aws-sdk-cloudhsmv2 1.60.0 → 1.61.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a02d611b088ff8b30dc835041b920b67a8e79091721d922876d83605973f80d6
-  data.tar.gz: 65a9e3222c35a8349e01b968d7b7d41d908703147b1bbefa74ad32371903e70e
+  metadata.gz: 8e598aa0e948de93f40a8423c727a2c98c5449f6d842a711b63bbc14df72982e
+  data.tar.gz: 97d3ede72cfddcda9e8340f1fa8903b7b8628e7b0116c3794705a4bf98bf7d17
 SHA512:
-  metadata.gz: e63f51113f854b429de504c3e0f620e29c1d09f5516b34f387b7ccb7f1abf98080520218c7f33044fe6d09dcda8cd4803ac03c72f562f2aafcf1906e899f64f4
-  data.tar.gz: e1fde282f4c0bbd0850f8facec96ab2830c4754900f203e74f8b107dfb18a36d395971a0c7cc848631c97410f2c68a8674fbcd66167e7363ff8c830511e0ac21
+  metadata.gz: 7ee05ce38fc94da52ed8b1600858e2fda8ef3a1ce3cf380524789a738e60f40e8b271b0c2f36e9d57f1830647eb15bd2a74a35658aa417d3af5dcda3fddadb87
+  data.tar.gz: 687ea8adc606d100ca5f0ea33bd06be572b1e5b9bd8ddd31d51f330ba313310f77da1e9ba9bcb86252f3dda811f3916cb9511308781f31a089f7c8d044a0ca13

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.61.0 (2024-06-28)
+------------------
+
+* Feature - Added 3 new APIs to support backup sharing: GetResourcePolicy, PutResourcePolicy, and DeleteResourcePolicy. Added BackupArn to the output of the DescribeBackups API. Added support for BackupArn in the CreateCluster API.
+
 1.60.0 (2024-06-25)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.60.0
+1.61.0

