aws-sdk-cognitoidentityprovider 1.11.0 → 1.12.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 64de73e536c01c464bd5f7d5c7e556975346d5d3
-  data.tar.gz: 6128d9424928d99d422b244e81d9b31867fda48d
+  metadata.gz: ed661ce07cf7b44b0979a419205b17e1b0591040
+  data.tar.gz: 031b8d9f68d28909900ee1fe7a9731c5e735fdff
 SHA512:
-  metadata.gz: ffc7a907429bfe35ee0c15fda8584440052be76af11ac6900f6eee50c4fdb10063c936706d8b995e65edd25f8475acd4fb1a17a29d21c8a0f6c1b326e2f25bf0
-  data.tar.gz: 879f50e6498c9fd3f47ffcb2501ab120df679ffabb2e85386c7e9b5f1f249e78ada05af99df657cc5e1e653e128f8df5e47785fd07b8189dca0633f23bf9ab57
+  metadata.gz: 3732d8485b7845a54a5c9d846ab6be5d11a6184acd09f17200ddef2d45b07c12e6a4beb65a7808581373b03bb1ba8dad70a6fcad0cd732bf4c3ae672e0b58e02
+  data.tar.gz: 5904f0cb5456980d7bb97e6de54a1db076e4d66372fc6cca236374c7ba7a2631cf4140bab99b74922219b7807eba97bd2df4269894f6f457cb515f8d69cb8b2a

data/lib/aws-sdk-cognitoidentityprovider.rb

@@ -42,6 +42,6 @@ require_relative 'aws-sdk-cognitoidentityprovider/customizations'
 # @service
 module Aws::CognitoIdentityProvider
 
-  GEM_VERSION = '1.11.0'
+  GEM_VERSION = '1.12.0'
 
 end

data/lib/aws-sdk-cognitoidentityprovider/client.rb

@@ -2361,7 +2361,20 @@ module Aws::CognitoIdentityProvider
     #   The read attributes.
     #
     # @option params [Array<String>] :write_attributes
-    #   The write attributes.
+    #   The user pool attributes that the app client can write to.
+    #
+    #   If your app client allows users to sign in through an identity
+    #   provider, this array must include all attributes that are mapped to
+    #   identity provider attributes. Amazon Cognito updates mapped attributes
+    #   when users sign in to your application through an identity provider.
+    #   If your app client lacks write access to a mapped attribute, Amazon
+    #   Cognito throws an error when it attempts to update the attribute. For
+    #   more information, see [Specifying Identity Provider Attribute Mappings
+    #   for Your User Pool][1].
+    #
+    #
+    #
+    #   [1]: http://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-specifying-attribute-mapping.html
     #
     # @option params [Array<String>] :explicit_auth_flows
     #   The explicit authentication flows.
@@ -2519,7 +2532,7 @@ module Aws::CognitoIdentityProvider
     #   The configuration for a custom domain that hosts the sign-up and
     #   sign-in webpages for your application.
     #
-    #   Provide this parameter only if you want to use own custom domain for
+    #   Provide this parameter only if you want to use a custom domain for
     #   your user pool. Otherwise, you can exclude this parameter and use the
     #   Amazon Cognito hosted domain instead.
     #
@@ -5428,6 +5441,85 @@ module Aws::CognitoIdentityProvider
       req.send_request(options)
     end
 
