access control, you can add it to an origin in a CloudFront
1867
+ # distribution so that CloudFront sends authenticated (signed) requests
1868
+ # to the origin.
1869
+ #
1870
+ # For an Amazon S3 origin, this makes it possible to block public access
1871
+ # to the Amazon S3 bucket so that viewers (users) can access the content
1872
+ # in the bucket only through CloudFront.
1873
+ #
1874
+ # For more information about using a CloudFront origin access control,
1875
+ # see [Restricting access to an Amazon S3 origin][1] in the *Amazon
1876
+ # CloudFront Developer Guide*.
1877
+ #
1878
+ #
1879
+ #
1880
+ # [1]: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/private-content-restricting-access-to-s3.html
1881
+ #
1882
+ # @option params [required, Types::OriginAccessControlConfig] :origin_access_control_config
1883
+ # Contains the origin access control.
1884
+ #
1885
+ # @return [Types::CreateOriginAccessControlResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
1886
+ #
1887
+ # * {Types::CreateOriginAccessControlResult#origin_access_control #origin_access_control} => Types::OriginAccessControl
1888
+ # * {Types::CreateOriginAccessControlResult#location #location} => String
1889
+ # * {Types::CreateOriginAccessControlResult#etag #etag} => String
1890
+ #
1891
+ # @example Request syntax with placeholder values
1892
+ #
1893
+ # resp = client.create_origin_access_control({
1894
+ # origin_access_control_config: { # required
1895
+ # name: "string", # required
1896
+ # description: "string", # required
1897
+ # signing_protocol: "sigv4", # required, accepts sigv4
1898
+ # signing_behavior: "never", # required, accepts never, always, no-override
1899
+ # origin_access_control_origin_type: "s3", # required, accepts s3
1900
+ # },
1901
+ # })
1902
+ #
1903
+ # @example Response structure
1904
+ #
1905
+ # resp.origin_access_control.id #=> String
1906
+ # resp.origin_access_control.origin_access_control_config.name #=> String
1907
+ # resp.origin_access_control.origin_access_control_config.description #=> String
1908
+ # resp.origin_access_control.origin_access_control_config.signing_protocol #=> String, one of "sigv4"
1909
+ # resp.origin_access_control.origin_access_control_config.signing_behavior #=> String, one of "never", "always", "no-override"
1910
+ # resp.origin_access_control.origin_access_control_config.origin_access_control_origin_type #=> String, one of "s3"
1911
+ # resp.location #=> String
1912
+ # resp.etag #=> String
1913
+ #
1914
+ # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/CreateOriginAccessControl AWS API Documentation
1915
+ #
1916
+ # @overload create_origin_access_control(params = {})
1917
+ # @param [Hash] params ({})
1918
+ def create_origin_access_control(params = {}, options = {})
1919
+ req = build_request(:create_origin_access_control, params)
1920
+ req.send_request(options)
1921
+ end
1922
+
1861
1923
  # Creates an origin request policy.
1862
1924
  #
1863
1925
  # After you create an origin request policy, you can attach it to one or
@@ -2162,6 +2224,10 @@ module Aws::CloudFront
2162
2224
  # access_control_max_age_sec: 1, # required
2163
2225
  # },
2164
2226
  # },
2227
+ # server_timing_headers_config: {
2228
+ # enabled: false, # required
2229
+ # sampling_rate: 1.0,
2230
+ # },
2165
2231
  # custom_headers_config: {
2166
2232
  # quantity: 1, # required
2167
2233
  # items: [
@@ -2172,10 +2238,6 @@ module Aws::CloudFront
2172
2238
  # },
2173
2239
  # ],
2174
2240
  # },
2175
- # server_timing_headers_config: {
2176
- # enabled: false, # required
2177
- # sampling_rate: 1.0,
2178
- # },
2179
2241
  # },
2180
2242
  # })
2181
2243
  #
@@ -2215,13 +2277,13 @@ module Aws::CloudFront
2215
2277
  # resp.response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.include_subdomains #=> Boolean
2216
2278
  # resp.response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.preload #=> Boolean
2217
2279
  # resp.response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.access_control_max_age_sec #=> Integer
2280
+ # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.enabled #=> Boolean
2281
+ # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.sampling_rate #=> Float
2218
2282
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.quantity #=> Integer
2219
2283
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items #=> Array
2220
2284
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].header #=> String
2221
2285
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].value #=> String
2222
2286
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].override #=> Boolean
2223
- # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.enabled #=> Boolean
2224
- # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.sampling_rate #=> Float
2225
2287
  # resp.location #=> String
2226
2288
  # resp.etag #=> String
2227
2289
  #
@@ -2662,6 +2724,38 @@ module Aws::CloudFront
2662
2724
  req.send_request(options)
2663
2725
  end
2664
2726
 
2727
+ # Deletes a CloudFront origin access control.
