aws-sdk-core 3.193.0 → 3.196.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 695fd9bb743f174c2d95150bbd990e4918a7ed369f302e76f8da7d280fc3f67a
-  data.tar.gz: 1cde2df63d79f4a15723b62420c0e97b70e6cb42dff41e9116704c73a9793454
+  metadata.gz: b77f2eeb94a52526e385b422b59703e582c75af70402ab009b66d542694259c8
+  data.tar.gz: e97d33313f38d3b6dd565a02b3c1ccdc34d5960cd076ace3449fe50f7f75f2b6
 SHA512:
-  metadata.gz: f468ab811c2a74ab4dd844258ba6f8b5e515771c4409cd03018c5fd1a33b11cf50f03d43ea2efb5201fdf8cf4ffee83fc1cc7bec6016206a05e6b05b5dbdd160
-  data.tar.gz: 44a637e590341dec00e23586c0c0d8881ad863aa94b73ddd75686fa08f2491e2c1d15fc8d409896cddee00e7eef0c585a98bf689249a9ae5839131f38e6d2ac9
+  metadata.gz: 2efdc811c495c91558cf5144599eff67f2e828a94d90d4fd31d49575a9bff4456e7f237aa79853cdb6f8fba016b9011cc8f6d8677596c85a9e6179f606431961
+  data.tar.gz: e933ae0dc9b2d77e0455a1af5f5c635833b394ec2f70f90133af52993992134b56481952124d5a2448182a6c180c4cb1483114667ea5d2437891e22a739e3f44

data/CHANGELOG.md

@@ -1,6 +1,42 @@
 Unreleased Changes
 ------------------
 
+3.196.1 (2024-05-14)
+------------------
+
+* Issue - Fix `ConnectionPool` for `.empty!` and `.clear!` since it prevented adding a new key from being added to the pool (#3020).
+
+3.196.0 (2024-05-13)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+3.195.0 (2024-05-10)
+------------------
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated request parameters for PKCE support.
+
+3.194.2 (2024-05-07)
+------------------
+
+* Issue - Fix issue where `ConnectionPool` size iteration would prevent a new key from being added to the pool.
+
+3.194.1 (2024-05-03)
+------------------
+
+* Issue - Update EC2 protocol to not serialize empty lists.
+
+3.194.0 (2024-04-30)
+------------------
+
+* Feature - Add an API private cache for S3 Express and Access Grants.
+
 3.193.0 (2024-04-25)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-3.193.0
+3.196.1

data/lib/aws-sdk-core/lru_cache.rb

@@ -0,0 +1,75 @@
+# frozen_string_literal: true
+
+module Aws
+  # @api private
+  # A simple thread safe LRU cache
+  class LRUCache
+    # @param [Hash] options
+    # @option options [Integer] :max_entries (100) Maximum number of entries
+    # @option options [Integer] :expiration (nil) Expiration time in seconds
+    def initialize(options = {})
+      @max_entries = options[:max_entries] || 100
+      @expiration = options[:expiration]
+      @entries = {}
+      @mutex = Mutex.new
+    end
+
+    # @param [String] key
+    # @return [Object]
+    def [](key)
+      @mutex.synchronize do
+        value = @entries[key]
+        if value
+          @entries.delete(key)
+          @entries[key] = value unless value.expired?
+        end
+        @entries[key]&.value
+      end
+    end
+
+    # @param [String] key
+    # @param [Object] value
+    def []=(key, value)
+      @mutex.synchronize do
+        @entries.shift unless @entries.size < @max_entries
+        # delete old value if exists
+        @entries.delete(key)
+        @entries[key] = Entry.new(value: value, expiration: @expiration)
+        @entries[key].value
+      end
+    end
+
+    # @param [String] key
+    # @return [Boolean]
+    def key?(key)
+      @mutex.synchronize do
+        @entries.delete(key) if @entries.key?(key) && @entries[key].expired?
+        @entries.key?(key)
+      end
+    end
+
+    def clear
+      @mutex.synchronize do
+        @entries.clear
+      end
+    end
+
+    # @api private
+    class Entry
+      def initialize(options = {})
+        @value = options[:value]
+        @expiration = options[:expiration]
+        @created_time = Time.now
+      end
+
+      # @return [Object]
+      attr_reader :value
+
+      def expired?
+        return false unless @expiration
+
+        Time.now - @created_time > @expiration
+      end
+    end
+  end
+end