data/lib/aws-sdk-cloudhsmv2/client.rb

@@ -423,7 +423,10 @@ module Aws::CloudHSMV2
 
     # @!group API Operations
 
-    # Copy an AWS CloudHSM cluster backup to a different region.
+    # Copy an CloudHSM cluster backup to a different region.
+    #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM backup in a different Amazon Web Services account.
     #
     # @option params [required, String] :destination_region
     #   The AWS region that will contain your copied CloudHSM cluster backup.
@@ -470,7 +473,11 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Creates a new AWS CloudHSM cluster.
+    # Creates a new CloudHSM cluster.
+    #
+    # **Cross-account use:** Yes. To perform this operation with an CloudHSM
+    # backup in a different AWS account, specify the full backup ARN in the
+    # value of the SourceBackupId parameter.
     #
     # @option params [Types::BackupRetentionPolicy] :backup_retention_policy
     #   A policy that defines how the service retains backups.
@@ -480,9 +487,11 @@ module Aws::CloudHSMV2
     #   `hsm1.medium` and `hsm2m.medium`.
     #
     # @option params [String] :source_backup_id
-    #   The identifier (ID) of the cluster backup to restore. Use this value
-    #   to restore the cluster from a backup instead of creating a new
-    #   cluster. To find the backup ID, use DescribeBackups.
+    #   The identifier (ID) or the Amazon Resource Name (ARN) of the cluster
+    #   backup to restore. Use this value to restore the cluster from a backup
+    #   instead of creating a new cluster. To find the backup ID or ARN, use
+    #   DescribeBackups. *If using a backup in another account, the full ARN
+    #   must be supplied.*
     #
     # @option params [required, Array<String>] :subnet_ids
     #   The identifiers (IDs) of the subnets where you are creating the
@@ -512,7 +521,7 @@ module Aws::CloudHSMV2
     #       value: "BackupRetentionValue",
     #     },
     #     hsm_type: "HsmType", # required
-    #     source_backup_id: "BackupId",
+    #     source_backup_id: "BackupArn",
     #     subnet_ids: ["SubnetId"], # required
     #     tag_list: [
     #       {
@@ -567,8 +576,11 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Creates a new hardware security module (HSM) in the specified AWS
-    # CloudHSM cluster.
+    # Creates a new hardware security module (HSM) in the specified CloudHSM
+    # cluster.
+    #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM cluster in a different Amazon Web Service account.
     #
     # @option params [required, String] :cluster_id
     #   The identifier (ID) of the HSM's cluster. To find the cluster ID, use
@@ -616,9 +628,12 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Deletes a specified AWS CloudHSM backup. A backup can be restored up
-    # to 7 days after the DeleteBackup request is made. For more information
-    # on restoring a backup, see RestoreBackup.
+    # Deletes a specified CloudHSM backup. A backup can be restored up to 7
+    # days after the DeleteBackup request is made. For more information on
+    # restoring a backup, see RestoreBackup.
+    #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM backup in a different Amazon Web Services account.
     #
     # @option params [required, String] :backup_id
     #   The ID of the backup to be deleted. To find the ID of a backup, use
@@ -637,6 +652,7 @@ module Aws::CloudHSMV2
     # @example Response structure
     #
     #   resp.backup.backup_id #=> String
+    #   resp.backup.backup_arn #=> String
     #   resp.backup.backup_state #=> String, one of "CREATE_IN_PROGRESS", "READY", "DELETED", "PENDING_DELETION"
     #   resp.backup.cluster_id #=> String
     #   resp.backup.create_timestamp #=> Time
@@ -661,11 +677,14 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Deletes the specified AWS CloudHSM cluster. Before you can delete a
+    # Deletes the specified CloudHSM cluster. Before you can delete a
     # cluster, you must delete all HSMs in the cluster. To see if the
     # cluster contains any HSMs, use DescribeClusters. To delete an HSM, use
     # DeleteHsm.
     #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM cluster in a different Amazon Web Services account.
+    #
     # @option params [required, String] :cluster_id
     #   The identifier (ID) of the cluster that you are deleting. To find the
     #   cluster ID, use DescribeClusters.
@@ -729,6 +748,9 @@ module Aws::CloudHSMV2
     # interface (ENI), or the ID of the HSM's ENI. You need to specify only
     # one of these values. To find these values, use DescribeClusters.
     #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM hsm in a different Amazon Web Services account.
+    #
     # @option params [required, String] :cluster_id
     #   The identifier (ID) of the cluster that contains the HSM that you are
     #   deleting.
@@ -770,7 +792,46 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Gets information about backups of AWS CloudHSM clusters.
+    # Deletes an CloudHSM resource policy. Deleting a resource policy will
+    # result in the resource being unshared and removed from any RAM
+    # resource shares. Deleting the resource policy attached to a backup
+    # will not impact any clusters created from that backup.
+    #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM resource in a different Amazon Web Services account.
+    #
+    # @option params [String] :resource_arn
+    #   Amazon Resource Name (ARN) of the resource from which the policy will
+    #   be removed.
+    #
+    # @return [Types::DeleteResourcePolicyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DeleteResourcePolicyResponse#resource_arn #resource_arn} => String
+    #   * {Types::DeleteResourcePolicyResponse#policy #policy} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_resource_policy({
+    #     resource_arn: "CloudHsmArn",
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.resource_arn #=> String
+    #   resp.policy #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudhsmv2-2017-04-28/DeleteResourcePolicy AWS API Documentation
+    #
+    # @overload delete_resource_policy(params = {})
+    # @param [Hash] params ({})
+    def delete_resource_policy(params = {}, options = {})
+      req = build_request(:delete_resource_policy, params)
+      req.send_request(options)
+    end
+
+    # Gets information about backups of CloudHSM clusters. Lists either the
+    # backups you own or the backups shared with you when the Shared
+    # parameter is true.
     #
     # This is a paginated operation, which means that each response might
     # contain only a subset of all the backups. When the response contains
@@ -779,6 +840,9 @@ module Aws::CloudHSMV2
     # When you receive a response with no `NextToken` (or an empty or null
     # value), that means there are no more backups to get.
     #
+    # **Cross-account use:** Yes. Customers can describe backups in other
+    # Amazon Web Services accounts that are shared with them.
+    #
     # @option params [String] :next_token
     #   The `NextToken` value that you received in the previous response. Use
     #   this value to get more backups.
@@ -809,6 +873,25 @@ module Aws::CloudHSMV2
     #   from the backup retention policy. `False` returns all backups with a
     #   backup retention policy defined at the cluster.
     #
+    # @option params [Boolean] :shared
+    #   Describe backups that are shared with you.
+    #
+    #   <note markdown="1"> By default when using this option, the command returns backups that
+    #   have been shared using a standard Resource Access Manager resource
+    #   share. In order for a backup that was shared using the
+    #   PutResourcePolicy command to be returned, the share must be promoted
+    #   to a standard resource share using the RAM
+    #   [PromoteResourceShareCreatedFromPolicy][1] API operation. For more
+    #   information about sharing backups, see [ Working with shared
+    #   backups][2] in the CloudHSM User Guide.
+    #
+    #    </note>
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/cli/latest/reference/ram/promote-resource-share-created-from-policy.html
+    #   [2]: https://docs.aws.amazon.com/cloudhsm/latest/userguide/sharing.html
+    #
     # @option params [Boolean] :sort_ascending
     #   Designates whether or not to sort the return backups by ascending
     #   chronological order of generation.
@@ -828,6 +911,7 @@ module Aws::CloudHSMV2
     #     filters: {
     #       "Field" => ["String"],
     #     },
+    #     shared: false,
     #     sort_ascending: false,
     #   })
     #
@@ -835,6 +919,7 @@ module Aws::CloudHSMV2
     #
     #   resp.backups #=> Array
     #   resp.backups[0].backup_id #=> String
+    #   resp.backups[0].backup_arn #=> String
     #   resp.backups[0].backup_state #=> String, one of "CREATE_IN_PROGRESS", "READY", "DELETED", "PENDING_DELETION"
     #   resp.backups[0].cluster_id #=> String
     #   resp.backups[0].create_timestamp #=> Time