2728
+ #
2729
+ # You cannot delete an origin access control if it's in use. First,
2730
+ # update all distributions to remove the origin access control from all
2731
+ # origins, then delete the origin access control.
2732
+ #
2733
+ # @option params [required, String] :id
2734
+ # The unique identifier of the origin access control that you are
2735
+ # deleting.
2736
+ #
2737
+ # @option params [String] :if_match
2738
+ # The current version (`ETag` value) of the origin access control that
2739
+ # you are deleting.
2740
+ #
2741
+ # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
2742
+ #
2743
+ # @example Request syntax with placeholder values
2744
+ #
2745
+ # resp = client.delete_origin_access_control({
2746
+ # id: "string", # required
2747
+ # if_match: "string",
2748
+ # })
2749
+ #
2750
+ # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/DeleteOriginAccessControl AWS API Documentation
2751
+ #
2752
+ # @overload delete_origin_access_control(params = {})
2753
+ # @param [Hash] params ({})
2754
+ def delete_origin_access_control(params = {}, options = {})
2755
+ req = build_request(:delete_origin_access_control, params)
2756
+ req.send_request(options)
2757
+ end
2758
+
2665
2759
  # Deletes an origin request policy.
2666
2760
  #
2667
2761
  # You cannot delete an origin request policy if it’s attached to any
@@ -3177,6 +3271,7 @@ module Aws::CloudFront
3177
3271
  # resp.distribution.distribution_config.origins.items[0].connection_timeout #=> Integer
3178
3272
  # resp.distribution.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
3179
3273
  # resp.distribution.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
3274
+ # resp.distribution.distribution_config.origins.items[0].origin_access_control_id #=> String
3180
3275
  # resp.distribution.distribution_config.origin_groups.quantity #=> Integer
3181
3276
  # resp.distribution.distribution_config.origin_groups.items #=> Array
3182
3277
  # resp.distribution.distribution_config.origin_groups.items[0].id #=> String
@@ -3306,7 +3401,7 @@ module Aws::CloudFront
3306
3401
  # resp.distribution.distribution_config.restrictions.geo_restriction.items #=> Array
3307
3402
  # resp.distribution.distribution_config.restrictions.geo_restriction.items[0] #=> String
3308
3403
  # resp.distribution.distribution_config.web_acl_id #=> String
3309
- # resp.distribution.distribution_config.http_version #=> String, one of "http1.1", "http2"
3404
+ # resp.distribution.distribution_config.http_version #=> String, one of "http1.1", "http2", "http3", "http2and3"
3310
3405
  # resp.distribution.distribution_config.is_ipv6_enabled #=> Boolean
3311
3406
  # resp.distribution.alias_icp_recordals #=> Array
3312
3407
  # resp.distribution.alias_icp_recordals[0].cname #=> String
@@ -3373,6 +3468,7 @@ module Aws::CloudFront
3373
3468
  # resp.distribution_config.origins.items[0].connection_timeout #=> Integer
3374
3469
  # resp.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
3375
3470
  # resp.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
3471
+ # resp.distribution_config.origins.items[0].origin_access_control_id #=> String
3376
3472
  # resp.distribution_config.origin_groups.quantity #=> Integer
3377
3473
  # resp.distribution_config.origin_groups.items #=> Array
3378
3474
  # resp.distribution_config.origin_groups.items[0].id #=> String
@@ -3502,7 +3598,7 @@ module Aws::CloudFront
3502
3598
  # resp.distribution_config.restrictions.geo_restriction.items #=> Array
3503
3599
  # resp.distribution_config.restrictions.geo_restriction.items[0] #=> String
3504
3600
  # resp.distribution_config.web_acl_id #=> String
3505
- # resp.distribution_config.http_version #=> String, one of "http1.1", "http2"
3601
+ # resp.distribution_config.http_version #=> String, one of "http1.1", "http2", "http3", "http2and3"
3506
3602
  # resp.distribution_config.is_ipv6_enabled #=> Boolean
3507
3603
  # resp.etag #=> String
3508
3604
  #
@@ -3882,6 +3978,75 @@ module Aws::CloudFront
3882
3978
  req.send_request(options)
3883
3979
  end
3884
3980
 
3981
+ # Gets a CloudFront origin access control.
