aws-sdk-core 3.194.2 → 3.196.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +16 -0
- data/VERSION +1 -1
- data/lib/aws-sdk-core/plugins/user_agent.rb +3 -2
- data/lib/aws-sdk-sso/client.rb +4 -3
- data/lib/aws-sdk-sso.rb +1 -1
- data/lib/aws-sdk-ssooidc/client.rb +54 -5
- data/lib/aws-sdk-ssooidc/client_api.rb +22 -0
- data/lib/aws-sdk-ssooidc/errors.rb +21 -0
- data/lib/aws-sdk-ssooidc/types.rb +77 -9
- data/lib/aws-sdk-ssooidc.rb +1 -1
- data/lib/aws-sdk-sts/client.rb +4 -3
- data/lib/aws-sdk-sts.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 38baa5f7b8c77b4293d842d10dd49ecb5a89d6379faf9c75defeee9ee32807e0
|
4
|
+
data.tar.gz: bc11ac0a12fe12a01bfb96b73f0aee6a3191093df934d513ba341eee16af3f3d
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 23cfcd58e52393a89a3fc1037d04b34a2f9be5d7c8dd854ec8516b0cb4db63103c4c0fac9baead9f8e2e56796b9a4caa65715080a9a71afdf7520a386d4d180e
|
7
|
+
data.tar.gz: e316e4d7b18f74bce1b5280bd1a26d73d182baae9bc240a95e22b9ce6413817e5d8a9261c1d005cc72dc42db8bb7660011e7d144f8984fedf5eac140453e4e51
|
data/CHANGELOG.md
CHANGED
@@ -1,6 +1,22 @@
|
|
1
1
|
Unreleased Changes
|
2
2
|
------------------
|
3
3
|
|
4
|
+
3.196.0 (2024-05-13)
|
5
|
+
------------------
|
6
|
+
|
7
|
+
* Feature - Updated Aws::STS::Client with the latest API changes.
|
8
|
+
|
9
|
+
* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
|
10
|
+
|
11
|
+
* Feature - Updated Aws::SSO::Client with the latest API changes.
|
12
|
+
|
13
|
+
3.195.0 (2024-05-10)
|
14
|
+
------------------
|
15
|
+
|
16
|
+
* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
|
17
|
+
|
18
|
+
* Feature - Updated request parameters for PKCE support.
|
19
|
+
|
4
20
|
3.194.2 (2024-05-07)
|
5
21
|
------------------
|
6
22
|
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
3.
|
1
|
+
3.196.0
|
@@ -14,8 +14,9 @@ module Aws
|
|
14
14
|
doc_type: 'String',
|
15
15
|
docstring: <<-DOCS) do |cfg|
|
16
16
|
A unique and opaque application ID that is appended to the
|
17
|
-
User-Agent header as app
|
18
|
-
maximum length of 50.
|
17
|
+
User-Agent header as app/sdk_ua_app_id. It should have a
|
18
|
+
maximum length of 50. This variable is sourced from environment
|
19
|
+
variable AWS_SDK_UA_APP_ID or the shared config profile attribute sdk_ua_app_id.
|
19
20
|
DOCS
|
20
21
|
app_id = ENV['AWS_SDK_UA_APP_ID']
|
21
22
|
app_id ||= Aws.shared_config.sdk_ua_app_id(profile: cfg.profile)
|
data/lib/aws-sdk-sso/client.rb
CHANGED
@@ -301,8 +301,9 @@ module Aws::SSO
|
|
301
301
|
#
|
302
302
|
# @option options [String] :sdk_ua_app_id
|
303
303
|
# A unique and opaque application ID that is appended to the
|
304
|
-
# User-Agent header as app
|
305
|
-
# maximum length of 50.
|
304
|
+
# User-Agent header as app/sdk_ua_app_id. It should have a
|
305
|
+
# maximum length of 50. This variable is sourced from environment
|
306
|
+
# variable AWS_SDK_UA_APP_ID or the shared config profile attribute sdk_ua_app_id.
|
306
307
|
#
|
307
308
|
# @option options [String] :secret_access_key
|
308
309
|
#
|
@@ -629,7 +630,7 @@ module Aws::SSO
|
|
629
630
|
params: params,
|
630
631
|
config: config)
|
631
632
|
context[:gem_name] = 'aws-sdk-core'
|
632
|
-
context[:gem_version] = '3.