data/lib/aws-sdk-core/plugins/user_agent.rb

@@ -14,8 +14,9 @@ module Aws
         doc_type: 'String',
         docstring: <<-DOCS) do |cfg|
 A unique and opaque application ID that is appended to the
-User-Agent header as app/<sdk_ua_app_id>. It should have a
-maximum length of 50.
+User-Agent header as app/sdk_ua_app_id. It should have a
+maximum length of 50. This variable is sourced from environment
+variable AWS_SDK_UA_APP_ID or the shared config profile attribute sdk_ua_app_id.
         DOCS
         app_id = ENV['AWS_SDK_UA_APP_ID']
         app_id ||= Aws.shared_config.sdk_ua_app_id(profile: cfg.profile)

data/lib/aws-sdk-core/query/ec2_param_builder.rb

@@ -31,13 +31,11 @@ module Aws
       end
 
       def list(ref, values, prefix)
-        if values.empty?
-          set(prefix, '')
-        else
-          member_ref = ref.shape.member
-          values.each.with_index do |value, n|
-            format(member_ref, value, "#{prefix}.#{n+1}")
-          end
+        return if values.empty?
+
+        member_ref = ref.shape.member
+        values.each.with_index do |value, n|
+          format(member_ref, value, "#{prefix}.#{n + 1}")
         end
       end
 

data/lib/aws-sdk-core.rb

@@ -96,6 +96,7 @@ require_relative 'aws-sdk-core/client_side_monitoring/publisher'
 require_relative 'aws-sdk-core/arn'
 require_relative 'aws-sdk-core/arn_parser'
 require_relative 'aws-sdk-core/ec2_metadata'
+require_relative 'aws-sdk-core/lru_cache'
 
 # dynamic endpoints
 require_relative 'aws-sdk-core/endpoints'

data/lib/aws-sdk-sso/client.rb

@@ -301,8 +301,9 @@ module Aws::SSO
     #
     #   @option options [String] :sdk_ua_app_id
     #     A unique and opaque application ID that is appended to the
-    #     User-Agent header as app/<sdk_ua_app_id>. It should have a
-    #     maximum length of 50.
+    #     User-Agent header as app/sdk_ua_app_id. It should have a
+    #     maximum length of 50. This variable is sourced from environment
+    #     variable AWS_SDK_UA_APP_ID or the shared config profile attribute sdk_ua_app_id.
     #
     #   @option options [String] :secret_access_key
     #
@@ -629,7 +630,7 @@ module Aws::SSO
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-core'
-      context[:gem_version] = '3.193.0'
+      context[:gem_version] = '3.196.1'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-sso.rb

@@ -54,6 +54,6 @@ require_relative 'aws-sdk-sso/customizations'
 # @!group service
 module Aws::SSO
 
-  GEM_VERSION = '3.193.0'
+  GEM_VERSION = '3.196.1'
 
 end

data/lib/aws-sdk-ssooidc/client.rb

@@ -301,8 +301,9 @@ module Aws::SSOOIDC
     #
     #   @option options [String] :sdk_ua_app_id
     #     A unique and opaque application ID that is appended to the
-    #     User-Agent header as app/<sdk_ua_app_id>. It should have a
-    #     maximum length of 50.
+    #     User-Agent header as app/sdk_ua_app_id. It should have a
+    #     maximum length of 50. This variable is sourced from environment
+    #     variable AWS_SDK_UA_APP_ID or the shared config profile attribute sdk_ua_app_id.
     #
     #   @option options [String] :secret_access_key
     #
@@ -471,6 +472,11 @@ module Aws::SSOOIDC
     #   This value specifies the location of the client or application that
     #   has registered to receive the authorization code.
     #
+    # @option params [String] :code_verifier
+    #   Used only when calling this API for the Authorization Code grant type.
+    #   This value is generated by the client and presented to validate the
+    #   original code challenge value the client passed at authorization time.
+    #
     # @return [Types::CreateTokenResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateTokenResponse#access_token #access_token} => String
@@ -528,6 +534,7 @@ module Aws::SSOOIDC
     #     refresh_token: "RefreshToken",
     #     scope: ["Scope"],
     #     redirect_uri: "URI",
+    #     code_verifier: "CodeVerifier",
     #   })
     #
     # @example Response structure
@@ -549,8 +556,9 @@ module Aws::SSOOIDC
 