3982
+ #
3983
+ # @option params [required, String] :id
3984
+ # The unique identifier of the origin access control.
3985
+ #
3986
+ # @return [Types::GetOriginAccessControlResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
3987
+ #
3988
+ # * {Types::GetOriginAccessControlResult#origin_access_control #origin_access_control} => Types::OriginAccessControl
3989
+ # * {Types::GetOriginAccessControlResult#etag #etag} => String
3990
+ #
3991
+ # @example Request syntax with placeholder values
3992
+ #
3993
+ # resp = client.get_origin_access_control({
3994
+ # id: "string", # required
3995
+ # })
3996
+ #
3997
+ # @example Response structure
3998
+ #
3999
+ # resp.origin_access_control.id #=> String
4000
+ # resp.origin_access_control.origin_access_control_config.name #=> String
4001
+ # resp.origin_access_control.origin_access_control_config.description #=> String
4002
+ # resp.origin_access_control.origin_access_control_config.signing_protocol #=> String, one of "sigv4"
4003
+ # resp.origin_access_control.origin_access_control_config.signing_behavior #=> String, one of "never", "always", "no-override"
4004
+ # resp.origin_access_control.origin_access_control_config.origin_access_control_origin_type #=> String, one of "s3"
4005
+ # resp.etag #=> String
4006
+ #
4007
+ # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/GetOriginAccessControl AWS API Documentation
4008
+ #
4009
+ # @overload get_origin_access_control(params = {})
4010
+ # @param [Hash] params ({})
4011
+ def get_origin_access_control(params = {}, options = {})
4012
+ req = build_request(:get_origin_access_control, params)
4013
+ req.send_request(options)
4014
+ end
4015
+
4016
+ # Gets a CloudFront origin access control.
4017
+ #
4018
+ # @option params [required, String] :id
4019
+ # The unique identifier of the origin access control.
4020
+ #
4021
+ # @return [Types::GetOriginAccessControlConfigResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
4022
+ #
4023
+ # * {Types::GetOriginAccessControlConfigResult#origin_access_control_config #origin_access_control_config} => Types::OriginAccessControlConfig
4024
+ # * {Types::GetOriginAccessControlConfigResult#etag #etag} => String
4025
+ #
4026
+ # @example Request syntax with placeholder values
4027
+ #
4028
+ # resp = client.get_origin_access_control_config({
4029
+ # id: "string", # required
4030
+ # })
4031
+ #
4032
+ # @example Response structure
4033
+ #
4034
+ # resp.origin_access_control_config.name #=> String
4035
+ # resp.origin_access_control_config.description #=> String
4036
+ # resp.origin_access_control_config.signing_protocol #=> String, one of "sigv4"
4037
+ # resp.origin_access_control_config.signing_behavior #=> String, one of "never", "always", "no-override"
4038
+ # resp.origin_access_control_config.origin_access_control_origin_type #=> String, one of "s3"
4039
+ # resp.etag #=> String
4040
+ #
4041
+ # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/GetOriginAccessControlConfig AWS API Documentation
4042
+ #
4043
+ # @overload get_origin_access_control_config(params = {})
4044
+ # @param [Hash] params ({})
4045
+ def get_origin_access_control_config(params = {}, options = {})
4046
+ req = build_request(:get_origin_access_control_config, params)
4047
+ req.send_request(options)
