aws-sdk-controltower 1.9.0 → 1.10.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d15286b41b4e37c5e7ee7ed46629050a27c7b4758d5e6667af64389185e819e0
-  data.tar.gz: 2a0caadb260cc26c4634131dc213927aa64457a48d241bed3b7b016ce83673fc
+  metadata.gz: f3ff7ad859e489b9dffbd38c5d388554a5d65bf59a751ce09643749b9c34e7c4
+  data.tar.gz: 8c31d7bd765e7dbfda8f9f23d683574666ec77b1a88737bdbf0d3615c71caeef
 SHA512:
-  metadata.gz: 25e5a3f75945bb6793413a06d192488fd003314760964d86be8fbf78a77cb982f70db96a9e5987922344389db2ea69b91b18d9e0f74c1ba7850a17717999d548
-  data.tar.gz: 3accb251e4a1b58326be90252ec714650adb8335816a91b9631e70849b2a535cae1217a3c80dbce2b97ea5c08cbf9d2068a88bcfca9097eb789aada37ad62acf
+  metadata.gz: 99704ae145ebfdcd7c2f0a228bcb167408ec14fb2afe5d15a1bfbc20f47bdfbbab126cbc7d38a4c414a6a570d3bede517f487d1eb8c77783af758a9657daa3b9
+  data.tar.gz: 84327384ce31b64c44753b7ed6ae57d0685166a23d25fba1ceed57221c48baa5251cd9c6b9b89484378f740219931db47d5817614142bcf481e239d54be34749

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.10.0 (2023-10-12)
+------------------
+
+* Feature - Added new EnabledControl resource details to ListEnabledControls API and added new GetEnabledControl API.
+
 1.9.0 (2023-09-27)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.9.0
+1.10.0

data/lib/aws-sdk-controltower/client.rb

@@ -391,15 +391,30 @@ module Aws::ControlTower
     # This API call turns off a control. It starts an asynchronous operation
     # that deletes AWS resources on the specified organizational unit and
     # the accounts it contains. The resources will vary according to the
-    # control that you specify.
+    # control that you specify. For usage examples, see [ *the AWS Control
+    # Tower User Guide* ][1].
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html
     #
     # @option params [required, String] :control_identifier
     #   The ARN of the control. Only **Strongly recommended** and **Elective**
     #   controls are permitted, with the exception of the **Region deny**
-    #   guardrail.
+    #   control. For information on how to find the `controlIdentifier`, see
+    #   [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
     #
     # @option params [required, String] :target_identifier
-    #   The ARN of the organizational unit.
+    #   The ARN of the organizational unit. For information on how to find the
+    #   `targetIdentifier`, see [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
     #
     # @return [Types::DisableControlOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -428,15 +443,30 @@ module Aws::ControlTower
     # This API call activates a control. It starts an asynchronous operation
     # that creates AWS resources on the specified organizational unit and
     # the accounts it contains. The resources created will vary according to
-    # the control that you specify.
+    # the control that you specify. For usage examples, see [ *the AWS
+    # Control Tower User Guide* ][1]
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html
     #
     # @option params [required, String] :control_identifier
     #   The ARN of the control. Only **Strongly recommended** and **Elective**
     #   controls are permitted, with the exception of the **Region deny**
-    #   guardrail.
+    #   control. For information on how to find the `controlIdentifier`, see
+    #   [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
     #
     # @option params [required, String] :target_identifier
-    #   The ARN of the organizational unit.
+    #   The ARN of the organizational unit. For information on how to find the
+    #   `targetIdentifier`, see [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
     #
     # @return [Types::EnableControlOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -464,7 +494,12 @@ module Aws::ControlTower
 