     # Creates and returns access and refresh tokens for clients and
     # applications that are authenticated using IAM entities. The access
-    # token can be used to fetch short-term credentials for the assigned AWS
-    # accounts or to access application APIs using `bearer` authentication.
+    # token can be used to fetch short-term credentials for the assigned
+    # Amazon Web Services accounts or to access application APIs using
+    # `bearer` authentication.
     #
     # @option params [required, String] :client_id
     #   The unique identifier string for the client or application. This value
@@ -631,6 +639,11 @@ module Aws::SSOOIDC
     #
     #   * Refresh Token - `urn:ietf:params:oauth:token-type:refresh_token`
     #
+    # @option params [String] :code_verifier
+    #   Used only when calling this API for the Authorization Code grant type.
+    #   This value is generated by the client and presented to validate the
+    #   original code challenge value the client passed at authorization time.
+    #
     # @return [Types::CreateTokenWithIAMResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateTokenWithIAMResponse#access_token #access_token} => String
@@ -753,6 +766,7 @@ module Aws::SSOOIDC
     #     subject_token: "SubjectToken",
     #     subject_token_type: "TokenTypeURI",
     #     requested_token_type: "TokenTypeURI",
+    #     code_verifier: "CodeVerifier",
     #   })
     #
     # @example Response structure
@@ -791,6 +805,28 @@ module Aws::SSOOIDC
     #   this list is used to restrict permissions when granting an access
     #   token.
     #
+    # @option params [Array<String>] :redirect_uris
+    #   The list of redirect URI that are defined by the client. At completion
+    #   of authorization, this list is used to restrict what locations the
+    #   user agent can be redirected back to.
+    #
+    # @option params [Array<String>] :grant_types
+    #   The list of OAuth 2.0 grant types that are defined by the client. This
+    #   list is used to restrict the token granting flows available to the
+    #   client.
+    #
+    # @option params [String] :issuer_url
+    #   The IAM Identity Center Issuer URL associated with an instance of IAM
+    #   Identity Center. This value is needed for user access to resources
+    #   through the client.
+    #
+    # @option params [String] :entitled_application_arn
+    #   This IAM Identity Center application ARN is used to define
+    #   administrator-managed configuration for public client access to
+    #   resources. At authorization, the scopes, grants, and redirect URI
+    #   available to this client will be restricted by this application
+    #   resource.
+    #
     # @return [Types::RegisterClientResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::RegisterClientResponse#client_id #client_id} => String
@@ -806,6 +842,15 @@ module Aws::SSOOIDC
     #   resp = client.register_client({
     #     client_name: "My IDE Plugin", 
     #     client_type: "public", 
+    #     entitled_application_arn: "arn:aws:sso::ACCOUNTID:application/ssoins-1111111111111111/apl-1111111111111111", 
+    #     grant_types: [
+    #       "authorization_code", 
+    #       "refresh_token", 
+    #     ], 
+    #     issuer_url: "https://identitycenter.amazonaws.com/ssoins-1111111111111111", 
+    #     redirect_uris: [
+    #       "127.0.0.1:PORT/oauth/callback", 
+    #     ], 
     #     scopes: [
     #       "sso:account:access", 
     #       "codewhisperer:completions", 
@@ -826,6 +871,10 @@ module Aws::SSOOIDC
     #     client_name: "ClientName", # required
     #     client_type: "ClientType", # required
     #     scopes: ["Scope"],
+    #     redirect_uris: ["URI"],
+    #     grant_types: ["GrantType"],
+    #     issuer_url: "URI",
+    #     entitled_application_arn: "ArnType",
     #   })
     #
     # @example Response structure
@@ -934,7 +983,7 @@ module Aws::SSOOIDC
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-core'
-      context[:gem_version] = '3.193.0'
+      context[:gem_version] = '3.196.1'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-ssooidc/client_api.rb