@@ -860,7 +945,7 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Gets information about AWS CloudHSM clusters.
+    # Gets information about CloudHSM clusters.
     #
     # This is a paginated operation, which means that each response might
     # contain only a subset of all the clusters. When the response contains
@@ -869,6 +954,9 @@ module Aws::CloudHSMV2
     # When you receive a response with no `NextToken` (or an empty or null
     # value), that means there are no more clusters to get.
     #
+    # **Cross-account use:** No. You cannot perform this operation on
+    # CloudHSM clusters in a different Amazon Web Services account.
+    #
     # @option params [Hash<String,Array>] :filters
     #   One or more filters to limit the items returned in the response.
     #
@@ -954,12 +1042,47 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Claims an AWS CloudHSM cluster by submitting the cluster certificate
+    # Retrieves the resource policy document attached to a given resource.
+    #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM resource in a different Amazon Web Services account.
+    #
+    # @option params [String] :resource_arn
+    #   Amazon Resource Name (ARN) of the resource to which a policy is
+    #   attached.
+    #
+    # @return [Types::GetResourcePolicyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetResourcePolicyResponse#policy #policy} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_resource_policy({
+    #     resource_arn: "CloudHsmArn",
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.policy #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudhsmv2-2017-04-28/GetResourcePolicy AWS API Documentation
+    #
+    # @overload get_resource_policy(params = {})
+    # @param [Hash] params ({})
+    def get_resource_policy(params = {}, options = {})
+      req = build_request(:get_resource_policy, params)
+      req.send_request(options)
+    end
+
+    # Claims an CloudHSM cluster by submitting the cluster certificate
     # issued by your issuing certificate authority (CA) and the CA's root
     # certificate. Before you can claim a cluster, you must sign the
     # cluster's certificate signing request (CSR) with your issuing CA. To
     # get the cluster's CSR, use DescribeClusters.
     #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM cluster in a different Amazon Web Services account.
+    #
     # @option params [required, String] :cluster_id
     #   The identifier (ID) of the cluster that you are claiming. To find the
     #   cluster ID, use DescribeClusters.
@@ -1003,7 +1126,7 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Gets a list of tags for the specified AWS CloudHSM cluster.
+    # Gets a list of tags for the specified CloudHSM cluster.
     #
     # This is a paginated operation, which means that each response might
     # contain only a subset of all the tags. When the response contains only
@@ -1012,6 +1135,9 @@ module Aws::CloudHSMV2
     # response with no `NextToken` (or an empty or null value), that means
     # there are no more tags to get.
     #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM resource in a different Amazon Web Services account.
+    #
     # @option params [required, String] :resource_id
     #   The cluster identifier (ID) for the cluster whose tags you are
     #   getting. To find the cluster ID, use DescribeClusters.
@@ -1056,7 +1182,10 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Modifies attributes for AWS CloudHSM backup.
+    # Modifies attributes for CloudHSM backup.
+    #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM backup in a different Amazon Web Services account.
     #
     # @option params [required, String] :backup_id
     #   The identifier (ID) of the backup to modify. To find the ID of a
@@ -1082,6 +1211,7 @@ module Aws::CloudHSMV2
     # @example Response structure
     #
     #   resp.backup.backup_id #=> String
+    #   resp.backup.backup_arn #=> String
     #   resp.backup.backup_state #=> String, one of "CREATE_IN_PROGRESS", "READY", "DELETED", "PENDING_DELETION"
     #   resp.backup.cluster_id #=> String
     #   resp.backup.create_timestamp #=> Time
@@ -1106,7 +1236,10 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Modifies AWS CloudHSM cluster.
+    # Modifies CloudHSM cluster.
+    #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM cluster in a different Amazon Web Services account.
     #
     # @option params [required, Types::BackupRetentionPolicy] :backup_retention_policy
     #   A policy that defines how the service retains backups.
@@ -1173,9 +1306,83 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Restores a specified AWS CloudHSM backup that is in the
-    # `PENDING_DELETION` state. For mor information on deleting a backup,
-    # see DeleteBackup.
+    # Creates or updates an CloudHSM resource policy. A resource policy
+    # helps you to define the IAM entity (for example, an Amazon Web
+    # Services account) that can manage your CloudHSM resources. The
+    # following resources support CloudHSM resource policies:
+    #
+    # * Backup - The resource policy allows you to describe the backup and
+    #   restore a cluster from the backup in another Amazon Web Services
+    #   account.
+    #
+    # ^
+    #
+    # In order to share a backup, it must be in a 'READY' state and you
+    # must own it.
+    #
+    # While you can share a backup using the CloudHSM PutResourcePolicy
+    # operation, we recommend using Resource Access Manager (RAM) instead.
+    # Using RAM provides multiple benefits as it creates the policy for you,
+    # allows multiple resources to be shared at one time, and increases the
+    # discoverability of shared resources. If you use PutResourcePolicy and
+    # want consumers to be able to describe the backups you share with them,
+    # you must promote the backup to a standard RAM Resource Share using the
+    # RAM PromoteResourceShareCreatedFromPolicy API operation. For more
+    # information, see [ Working with shared backups][1] in the CloudHSM
+    # User Guide
+    #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM resource in a different Amazon Web Services account.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/cloudhsm/latest/userguide/sharing.html
+    #
+    # @option params [String] :resource_arn
+    #   Amazon Resource Name (ARN) of the resource to which you want to attach
+    #   a policy.
+    #
+    # @option params [String] :policy
+    #   The policy you want to associate with a resource.
+    #
+    #   For an example policy, see [ Working with shared backups][1] in the
+    #   CloudHSM User Guide
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/cloudhsm/latest/userguide/sharing.html
+    #
+    # @return [Types::PutResourcePolicyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::PutResourcePolicyResponse#resource_arn #resource_arn} => String
+    #   * {Types::PutResourcePolicyResponse#policy #policy} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.put_resource_policy({
+    #     resource_arn: "CloudHsmArn",
+    #     policy: "ResourcePolicy",
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.resource_arn #=> String
+    #   resp.policy #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudhsmv2-2017-04-28/PutResourcePolicy AWS API Documentation
+    #
+    # @overload put_resource_policy(params = {})
+    # @param [Hash] params ({})
+    def put_resource_policy(params = {}, options = {})
+      req = build_request(:put_resource_policy, params)
+      req.send_request(options)
+    end
+
+    # Restores a specified CloudHSM backup that is in the `PENDING_DELETION`
+    # state. For more information on deleting a backup, see DeleteBackup.
+    #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM backup in a different Amazon Web Services account.
     #
     # @option params [required, String] :backup_id
     #   The ID of the backup to be restored. To find the ID of a backup, use
@@ -1194,6 +1401,7 @@ module Aws::CloudHSMV2
     # @example Response structure
     #
     #   resp.backup.backup_id #=> String
+    #   resp.backup.backup_arn #=> String
     #   resp.backup.backup_state #=> String, one of "CREATE_IN_PROGRESS", "READY", "DELETED", "PENDING_DELETION"
     #   resp.backup.cluster_id #=> String
     #   resp.backup.create_timestamp #=> Time
@@ -1218,9 +1426,12 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Adds or overwrites one or more tags for the specified AWS CloudHSM
+    # Adds or overwrites one or more tags for the specified CloudHSM
     # cluster.
     #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM resource in a different Amazon Web Services account.
+    #
     # @option params [required, String] :resource_id
     #   The cluster identifier (ID) for the cluster that you are tagging. To
     #   find the cluster ID, use DescribeClusters.
@@ -1251,8 +1462,10 @@ module Aws::CloudHSMV2
       req.send_request(options)
     end
 
