aws-sdk-codebuild 1.73.0 → 1.77.0

data/lib/aws-sdk-codebuild/client_api.rb

@@ -32,6 +32,7 @@ module Aws::CodeBuild
     BatchGetReportsOutput = Shapes::StructureShape.new(name: 'BatchGetReportsOutput')
     BatchRestrictions = Shapes::StructureShape.new(name: 'BatchRestrictions')
     Boolean = Shapes::BooleanShape.new(name: 'Boolean')
+    BucketOwnerAccess = Shapes::StringShape.new(name: 'BucketOwnerAccess')
     Build = Shapes::StructureShape.new(name: 'Build')
     BuildArtifacts = Shapes::StructureShape.new(name: 'BuildArtifacts')
     BuildArtifactsList = Shapes::ListShape.new(name: 'BuildArtifactsList')
@@ -175,6 +176,7 @@ module Aws::CodeBuild
     ProjectSource = Shapes::StructureShape.new(name: 'ProjectSource')
     ProjectSourceVersion = Shapes::StructureShape.new(name: 'ProjectSourceVersion')
     ProjectSources = Shapes::ListShape.new(name: 'ProjectSources')
+    ProjectVisibilityType = Shapes::StringShape.new(name: 'ProjectVisibilityType')
     Projects = Shapes::ListShape.new(name: 'Projects')
     PutResourcePolicyInput = Shapes::StructureShape.new(name: 'PutResourcePolicyInput')
     PutResourcePolicyOutput = Shapes::StructureShape.new(name: 'PutResourcePolicyOutput')
@@ -242,6 +244,8 @@ module Aws::CodeBuild
     Timestamp = Shapes::TimestampShape.new(name: 'Timestamp')
     UpdateProjectInput = Shapes::StructureShape.new(name: 'UpdateProjectInput')
     UpdateProjectOutput = Shapes::StructureShape.new(name: 'UpdateProjectOutput')
+    UpdateProjectVisibilityInput = Shapes::StructureShape.new(name: 'UpdateProjectVisibilityInput')
+    UpdateProjectVisibilityOutput = Shapes::StructureShape.new(name: 'UpdateProjectVisibilityOutput')
     UpdateReportGroupInput = Shapes::StructureShape.new(name: 'UpdateReportGroupInput')
     UpdateReportGroupOutput = Shapes::StructureShape.new(name: 'UpdateReportGroupOutput')
     UpdateWebhookInput = Shapes::StructureShape.new(name: 'UpdateWebhookInput')
@@ -344,6 +348,7 @@ module Aws::CodeBuild
     BuildArtifacts.add_member(:override_artifact_name, Shapes::ShapeRef.new(shape: WrapperBoolean, location_name: "overrideArtifactName"))
     BuildArtifacts.add_member(:encryption_disabled, Shapes::ShapeRef.new(shape: WrapperBoolean, location_name: "encryptionDisabled"))
     BuildArtifacts.add_member(:artifact_identifier, Shapes::ShapeRef.new(shape: String, location_name: "artifactIdentifier"))
+    BuildArtifacts.add_member(:bucket_owner_access, Shapes::ShapeRef.new(shape: BucketOwnerAccess, location_name: "bucketOwnerAccess"))
     BuildArtifacts.struct_class = Types::BuildArtifacts
 
     BuildArtifactsList.member = Shapes::ShapeRef.new(shape: BuildArtifacts)
@@ -815,6 +820,9 @@ module Aws::CodeBuild
     Project.add_member(:file_system_locations, Shapes::ShapeRef.new(shape: ProjectFileSystemLocations, location_name: "fileSystemLocations"))
     Project.add_member(:build_batch_config, Shapes::ShapeRef.new(shape: ProjectBuildBatchConfig, location_name: "buildBatchConfig"))
     Project.add_member(:concurrent_build_limit, Shapes::ShapeRef.new(shape: WrapperInt, location_name: "concurrentBuildLimit"))
+    Project.add_member(:project_visibility, Shapes::ShapeRef.new(shape: ProjectVisibilityType, location_name: "projectVisibility"))
+    Project.add_member(:public_project_alias, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "publicProjectAlias"))
+    Project.add_member(:resource_access_role, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "resourceAccessRole"))
     Project.struct_class = Types::Project
 
     ProjectArns.member = Shapes::ShapeRef.new(shape: NonEmptyString)
@@ -828,6 +836,7 @@ module Aws::CodeBuild
     ProjectArtifacts.add_member(:override_artifact_name, Shapes::ShapeRef.new(shape: WrapperBoolean, location_name: "overrideArtifactName"))