@@ -15,6 +15,7 @@ module Aws::SSOOIDC
 
     AccessDeniedException = Shapes::StructureShape.new(name: 'AccessDeniedException')
     AccessToken = Shapes::StringShape.new(name: 'AccessToken')
+    ArnType = Shapes::StringShape.new(name: 'ArnType')
     Assertion = Shapes::StringShape.new(name: 'Assertion')
     AuthCode = Shapes::StringShape.new(name: 'AuthCode')
     AuthorizationPendingException = Shapes::StructureShape.new(name: 'AuthorizationPendingException')
@@ -22,6 +23,7 @@ module Aws::SSOOIDC
     ClientName = Shapes::StringShape.new(name: 'ClientName')
     ClientSecret = Shapes::StringShape.new(name: 'ClientSecret')
     ClientType = Shapes::StringShape.new(name: 'ClientType')
+    CodeVerifier = Shapes::StringShape.new(name: 'CodeVerifier')
     CreateTokenRequest = Shapes::StructureShape.new(name: 'CreateTokenRequest')
     CreateTokenResponse = Shapes::StructureShape.new(name: 'CreateTokenResponse')
     CreateTokenWithIAMRequest = Shapes::StructureShape.new(name: 'CreateTokenWithIAMRequest')
@@ -32,17 +34,20 @@ module Aws::SSOOIDC
     ExpirationInSeconds = Shapes::IntegerShape.new(name: 'ExpirationInSeconds')
     ExpiredTokenException = Shapes::StructureShape.new(name: 'ExpiredTokenException')
     GrantType = Shapes::StringShape.new(name: 'GrantType')
+    GrantTypes = Shapes::ListShape.new(name: 'GrantTypes')
     IdToken = Shapes::StringShape.new(name: 'IdToken')
     InternalServerException = Shapes::StructureShape.new(name: 'InternalServerException')
     IntervalInSeconds = Shapes::IntegerShape.new(name: 'IntervalInSeconds')
     InvalidClientException = Shapes::StructureShape.new(name: 'InvalidClientException')
     InvalidClientMetadataException = Shapes::StructureShape.new(name: 'InvalidClientMetadataException')
     InvalidGrantException = Shapes::StructureShape.new(name: 'InvalidGrantException')
+    InvalidRedirectUriException = Shapes::StructureShape.new(name: 'InvalidRedirectUriException')
     InvalidRequestException = Shapes::StructureShape.new(name: 'InvalidRequestException')
     InvalidRequestRegionException = Shapes::StructureShape.new(name: 'InvalidRequestRegionException')
     InvalidScopeException = Shapes::StructureShape.new(name: 'InvalidScopeException')
     Location = Shapes::StringShape.new(name: 'Location')
     LongTimeStampType = Shapes::IntegerShape.new(name: 'LongTimeStampType')
+    RedirectUris = Shapes::ListShape.new(name: 'RedirectUris')
     RefreshToken = Shapes::StringShape.new(name: 'RefreshToken')
     Region = Shapes::StringShape.new(name: 'Region')
     RegisterClientRequest = Shapes::StructureShape.new(name: 'RegisterClientRequest')
@@ -76,6 +81,7 @@ module Aws::SSOOIDC
     CreateTokenRequest.add_member(:refresh_token, Shapes::ShapeRef.new(shape: RefreshToken, location_name: "refreshToken"))
     CreateTokenRequest.add_member(:scope, Shapes::ShapeRef.new(shape: Scopes, location_name: "scope"))
     CreateTokenRequest.add_member(:redirect_uri, Shapes::ShapeRef.new(shape: URI, location_name: "redirectUri"))
+    CreateTokenRequest.add_member(:code_verifier, Shapes::ShapeRef.new(shape: CodeVerifier, location_name: "codeVerifier"))
     CreateTokenRequest.struct_class = Types::CreateTokenRequest
 
     CreateTokenResponse.add_member(:access_token, Shapes::ShapeRef.new(shape: AccessToken, location_name: "accessToken"))
@@ -95,6 +101,7 @@ module Aws::SSOOIDC
     CreateTokenWithIAMRequest.add_member(:subject_token, Shapes::ShapeRef.new(shape: SubjectToken, location_name: "subjectToken"))
     CreateTokenWithIAMRequest.add_member(:subject_token_type, Shapes::ShapeRef.new(shape: TokenTypeURI, location_name: "subjectTokenType"))
     CreateTokenWithIAMRequest.add_member(:requested_token_type, Shapes::ShapeRef.new(shape: TokenTypeURI, location_name: "requestedTokenType"))
+    CreateTokenWithIAMRequest.add_member(:code_verifier, Shapes::ShapeRef.new(shape: CodeVerifier, location_name: "codeVerifier"))
     CreateTokenWithIAMRequest.struct_class = Types::CreateTokenWithIAMRequest
 