4048
+ end
4049
+
3885
4050
  # Gets an origin request policy, including the following metadata:
3886
4051
  #
3887
4052
  # * The policy’s identifier.
@@ -4178,13 +4343,13 @@ module Aws::CloudFront
4178
4343
  # resp.response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.include_subdomains #=> Boolean
4179
4344
  # resp.response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.preload #=> Boolean
4180
4345
  # resp.response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.access_control_max_age_sec #=> Integer
4346
+ # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.enabled #=> Boolean
4347
+ # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.sampling_rate #=> Float
4181
4348
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.quantity #=> Integer
4182
4349
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items #=> Array
4183
4350
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].header #=> String
4184
4351
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].value #=> String
4185
4352
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].override #=> Boolean
4186
- # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.enabled #=> Boolean
4187
- # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.sampling_rate #=> Float
4188
4353
  # resp.etag #=> String
4189
4354
  #
4190
4355
  # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/GetResponseHeadersPolicy AWS API Documentation
@@ -4259,13 +4424,13 @@ module Aws::CloudFront
4259
4424
  # resp.response_headers_policy_config.security_headers_config.strict_transport_security.include_subdomains #=> Boolean
4260
4425
  # resp.response_headers_policy_config.security_headers_config.strict_transport_security.preload #=> Boolean
4261
4426
  # resp.response_headers_policy_config.security_headers_config.strict_transport_security.access_control_max_age_sec #=> Integer
4427
+ # resp.response_headers_policy_config.server_timing_headers_config.enabled #=> Boolean
4428
+ # resp.response_headers_policy_config.server_timing_headers_config.sampling_rate #=> Float
4262
4429
  # resp.response_headers_policy_config.custom_headers_config.quantity #=> Integer
4263
4430
  # resp.response_headers_policy_config.custom_headers_config.items #=> Array
4264
4431
  # resp.response_headers_policy_config.custom_headers_config.items[0].header #=> String
4265
4432
  # resp.response_headers_policy_config.custom_headers_config.items[0].value #=> String
4266
4433
  # resp.response_headers_policy_config.custom_headers_config.items[0].override #=> Boolean
4267
- # resp.response_headers_policy_config.server_timing_headers_config.enabled #=> Boolean
4268
- # resp.response_headers_policy_config.server_timing_headers_config.sampling_rate #=> Float
4269
4434
  # resp.etag #=> String
4270
4435
  #
4271
4436
  # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/GetResponseHeadersPolicyConfig AWS API Documentation
@@ -4664,6 +4829,7 @@ module Aws::CloudFront
4664
4829
  # resp.distribution_list.items[0].origins.items[0].connection_timeout #=> Integer
4665
4830
  # resp.distribution_list.items[0].origins.items[0].origin_shield.enabled #=> Boolean
4666
4831
  # resp.distribution_list.items[0].origins.items[0].origin_shield.origin_shield_region #=> String
4832
+ # resp.distribution_list.items[0].origins.items[0].origin_access_control_id #=> String
4667
4833
  # resp.distribution_list.items[0].origin_groups.quantity #=> Integer
4668
4834
  # resp.distribution_list.items[0].origin_groups.items #=> Array
4669
4835
  # resp.distribution_list.items[0].origin_groups.items[0].id #=> String
@@ -4789,7 +4955,7 @@ module Aws::CloudFront
4789
4955
  # resp.distribution_list.items[0].restrictions.geo_restriction.items #=> Array
4790