     ProjectArtifacts.add_member(:encryption_disabled, Shapes::ShapeRef.new(shape: WrapperBoolean, location_name: "encryptionDisabled"))
     ProjectArtifacts.add_member(:artifact_identifier, Shapes::ShapeRef.new(shape: String, location_name: "artifactIdentifier"))
+    ProjectArtifacts.add_member(:bucket_owner_access, Shapes::ShapeRef.new(shape: BucketOwnerAccess, location_name: "bucketOwnerAccess"))
     ProjectArtifacts.struct_class = Types::ProjectArtifacts
 
     ProjectArtifactsList.member = Shapes::ShapeRef.new(shape: ProjectArtifacts)
@@ -985,6 +994,7 @@ module Aws::CodeBuild
     S3LogsConfig.add_member(:status, Shapes::ShapeRef.new(shape: LogsConfigStatusType, required: true, location_name: "status"))
     S3LogsConfig.add_member(:location, Shapes::ShapeRef.new(shape: String, location_name: "location"))
     S3LogsConfig.add_member(:encryption_disabled, Shapes::ShapeRef.new(shape: WrapperBoolean, location_name: "encryptionDisabled"))
+    S3LogsConfig.add_member(:bucket_owner_access, Shapes::ShapeRef.new(shape: BucketOwnerAccess, location_name: "bucketOwnerAccess"))
     S3LogsConfig.struct_class = Types::S3LogsConfig
 
     S3ReportExportConfig.add_member(:bucket, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "bucket"))
@@ -1147,6 +1157,16 @@ module Aws::CodeBuild
     UpdateProjectOutput.add_member(:project, Shapes::ShapeRef.new(shape: Project, location_name: "project"))
     UpdateProjectOutput.struct_class = Types::UpdateProjectOutput
 
+    UpdateProjectVisibilityInput.add_member(:project_arn, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "projectArn"))
+    UpdateProjectVisibilityInput.add_member(:project_visibility, Shapes::ShapeRef.new(shape: ProjectVisibilityType, required: true, location_name: "projectVisibility"))
+    UpdateProjectVisibilityInput.add_member(:resource_access_role, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "resourceAccessRole"))
+    UpdateProjectVisibilityInput.struct_class = Types::UpdateProjectVisibilityInput
+
+    UpdateProjectVisibilityOutput.add_member(:project_arn, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "projectArn"))
+    UpdateProjectVisibilityOutput.add_member(:public_project_alias, Shapes::ShapeRef.new(shape: NonEmptyString, location_name: "publicProjectAlias"))
+    UpdateProjectVisibilityOutput.add_member(:project_visibility, Shapes::ShapeRef.new(shape: ProjectVisibilityType, location_name: "projectVisibility"))
+    UpdateProjectVisibilityOutput.struct_class = Types::UpdateProjectVisibilityOutput
+
     UpdateReportGroupInput.add_member(:arn, Shapes::ShapeRef.new(shape: NonEmptyString, required: true, location_name: "arn"))
     UpdateReportGroupInput.add_member(:export_config, Shapes::ShapeRef.new(shape: ReportExportConfig, location_name: "exportConfig"))
     UpdateReportGroupInput.add_member(:tags, Shapes::ShapeRef.new(shape: TagList, location_name: "tags"))
@@ -1677,6 +1697,16 @@ module Aws::CodeBuild
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
       end)
 
+      api.add_operation(:update_project_visibility, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "UpdateProjectVisibility"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: UpdateProjectVisibilityInput)
+        o.output = Shapes::ShapeRef.new(shape: UpdateProjectVisibilityOutput)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidInputException)
+        o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+      end)
+
       api.add_operation(:update_report_group, Seahorse::Model::Operation.new.tap do |o|
         o.name = "UpdateReportGroup"
         o.http_method = "POST"

data/lib/aws-sdk-codebuild/types.rb