-    # Removes the specified tag or tags from the specified AWS CloudHSM
-    # cluster.
+    # Removes the specified tag or tags from the specified CloudHSM cluster.
+    #
+    # **Cross-account use:** No. You cannot perform this operation on an
+    # CloudHSM resource in a different Amazon Web Services account.
     #
     # @option params [required, String] :resource_id
     #   The cluster identifier (ID) for the cluster whose tags you are
@@ -1293,7 +1506,7 @@ module Aws::CloudHSMV2
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-cloudhsmv2'
-      context[:gem_version] = '1.60.0'
+      context[:gem_version] = '1.61.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-cloudhsmv2/client_api.rb

@@ -14,6 +14,7 @@ module Aws::CloudHSMV2
     include Seahorse::Model
 
     Backup = Shapes::StructureShape.new(name: 'Backup')
+    BackupArn = Shapes::StringShape.new(name: 'BackupArn')
     BackupId = Shapes::StringShape.new(name: 'BackupId')
     BackupPolicy = Shapes::StringShape.new(name: 'BackupPolicy')
     BackupRetentionPolicy = Shapes::StructureShape.new(name: 'BackupRetentionPolicy')
@@ -26,6 +27,7 @@ module Aws::CloudHSMV2
     Cert = Shapes::StringShape.new(name: 'Cert')
     Certificates = Shapes::StructureShape.new(name: 'Certificates')
     CloudHsmAccessDeniedException = Shapes::StructureShape.new(name: 'CloudHsmAccessDeniedException')
+    CloudHsmArn = Shapes::StringShape.new(name: 'CloudHsmArn')
     CloudHsmInternalFailureException = Shapes::StructureShape.new(name: 'CloudHsmInternalFailureException')
     CloudHsmInvalidRequestException = Shapes::StructureShape.new(name: 'CloudHsmInvalidRequestException')
     CloudHsmResourceNotFoundException = Shapes::StructureShape.new(name: 'CloudHsmResourceNotFoundException')
@@ -49,6 +51,8 @@ module Aws::CloudHSMV2
     DeleteClusterResponse = Shapes::StructureShape.new(name: 'DeleteClusterResponse')
     DeleteHsmRequest = Shapes::StructureShape.new(name: 'DeleteHsmRequest')
     DeleteHsmResponse = Shapes::StructureShape.new(name: 'DeleteHsmResponse')
+    DeleteResourcePolicyRequest = Shapes::StructureShape.new(name: 'DeleteResourcePolicyRequest')
+    DeleteResourcePolicyResponse = Shapes::StructureShape.new(name: 'DeleteResourcePolicyResponse')
     DescribeBackupsRequest = Shapes::StructureShape.new(name: 'DescribeBackupsRequest')
     DescribeBackupsResponse = Shapes::StructureShape.new(name: 'DescribeBackupsResponse')
     DescribeClustersRequest = Shapes::StructureShape.new(name: 'DescribeClustersRequest')
@@ -59,6 +63,8 @@ module Aws::CloudHSMV2
     ExternalSubnetMapping = Shapes::MapShape.new(name: 'ExternalSubnetMapping')
     Field = Shapes::StringShape.new(name: 'Field')
     Filters = Shapes::MapShape.new(name: 'Filters')
+    GetResourcePolicyRequest = Shapes::StructureShape.new(name: 'GetResourcePolicyRequest')
+    GetResourcePolicyResponse = Shapes::StructureShape.new(name: 'GetResourcePolicyResponse')
     Hsm = Shapes::StructureShape.new(name: 'Hsm')
     HsmId = Shapes::StringShape.new(name: 'HsmId')
     HsmState = Shapes::StringShape.new(name: 'HsmState')
@@ -76,8 +82,11 @@ module Aws::CloudHSMV2
     ModifyClusterResponse = Shapes::StructureShape.new(name: 'ModifyClusterResponse')
     NextToken = Shapes::StringShape.new(name: 'NextToken')
     PreCoPassword = Shapes::StringShape.new(name: 'PreCoPassword')
+    PutResourcePolicyRequest = Shapes::StructureShape.new(name: 'PutResourcePolicyRequest')
+    PutResourcePolicyResponse = Shapes::StructureShape.new(name: 'PutResourcePolicyResponse')
     Region = Shapes::StringShape.new(name: 'Region')
     ResourceId = Shapes::StringShape.new(name: 'ResourceId')
+    ResourcePolicy = Shapes::StringShape.new(name: 'ResourcePolicy')
     RestoreBackupRequest = Shapes::StructureShape.new(name: 'RestoreBackupRequest')
     RestoreBackupResponse = Shapes::StructureShape.new(name: 'RestoreBackupResponse')
     SecurityGroup = Shapes::StringShape.new(name: 'SecurityGroup')
@@ -100,6 +109,7 @@ module Aws::CloudHSMV2
     errorMessage = Shapes::StringShape.new(name: 'errorMessage')
 
     Backup.add_member(:backup_id, Shapes::ShapeRef.new(shape: BackupId, required: true, location_name: "BackupId"))
+    Backup.add_member(:backup_arn, Shapes::ShapeRef.new(shape: BackupArn, location_name: "BackupArn"))
     Backup.add_member(:backup_state, Shapes::ShapeRef.new(shape: BackupState, location_name: "BackupState"))
     Backup.add_member(:cluster_id, Shapes::ShapeRef.new(shape: ClusterId, location_name: "ClusterId"))
     Backup.add_member(:create_timestamp, Shapes::ShapeRef.new(shape: Timestamp, location_name: "CreateTimestamp"))
@@ -175,7 +185,7 @@ module Aws::CloudHSMV2
 