     # Returns the status of a particular `EnableControl` or `DisableControl`
     # operation. Displays a message in case of error. Details for an
-    # operation are available for 90 days.
+    # operation are available for 90 days. For usage examples, see [ *the
+    # AWS Control Tower User Guide* ][1]
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html
     #
     # @option params [required, String] :operation_identifier
     #   The ID of the asynchronous operation, which is used to track status.
@@ -497,8 +532,62 @@ module Aws::ControlTower
       req.send_request(options)
     end
 
+    # Provides details about the enabled control. For usage examples, see [
+    # *the AWS Control Tower User Guide* ][1].
+    #
+    # **Returned values**
+    #
+    # * TargetRegions: Shows target AWS Regions where the enabled control is
+    #   available to be deployed.
+    #
+    # * StatusSummary: Provides a detailed summary of the deployment status.
+    #
+    # * DriftSummary: Provides a detailed summary of the drifted status.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html
+    #
+    # @option params [required, String] :enabled_control_identifier
+    #   The ARN of the enabled control.
+    #
+    # @return [Types::GetEnabledControlOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetEnabledControlOutput#enabled_control_details #enabled_control_details} => Types::EnabledControlDetails
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_enabled_control({
+    #     enabled_control_identifier: "Arn", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.enabled_control_details.arn #=> String
+    #   resp.enabled_control_details.control_identifier #=> String
+    #   resp.enabled_control_details.drift_status_summary.drift_status #=> String, one of "DRIFTED", "IN_SYNC", "NOT_CHECKING", "UNKNOWN"
+    #   resp.enabled_control_details.status_summary.last_operation_identifier #=> String
+    #   resp.enabled_control_details.status_summary.status #=> String, one of "SUCCEEDED", "FAILED", "UNDER_CHANGE"
+    #   resp.enabled_control_details.target_identifier #=> String
+    #   resp.enabled_control_details.target_regions #=> Array
+    #   resp.enabled_control_details.target_regions[0].name #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/GetEnabledControl AWS API Documentation
+    #
+    # @overload get_enabled_control(params = {})
+    # @param [Hash] params ({})
+    def get_enabled_control(params = {}, options = {})
+      req = build_request(:get_enabled_control, params)
+      req.send_request(options)
+    end
+
     # Lists the controls enabled by AWS Control Tower on the specified
-    # organizational unit and the accounts it contains.
+    # organizational unit and the accounts it contains. For usage examples,
+    # see [ *the AWS Control Tower User Guide* ][1]
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/controltower/latest/userguide/control-api-examples-short.html
     #
     # @option params [Integer] :max_results
     #   How many results to return per API call.
@@ -508,7 +597,12 @@ module Aws::ControlTower
     #   parameters.
     #
     # @option params [required, String] :target_identifier
-    #   The ARN of the organizational unit.
+    #   The ARN of the organizational unit. For information on how to find the
+    #   `targetIdentifier`, see [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
     #
     # @return [Types::ListEnabledControlsOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -528,7 +622,12 @@ module Aws::ControlTower
     # @example Response structure
     #
     #   resp.enabled_controls #=> Array
+    #   resp.enabled_controls[0].arn #=> String
     #   resp.enabled_controls[0].control_identifier #=> String
+    #   resp.enabled_controls[0].drift_status_summary.drift_status #=> String, one of "DRIFTED", "IN_SYNC", "NOT_CHECKING", "UNKNOWN"
+    #   resp.enabled_controls[0].status_summary.last_operation_identifier #=> String
+    #   resp.enabled_controls[0].status_summary.status #=> String, one of "SUCCEEDED", "FAILED", "UNDER_CHANGE"
+    #   resp.enabled_controls[0].target_identifier #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/ListEnabledControls AWS API Documentation
@@ -553,7 +652,7 @@ module Aws::ControlTower
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-controltower'
-      context[:gem_version] = '1.9.0'
+      context[:gem_version] = '1.10.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-controltower/client_api.rb