@@ -427,8 +427,8 @@ module Aws::CodeBuild
     #   * If CodePipeline started the build, the pipeline's name (for
     #     example, `codepipeline/my-demo-pipeline`).
     #
-    #   * If an Identity and Access Management user started the build, the
-    #     user's name (for example, `MyUserName`).
+    #   * If an IAM user started the build, the user's name (for example,
+    #     `MyUserName`).
     #
     #   * If the Jenkins plugin for CodeBuild started the build, the string
     #     `CodeBuild-Jenkins-Plugin`.
@@ -579,6 +579,53 @@ module Aws::CodeBuild
     #   An identifier for this artifact definition.
     #   @return [String]
     #
+    # @!attribute [rw] bucket_owner_access
+    #   Specifies the bucket owner's access for objects that another
+    #   account uploads to their Amazon S3 bucket. By default, only the
+    #   account that uploads the objects to the bucket has access to these
+    #   objects. This property allows you to give the bucket owner access to
+    #   these objects.
+    #
+    #   <note markdown="1"> To use this property, your CodeBuild service role must have the
+    #   `s3:PutBucketAcl` permission. This permission allows CodeBuild to
+    #   modify the access control list for the bucket.
+    #
+    #    </note>
+    #
+    #   This property can be one of the following values:
+    #
+    #   NONE
+    #
+    #   : The bucket owner does not have access to the objects. This is the
+    #     default.
+    #
+    #   READ\_ONLY
+    #
+    #   : The bucket owner has read-only access to the objects. The
+    #     uploading account retains ownership of the objects.
+    #
+    #   FULL
+    #
+    #   : The bucket owner has full access to the objects. Object ownership
+    #     is determined by the following criteria:
+    #
+    #     * If the bucket is configured with the **Bucket owner preferred**
+    #       setting, the bucket owner owns the objects. The uploading
+    #       account will have object access as specified by the bucket's
+    #       policy.
+    #
+    #     * Otherwise, the uploading account retains ownership of the
+    #       objects.
+    #
+    #     For more information about Amazon S3 object ownership, see
+    #     [Controlling ownership of uploaded objects using S3 Object
+    #     Ownership][1] in the *Amazon Simple Storage Service User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/codebuild-2016-10-06/BuildArtifacts AWS API Documentation
     #
     class BuildArtifacts < Struct.new(
@@ -587,7 +634,8 @@ module Aws::CodeBuild
       :md5sum,
       :override_artifact_name,
       :encryption_disabled,
-      :artifact_identifier)
+      :artifact_identifier,
+      :bucket_owner_access)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -722,8 +770,7 @@ module Aws::CodeBuild
     #   * If CodePipeline started the build, the pipeline's name (for
     #     example, `codepipeline/my-demo-pipeline`).
     #
-    #   * If an Identity and Access Management user started the build, the
-    #     user's name.
+    #   * If an IAM user started the build, the user's name.