     CreateClusterRequest.add_member(:backup_retention_policy, Shapes::ShapeRef.new(shape: BackupRetentionPolicy, location_name: "BackupRetentionPolicy"))
     CreateClusterRequest.add_member(:hsm_type, Shapes::ShapeRef.new(shape: HsmType, required: true, location_name: "HsmType"))
-    CreateClusterRequest.add_member(:source_backup_id, Shapes::ShapeRef.new(shape: BackupId, location_name: "SourceBackupId"))
+    CreateClusterRequest.add_member(:source_backup_id, Shapes::ShapeRef.new(shape: BackupArn, location_name: "SourceBackupId"))
     CreateClusterRequest.add_member(:subnet_ids, Shapes::ShapeRef.new(shape: SubnetIds, required: true, location_name: "SubnetIds"))
     CreateClusterRequest.add_member(:tag_list, Shapes::ShapeRef.new(shape: TagList, location_name: "TagList"))
     CreateClusterRequest.add_member(:mode, Shapes::ShapeRef.new(shape: ClusterMode, location_name: "Mode"))
@@ -213,9 +223,17 @@ module Aws::CloudHSMV2
     DeleteHsmResponse.add_member(:hsm_id, Shapes::ShapeRef.new(shape: HsmId, location_name: "HsmId"))
     DeleteHsmResponse.struct_class = Types::DeleteHsmResponse
 
+    DeleteResourcePolicyRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: CloudHsmArn, location_name: "ResourceArn"))
+    DeleteResourcePolicyRequest.struct_class = Types::DeleteResourcePolicyRequest
+
+    DeleteResourcePolicyResponse.add_member(:resource_arn, Shapes::ShapeRef.new(shape: CloudHsmArn, location_name: "ResourceArn"))
+    DeleteResourcePolicyResponse.add_member(:policy, Shapes::ShapeRef.new(shape: ResourcePolicy, location_name: "Policy"))
+    DeleteResourcePolicyResponse.struct_class = Types::DeleteResourcePolicyResponse
+
     DescribeBackupsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: NextToken, location_name: "NextToken"))
     DescribeBackupsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: BackupsMaxSize, location_name: "MaxResults"))
     DescribeBackupsRequest.add_member(:filters, Shapes::ShapeRef.new(shape: Filters, location_name: "Filters"))
+    DescribeBackupsRequest.add_member(:shared, Shapes::ShapeRef.new(shape: Boolean, location_name: "Shared"))
     DescribeBackupsRequest.add_member(:sort_ascending, Shapes::ShapeRef.new(shape: Boolean, location_name: "SortAscending"))
     DescribeBackupsRequest.struct_class = Types::DescribeBackupsRequest
 
@@ -244,6 +262,12 @@ module Aws::CloudHSMV2
     Filters.key = Shapes::ShapeRef.new(shape: Field)
     Filters.value = Shapes::ShapeRef.new(shape: Strings)
 
+    GetResourcePolicyRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: CloudHsmArn, location_name: "ResourceArn"))
+    GetResourcePolicyRequest.struct_class = Types::GetResourcePolicyRequest
+
+    GetResourcePolicyResponse.add_member(:policy, Shapes::ShapeRef.new(shape: ResourcePolicy, location_name: "Policy"))
+    GetResourcePolicyResponse.struct_class = Types::GetResourcePolicyResponse
+
     Hsm.add_member(:availability_zone, Shapes::ShapeRef.new(shape: ExternalAz, location_name: "AvailabilityZone"))
     Hsm.add_member(:cluster_id, Shapes::ShapeRef.new(shape: ClusterId, location_name: "ClusterId"))
     Hsm.add_member(:subnet_id, Shapes::ShapeRef.new(shape: SubnetId, location_name: "SubnetId"))
@@ -288,6 +312,14 @@ module Aws::CloudHSMV2
     ModifyClusterResponse.add_member(:cluster, Shapes::ShapeRef.new(shape: Cluster, location_name: "Cluster"))
     ModifyClusterResponse.struct_class = Types::ModifyClusterResponse
 
+    PutResourcePolicyRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: CloudHsmArn, location_name: "ResourceArn"))
+    PutResourcePolicyRequest.add_member(:policy, Shapes::ShapeRef.new(shape: ResourcePolicy, location_name: "Policy"))
+    PutResourcePolicyRequest.struct_class = Types::PutResourcePolicyRequest
+
+    PutResourcePolicyResponse.add_member(:resource_arn, Shapes::ShapeRef.new(shape: CloudHsmArn, location_name: "ResourceArn"))
+    PutResourcePolicyResponse.add_member(:policy, Shapes::ShapeRef.new(shape: ResourcePolicy, location_name: "Policy"))
+    PutResourcePolicyResponse.struct_class = Types::PutResourcePolicyResponse
+
     RestoreBackupRequest.add_member(:backup_id, Shapes::ShapeRef.new(shape: BackupId, required: true, location_name: "BackupId"))
     RestoreBackupRequest.struct_class = Types::RestoreBackupRequest
 
@@ -326,6 +358,7 @@ module Aws::CloudHSMV2
 
       api.metadata = {
         "apiVersion" => "2017-04-28",
+        "auth" => ["aws.auth#sigv4"],
         "endpointPrefix" => "cloudhsmv2",
         "jsonVersion" => "1.1",
         "protocol" => "json",
@@ -420,6 +453,19 @@ module Aws::CloudHSMV2
         o.errors << Shapes::ShapeRef.new(shape: CloudHsmAccessDeniedException)
       end)
 
+      api.add_operation(:delete_resource_policy, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "DeleteResourcePolicy"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: DeleteResourcePolicyRequest)
+        o.output = Shapes::ShapeRef.new(shape: DeleteResourcePolicyResponse)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmInternalFailureException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmServiceException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmInvalidRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmResourceNotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmAccessDeniedException)
+      end)
+
       api.add_operation(:describe_backups, Seahorse::Model::Operation.new.tap do |o|
         o.name = "DescribeBackups"
         o.http_method = "POST"
@@ -459,6 +505,19 @@ module Aws::CloudHSMV2
         )
       end)
 