@@ -14,6 +14,7 @@ module Aws::ControlTower
     include Seahorse::Model
 
     AccessDeniedException = Shapes::StructureShape.new(name: 'AccessDeniedException')
+    Arn = Shapes::StringShape.new(name: 'Arn')
     ConflictException = Shapes::StructureShape.new(name: 'ConflictException')
     ControlIdentifier = Shapes::StringShape.new(name: 'ControlIdentifier')
     ControlOperation = Shapes::StructureShape.new(name: 'ControlOperation')
@@ -21,23 +22,33 @@ module Aws::ControlTower
     ControlOperationType = Shapes::StringShape.new(name: 'ControlOperationType')
     DisableControlInput = Shapes::StructureShape.new(name: 'DisableControlInput')
     DisableControlOutput = Shapes::StructureShape.new(name: 'DisableControlOutput')
+    DriftStatus = Shapes::StringShape.new(name: 'DriftStatus')
+    DriftStatusSummary = Shapes::StructureShape.new(name: 'DriftStatusSummary')
     EnableControlInput = Shapes::StructureShape.new(name: 'EnableControlInput')
     EnableControlOutput = Shapes::StructureShape.new(name: 'EnableControlOutput')
+    EnabledControlDetails = Shapes::StructureShape.new(name: 'EnabledControlDetails')
     EnabledControlSummary = Shapes::StructureShape.new(name: 'EnabledControlSummary')
     EnabledControls = Shapes::ListShape.new(name: 'EnabledControls')
+    EnablementStatus = Shapes::StringShape.new(name: 'EnablementStatus')
+    EnablementStatusSummary = Shapes::StructureShape.new(name: 'EnablementStatusSummary')
     GetControlOperationInput = Shapes::StructureShape.new(name: 'GetControlOperationInput')
     GetControlOperationOutput = Shapes::StructureShape.new(name: 'GetControlOperationOutput')
+    GetEnabledControlInput = Shapes::StructureShape.new(name: 'GetEnabledControlInput')
+    GetEnabledControlOutput = Shapes::StructureShape.new(name: 'GetEnabledControlOutput')
     Integer = Shapes::IntegerShape.new(name: 'Integer')
     InternalServerException = Shapes::StructureShape.new(name: 'InternalServerException')
     ListEnabledControlsInput = Shapes::StructureShape.new(name: 'ListEnabledControlsInput')
     ListEnabledControlsOutput = Shapes::StructureShape.new(name: 'ListEnabledControlsOutput')
     MaxResults = Shapes::IntegerShape.new(name: 'MaxResults')
     OperationIdentifier = Shapes::StringShape.new(name: 'OperationIdentifier')
+    Region = Shapes::StructureShape.new(name: 'Region')
+    RegionName = Shapes::StringShape.new(name: 'RegionName')
     ResourceNotFoundException = Shapes::StructureShape.new(name: 'ResourceNotFoundException')
     ServiceQuotaExceededException = Shapes::StructureShape.new(name: 'ServiceQuotaExceededException')
     String = Shapes::StringShape.new(name: 'String')
     SyntheticTimestamp_date_time = Shapes::TimestampShape.new(name: 'SyntheticTimestamp_date_time', timestampFormat: "iso8601")
     TargetIdentifier = Shapes::StringShape.new(name: 'TargetIdentifier')
+    TargetRegions = Shapes::ListShape.new(name: 'TargetRegions')
     ThrottlingException = Shapes::StructureShape.new(name: 'ThrottlingException')
     ValidationException = Shapes::StructureShape.new(name: 'ValidationException')
 
@@ -61,6 +72,9 @@ module Aws::ControlTower
     DisableControlOutput.add_member(:operation_identifier, Shapes::ShapeRef.new(shape: OperationIdentifier, required: true, location_name: "operationIdentifier"))
     DisableControlOutput.struct_class = Types::DisableControlOutput
 