|
633
|
+
context[:gem_version] = '3.196.0'
|
633
634
|
Seahorse::Client::Request.new(handlers, context)
|
634
635
|
end
|
635
636
|
|
data/lib/aws-sdk-sso.rb
CHANGED
@@ -301,8 +301,9 @@ module Aws::SSOOIDC
|
|
301
301
|
#
|
302
302
|
# @option options [String] :sdk_ua_app_id
|
303
303
|
# A unique and opaque application ID that is appended to the
|
304
|
-
# User-Agent header as app
|
305
|
-
# maximum length of 50.
|
304
|
+
# User-Agent header as app/sdk_ua_app_id. It should have a
|
305
|
+
# maximum length of 50. This variable is sourced from environment
|
306
|
+
# variable AWS_SDK_UA_APP_ID or the shared config profile attribute sdk_ua_app_id.
|
306
307
|
#
|
307
308
|
# @option options [String] :secret_access_key
|
308
309
|
#
|
@@ -471,6 +472,11 @@ module Aws::SSOOIDC
|
|
471
472
|
# This value specifies the location of the client or application that
|
472
473
|
# has registered to receive the authorization code.
|
473
474
|
#
|
475
|
+
# @option params [String] :code_verifier
|
476
|
+
# Used only when calling this API for the Authorization Code grant type.
|
477
|
+
# This value is generated by the client and presented to validate the
|
478
|
+
# original code challenge value the client passed at authorization time.
|
479
|
+
#
|
474
480
|
# @return [Types::CreateTokenResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
475
481
|
#
|
476
482
|
# * {Types::CreateTokenResponse#access_token #access_token} => String
|
@@ -528,6 +534,7 @@ module Aws::SSOOIDC
|
|
528
534
|
# refresh_token: "RefreshToken",
|
529
535
|
# scope: ["Scope"],
|
530
536
|
# redirect_uri: "URI",
|
537
|
+
# code_verifier: "CodeVerifier",
|
531
538
|
# })
|
532
539
|
#
|
533
540
|
# @example Response structure
|
@@ -549,8 +556,9 @@ module Aws::SSOOIDC
|
|
549
556
|
|
550
557
|
# Creates and returns access and refresh tokens for clients and
|
551
558
|
# applications that are authenticated using IAM entities. The access
|
552
|
-
# token can be used to fetch short-term credentials for the assigned
|
553
|
-
# accounts or to access application APIs using
|
559
|
+
# token can be used to fetch short-term credentials for the assigned
|
560
|
+
# Amazon Web Services accounts or to access application APIs using
|
561
|
+
# `bearer` authentication.
|
554
562
|
#
|
555
563
|
# @option params [required, String] :client_id
|
556
564
|
# The unique identifier string for the client or application. This value
|
@@ -631,6 +639,11 @@ module Aws::SSOOIDC
|
|
631
639
|
#
|
632
640
|
# * Refresh Token - `urn:ietf:params:oauth:token-type:refresh_token`
|
633
641
|
#
|
642
|
+
# @option params [String] :code_verifier
|
643
|
+
# Used only when calling this API for the Authorization Code grant type.
|
644
|
+
# This value is generated by the client and presented to validate the
|
645
|
+
# original code challenge value the client passed at authorization time.
|
646
|
+
#
|
634
647
|
# @return [Types::CreateTokenWithIAMResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
635
648
|
#
|
636
649
|
# * {Types::CreateTokenWithIAMResponse#access_token #access_token} => String
|