+      api.add_operation(:get_resource_policy, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "GetResourcePolicy"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: GetResourcePolicyRequest)
+        o.output = Shapes::ShapeRef.new(shape: GetResourcePolicyResponse)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmInternalFailureException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmServiceException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmInvalidRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmResourceNotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmAccessDeniedException)
+      end)
+
       api.add_operation(:initialize_cluster, Seahorse::Model::Operation.new.tap do |o|
         o.name = "InitializeCluster"
         o.http_method = "POST"
@@ -518,6 +577,19 @@ module Aws::CloudHSMV2
         o.errors << Shapes::ShapeRef.new(shape: CloudHsmServiceException)
       end)
 
+      api.add_operation(:put_resource_policy, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "PutResourcePolicy"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: PutResourcePolicyRequest)
+        o.output = Shapes::ShapeRef.new(shape: PutResourcePolicyResponse)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmInternalFailureException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmServiceException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmInvalidRequestException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmResourceNotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: CloudHsmAccessDeniedException)
+      end)
+
       api.add_operation(:restore_backup, Seahorse::Model::Operation.new.tap do |o|
         o.name = "RestoreBackup"
         o.http_method = "POST"

data/lib/aws-sdk-cloudhsmv2/endpoints.rb

@@ -96,6 +96,20 @@ module Aws::CloudHSMV2
       end
     end
 
+    class DeleteResourcePolicy
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::CloudHSMV2::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
+
     class DescribeBackups
       def self.build(context)
         unless context.config.regional_endpoint
@@ -124,6 +138,20 @@ module Aws::CloudHSMV2
       end
     end
 
+    class GetResourcePolicy
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::CloudHSMV2::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
+
     class InitializeCluster
       def self.build(context)
         unless context.config.regional_endpoint
@@ -180,6 +208,20 @@ module Aws::CloudHSMV2
       end
     end
 
+    class PutResourcePolicy
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::CloudHSMV2::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
+
     class RestoreBackup
       def self.build(context)
         unless context.config.regional_endpoint

data/lib/aws-sdk-cloudhsmv2/plugins/endpoints.rb

@@ -70,10 +70,14 @@ module Aws::CloudHSMV2
             Aws::CloudHSMV2::Endpoints::DeleteCluster.build(context)
           when :delete_hsm
             Aws::CloudHSMV2::Endpoints::DeleteHsm.build(context)
+          when :delete_resource_policy
+            Aws::CloudHSMV2::Endpoints::DeleteResourcePolicy.build(context)
           when :describe_backups
             Aws::CloudHSMV2::Endpoints::DescribeBackups.build(context)
           when :describe_clusters
             Aws::CloudHSMV2::Endpoints::DescribeClusters.build(context)
+          when :get_resource_policy
+            Aws::CloudHSMV2::Endpoints::GetResourcePolicy.build(context)
           when :initialize_cluster
             Aws::CloudHSMV2::Endpoints::InitializeCluster.build(context)
           when :list_tags
@@ -82,6 +86,8 @@ module Aws::CloudHSMV2
             Aws::CloudHSMV2::Endpoints::ModifyBackupAttributes.build(context)
           when :modify_cluster
             Aws::CloudHSMV2::Endpoints::ModifyCluster.build(context)
+          when :put_resource_policy
+            Aws::CloudHSMV2::Endpoints::PutResourcePolicy.build(context)
           when :restore_backup
             Aws::CloudHSMV2::Endpoints::RestoreBackup.build(context)
           when :tag_resource

data/lib/aws-sdk-cloudhsmv2/types.rb

@@ -10,8 +10,8 @@
 module Aws::CloudHSMV2
   module Types
 
-    # Contains information about a backup of an AWS CloudHSM cluster. All
-    # backup objects contain the `BackupId`, `BackupState`, `ClusterId`, and
+    # Contains information about a backup of an CloudHSM cluster. All backup
+    # objects contain the `BackupId`, `BackupState`, `ClusterId`, and
     # `CreateTimestamp` parameters. Backups that were copied into a
     # destination region additionally contain the `CopyTimestamp`,
     # `SourceBackup`, `SourceCluster`, and `SourceRegion` parameters. A
@@ -22,6 +22,10 @@ module Aws::CloudHSMV2
     #   The identifier (ID) of the backup.
     #   @return [String]
     #
+    # @!attribute [rw] backup_arn
+    #   The Amazon Resource Name (ARN) of the backup.
+    #   @return [String]
+    #
     # @!attribute [rw] backup_state
     #   The state of the backup.
     #   @return [String]
@@ -69,7 +73,7 @@ module Aws::CloudHSMV2
     #   @return [Array<Types::Tag>]
     #
     # @!attribute [rw] hsm_type
-    #   The HSM type of the cluster that was backed up.
+    #   The HSM type used to create the backup.
     #   @return [String]
     #
     # @!attribute [rw] mode
@@ -80,6 +84,7 @@ module Aws::CloudHSMV2
     #
     class Backup < Struct.new(
       :backup_id,
+      :backup_arn,
       :backup_state,
       :cluster_id,
       :create_timestamp,
@@ -129,7 +134,7 @@ module Aws::CloudHSMV2
     #   @return [String]
     #
     # @!attribute [rw] aws_hardware_certificate
-    #   The HSM hardware certificate issued (signed) by AWS CloudHSM.
+    #   The HSM hardware certificate issued (signed) by CloudHSM.
     #   @return [String]
     #
     # @!attribute [rw] manufacturer_hardware_certificate
@@ -168,8 +173,8 @@ module Aws::CloudHSMV2
       include Aws::Structure
     end
 
-    # The request was rejected because of an AWS CloudHSM internal failure.
-    # The request can be retried.
+    # The request was rejected because of an CloudHSM internal failure. The
+    # request can be retried.
     #
     # @!attribute [rw] message
     #   @return [String]
@@ -236,7 +241,7 @@ module Aws::CloudHSMV2
       include Aws::Structure
     end
 