     #
     #   * If the Jenkins plugin for CodeBuild started the build, the string
     #     `CodeBuild-Jenkins-Plugin`.
@@ -1453,6 +1500,7 @@ module Aws::CodeBuild
     #           override_artifact_name: false,
     #           encryption_disabled: false,
     #           artifact_identifier: "String",
+    #           bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #         },
     #         secondary_artifacts: [
     #           {
@@ -1465,6 +1513,7 @@ module Aws::CodeBuild
     #             override_artifact_name: false,
     #             encryption_disabled: false,
     #             artifact_identifier: "String",
+    #             bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #           },
     #         ],
     #         cache: {
@@ -1517,6 +1566,7 @@ module Aws::CodeBuild
     #             status: "ENABLED", # required, accepts ENABLED, DISABLED
     #             location: "String",
     #             encryption_disabled: false,
+    #             bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #           },
     #         },
     #         file_system_locations: [
@@ -1616,9 +1666,9 @@ module Aws::CodeBuild
     #   @return [Types::ProjectEnvironment]
     #
     # @!attribute [rw] service_role
-    #   The ARN of the Identity and Access Management role that enables
-    #   CodeBuild to interact with dependent Amazon Web Services services on
-    #   behalf of the Amazon Web Services account.
+    #   The ARN of the IAM role that enables CodeBuild to interact with
+    #   dependent Amazon Web Services services on behalf of the Amazon Web
+    #   Services account.
     #   @return [String]
     #
     # @!attribute [rw] timeout_in_minutes
@@ -2347,10 +2397,9 @@ module Aws::CodeBuild
     #   We strongly discourage the use of `PLAINTEXT` environment variables
     #   to store sensitive values, especially Amazon Web Services secret key
     #   IDs and secret access keys. `PLAINTEXT` environment variables can be
-    #   displayed in plain text using the CodeBuild console and the AWS
-    #   Command Line Interface (AWS CLI). For sensitive values, we recommend
-    #   you use an environment variable of type `PARAMETER_STORE` or
-    #   `SECRETS_MANAGER`.
+    #   displayed in plain text using the CodeBuild console and the CLI. For
+    #   sensitive values, we recommend you use an environment variable of
+    #   type `PARAMETER_STORE` or `SECRETS_MANAGER`.
     #   @return [String]
     #
     # @!attribute [rw] type
@@ -3458,6 +3507,7 @@ module Aws::CodeBuild
     #           status: "ENABLED", # required, accepts ENABLED, DISABLED
     #           location: "String",
     #           encryption_disabled: false,
+    #           bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #         },
     #       }
     #
@@ -3668,9 +3718,9 @@ module Aws::CodeBuild
     #   @return [Types::ProjectEnvironment]
     #
     # @!attribute [rw] service_role
-    #   The ARN of the Identity and Access Management role that enables
-    #   CodeBuild to interact with dependent Amazon Web Services services on
-    #   behalf of the Amazon Web Services account.
+    #   The ARN of the IAM role that enables CodeBuild to interact with
+    #   dependent Amazon Web Services services on behalf of the Amazon Web
+    #   Services account.
     #   @return [String]
     #
     # @!attribute [rw] timeout_in_minutes
@@ -3755,6 +3805,28 @@ module Aws::CodeBuild
     #   limit, new builds are throttled and are not run.
     #   @return [Integer]
     #
+    # @!attribute [rw] project_visibility
+    #   Specifies the visibility of the project's builds. Possible values
+    #   are:
+    #
+    #   PUBLIC\_READ
+    #
+    #   : The project builds are visible to the public.
+    #
+    #   PRIVATE
+    #
+    #   : The project builds are not visible to the public.
+    #   @return [String]
+    #
+    # @!attribute [rw] public_project_alias
+    #   Contains the project identifier used with the public build APIs.