4956
  # resp.distribution_list.items[0].restrictions.geo_restriction.items[0] #=> String
4791
4957
  # resp.distribution_list.items[0].web_acl_id #=> String
4792
- # resp.distribution_list.items[0].http_version #=> String, one of "http1.1", "http2"
4958
+ # resp.distribution_list.items[0].http_version #=> String, one of "http1.1", "http2", "http3", "http2and3"
4793
4959
  # resp.distribution_list.items[0].is_ipv6_enabled #=> Boolean
4794
4960
  # resp.distribution_list.items[0].alias_icp_recordals #=> Array
4795
4961
  # resp.distribution_list.items[0].alias_icp_recordals[0].cname #=> String
@@ -5053,6 +5219,7 @@ module Aws::CloudFront
5053
5219
  # resp.distribution_list.items[0].origins.items[0].connection_timeout #=> Integer
5054
5220
  # resp.distribution_list.items[0].origins.items[0].origin_shield.enabled #=> Boolean
5055
5221
  # resp.distribution_list.items[0].origins.items[0].origin_shield.origin_shield_region #=> String
5222
+ # resp.distribution_list.items[0].origins.items[0].origin_access_control_id #=> String
5056
5223
  # resp.distribution_list.items[0].origin_groups.quantity #=> Integer
5057
5224
  # resp.distribution_list.items[0].origin_groups.items #=> Array
5058
5225
  # resp.distribution_list.items[0].origin_groups.items[0].id #=> String
@@ -5178,7 +5345,7 @@ module Aws::CloudFront
5178
5345
  # resp.distribution_list.items[0].restrictions.geo_restriction.items #=> Array
5179
5346
  # resp.distribution_list.items[0].restrictions.geo_restriction.items[0] #=> String
5180
5347
  # resp.distribution_list.items[0].web_acl_id #=> String
5181
- # resp.distribution_list.items[0].http_version #=> String, one of "http1.1", "http2"
5348
+ # resp.distribution_list.items[0].http_version #=> String, one of "http1.1", "http2", "http3", "http2and3"
5182
5349
  # resp.distribution_list.items[0].is_ipv6_enabled #=> Boolean
5183
5350
  # resp.distribution_list.items[0].alias_icp_recordals #=> Array
5184
5351
  # resp.distribution_list.items[0].alias_icp_recordals[0].cname #=> String
@@ -5319,6 +5486,7 @@ module Aws::CloudFront
5319
5486
  # resp.distribution_list.items[0].origins.items[0].connection_timeout #=> Integer
5320
5487
  # resp.distribution_list.items[0].origins.items[0].origin_shield.enabled #=> Boolean
5321
5488
  # resp.distribution_list.items[0].origins.items[0].origin_shield.origin_shield_region #=> String
5489
+ # resp.distribution_list.items[0].origins.items[0].origin_access_control_id #=> String
5322
5490
  # resp.distribution_list.items[0].origin_groups.quantity #=> Integer
5323
5491
  # resp.distribution_list.items[0].origin_groups.items #=> Array
5324
5492
  # resp.distribution_list.items[0].origin_groups.items[0].id #=> String
@@ -5444,7 +5612,7 @@ module Aws::CloudFront
5444
5612
  # resp.distribution_list.items[0].restrictions.geo_restriction.items #=> Array
5445
5613
  # resp.distribution_list.items[0].restrictions.geo_restriction.items[0] #=> String
5446
5614
  # resp.distribution_list.items[0].web_acl_id #=> String
5447
- # resp.distribution_list.items[0].http_version #=> String, one of "http1.1", "http2"
5615
+ # resp.distribution_list.items[0].http_version #=> String, one of "http1.1", "http2", "http3", "http2and3"
5448
5616
  # resp.distribution_list.items[0].is_ipv6_enabled #=> Boolean
5449
5617
  # resp.distribution_list.items[0].alias_icp_recordals #=> Array
5450
5618
  # resp.distribution_list.items[0].alias_icp_recordals[0].cname #=> String
@@ -5736,6 +5904,62 @@ module Aws::CloudFront
5736
5904
  req.send_request(options)
5737
5905
  end
5738
5906
 
5907
+ # Gets the list of CloudFront origin access controls in this Amazon Web
5908
+ # Services account.