-    # Contains information about an AWS CloudHSM cluster.
+    # Contains information about an CloudHSM cluster.
     #
     # @!attribute [rw] backup_policy
     #   The cluster's backup policy.
@@ -385,9 +390,11 @@ module Aws::CloudHSMV2
     #   @return [String]
     #
     # @!attribute [rw] source_backup_id
-    #   The identifier (ID) of the cluster backup to restore. Use this value
-    #   to restore the cluster from a backup instead of creating a new
-    #   cluster. To find the backup ID, use DescribeBackups.
+    #   The identifier (ID) or the Amazon Resource Name (ARN) of the cluster
+    #   backup to restore. Use this value to restore the cluster from a
+    #   backup instead of creating a new cluster. To find the backup ID or
+    #   ARN, use DescribeBackups. *If using a backup in another account, the
+    #   full ARN must be supplied.*
     #   @return [String]
     #
     # @!attribute [rw] subnet_ids
@@ -565,6 +572,37 @@ module Aws::CloudHSMV2
       include Aws::Structure
     end
 
+    # @!attribute [rw] resource_arn
+    #   Amazon Resource Name (ARN) of the resource from which the policy
+    #   will be removed.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudhsmv2-2017-04-28/DeleteResourcePolicyRequest AWS API Documentation
+    #
+    class DeleteResourcePolicyRequest < Struct.new(
+      :resource_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] resource_arn
+    #   Amazon Resource Name (ARN) of the resource from which the policy was
+    #   deleted.
+    #   @return [String]
+    #
+    # @!attribute [rw] policy
+    #   The policy previously attached to the resource.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudhsmv2-2017-04-28/DeleteResourcePolicyResponse AWS API Documentation
+    #
+    class DeleteResourcePolicyResponse < Struct.new(
+      :resource_arn,
+      :policy)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] next_token
     #   The `NextToken` value that you received in the previous response.
     #   Use this value to get more backups.
@@ -599,6 +637,26 @@ module Aws::CloudHSMV2
     #   with a backup retention policy defined at the cluster.
     #   @return [Hash<String,Array<String>>]
     #
+    # @!attribute [rw] shared
+    #   Describe backups that are shared with you.
+    #
+    #   <note markdown="1"> By default when using this option, the command returns backups that
+    #   have been shared using a standard Resource Access Manager resource
+    #   share. In order for a backup that was shared using the
+    #   PutResourcePolicy command to be returned, the share must be promoted
+    #   to a standard resource share using the RAM
+    #   [PromoteResourceShareCreatedFromPolicy][1] API operation. For more
+    #   information about sharing backups, see [ Working with shared
+    #   backups][2] in the CloudHSM User Guide.
+    #
+    #    </note>
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/cli/latest/reference/ram/promote-resource-share-created-from-policy.html
+    #   [2]: https://docs.aws.amazon.com/cloudhsm/latest/userguide/sharing.html
+    #   @return [Boolean]
+    #
     # @!attribute [rw] sort_ascending
     #   Designates whether or not to sort the return backups by ascending
     #   chronological order of generation.
@@ -610,6 +668,7 @@ module Aws::CloudHSMV2
       :next_token,
       :max_results,
       :filters,
+      :shared,
       :sort_ascending)
       SENSITIVE = []
       include Aws::Structure
@@ -721,7 +780,32 @@ module Aws::CloudHSMV2
       include Aws::Structure
     end
 
-    # Contains information about a hardware security module (HSM) in an AWS
+    # @!attribute [rw] resource_arn
+    #   Amazon Resource Name (ARN) of the resource to which a policy is
+    #   attached.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudhsmv2-2017-04-28/GetResourcePolicyRequest AWS API Documentation
+    #
+    class GetResourcePolicyRequest < Struct.new(
+      :resource_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] policy
+    #   The policy attached to a resource.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudhsmv2-2017-04-28/GetResourcePolicyResponse AWS API Documentation
+    #
+    class GetResourcePolicyResponse < Struct.new(
+      :policy)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains information about a hardware security module (HSM) in an
     # CloudHSM cluster.
     #
     # @!attribute [rw] availability_zone
@@ -885,7 +969,7 @@ module Aws::CloudHSMV2
     end
 
     # @!attribute [rw] backup
-    #   Contains information about a backup of an AWS CloudHSM cluster. All
+    #   Contains information about a backup of an CloudHSM cluster. All
     #   backup objects contain the `BackupId`, `BackupState`, `ClusterId`,
     #   and `CreateTimestamp` parameters. Backups that were copied into a
     #   destination region additionally contain the `CopyTimestamp`,
@@ -921,7 +1005,7 @@ module Aws::CloudHSMV2
     end
 
     # @!attribute [rw] cluster
-    #   Contains information about an AWS CloudHSM cluster.
+    #   Contains information about an CloudHSM cluster.
     #   @return [Types::Cluster]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/cloudhsmv2-2017-04-28/ModifyClusterResponse AWS API Documentation
@@ -932,6 +1016,49 @@ module Aws::CloudHSMV2
       include Aws::Structure
     end
 
+    # @!attribute [rw] resource_arn
+    #   Amazon Resource Name (ARN) of the resource to which you want to
+    #   attach a policy.
+    #   @return [String]
+    #
+    # @!attribute [rw] policy
+    #   The policy you want to associate with a resource.
+    #
+    #   For an example policy, see [ Working with shared backups][1] in the
+    #   CloudHSM User Guide
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/cloudhsm/latest/userguide/sharing.html
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudhsmv2-2017-04-28/PutResourcePolicyRequest AWS API Documentation
+    #
+    class PutResourcePolicyRequest < Struct.new(
+      :resource_arn,
+      :policy)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] resource_arn
+    #   Amazon Resource Name (ARN) of the resource to which a policy is
+    #   attached.
+    #   @return [String]
+    #
+    # @!attribute [rw] policy
+    #   The policy attached to a resource.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cloudhsmv2-2017-04-28/PutResourcePolicyResponse AWS API Documentation
+    #
+    class PutResourcePolicyResponse < Struct.new(
+      :resource_arn,
+      :policy)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] backup_id
     #   The ID of the backup to be restored. To find the ID of a backup, use
     #   the DescribeBackups operation.