+    DriftStatusSummary.add_member(:drift_status, Shapes::ShapeRef.new(shape: DriftStatus, location_name: "driftStatus"))
+    DriftStatusSummary.struct_class = Types::DriftStatusSummary
+
     EnableControlInput.add_member(:control_identifier, Shapes::ShapeRef.new(shape: ControlIdentifier, required: true, location_name: "controlIdentifier"))
     EnableControlInput.add_member(:target_identifier, Shapes::ShapeRef.new(shape: TargetIdentifier, required: true, location_name: "targetIdentifier"))
     EnableControlInput.struct_class = Types::EnableControlInput
@@ -68,17 +82,39 @@ module Aws::ControlTower
     EnableControlOutput.add_member(:operation_identifier, Shapes::ShapeRef.new(shape: OperationIdentifier, required: true, location_name: "operationIdentifier"))
     EnableControlOutput.struct_class = Types::EnableControlOutput
 
+    EnabledControlDetails.add_member(:arn, Shapes::ShapeRef.new(shape: Arn, location_name: "arn"))
+    EnabledControlDetails.add_member(:control_identifier, Shapes::ShapeRef.new(shape: ControlIdentifier, location_name: "controlIdentifier"))
+    EnabledControlDetails.add_member(:drift_status_summary, Shapes::ShapeRef.new(shape: DriftStatusSummary, location_name: "driftStatusSummary"))
+    EnabledControlDetails.add_member(:status_summary, Shapes::ShapeRef.new(shape: EnablementStatusSummary, location_name: "statusSummary"))
+    EnabledControlDetails.add_member(:target_identifier, Shapes::ShapeRef.new(shape: TargetIdentifier, location_name: "targetIdentifier"))
+    EnabledControlDetails.add_member(:target_regions, Shapes::ShapeRef.new(shape: TargetRegions, location_name: "targetRegions"))
+    EnabledControlDetails.struct_class = Types::EnabledControlDetails
+
+    EnabledControlSummary.add_member(:arn, Shapes::ShapeRef.new(shape: Arn, location_name: "arn"))
     EnabledControlSummary.add_member(:control_identifier, Shapes::ShapeRef.new(shape: ControlIdentifier, location_name: "controlIdentifier"))
+    EnabledControlSummary.add_member(:drift_status_summary, Shapes::ShapeRef.new(shape: DriftStatusSummary, location_name: "driftStatusSummary"))
+    EnabledControlSummary.add_member(:status_summary, Shapes::ShapeRef.new(shape: EnablementStatusSummary, location_name: "statusSummary"))
+    EnabledControlSummary.add_member(:target_identifier, Shapes::ShapeRef.new(shape: TargetIdentifier, location_name: "targetIdentifier"))
     EnabledControlSummary.struct_class = Types::EnabledControlSummary
 
     EnabledControls.member = Shapes::ShapeRef.new(shape: EnabledControlSummary)
 
+    EnablementStatusSummary.add_member(:last_operation_identifier, Shapes::ShapeRef.new(shape: OperationIdentifier, location_name: "lastOperationIdentifier"))
+    EnablementStatusSummary.add_member(:status, Shapes::ShapeRef.new(shape: EnablementStatus, location_name: "status"))
+    EnablementStatusSummary.struct_class = Types::EnablementStatusSummary
+
     GetControlOperationInput.add_member(:operation_identifier, Shapes::ShapeRef.new(shape: OperationIdentifier, required: true, location_name: "operationIdentifier"))
     GetControlOperationInput.struct_class = Types::GetControlOperationInput
 
     GetControlOperationOutput.add_member(:control_operation, Shapes::ShapeRef.new(shape: ControlOperation, required: true, location_name: "controlOperation"))
     GetControlOperationOutput.struct_class = Types::GetControlOperationOutput
 