+    #   @return [String]
+    #
+    # @!attribute [rw] resource_access_role
+    #   The ARN of the IAM role that enables CodeBuild to access the
+    #   CloudWatch Logs and Amazon S3 artifacts for the project's builds.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/codebuild-2016-10-06/Project AWS API Documentation
     #
     class Project < Struct.new(
@@ -3782,7 +3854,10 @@ module Aws::CodeBuild
       :logs_config,
       :file_system_locations,
       :build_batch_config,
-      :concurrent_build_limit)
+      :concurrent_build_limit,
+      :project_visibility,
+      :public_project_alias,
+      :resource_access_role)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -3802,6 +3877,7 @@ module Aws::CodeBuild
     #         override_artifact_name: false,
     #         encryption_disabled: false,
     #         artifact_identifier: "String",
+    #         bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #       }
     #
     # @!attribute [rw] type
@@ -3945,6 +4021,53 @@ module Aws::CodeBuild
     #   An identifier for this artifact definition.
     #   @return [String]
     #
+    # @!attribute [rw] bucket_owner_access
+    #   Specifies the bucket owner's access for objects that another
+    #   account uploads to their Amazon S3 bucket. By default, only the
+    #   account that uploads the objects to the bucket has access to these
+    #   objects. This property allows you to give the bucket owner access to
+    #   these objects.
+    #
+    #   <note markdown="1"> To use this property, your CodeBuild service role must have the
+    #   `s3:PutBucketAcl` permission. This permission allows CodeBuild to
+    #   modify the access control list for the bucket.
+    #
+    #    </note>
+    #
+    #   This property can be one of the following values:
+    #
+    #   NONE
+    #
+    #   : The bucket owner does not have access to the objects. This is the
+    #     default.
+    #
+    #   READ\_ONLY
+    #
+    #   : The bucket owner has read-only access to the objects. The
+    #     uploading account retains ownership of the objects.
+    #
+    #   FULL
+    #
+    #   : The bucket owner has full access to the objects. Object ownership
+    #     is determined by the following criteria:
+    #
+    #     * If the bucket is configured with the **Bucket owner preferred**
+    #       setting, the bucket owner owns the objects. The uploading
+    #       account will have object access as specified by the bucket's
+    #       policy.
+    #
+    #     * Otherwise, the uploading account retains ownership of the
+    #       objects.
+    #
+    #     For more information about Amazon S3 object ownership, see
+    #     [Controlling ownership of uploaded objects using S3 Object
+    #     Ownership][1] in the *Amazon Simple Storage Service User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/codebuild-2016-10-06/ProjectArtifacts AWS API Documentation
     #
     class ProjectArtifacts < Struct.new(
@@ -3956,7 +4079,8 @@ module Aws::CodeBuild
       :packaging,
       :override_artifact_name,
       :encryption_disabled,
-      :artifact_identifier)
+      :artifact_identifier,
+      :bucket_owner_access)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -4464,17 +4588,17 @@ module Aws::CodeBuild
     #
     #   * For source code in a GitHub repository, the HTTPS clone URL to the
     #     repository that contains the source and the buildspec file. You
-    #     must connect your account to your GitHub account. Use the
-    #     CodeBuild console to start creating a build project. When you use
-    #     the console to connect (or reconnect) with GitHub, on the GitHub
-    #     **Authorize application** page, for **Organization access**,
-    #     choose **Request access** next to each repository you want to
-    #     allow CodeBuild to have access to, and then choose **Authorize
-    #     application**. (After you have connected to your GitHub account,
-    #     you do not need to finish creating the build project. You can
-    #     leave the CodeBuild console.) To instruct CodeBuild to use this
-    #     connection, in the `source` object, set the `auth` object's
-    #     `type` value to `OAUTH`.
+    #     must connect your Amazon Web Services account to your GitHub
+    #     account. Use the CodeBuild console to start creating a build
+    #     project. When you use the console to connect (or reconnect) with
+    #     GitHub, on the GitHub **Authorize application** page, for
+    #     **Organization access**, choose **Request access** next to each
+    #     repository you want to allow CodeBuild to have access to, and then
+    #     choose **Authorize application**. (After you have connected to
+    #     your GitHub account, you do not need to finish creating the build
+    #     project. You can leave the CodeBuild console.) To instruct
+    #     CodeBuild to use this connection, in the `source` object, set the
+    #     `auth` object's `type` value to `OAUTH`.