data/lib/aws-sdk-cloudhsmv2.rb

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-cloudhsmv2/customizations'
 # @!group service
 module Aws::CloudHSMV2
 
-  GEM_VERSION = '1.60.0'
+  GEM_VERSION = '1.61.0'
 
 end

data/sig/client.rbs

@@ -158,6 +158,17 @@ module Aws
                       ) -> _DeleteHsmResponseSuccess
                     | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DeleteHsmResponseSuccess
 
+      interface _DeleteResourcePolicyResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::DeleteResourcePolicyResponse]
+        def resource_arn: () -> ::String
+        def policy: () -> ::String
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/CloudHSMV2/Client.html#delete_resource_policy-instance_method
+      def delete_resource_policy: (
+                                    ?resource_arn: ::String
+                                  ) -> _DeleteResourcePolicyResponseSuccess
+                                | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DeleteResourcePolicyResponseSuccess
+
       interface _DescribeBackupsResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::DescribeBackupsResponse]
         def backups: () -> ::Array[Types::Backup]
@@ -168,6 +179,7 @@ module Aws
                               ?next_token: ::String,
                               ?max_results: ::Integer,
                               ?filters: Hash[::String, Array[::String]],
+                              ?shared: bool,
                               ?sort_ascending: bool
                             ) -> _DescribeBackupsResponseSuccess
                           | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeBackupsResponseSuccess
@@ -185,6 +197,16 @@ module Aws
                              ) -> _DescribeClustersResponseSuccess
                            | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeClustersResponseSuccess
 
+      interface _GetResourcePolicyResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::GetResourcePolicyResponse]
+        def policy: () -> ::String
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/CloudHSMV2/Client.html#get_resource_policy-instance_method
+      def get_resource_policy: (
+                                 ?resource_arn: ::String
+                               ) -> _GetResourcePolicyResponseSuccess
+                             | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _GetResourcePolicyResponseSuccess
+
       interface _InitializeClusterResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::InitializeClusterResponse]
         def state: () -> ("CREATE_IN_PROGRESS" | "UNINITIALIZED" | "INITIALIZE_IN_PROGRESS" | "INITIALIZED" | "ACTIVE" | "UPDATE_IN_PROGRESS" | "DELETE_IN_PROGRESS" | "DELETED" | "DEGRADED")
@@ -236,6 +258,18 @@ module Aws
                           ) -> _ModifyClusterResponseSuccess
                         | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ModifyClusterResponseSuccess
 
+      interface _PutResourcePolicyResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::PutResourcePolicyResponse]
+        def resource_arn: () -> ::String
+        def policy: () -> ::String
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/CloudHSMV2/Client.html#put_resource_policy-instance_method
+      def put_resource_policy: (
+                                 ?resource_arn: ::String,
+                                 ?policy: ::String
+                               ) -> _PutResourcePolicyResponseSuccess
+                             | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _PutResourcePolicyResponseSuccess
+
       interface _RestoreBackupResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::RestoreBackupResponse]
         def backup: () -> Types::Backup

data/sig/types.rbs

@@ -10,6 +10,7 @@ module Aws::CloudHSMV2
 
     class Backup
       attr_accessor backup_id: ::String
+      attr_accessor backup_arn: ::String
       attr_accessor backup_state: ("CREATE_IN_PROGRESS" | "READY" | "DELETED" | "PENDING_DELETION")
       attr_accessor cluster_id: ::String
       attr_accessor create_timestamp: ::Time
@@ -162,10 +163,22 @@ module Aws::CloudHSMV2
       SENSITIVE: []
     end
 
+    class DeleteResourcePolicyRequest
+      attr_accessor resource_arn: ::String
+      SENSITIVE: []
+    end
+
+    class DeleteResourcePolicyResponse
+      attr_accessor resource_arn: ::String
+      attr_accessor policy: ::String
+      SENSITIVE: []
+    end
+
     class DescribeBackupsRequest
       attr_accessor next_token: ::String
       attr_accessor max_results: ::Integer
       attr_accessor filters: ::Hash[::String, ::Array[::String]]
+      attr_accessor shared: bool
       attr_accessor sort_ascending: bool
       SENSITIVE: []
     end
@@ -197,6 +210,16 @@ module Aws::CloudHSMV2
       SENSITIVE: []
     end
 
+    class GetResourcePolicyRequest
+      attr_accessor resource_arn: ::String
+      SENSITIVE: []
+    end
+
+    class GetResourcePolicyResponse
+      attr_accessor policy: ::String
+      SENSITIVE: []
+    end
+
     class Hsm
       attr_accessor availability_zone: ::String
       attr_accessor cluster_id: ::String
@@ -257,6 +280,18 @@ module Aws::CloudHSMV2
       SENSITIVE: []
     end
 
+    class PutResourcePolicyRequest
+      attr_accessor resource_arn: ::String
+      attr_accessor policy: ::String
+      SENSITIVE: []
+    end
+
+    class PutResourcePolicyResponse
+      attr_accessor resource_arn: ::String
+      attr_accessor policy: ::String
+      SENSITIVE: []
+    end
+
     class RestoreBackupRequest
       attr_accessor backup_id: ::String
       SENSITIVE: []

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-cloudhsmv2
 version: !ruby/object:Gem::Version
-  version: 1.60.0
+  version: 1.61.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-06-25 00:00:00.000000000 Z
+date: 2024-06-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core