@@ -753,6 +766,7 @@ module Aws::SSOOIDC
|
|
753
766
|
# subject_token: "SubjectToken",
|
754
767
|
# subject_token_type: "TokenTypeURI",
|
755
768
|
# requested_token_type: "TokenTypeURI",
|
769
|
+
# code_verifier: "CodeVerifier",
|
756
770
|
# })
|
757
771
|
#
|
758
772
|
# @example Response structure
|
@@ -791,6 +805,28 @@ module Aws::SSOOIDC
|
|
791
805
|
# this list is used to restrict permissions when granting an access
|
792
806
|
# token.
|
793
807
|
#
|
808
|
+
# @option params [Array<String>] :redirect_uris
|
809
|
+
# The list of redirect URI that are defined by the client. At completion
|
810
|
+
# of authorization, this list is used to restrict what locations the
|
811
|
+
# user agent can be redirected back to.
|
812
|
+
#
|
813
|
+
# @option params [Array<String>] :grant_types
|
814
|
+
# The list of OAuth 2.0 grant types that are defined by the client. This
|
815
|
+
# list is used to restrict the token granting flows available to the
|
816
|
+
# client.
|
817
|
+
#
|
818
|
+
# @option params [String] :issuer_url
|
819
|
+
# The IAM Identity Center Issuer URL associated with an instance of IAM
|
820
|
+
# Identity Center. This value is needed for user access to resources
|
821
|
+
# through the client.
|
822
|
+
#
|
823
|
+
# @option params [String] :entitled_application_arn
|
824
|
+
# This IAM Identity Center application ARN is used to define
|
825
|
+
# administrator-managed configuration for public client access to
|
826
|
+
# resources. At authorization, the scopes, grants, and redirect URI
|
827
|
+
# available to this client will be restricted by this application
|
828
|
+
# resource.
|
829
|
+
#
|
794
830
|
# @return [Types::RegisterClientResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
|
795
831
|
#
|
796
832
|
# * {Types::RegisterClientResponse#client_id #client_id} => String
|
@@ -806,6 +842,15 @@ module Aws::SSOOIDC
|
|
806
842
|
# resp = client.register_client({
|
807
843
|
# client_name: "My IDE Plugin",
|
808
844
|
# client_type: "public",
|
845
|
+
# entitled_application_arn: "arn:aws:sso::ACCOUNTID:application/ssoins-1111111111111111/apl-1111111111111111",
|
846
|
+
# grant_types: [
|
847
|
+
# "authorization_code",
|
848
|
+
# "refresh_token",
|
849
|
+
# ],
|
850
|
+
# issuer_url: "https://identitycenter.amazonaws.com/ssoins-1111111111111111",
|
851
|
+
# redirect_uris: [
|
852
|
+
# "127.0.0.1:PORT/oauth/callback",
|
853
|
+
# ],
|
809
854
|
# scopes: [
|
810
855
|
# "sso:account:access",
|
811
856
|
# "codewhisperer:completions",
|
@@ -826,6 +871,10 @@ module Aws::SSOOIDC
|
|
826
871
|
# client_name: "ClientName", # required
|
827
872
|
# client_type: "ClientType", # required
|
828
873
|
# scopes: ["Scope"],
|
874
|
+
# redirect_uris: ["URI"],
|
875
|
+
# grant_types: ["GrantType"],
|
876
|
+
# issuer_url: "URI",
|
877
|
+
# entitled_application_arn: "ArnType",
|
829
878
|
# })
|
830
879
|
#
|
831
880
|
# @example Response structure
|
@@ -934,7 +983,7 @@ module Aws::SSOOIDC
|
|
934
983
|
params: params,
|
935
984
|
config: config)
|
936
985
|
context[:gem_name] = 'aws-sdk-core'
|
937
|
-
context[:gem_version] = '3.