5909
+ #
5910
+ # You can optionally specify the maximum number of items to receive in
5911
+ # the response. If the total number of items in the list exceeds the
5912
+ # maximum that you specify, or the default maximum, the response is
5913
+ # paginated. To get the next page of items, send another request that
5914
+ # specifies the `NextMarker` value from the current response as the
5915
+ # `Marker` value in the next request.
5916
+ #
5917
+ # @option params [String] :marker
5918
+ # Use this field when paginating results to indicate where to begin in
5919
+ # your list of origin access controls. The response includes the items
5920
+ # in the list that occur after the marker. To get the next page of the
5921
+ # list, set this field's value to the value of `NextMarker` from the
5922
+ # current page's response.
5923
+ #
5924
+ # @option params [Integer] :max_items
5925
+ # The maximum number of origin access controls that you want in the
5926
+ # response.
5927
+ #
5928
+ # @return [Types::ListOriginAccessControlsResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
5929
+ #
5930
+ # * {Types::ListOriginAccessControlsResult#origin_access_control_list #origin_access_control_list} => Types::OriginAccessControlList
5931
+ #
5932
+ # @example Request syntax with placeholder values
5933
+ #
5934
+ # resp = client.list_origin_access_controls({
5935
+ # marker: "string",
5936
+ # max_items: 1,
5937
+ # })
5938
+ #
5939
+ # @example Response structure
5940
+ #
5941
+ # resp.origin_access_control_list.marker #=> String
5942
+ # resp.origin_access_control_list.next_marker #=> String
5943
+ # resp.origin_access_control_list.max_items #=> Integer
5944
+ # resp.origin_access_control_list.is_truncated #=> Boolean
5945
+ # resp.origin_access_control_list.quantity #=> Integer
5946
+ # resp.origin_access_control_list.items #=> Array
5947
+ # resp.origin_access_control_list.items[0].id #=> String
5948
+ # resp.origin_access_control_list.items[0].description #=> String
5949
+ # resp.origin_access_control_list.items[0].name #=> String
5950
+ # resp.origin_access_control_list.items[0].signing_protocol #=> String, one of "sigv4"
5951
+ # resp.origin_access_control_list.items[0].signing_behavior #=> String, one of "never", "always", "no-override"
5952
+ # resp.origin_access_control_list.items[0].origin_access_control_origin_type #=> String, one of "s3"
5953
+ #
5954
+ # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/ListOriginAccessControls AWS API Documentation
5955
+ #
5956
+ # @overload list_origin_access_controls(params = {})
5957
+ # @param [Hash] params ({})
5958
+ def list_origin_access_controls(params = {}, options = {})
5959
+ req = build_request(:list_origin_access_controls, params)
5960
+ req.send_request(options)