+    GetEnabledControlInput.add_member(:enabled_control_identifier, Shapes::ShapeRef.new(shape: Arn, required: true, location_name: "enabledControlIdentifier"))
+    GetEnabledControlInput.struct_class = Types::GetEnabledControlInput
+
+    GetEnabledControlOutput.add_member(:enabled_control_details, Shapes::ShapeRef.new(shape: EnabledControlDetails, required: true, location_name: "enabledControlDetails"))
+    GetEnabledControlOutput.struct_class = Types::GetEnabledControlOutput
+
     InternalServerException.add_member(:message, Shapes::ShapeRef.new(shape: String, required: true, location_name: "message"))
     InternalServerException.struct_class = Types::InternalServerException
 
@@ -91,12 +127,17 @@ module Aws::ControlTower
     ListEnabledControlsOutput.add_member(:next_token, Shapes::ShapeRef.new(shape: String, location_name: "nextToken"))
     ListEnabledControlsOutput.struct_class = Types::ListEnabledControlsOutput
 
+    Region.add_member(:name, Shapes::ShapeRef.new(shape: RegionName, location_name: "name"))
+    Region.struct_class = Types::Region
+
     ResourceNotFoundException.add_member(:message, Shapes::ShapeRef.new(shape: String, required: true, location_name: "message"))
     ResourceNotFoundException.struct_class = Types::ResourceNotFoundException
 
     ServiceQuotaExceededException.add_member(:message, Shapes::ShapeRef.new(shape: String, required: true, location_name: "message"))
     ServiceQuotaExceededException.struct_class = Types::ServiceQuotaExceededException
 
+    TargetRegions.member = Shapes::ShapeRef.new(shape: Region)
+
     ThrottlingException.add_member(:message, Shapes::ShapeRef.new(shape: String, required: true, location_name: "message"))
     ThrottlingException.add_member(:quota_code, Shapes::ShapeRef.new(shape: String, location_name: "quotaCode"))
     ThrottlingException.add_member(:retry_after_seconds, Shapes::ShapeRef.new(shape: Integer, location: "header", location_name: "Retry-After"))
@@ -167,6 +208,19 @@ module Aws::ControlTower
         o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
       end)
 
+      api.add_operation(:get_enabled_control, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "GetEnabledControl"
+        o.http_method = "POST"
+        o.http_request_uri = "/get-enabled-control"
+        o.input = Shapes::ShapeRef.new(shape: GetEnabledControlInput)
+        o.output = Shapes::ShapeRef.new(shape: GetEnabledControlOutput)
+        o.errors << Shapes::ShapeRef.new(shape: ValidationException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServerException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: ThrottlingException)
+        o.errors << Shapes::ShapeRef.new(shape: ResourceNotFoundException)
+      end)
+
       api.add_operation(:list_enabled_controls, Seahorse::Model::Operation.new.tap do |o|
         o.name = "ListEnabledControls"
         o.http_method = "POST"

data/lib/aws-sdk-controltower/endpoints.rb

@@ -54,6 +54,20 @@ module Aws::ControlTower
       end
     end
 
+    class GetEnabledControl
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::ControlTower::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
+
     class ListEnabledControls
       def self.build(context)
         unless context.config.regional_endpoint

data/lib/aws-sdk-controltower/plugins/endpoints.rb

@@ -62,6 +62,8 @@ module Aws::ControlTower
             Aws::ControlTower::Endpoints::EnableControl.build(context)
           when :get_control_operation
             Aws::ControlTower::Endpoints::GetControlOperation.build(context)
+          when :get_enabled_control
+            Aws::ControlTower::Endpoints::GetEnabledControl.build(context)
           when :list_enabled_controls
             Aws::ControlTower::Endpoints::ListEnabledControls.build(context)
           end

data/lib/aws-sdk-controltower/types.rb

@@ -74,11 +74,21 @@ module Aws::ControlTower
     # @!attribute [rw] control_identifier
     #   The ARN of the control. Only **Strongly recommended** and
     #   **Elective** controls are permitted, with the exception of the
-    #   **Region deny** guardrail.
+    #   **Region deny** control. For information on how to find the
+    #   `controlIdentifier`, see [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
     #   @return [String]
     #
     # @!attribute [rw] target_identifier
-    #   The ARN of the organizational unit.
+    #   The ARN of the organizational unit. For information on how to find
+    #   the `targetIdentifier`, see [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/DisableControlInput AWS API Documentation
@@ -103,14 +113,57 @@ module Aws::ControlTower
       include Aws::Structure
     end
 