     CreateTokenWithIAMResponse.add_member(:access_token, Shapes::ShapeRef.new(shape: AccessToken, location_name: "accessToken"))
@@ -110,6 +117,8 @@ module Aws::SSOOIDC
     ExpiredTokenException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
     ExpiredTokenException.struct_class = Types::ExpiredTokenException
 
+    GrantTypes.member = Shapes::ShapeRef.new(shape: GrantType)
+
     InternalServerException.add_member(:error, Shapes::ShapeRef.new(shape: Error, location_name: "error"))
     InternalServerException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
     InternalServerException.struct_class = Types::InternalServerException
@@ -126,6 +135,10 @@ module Aws::SSOOIDC
     InvalidGrantException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
     InvalidGrantException.struct_class = Types::InvalidGrantException
 
+    InvalidRedirectUriException.add_member(:error, Shapes::ShapeRef.new(shape: Error, location_name: "error"))
+    InvalidRedirectUriException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
+    InvalidRedirectUriException.struct_class = Types::InvalidRedirectUriException
+
     InvalidRequestException.add_member(:error, Shapes::ShapeRef.new(shape: Error, location_name: "error"))
     InvalidRequestException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
     InvalidRequestException.struct_class = Types::InvalidRequestException
@@ -140,9 +153,15 @@ module Aws::SSOOIDC
     InvalidScopeException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
     InvalidScopeException.struct_class = Types::InvalidScopeException
 
+    RedirectUris.member = Shapes::ShapeRef.new(shape: URI)
+
     RegisterClientRequest.add_member(:client_name, Shapes::ShapeRef.new(shape: ClientName, required: true, location_name: "clientName"))
     RegisterClientRequest.add_member(:client_type, Shapes::ShapeRef.new(shape: ClientType, required: true, location_name: "clientType"))
     RegisterClientRequest.add_member(:scopes, Shapes::ShapeRef.new(shape: Scopes, location_name: "scopes"))
+    RegisterClientRequest.add_member(:redirect_uris, Shapes::ShapeRef.new(shape: RedirectUris, location_name: "redirectUris"))
+    RegisterClientRequest.add_member(:grant_types, Shapes::ShapeRef.new(shape: GrantTypes, location_name: "grantTypes"))
+    RegisterClientRequest.add_member(:issuer_url, Shapes::ShapeRef.new(shape: URI, location_name: "issuerUrl"))
+    RegisterClientRequest.add_member(:entitled_application_arn, Shapes::ShapeRef.new(shape: ArnType, location_name: "entitledApplicationArn"))
     RegisterClientRequest.struct_class = Types::RegisterClientRequest
 
     RegisterClientResponse.add_member(:client_id, Shapes::ShapeRef.new(shape: ClientId, location_name: "clientId"))
@@ -191,6 +210,7 @@ module Aws::SSOOIDC
         "endpointPrefix" => "oidc",
         "jsonVersion" => "1.1",
         "protocol" => "rest-json",
+        "protocols" => ["rest-json"],
         "serviceAbbreviation" => "SSO OIDC",
         "serviceFullName" => "AWS SSO OIDC",
         "serviceId" => "SSO OIDC",
@@ -250,6 +270,8 @@ module Aws::SSOOIDC
         o.errors << Shapes::ShapeRef.new(shape: InvalidScopeException)
         o.errors << Shapes::ShapeRef.new(shape: InvalidClientMetadataException)
         o.errors << Shapes::ShapeRef.new(shape: InternalServerException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidRedirectUriException)
+        o.errors << Shapes::ShapeRef.new(shape: UnsupportedGrantTypeException)
       end)
 
       api.add_operation(:start_device_authorization, Seahorse::Model::Operation.new.tap do |o|

data/lib/aws-sdk-ssooidc/errors.rb

@@ -34,6 +34,7 @@ module Aws::SSOOIDC
   # * {InvalidClientException}
   # * {InvalidClientMetadataException}
   # * {InvalidGrantException}
+  # * {InvalidRedirectUriException}
   # * {InvalidRequestException}
   # * {InvalidRequestRegionException}
   # * {InvalidScopeException}
@@ -187,6 +188,26 @@ module Aws::SSOOIDC
       end
     end
 