5961
+ end
5962
+
5739
5963
  # Gets a list of origin request policies.
5740
5964
  #
5741
5965
  # You can optionally apply a filter to return only the managed policies
@@ -6004,13 +6228,13 @@ module Aws::CloudFront
6004
6228
  # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.include_subdomains #=> Boolean
6005
6229
  # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.preload #=> Boolean
6006
6230
  # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.access_control_max_age_sec #=> Integer
6231
+ # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.server_timing_headers_config.enabled #=> Boolean
6232
+ # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.server_timing_headers_config.sampling_rate #=> Float
6007
6233
  # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.custom_headers_config.quantity #=> Integer
6008
6234
  # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.custom_headers_config.items #=> Array
6009
6235
  # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].header #=> String
6010
6236
  # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].value #=> String
6011
6237
  # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].override #=> Boolean
6012
- # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.server_timing_headers_config.enabled #=> Boolean
6013
- # resp.response_headers_policy_list.items[0].response_headers_policy.response_headers_policy_config.server_timing_headers_config.sampling_rate #=> Float
6014
6238
  #
6015
6239
  # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/ListResponseHeadersPolicies AWS API Documentation
6016
6240
  #
@@ -6586,6 +6810,7 @@ module Aws::CloudFront
6586
6810
  # enabled: false, # required
6587
6811
  # origin_shield_region: "OriginShieldRegion",
6588
6812
  # },
6813
+ # origin_access_control_id: "string",
6589
6814
  # },
6590
6815
  # ],
6591
6816
  # },
@@ -6792,7 +7017,7 @@ module Aws::CloudFront
6792
7017
  # },
6793
7018
  # },
6794
7019
  # web_acl_id: "string",
6795
- # http_version: "http1.1", # accepts http1.1, http2
7020
+ # http_version: "http1.1", # accepts http1.1, http2, http3, http2and3
6796
7021
  # is_ipv6_enabled: false,
6797
7022
  # },
6798
7023
  # id: "string", # required
@@ -6848,6 +7073,7 @@ module Aws::CloudFront
6848
7073
  # resp.distribution.distribution_config.origins.items[0].connection_timeout #=> Integer
6849
7074
  # resp.distribution.distribution_config.origins.items[0].origin_shield.enabled #=> Boolean
6850
7075
  # resp.distribution.distribution_config.origins.items[0].origin_shield.origin_shield_region #=> String
7076
+ # resp.distribution.distribution_config.origins.items[0].origin_access_control_id #=> String
6851
7077
  # resp.distribution.distribution_config.origin_groups.quantity #=> Integer
6852
7078
  # resp.distribution.distribution_config.origin_groups.items #=> Array
6853
7079
  # resp.distribution.distribution_config.origin_groups.items[0].id #=> String
@@ -6977,7 +7203,7 @@ module Aws::CloudFront
6977
7203
  # resp.distribution.distribution_config.restrictions.geo_restriction.items #=> Array
6978
7204
  # resp.distribution.distribution_config.restrictions.geo_restriction.items[0] #=> String
6979
7205
  # resp.distribution.distribution_config.web_acl_id #=> String
6980
- # resp.distribution.distribution_config.http_version #=> String, one of "http1.1", "http2"
7206
+ # resp.distribution.distribution_config.http_version #=> String, one of "http1.1", "http2", "http3", "http2and3"
6981
7207
  # resp.distribution.distribution_config.is_ipv6_enabled #=> Boolean
6982
7208
  # resp.distribution.alias_icp_recordals #=> Array
6983
7209
  # resp.distribution.alias_icp_recordals[0].cname #=> String
@@ -7268,6 +7494,57 @@ module Aws::CloudFront
7268
7494
  req.send_request(options)
7269
7495
  end
7270
7496
 
7497
+ # Updates a CloudFront origin access control.
7498
+ #
7499
+ # @option params [required, Types::OriginAccessControlConfig] :origin_access_control_config
7500
+ # An origin access control.
7501
+ #
7502
+ # @option params [required, String] :id
7503
+ # The unique identifier of the origin access control that you are
7504
+ # updating.
7505
+ #
7506
+ # @option params [String] :if_match
7507
+ # The current version (`ETag` value) of the origin access control that
7508
+ # you are updating.