|
986
|
+
context[:gem_version] = '3.196.0'
|
938
987
|
Seahorse::Client::Request.new(handlers, context)
|
939
988
|
end
|
940
989
|
|
@@ -15,6 +15,7 @@ module Aws::SSOOIDC
|
|
15
15
|
|
16
16
|
AccessDeniedException = Shapes::StructureShape.new(name: 'AccessDeniedException')
|
17
17
|
AccessToken = Shapes::StringShape.new(name: 'AccessToken')
|
18
|
+
ArnType = Shapes::StringShape.new(name: 'ArnType')
|
18
19
|
Assertion = Shapes::StringShape.new(name: 'Assertion')
|
19
20
|
AuthCode = Shapes::StringShape.new(name: 'AuthCode')
|
20
21
|
AuthorizationPendingException = Shapes::StructureShape.new(name: 'AuthorizationPendingException')
|
@@ -22,6 +23,7 @@ module Aws::SSOOIDC
|
|
22
23
|
ClientName = Shapes::StringShape.new(name: 'ClientName')
|
23
24
|
ClientSecret = Shapes::StringShape.new(name: 'ClientSecret')
|
24
25
|
ClientType = Shapes::StringShape.new(name: 'ClientType')
|
26
|
+
CodeVerifier = Shapes::StringShape.new(name: 'CodeVerifier')
|
25
27
|
CreateTokenRequest = Shapes::StructureShape.new(name: 'CreateTokenRequest')
|
26
28
|
CreateTokenResponse = Shapes::StructureShape.new(name: 'CreateTokenResponse')
|
27
29
|
CreateTokenWithIAMRequest = Shapes::StructureShape.new(name: 'CreateTokenWithIAMRequest')
|
@@ -32,17 +34,20 @@ module Aws::SSOOIDC
|
|
32
34
|
ExpirationInSeconds = Shapes::IntegerShape.new(name: 'ExpirationInSeconds')
|
33
35
|
ExpiredTokenException = Shapes::StructureShape.new(name: 'ExpiredTokenException')
|
34
36
|
GrantType = Shapes::StringShape.new(name: 'GrantType')
|
37
|
+
GrantTypes = Shapes::ListShape.new(name: 'GrantTypes')
|
35
38
|
IdToken = Shapes::StringShape.new(name: 'IdToken')
|
36
39
|
InternalServerException = Shapes::StructureShape.new(name: 'InternalServerException')
|
37
40
|
IntervalInSeconds = Shapes::IntegerShape.new(name: 'IntervalInSeconds')
|
38
41
|
InvalidClientException = Shapes::StructureShape.new(name: 'InvalidClientException')
|
39
42
|
InvalidClientMetadataException = Shapes::StructureShape.new(name: 'InvalidClientMetadataException')
|
40
43
|
InvalidGrantException = Shapes::StructureShape.new(name: 'InvalidGrantException')
|
44
|
+
InvalidRedirectUriException = Shapes::StructureShape.new(name: 'InvalidRedirectUriException')
|
41
45
|
InvalidRequestException = Shapes::StructureShape.new(name: 'InvalidRequestException')
|
42
46
|
InvalidRequestRegionException = Shapes::StructureShape.new(name: 'InvalidRequestRegionException')
|
43
47
|
InvalidScopeException = Shapes::StructureShape.new(name: 'InvalidScopeException')
|
44
48
|
Location = Shapes::StringShape.new(name: 'Location')
|
45
49
|
LongTimeStampType = Shapes::IntegerShape.new(name: 'LongTimeStampType')
|
50
|
+
RedirectUris = Shapes::ListShape.new(name: 'RedirectUris')
|
46
51
|
RefreshToken = Shapes::StringShape.new(name: 'RefreshToken')
|
47
52
|
Region = Shapes::StringShape.new(name: 'Region')
|
48
53
|
RegisterClientRequest = Shapes::StructureShape.new(name: 'RegisterClientRequest')
|
@@ -76,6 +81,7 @@ module Aws::SSOOIDC
|
|
76
81
|
CreateTokenRequest.add_member(:refresh_token, Shapes::ShapeRef.new(shape: RefreshToken, location_name: "refreshToken"))
|
77
82
|
CreateTokenRequest.add_member(:scope, Shapes::ShapeRef.new(shape: Scopes, location_name: "scope"))
|
78
83
|
CreateTokenRequest.add_member(:redirect_uri, Shapes::ShapeRef.new(shape: URI, location_name: "redirectUri"))
|
84
|
+
CreateTokenRequest.add_member(:code_verifier, Shapes::ShapeRef.new(shape: CodeVerifier, location_name: "codeVerifier"))
|
79
85
|
CreateTokenRequest.struct_class = Types::CreateTokenRequest
|
80
86
|
|
81
87
|
CreateTokenResponse.add_member(:access_token, Shapes::ShapeRef.new(shape: AccessToken, location_name: "accessToken"))
|
@@ -95,6 +101,7 @@ module Aws::SSOOIDC
|
|
95
101
|
CreateTokenWithIAMRequest.add_member(:subject_token, Shapes::ShapeRef.new(shape: SubjectToken, location_name: "subjectToken"))