+    class InvalidRedirectUriException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::SSOOIDC::Types::InvalidRedirectUriException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def error
+        @data[:error]
+      end
+
+      # @return [String]
+      def error_description
+        @data[:error_description]
+      end
+    end
+
     class InvalidRequestException < ServiceError
 
       # @param [Seahorse::Client::RequestContext] context

data/lib/aws-sdk-ssooidc/types.rb

@@ -118,6 +118,13 @@ module Aws::SSOOIDC
     #   that has registered to receive the authorization code.
     #   @return [String]
     #
+    # @!attribute [rw] code_verifier
+    #   Used only when calling this API for the Authorization Code grant
+    #   type. This value is generated by the client and presented to
+    #   validate the original code challenge value the client passed at
+    #   authorization time.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-oidc-2019-06-10/CreateTokenRequest AWS API Documentation
     #
     class CreateTokenRequest < Struct.new(
@@ -128,14 +135,15 @@ module Aws::SSOOIDC
       :code,
       :refresh_token,
       :scope,
-      :redirect_uri)
-      SENSITIVE = [:client_secret, :refresh_token]
+      :redirect_uri,
+      :code_verifier)
+      SENSITIVE = [:client_secret, :refresh_token, :code_verifier]
       include Aws::Structure
     end
 
     # @!attribute [rw] access_token
-    #   A bearer token to access AWS accounts and applications assigned to a
-    #   user.
+    #   A bearer token to access Amazon Web Services accounts and
+    #   applications assigned to a user.
     #   @return [String]
     #
     # @!attribute [rw] token_type
@@ -278,6 +286,13 @@ module Aws::SSOOIDC
     #   * Refresh Token - `urn:ietf:params:oauth:token-type:refresh_token`
     #   @return [String]
     #
+    # @!attribute [rw] code_verifier
+    #   Used only when calling this API for the Authorization Code grant
+    #   type. This value is generated by the client and presented to
+    #   validate the original code challenge value the client passed at
+    #   authorization time.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-oidc-2019-06-10/CreateTokenWithIAMRequest AWS API Documentation
     #
     class CreateTokenWithIAMRequest < Struct.new(
@@ -290,14 +305,15 @@ module Aws::SSOOIDC
       :redirect_uri,
       :subject_token,
       :subject_token_type,
-      :requested_token_type)
-      SENSITIVE = [:refresh_token, :assertion, :subject_token]
+      :requested_token_type,
+      :code_verifier)
+      SENSITIVE = [:refresh_token, :assertion, :subject_token, :code_verifier]
       include Aws::Structure
     end
 
     # @!attribute [rw] access_token
-    #   A bearer token to access AWS accounts and applications assigned to a
-    #   user.
+    #   A bearer token to access Amazon Web Services accounts and
+    #   applications assigned to a user.
     #   @return [String]
     #
     # @!attribute [rw] token_type
@@ -467,6 +483,28 @@ module Aws::SSOOIDC
       include Aws::Structure
     end
 