+    # Updates the Secure Sockets Layer (SSL) certificate for the custom
+    # domain for your user pool.
+    #
+    # You can use this operation to provide the Amazon Resource Name (ARN)
+    # of a new certificate to Amazon Cognito. You cannot use it to change
+    # the domain for a user pool.
+    #
+    # A custom domain is used to host the Amazon Cognito hosted UI, which
+    # provides sign-up and sign-in pages for your application. When you set
+    # up a custom domain, you provide a certificate that you manage with AWS
+    # Certificate Manager (ACM). When necessary, you can use this operation
+    # to change the certificate that you applied to your custom domain.
+    #
+    # Usually, this is unnecessary following routine certificate renewal
+    # with ACM. When you renew your existing certificate in ACM, the ARN for
+    # your certificate remains the same, and your custom domain uses the new
+    # certificate automatically.
+    #
+    # However, if you replace your existing certificate with a new one, ACM
+    # gives the new certificate a new ARN. To apply the new certificate to
+    # your custom domain, you must provide this ARN to Amazon Cognito.
+    #
+    # When you add your new certificate in ACM, you must choose US East (N.
+    # Virginia) as the AWS Region.
+    #
+    # After you submit your request, Amazon Cognito requires up to 1 hour to
+    # distribute your new certificate to your custom domain.
+    #
+    # For more information about adding a custom domain to your user pool,
+    # see [Using Your Own Domain for the Hosted UI][1].
+    #
+    #
+    #
+    # [1]: http://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-add-custom-domain.html
+    #
+    # @option params [required, String] :domain
+    #   The domain name for the custom domain that hosts the sign-up and
+    #   sign-in pages for your application. For example: `auth.example.com`.
+    #
+    #   This string can include only lowercase letters, numbers, and hyphens.
+    #   Do not use a hyphen for the first or last character. Use periods to
+    #   separate subdomain names.
+    #
+    # @option params [required, String] :user_pool_id
+    #   The ID of the user pool that is associated with the custom domain that
+    #   you are updating the certificate for.
+    #
+    # @option params [required, Types::CustomDomainConfigType] :custom_domain_config
+    #   The configuration for a custom domain that hosts the sign-up and
+    #   sign-in pages for your application. Use this object to specify an SSL
+    #   certificate that is managed by ACM.
+    #
+    # @return [Types::UpdateUserPoolDomainResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::UpdateUserPoolDomainResponse#cloud_front_domain #cloud_front_domain} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_user_pool_domain({
+    #     domain: "DomainType", # required
+    #     user_pool_id: "UserPoolIdType", # required
+    #     custom_domain_config: { # required
+    #       certificate_arn: "ArnType", # required
+    #     },
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.cloud_front_domain #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cognito-idp-2016-04-18/UpdateUserPoolDomain AWS API Documentation
+    #
+    # @overload update_user_pool_domain(params = {})
+    # @param [Hash] params ({})
+    def update_user_pool_domain(params = {}, options = {})
+      req = build_request(:update_user_pool_domain, params)
+      req.send_request(options)
+    end
+
     # Use this API to register a user's entered TOTP code and mark the
     # user's software token MFA status as "verified" if successful. The
     # request takes an access token or a session string, but not both.
@@ -5516,7 +5608,7 @@ module Aws::CognitoIdentityProvider
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-cognitoidentityprovider'
-      context[:gem_version] = '1.11.0'
+      context[:gem_version] = '1.12.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-cognitoidentityprovider/client_api.rb

@@ -391,6 +391,8 @@ module Aws::CognitoIdentityProvider
     UpdateUserAttributesResponse = Shapes::StructureShape.new(name: 'UpdateUserAttributesResponse')
     UpdateUserPoolClientRequest = Shapes::StructureShape.new(name: 'UpdateUserPoolClientRequest')
     UpdateUserPoolClientResponse = Shapes::StructureShape.new(name: 'UpdateUserPoolClientResponse')
+    UpdateUserPoolDomainRequest = Shapes::StructureShape.new(name: 'UpdateUserPoolDomainRequest')
+    UpdateUserPoolDomainResponse = Shapes::StructureShape.new(name: 'UpdateUserPoolDomainResponse')
     UpdateUserPoolRequest = Shapes::StructureShape.new(name: 'UpdateUserPoolRequest')
     UpdateUserPoolResponse = Shapes::StructureShape.new(name: 'UpdateUserPoolResponse')
     UserContextDataType = Shapes::StructureShape.new(name: 'UserContextDataType')
@@ -1553,6 +1555,14 @@ module Aws::CognitoIdentityProvider
     UpdateUserPoolClientResponse.add_member(:user_pool_client, Shapes::ShapeRef.new(shape: UserPoolClientType, location_name: "UserPoolClient"))
     UpdateUserPoolClientResponse.struct_class = Types::UpdateUserPoolClientResponse
 
+    UpdateUserPoolDomainRequest.add_member(:domain, Shapes::ShapeRef.new(shape: DomainType, required: true, location_name: "Domain"))
+    UpdateUserPoolDomainRequest.add_member(:user_pool_id, Shapes::ShapeRef.new(shape: UserPoolIdType, required: true, location_name: "UserPoolId"))
+    UpdateUserPoolDomainRequest.add_member(:custom_domain_config, Shapes::ShapeRef.new(shape: CustomDomainConfigType, required: true, location_name: "CustomDomainConfig"))
+    UpdateUserPoolDomainRequest.struct_class = Types::UpdateUserPoolDomainRequest
+
+    UpdateUserPoolDomainResponse.add_member(:cloud_front_domain, Shapes::ShapeRef.new(shape: DomainType, location_name: "CloudFrontDomain"))
+    UpdateUserPoolDomainResponse.struct_class = Types::UpdateUserPoolDomainResponse
+
     UpdateUserPoolRequest.add_member(:user_pool_id, Shapes::ShapeRef.new(shape: UserPoolIdType, required: true, location_name: "UserPoolId"))
     UpdateUserPoolRequest.add_member(:policies, Shapes::ShapeRef.new(shape: UserPoolPolicyType, location_name: "Policies"))
     UpdateUserPoolRequest.add_member(:lambda_config, Shapes::ShapeRef.new(shape: LambdaConfigType, location_name: "LambdaConfig"))
@@ -3199,6 +3209,19 @@ module Aws::CognitoIdentityProvider
         o.errors << Shapes::ShapeRef.new(shape: InternalErrorException)
       end)
 