+    # The drift summary of the enabled control.
+    #
+    # AWS Control Tower expects the enabled control configuration to include
+    # all supported and governed Regions. If the enabled control differs
+    # from the expected configuration, it is defined to be in a state of
+    # drift. You can repair this drift by resetting the enabled control.
+    #
+    # @!attribute [rw] drift_status
+    #   The drift status of the enabled control.
+    #
+    #   Valid values:
+    #
+    #   * `DRIFTED`: The `enabledControl` deployed in this configuration
+    #     doesn’t match the configuration that AWS Control Tower expected.
+    #
+    #   * `IN_SYNC`: The `enabledControl` deployed in this configuration
+    #     matches the configuration that AWS Control Tower expected.
+    #
+    #   * `NOT_CHECKING`: AWS Control Tower does not check drift for this
+    #     enabled control. Drift is not supported for the control type.
+    #
+    #   * `UNKNOWN`: AWS Control Tower is not able to check the drift status
+    #     for the enabled control.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/DriftStatusSummary AWS API Documentation
+    #
+    class DriftStatusSummary < Struct.new(
+      :drift_status)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] control_identifier
     #   The ARN of the control. Only **Strongly recommended** and
     #   **Elective** controls are permitted, with the exception of the
-    #   **Region deny** guardrail.
+    #   **Region deny** control. For information on how to find the
+    #   `controlIdentifier`, see [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
     #   @return [String]
     #
     # @!attribute [rw] target_identifier
-    #   The ARN of the organizational unit.
+    #   The ARN of the organizational unit. For information on how to find
+    #   the `targetIdentifier`, see [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/EnableControlInput AWS API Documentation
@@ -135,18 +188,122 @@ module Aws::ControlTower
       include Aws::Structure
     end
 
+    # Information about the enabled control.
+    #
+    # @!attribute [rw] arn
+    #   The ARN of the enabled control.
+    #   @return [String]
+    #
+    # @!attribute [rw] control_identifier
+    #   The control identifier of the enabled control. For information on
+    #   how to find the `controlIdentifier`, see [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
+    #   @return [String]
+    #
+    # @!attribute [rw] drift_status_summary
+    #   The drift status of the enabled control.
+    #   @return [Types::DriftStatusSummary]
+    #
+    # @!attribute [rw] status_summary
+    #   The deployment summary of the enabled control.
+    #   @return [Types::EnablementStatusSummary]
+    #
+    # @!attribute [rw] target_identifier
+    #   The ARN of the organizational unit. For information on how to find
+    #   the `targetIdentifier`, see [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
+    #   @return [String]
+    #
+    # @!attribute [rw] target_regions
+    #   Target AWS Regions for the enabled control.
+    #   @return [Array<Types::Region>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/EnabledControlDetails AWS API Documentation
+    #
+    class EnabledControlDetails < Struct.new(
+      :arn,
+      :control_identifier,
+      :drift_status_summary,
+      :status_summary,
+      :target_identifier,
+      :target_regions)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # A summary of enabled controls.
     #
+    # @!attribute [rw] arn
+    #   The ARN of the enabled control.
+    #   @return [String]
+    #
     # @!attribute [rw] control_identifier
     #   The ARN of the control. Only **Strongly recommended** and
     #   **Elective** controls are permitted, with the exception of the
-    #   **Region deny** guardrail.
+    #   **Region deny** control. For information on how to find the
+    #   `controlIdentifier`, see [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
+    #   @return [String]
+    #
+    # @!attribute [rw] drift_status_summary
+    #   The drift status of the enabled control.
+    #   @return [Types::DriftStatusSummary]
+    #
+    # @!attribute [rw] status_summary
+    #   <zonbook />
+    #
+    #   <xhtml />
+    #   @return [Types::EnablementStatusSummary]
+    #
+    # @!attribute [rw] target_identifier
+    #   The ARN of the organizational unit.
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/EnabledControlSummary AWS API Documentation
     #
     class EnabledControlSummary < Struct.new(
-      :control_identifier)
+      :arn,
+      :control_identifier,
+      :drift_status_summary,
+      :status_summary,
+      :target_identifier)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # The deployment summary of the enabled control.
+    #
+    # @!attribute [rw] last_operation_identifier
+    #   The last operation identifier for the enabled control.
+    #   @return [String]
+    #
+    # @!attribute [rw] status
+    #   The deployment status of the enabled control.
+    #
+    #   Valid values:
+    #
+    #   * `SUCCEEDED`: The `enabledControl` configuration was deployed
+    #     successfully.
+    #
+    #   * `UNDER_CHANGE`: The `enabledControl` configuration is changing.
+    #
+    #   * `FAILED`: The `enabledControl` configuration failed to deploy.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/EnablementStatusSummary AWS API Documentation
+    #
+    class EnablementStatusSummary < Struct.new(
+      :last_operation_identifier,
+      :status)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -165,6 +322,7 @@ module Aws::ControlTower
     end
 