+    # Indicates that one or more redirect URI in the request is not
+    # supported for this operation.
+    #
+    # @!attribute [rw] error
+    #   Single error code. For this exception the value will be
+    #   `invalid_redirect_uri`.
+    #   @return [String]
+    #
+    # @!attribute [rw] error_description
+    #   Human-readable text providing additional information, used to assist
+    #   the client developer in understanding the error that occurred.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sso-oidc-2019-06-10/InvalidRedirectUriException AWS API Documentation
+    #
+    class InvalidRedirectUriException < Struct.new(
+      :error,
+      :error_description)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Indicates that something is wrong with the input to the request. For
     # example, a required parameter might be missing or out of range.
     #
@@ -559,12 +597,42 @@ module Aws::SSOOIDC
     #   granting an access token.
     #   @return [Array<String>]
     #
+    # @!attribute [rw] redirect_uris
+    #   The list of redirect URI that are defined by the client. At
+    #   completion of authorization, this list is used to restrict what
+    #   locations the user agent can be redirected back to.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] grant_types
+    #   The list of OAuth 2.0 grant types that are defined by the client.
+    #   This list is used to restrict the token granting flows available to
+    #   the client.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] issuer_url
+    #   The IAM Identity Center Issuer URL associated with an instance of
+    #   IAM Identity Center. This value is needed for user access to
+    #   resources through the client.
+    #   @return [String]
+    #
+    # @!attribute [rw] entitled_application_arn
+    #   This IAM Identity Center application ARN is used to define
+    #   administrator-managed configuration for public client access to
+    #   resources. At authorization, the scopes, grants, and redirect URI
+    #   available to this client will be restricted by this application
+    #   resource.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-oidc-2019-06-10/RegisterClientRequest AWS API Documentation
     #
     class RegisterClientRequest < Struct.new(
       :client_name,
       :client_type,
-      :scopes)
+      :scopes,
+      :redirect_uris,
+      :grant_types,
+      :issuer_url,
+      :entitled_application_arn)
       SENSITIVE = []
       include Aws::Structure
     end

data/lib/aws-sdk-ssooidc.rb

@@ -54,6 +54,6 @@ require_relative 'aws-sdk-ssooidc/customizations'
 # @!group service
 module Aws::SSOOIDC
 
-  GEM_VERSION = '3.193.0'
+  GEM_VERSION = '3.196.1'
 
 end

data/lib/aws-sdk-sts/client.rb

@@ -303,8 +303,9 @@ module Aws::STS
     #
     #   @option options [String] :sdk_ua_app_id
     #     A unique and opaque application ID that is appended to the
-    #     User-Agent header as app/<sdk_ua_app_id>. It should have a
-    #     maximum length of 50.
+    #     User-Agent header as app/sdk_ua_app_id. It should have a
+    #     maximum length of 50. This variable is sourced from environment
+    #     variable AWS_SDK_UA_APP_ID or the shared config profile attribute sdk_ua_app_id.
     #
     #   @option options [String] :secret_access_key
     #
@@ -2376,7 +2377,7 @@ module Aws::STS
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-core'
-      context[:gem_version] = '3.193.0'
+      context[:gem_version] = '3.196.1'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-sts.rb

@@ -54,6 +54,6 @@ require_relative 'aws-sdk-sts/customizations'
 # @!group service
 module Aws::STS
 
-  GEM_VERSION = '3.193.0'
+  GEM_VERSION = '3.196.1'
 
 end

data/lib/seahorse/client/net_http/connection_pool.rb

@@ -119,11 +119,7 @@ module Seahorse
         #   pool, not counting those currently in use.
         def size
           @pool_mutex.synchronize do
-            size = 0
-            @pool.each_pair do |endpoint,sessions|
-              size += sessions.size
-            end
-            size
+            @pool.values.flatten.size
           end
         end
 
@@ -142,9 +138,7 @@ module Seahorse
         # @return [nil]
         def empty!
           @pool_mutex.synchronize do
-            @pool.each_pair do |endpoint,sessions|
-              sessions.each(&:finish)
-            end
+            @pool.values.flatten.map(&:finish)
             @pool.clear
           end
           nil
@@ -312,7 +306,7 @@ module Seahorse
         # @note **Must** be called behind a `@pool_mutex` synchronize block.
         def _clean
           now = Aws::Util.monotonic_milliseconds
-          @pool.each_pair do |endpoint,sessions|
+          @pool.values.each do |sessions|
             sessions.delete_if do |session|
               if session.last_used.nil? or now - session.last_used > http_idle_timeout * 1000
                 session.finish

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-core
 version: !ruby/object:Gem::Version
-  version: 3.193.0
+  version: 3.196.1
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-04-25 00:00:00.000000000 Z
+date: 2024-05-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: jmespath
@@ -151,6 +151,7 @@ files:
 - lib/aws-sdk-core/log/handler.rb
 - lib/aws-sdk-core/log/param_filter.rb
 - lib/aws-sdk-core/log/param_formatter.rb
+- lib/aws-sdk-core/lru_cache.rb
 - lib/aws-sdk-core/pageable_response.rb
 - lib/aws-sdk-core/pager.rb
 - lib/aws-sdk-core/param_converter.rb