+      api.add_operation(:update_user_pool_domain, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "UpdateUserPoolDomain"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: UpdateUserPoolDomainRequest)
+        o.output = Shapes::ShapeRef.new(shape: UpdateUserPoolDomainResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidParameterException)
+        o.errors << Shapes::ShapeRef.new(shape: NotAuthorizedException)
+        o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: TooManyRequestsException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalErrorException)
+      end)
+
       api.add_operation(:verify_software_token, Seahorse::Model::Operation.new.tap do |o|
         o.name = "VerifySoftwareToken"
         o.http_method = "POST"

data/lib/aws-sdk-cognitoidentityprovider/types.rb

@@ -2619,7 +2619,20 @@ module Aws::CognitoIdentityProvider
     #   @return [Array<String>]
     #
     # @!attribute [rw] write_attributes
-    #   The write attributes.
+    #   The user pool attributes that the app client can write to.
+    #
+    #   If your app client allows users to sign in through an identity
+    #   provider, this array must include all attributes that are mapped to
+    #   identity provider attributes. Amazon Cognito updates mapped
+    #   attributes when users sign in to your application through an
+    #   identity provider. If your app client lacks write access to a mapped
+    #   attribute, Amazon Cognito throws an error when it attempts to update
+    #   the attribute. For more information, see [Specifying Identity
+    #   Provider Attribute Mappings for Your User Pool][1].
+    #
+    #
+    #
+    #   [1]: http://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-specifying-attribute-mapping.html
     #   @return [Array<String>]
     #
     # @!attribute [rw] explicit_auth_flows
@@ -2763,7 +2776,7 @@ module Aws::CognitoIdentityProvider
     #   The configuration for a custom domain that hosts the sign-up and
     #   sign-in webpages for your application.
     #
-    #   Provide this parameter only if you want to use own custom domain for
+    #   Provide this parameter only if you want to use a custom domain for
     #   your user pool. Otherwise, you can exclude this parameter and use
     #   the Amazon Cognito hosted domain instead.
     #
@@ -5818,6 +5831,18 @@ module Aws::CognitoIdentityProvider
     #
     # @!attribute [rw] mutable
     #   Specifies whether the value of the attribute can be changed.
+    #
+    #   For any user pool attribute that's mapped to an identity provider
+    #   attribute, you must set this parameter to `true`. Amazon Cognito
+    #   updates mapped attributes when users sign in to your application
+    #   through an identity provider. If an attribute is immutable, Amazon
+    #   Cognito throws an error when it attempts to update the attribute.
+    #   For more information, see [Specifying Identity Provider Attribute
+    #   Mappings for Your User Pool][1].
+    #
+    #
+    #
+    #   [1]: http://docs.aws.amazon.com/cognito/latest/developerguide/cognito-user-pools-specifying-attribute-mapping.html
     #   @return [Boolean]
     #
     # @!attribute [rw] required
@@ -6976,6 +7001,62 @@ module Aws::CognitoIdentityProvider
       include Aws::Structure
     end
 
+    # The UpdateUserPoolDomain request input.
+    #
+    # @note When making an API call, you may pass UpdateUserPoolDomainRequest
+    #   data as a hash:
+    #
+    #       {
+    #         domain: "DomainType", # required
+    #         user_pool_id: "UserPoolIdType", # required
+    #         custom_domain_config: { # required
+    #           certificate_arn: "ArnType", # required
+    #         },
+    #       }
+    #
+    # @!attribute [rw] domain
+    #   The domain name for the custom domain that hosts the sign-up and
+    #   sign-in pages for your application. For example: `auth.example.com`.
+    #
+    #   This string can include only lowercase letters, numbers, and
+    #   hyphens. Do not use a hyphen for the first or last character. Use
+    #   periods to separate subdomain names.
+    #   @return [String]
+    #
+    # @!attribute [rw] user_pool_id
+    #   The ID of the user pool that is associated with the custom domain
+    #   that you are updating the certificate for.
+    #   @return [String]
+    #
+    # @!attribute [rw] custom_domain_config
+    #   The configuration for a custom domain that hosts the sign-up and
+    #   sign-in pages for your application. Use this object to specify an
+    #   SSL certificate that is managed by ACM.
+    #   @return [Types::CustomDomainConfigType]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cognito-idp-2016-04-18/UpdateUserPoolDomainRequest AWS API Documentation
+    #
+    class UpdateUserPoolDomainRequest < Struct.new(
+      :domain,
+      :user_pool_id,
+      :custom_domain_config)
+      include Aws::Structure
+    end
+
+    # The UpdateUserPoolDomain response output.
+    #
+    # @!attribute [rw] cloud_front_domain
+    #   The Amazon CloudFront endpoint that Amazon Cognito set up when you
+    #   added the custom domain to your user pool.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/cognito-idp-2016-04-18/UpdateUserPoolDomainResponse AWS API Documentation
+    #
+    class UpdateUserPoolDomainResponse < Struct.new(
+      :cloud_front_domain)
+      include Aws::Structure
+    end
+
     # Represents the request to update the user pool.
     #
     # @note When making an API call, you may pass UpdateUserPoolRequest

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-cognitoidentityprovider
 version: !ruby/object:Gem::Version
-  version: 1.11.0
+  version: 1.12.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-11-20 00:00:00.000000000 Z
+date: 2018-12-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core