7509
+ #
7510
+ # @return [Types::UpdateOriginAccessControlResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
7511
+ #
7512
+ # * {Types::UpdateOriginAccessControlResult#origin_access_control #origin_access_control} => Types::OriginAccessControl
7513
+ # * {Types::UpdateOriginAccessControlResult#etag #etag} => String
7514
+ #
7515
+ # @example Request syntax with placeholder values
7516
+ #
7517
+ # resp = client.update_origin_access_control({
7518
+ # origin_access_control_config: { # required
7519
+ # name: "string", # required
7520
+ # description: "string", # required
7521
+ # signing_protocol: "sigv4", # required, accepts sigv4
7522
+ # signing_behavior: "never", # required, accepts never, always, no-override
7523
+ # origin_access_control_origin_type: "s3", # required, accepts s3
7524
+ # },
7525
+ # id: "string", # required
7526
+ # if_match: "string",
7527
+ # })
7528
+ #
7529
+ # @example Response structure
7530
+ #
7531
+ # resp.origin_access_control.id #=> String
7532
+ # resp.origin_access_control.origin_access_control_config.name #=> String
7533
+ # resp.origin_access_control.origin_access_control_config.description #=> String
7534
+ # resp.origin_access_control.origin_access_control_config.signing_protocol #=> String, one of "sigv4"
7535
+ # resp.origin_access_control.origin_access_control_config.signing_behavior #=> String, one of "never", "always", "no-override"
7536
+ # resp.origin_access_control.origin_access_control_config.origin_access_control_origin_type #=> String, one of "s3"
7537
+ # resp.etag #=> String
7538
+ #
7539
+ # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/UpdateOriginAccessControl AWS API Documentation
7540
+ #
7541
+ # @overload update_origin_access_control(params = {})
7542
+ # @param [Hash] params ({})
7543
+ def update_origin_access_control(params = {}, options = {})
7544
+ req = build_request(:update_origin_access_control, params)
7545
+ req.send_request(options)
7546
+ end
7547
+
7271
7548
  # Updates an origin request policy configuration.
7272
7549
  #
7273
7550
  # When you update an origin request policy configuration, all the fields
@@ -7592,6 +7869,10 @@ module Aws::CloudFront
7592
7869
  # access_control_max_age_sec: 1, # required
7593
7870
  # },
7594
7871
  # },
7872
+ # server_timing_headers_config: {
7873
+ # enabled: false, # required
7874
+ # sampling_rate: 1.0,
7875
+ # },
7595
7876
  # custom_headers_config: {
7596
7877
  # quantity: 1, # required
7597
7878
  # items: [
@@ -7602,10 +7883,6 @@ module Aws::CloudFront
7602
7883
  # },
7603
7884
  # ],
7604
7885
  # },
7605
- # server_timing_headers_config: {
7606
- # enabled: false, # required
7607
- # sampling_rate: 1.0,
7608
- # },
7609
7886
  # },
7610
7887
  # id: "string", # required
7611
7888
  # if_match: "string",
@@ -7647,13 +7924,13 @@ module Aws::CloudFront
7647
7924
  # resp.response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.include_subdomains #=> Boolean
7648
7925
  # resp.response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.preload #=> Boolean
7649
7926
  # resp.response_headers_policy.response_headers_policy_config.security_headers_config.strict_transport_security.access_control_max_age_sec #=> Integer
7927
+ # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.enabled #=> Boolean
7928
+ # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.sampling_rate #=> Float
7650
7929
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.quantity #=> Integer
7651
7930
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items #=> Array
7652
7931
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].header #=> String
7653
7932
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].value #=> String
7654
7933
  # resp.response_headers_policy.response_headers_policy_config.custom_headers_config.items[0].override #=> Boolean
7655
- # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.enabled #=> Boolean
7656
- # resp.response_headers_policy.response_headers_policy_config.server_timing_headers_config.sampling_rate #=> Float
7657
7934
  # resp.etag #=> String
7658
7935
  #
7659
7936
  # @see http://docs.aws.amazon.com/goto/WebAPI/cloudfront-2020-05-31/UpdateResponseHeadersPolicy AWS API Documentation
@@ -7768,7 +8045,7 @@ module Aws::CloudFront
7768
8045
  params: params,
7769
8046
  config: config)
7770
8047
  context[:gem_name] = 'aws-sdk-cloudfront'
7771
- context[:gem_version] = '1.64.0'
8048
+ context[:gem_version] = '1.67.0'
7772
8049
  Seahorse::Client::Request.new(handlers, context)
7773
8050
  end
7774
8051