     #
     #   * For source code in a Bitbucket repository, the HTTPS clone URL to
     #     the repository that contains the source and the buildspec file.
@@ -4509,11 +4633,12 @@ module Aws::CodeBuild
     #   If this value is set, it can be either an inline buildspec
     #   definition, the path to an alternate buildspec file relative to the
     #   value of the built-in `CODEBUILD_SRC_DIR` environment variable, or
-    #   the path to an S3 bucket. The bucket must be in the same Region as
-    #   the build project. Specify the buildspec file using its ARN (for
-    #   example, `arn:aws:s3:::my-codebuild-sample2/buildspec.yml`). If this
-    #   value is not provided or is set to an empty string, the source code
-    #   must contain a buildspec file in its root directory. For more
+    #   the path to an S3 bucket. The bucket must be in the same Amazon Web
+    #   Services Region as the build project. Specify the buildspec file
+    #   using its ARN (for example,
+    #   `arn:aws:s3:::my-codebuild-sample2/buildspec.yml`). If this value is
+    #   not provided or is set to an empty string, the source code must
+    #   contain a buildspec file in its root directory. For more
     #   information, see [Buildspec File Name and Storage Location][1].
     #
     #
@@ -4715,7 +4840,7 @@ module Aws::CodeBuild
     #   Secrets Manager.
     #
     #   <note markdown="1"> The `credential` can use the name of the credentials only if they
-    #   exist in your current Region.
+    #   exist in your current Amazon Web Services Region.
     #
     #    </note>
     #   @return [String]
@@ -5005,7 +5130,7 @@ module Aws::CodeBuild
       include Aws::Structure
     end
 
-    # Represents a resolved build artifact. A resolve artifact is an
+    # Represents a resolved build artifact. A resolved artifact is an
     # artifact that is built and deployed to the destination, such as Amazon
     # S3.
     #
@@ -5141,6 +5266,7 @@ module Aws::CodeBuild
     #         status: "ENABLED", # required, accepts ENABLED, DISABLED
     #         location: "String",
     #         encryption_disabled: false,
+    #         bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #       }
     #
     # @!attribute [rw] status
@@ -5163,12 +5289,60 @@ module Aws::CodeBuild
     #   By default S3 build logs are encrypted.
     #   @return [Boolean]
     #
+    # @!attribute [rw] bucket_owner_access
+    #   Specifies the bucket owner's access for objects that another
+    #   account uploads to their Amazon S3 bucket. By default, only the
+    #   account that uploads the objects to the bucket has access to these
+    #   objects. This property allows you to give the bucket owner access to
+    #   these objects.
+    #
+    #   <note markdown="1"> To use this property, your CodeBuild service role must have the
+    #   `s3:PutBucketAcl` permission. This permission allows CodeBuild to
+    #   modify the access control list for the bucket.
+    #
+    #    </note>
+    #
+    #   This property can be one of the following values:
+    #
+    #   NONE
+    #
+    #   : The bucket owner does not have access to the objects. This is the
+    #     default.
+    #
+    #   READ\_ONLY
+    #
+    #   : The bucket owner has read-only access to the objects. The
+    #     uploading account retains ownership of the objects.
+    #
+    #   FULL
+    #
+    #   : The bucket owner has full access to the objects. Object ownership
+    #     is determined by the following criteria:
+    #
+    #     * If the bucket is configured with the **Bucket owner preferred**
+    #       setting, the bucket owner owns the objects. The uploading
+    #       account will have object access as specified by the bucket's
+    #       policy.
+    #
+    #     * Otherwise, the uploading account retains ownership of the
+    #       objects.