     # @!attribute [rw] control_operation
+    #   An operation performed by the control.
     #   @return [Types::ControlOperation]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/GetControlOperationOutput AWS API Documentation
@@ -175,6 +333,30 @@ module Aws::ControlTower
       include Aws::Structure
     end
 
+    # @!attribute [rw] enabled_control_identifier
+    #   The ARN of the enabled control.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/GetEnabledControlInput AWS API Documentation
+    #
+    class GetEnabledControlInput < Struct.new(
+      :enabled_control_identifier)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] enabled_control_details
+    #   Information about the enabled control.
+    #   @return [Types::EnabledControlDetails]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/GetEnabledControlOutput AWS API Documentation
+    #
+    class GetEnabledControlOutput < Struct.new(
+      :enabled_control_details)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Unexpected error during processing of request.
     #
     # @!attribute [rw] message
@@ -198,7 +380,12 @@ module Aws::ControlTower
     #   @return [String]
     #
     # @!attribute [rw] target_identifier
-    #   The ARN of the organizational unit.
+    #   The ARN of the organizational unit. For information on how to find
+    #   the `targetIdentifier`, see [the overview page][1].
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/controltower/latest/APIReference/Welcome.html
     #   @return [String]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/ListEnabledControlsInput AWS API Documentation
@@ -230,6 +417,30 @@ module Aws::ControlTower
       include Aws::Structure
     end
 
+    # An AWS Region in which AWS Control Tower expects to find the control
+    # deployed.
+    #
+    # The expected Regions are based on the Regions that are governed by the
+    # landing zone. In certain cases, a control is not actually enabled in
+    # the Region as expected, such as during drift, or [mixed
+    # governance][1].
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/controltower/latest/userguide/region-how.html#mixed-governance
+    #
+    # @!attribute [rw] name
+    #   The AWS Region name.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/controltower-2018-05-10/Region AWS API Documentation
+    #
+    class Region < Struct.new(
+      :name)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Request references a resource which does not exist.
     #
     # @!attribute [rw] message

data/lib/aws-sdk-controltower.rb

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-controltower/customizations'
 # @!group service
 module Aws::ControlTower
 
-  GEM_VERSION = '1.9.0'
+  GEM_VERSION = '1.10.0'
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-controltower
 version: !ruby/object:Gem::Version
-  version: 1.9.0
+  version: 1.10.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2023-09-27 00:00:00.000000000 Z
+date: 2023-10-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core