+    #
+    #     For more information about Amazon S3 object ownership, see
+    #     [Controlling ownership of uploaded objects using S3 Object
+    #     Ownership][1] in the *Amazon Simple Storage Service User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/codebuild-2016-10-06/S3LogsConfig AWS API Documentation
     #
     class S3LogsConfig < Struct.new(
       :status,
       :location,
-      :encryption_disabled)
+      :encryption_disabled,
+      :bucket_owner_access)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -5343,6 +5517,7 @@ module Aws::CodeBuild
     #           override_artifact_name: false,
     #           encryption_disabled: false,
     #           artifact_identifier: "String",
+    #           bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #         },
     #         secondary_artifacts_override: [
     #           {
@@ -5355,6 +5530,7 @@ module Aws::CodeBuild
     #             override_artifact_name: false,
     #             encryption_disabled: false,
     #             artifact_identifier: "String",
+    #             bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #           },
     #         ],
     #         environment_variables_override: [
@@ -5402,6 +5578,7 @@ module Aws::CodeBuild
     #             status: "ENABLED", # required, accepts ENABLED, DISABLED
     #             location: "String",
     #             encryption_disabled: false,
+    #             bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #           },
     #         },
     #         registry_credential_override: {
@@ -5525,11 +5702,12 @@ module Aws::CodeBuild
     #   If this value is set, it can be either an inline buildspec
     #   definition, the path to an alternate buildspec file relative to the
     #   value of the built-in `CODEBUILD_SRC_DIR` environment variable, or
-    #   the path to an S3 bucket. The bucket must be in the same Region as
-    #   the build project. Specify the buildspec file using its ARN (for
-    #   example, `arn:aws:s3:::my-codebuild-sample2/buildspec.yml`). If this
-    #   value is not provided or is set to an empty string, the source code
-    #   must contain a buildspec file in its root directory. For more
+    #   the path to an S3 bucket. The bucket must be in the same Amazon Web
+    #   Services Region as the build project. Specify the buildspec file
+    #   using its ARN (for example,
+    #   `arn:aws:s3:::my-codebuild-sample2/buildspec.yml`). If this value is
+    #   not provided or is set to an empty string, the source code must
+    #   contain a buildspec file in its root directory. For more
     #   information, see [Buildspec File Name and Storage Location][1].
     #
     #
@@ -5763,6 +5941,7 @@ module Aws::CodeBuild
     #           override_artifact_name: false,
     #           encryption_disabled: false,
     #           artifact_identifier: "String",
+    #           bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #         },
     #         secondary_artifacts_override: [
     #           {
@@ -5775,6 +5954,7 @@ module Aws::CodeBuild
     #             override_artifact_name: false,
     #             encryption_disabled: false,
     #             artifact_identifier: "String",
+    #             bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #           },
     #         ],
     #         environment_variables_override: [
@@ -5826,6 +6006,7 @@ module Aws::CodeBuild
     #             status: "ENABLED", # required, accepts ENABLED, DISABLED
     #             location: "String",
     #             encryption_disabled: false,
+    #             bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #           },
     #         },
     #         registry_credential_override: {
@@ -5939,11 +6120,12 @@ module Aws::CodeBuild
     #   If this value is set, it can be either an inline buildspec
     #   definition, the path to an alternate buildspec file relative to the
     #   value of the built-in `CODEBUILD_SRC_DIR` environment variable, or
-    #   the path to an S3 bucket. The bucket must be in the same Region as
-    #   the build project. Specify the buildspec file using its ARN (for
-    #   example, `arn:aws:s3:::my-codebuild-sample2/buildspec.yml`). If this
-    #   value is not provided or is set to an empty string, the source code
-    #   must contain a buildspec file in its root directory. For more
+    #   the path to an S3 bucket. The bucket must be in the same Amazon Web
+    #   Services Region as the build project. Specify the buildspec file
+    #   using its ARN (for example,
+    #   `arn:aws:s3:::my-codebuild-sample2/buildspec.yml`). If this value is
+    #   not provided or is set to an empty string, the source code must
+    #   contain a buildspec file in its root directory. For more
     #   information, see [Buildspec File Name and Storage Location][1].
     #
     #
@@ -6425,6 +6607,7 @@ module Aws::CodeBuild
     #           override_artifact_name: false,
     #           encryption_disabled: false,
     #           artifact_identifier: "String",
+    #           bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #         },
     #         secondary_artifacts: [
     #           {
@@ -6437,6 +6620,7 @@ module Aws::CodeBuild
     #             override_artifact_name: false,
     #             encryption_disabled: false,
     #             artifact_identifier: "String",
+    #             bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #           },
     #         ],
     #         cache: {
@@ -6489,6 +6673,7 @@ module Aws::CodeBuild
     #             status: "ENABLED", # required, accepts ENABLED, DISABLED
     #             location: "String",
     #             encryption_disabled: false,
+    #             bucket_owner_access: "NONE", # accepts NONE, READ_ONLY, FULL
     #           },
     #         },
     #         file_system_locations: [
@@ -6594,9 +6779,9 @@ module Aws::CodeBuild
     #   @return [Types::ProjectEnvironment]
     #
     # @!attribute [rw] service_role
-    #   The replacement ARN of the Identity and Access Management role that
-    #   enables CodeBuild to interact with dependent Amazon Web Services
-    #   services on behalf of the Amazon Web Services account.
+    #   The replacement ARN of the IAM role that enables CodeBuild to
+    #   interact with dependent Amazon Web Services services on behalf of
+    #   the Amazon Web Services account.
     #   @return [String]
     #
     # @!attribute [rw] timeout_in_minutes
@@ -6708,6 +6893,78 @@ module Aws::CodeBuild
       include Aws::Structure
     end
 
+    # @note When making an API call, you may pass UpdateProjectVisibilityInput
+    #   data as a hash:
+    #
+    #       {
+    #         project_arn: "NonEmptyString", # required
+    #         project_visibility: "PUBLIC_READ", # required, accepts PUBLIC_READ, PRIVATE
+    #         resource_access_role: "NonEmptyString",
+    #       }
+    #
+    # @!attribute [rw] project_arn
+    #   The Amazon Resource Name (ARN) of the build project.
+    #   @return [String]
+    #
+    # @!attribute [rw] project_visibility
+    #   Specifies the visibility of the project's builds. Possible values
+    #   are:
+    #
+    #   PUBLIC\_READ
+    #
+    #   : The project builds are visible to the public.
+    #
+    #   PRIVATE
+    #
+    #   : The project builds are not visible to the public.
+    #   @return [String]
+    #
+    # @!attribute [rw] resource_access_role
+    #   The ARN of the IAM role that enables CodeBuild to access the
+    #   CloudWatch Logs and Amazon S3 artifacts for the project's builds.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/codebuild-2016-10-06/UpdateProjectVisibilityInput AWS API Documentation
+    #
+    class UpdateProjectVisibilityInput < Struct.new(
+      :project_arn,
+      :project_visibility,
+      :resource_access_role)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] project_arn
+    #   The Amazon Resource Name (ARN) of the build project.
+    #   @return [String]
+    #
+    # @!attribute [rw] public_project_alias
+    #   Contains the project identifier used with the public build APIs.
+    #   @return [String]
+    #
+    # @!attribute [rw] project_visibility
+    #   Specifies the visibility of the project's builds. Possible values
+    #   are:
+    #
+    #   PUBLIC\_READ
+    #
+    #   : The project builds are visible to the public.
+    #
+    #   PRIVATE
+    #
+    #   : The project builds are not visible to the public.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/codebuild-2016-10-06/UpdateProjectVisibilityOutput AWS API Documentation
+    #
+    class UpdateProjectVisibilityOutput < Struct.new(
+      :project_arn,
+      :public_project_alias,
+      :project_visibility)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @note When making an API call, you may pass UpdateReportGroupInput
     #   data as a hash:
     #