|
96
102
|
CreateTokenWithIAMRequest.add_member(:subject_token_type, Shapes::ShapeRef.new(shape: TokenTypeURI, location_name: "subjectTokenType"))
|
97
103
|
CreateTokenWithIAMRequest.add_member(:requested_token_type, Shapes::ShapeRef.new(shape: TokenTypeURI, location_name: "requestedTokenType"))
|
104
|
+
CreateTokenWithIAMRequest.add_member(:code_verifier, Shapes::ShapeRef.new(shape: CodeVerifier, location_name: "codeVerifier"))
|
98
105
|
CreateTokenWithIAMRequest.struct_class = Types::CreateTokenWithIAMRequest
|
99
106
|
|
100
107
|
CreateTokenWithIAMResponse.add_member(:access_token, Shapes::ShapeRef.new(shape: AccessToken, location_name: "accessToken"))
|
@@ -110,6 +117,8 @@ module Aws::SSOOIDC
|
|
110
117
|
ExpiredTokenException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
|
111
118
|
ExpiredTokenException.struct_class = Types::ExpiredTokenException
|
112
119
|
|
120
|
+
GrantTypes.member = Shapes::ShapeRef.new(shape: GrantType)
|
121
|
+
|
113
122
|
InternalServerException.add_member(:error, Shapes::ShapeRef.new(shape: Error, location_name: "error"))
|
114
123
|
InternalServerException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
|
115
124
|
InternalServerException.struct_class = Types::InternalServerException
|
@@ -126,6 +135,10 @@ module Aws::SSOOIDC
|
|
126
135
|
InvalidGrantException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
|
127
136
|
InvalidGrantException.struct_class = Types::InvalidGrantException
|
128
137
|
|
138
|
+
InvalidRedirectUriException.add_member(:error, Shapes::ShapeRef.new(shape: Error, location_name: "error"))
|
139
|
+
InvalidRedirectUriException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
|
140
|
+
InvalidRedirectUriException.struct_class = Types::InvalidRedirectUriException
|
141
|
+
|
129
142
|
InvalidRequestException.add_member(:error, Shapes::ShapeRef.new(shape: Error, location_name: "error"))
|
130
143
|
InvalidRequestException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
|
131
144
|
InvalidRequestException.struct_class = Types::InvalidRequestException
|
@@ -140,9 +153,15 @@ module Aws::SSOOIDC
|
|
140
153
|
InvalidScopeException.add_member(:error_description, Shapes::ShapeRef.new(shape: ErrorDescription, location_name: "error_description"))
|
141
154
|
InvalidScopeException.struct_class = Types::InvalidScopeException
|
142
155
|
|
156
|
+
RedirectUris.member = Shapes::ShapeRef.new(shape: URI)
|
157
|
+
|
143
158
|
RegisterClientRequest.add_member(:client_name, Shapes::ShapeRef.new(shape: ClientName, required: true, location_name: "clientName"))
|
144
159
|
RegisterClientRequest.add_member(:client_type, Shapes::ShapeRef.new(shape: ClientType, required: true, location_name: "clientType"))
|
145
160
|
RegisterClientRequest.add_member(:scopes, Shapes::ShapeRef.new(shape: Scopes, location_name: "scopes"))
|
161
|
+
RegisterClientRequest.add_member(:redirect_uris, Shapes::ShapeRef.new(shape: RedirectUris, location_name: "redirectUris"))
|
162
|
+
RegisterClientRequest.add_member(:grant_types, Shapes::ShapeRef.new(shape: GrantTypes, location_name: "grantTypes"))
|
163
|
+
RegisterClientRequest.add_member(:issuer_url, Shapes::ShapeRef.new(shape: URI, location_name: "issuerUrl"))
|
164
|
+
RegisterClientRequest.add_member(:entitled_application_arn, Shapes::ShapeRef.new(shape: ArnType, location_name: "entitledApplicationArn"))
|
146
165
|
RegisterClientRequest.struct_class = Types::RegisterClientRequest
|
147
166
|
|
148
167
|
RegisterClientResponse.add_member(:client_id, Shapes::ShapeRef.new(shape: ClientId, location_name: "clientId"))
|
@@ -191,6 +210,7 @@ module Aws::SSOOIDC
|
|
191
210
|
"endpointPrefix" => "oidc",
|
192
211
|
"jsonVersion" => "1.1",
|
193
212
|
"protocol" => "rest-json",
|
213
|
+
"protocols" => ["rest-json"],
|
194
214
|
"serviceAbbreviation" => "SSO OIDC",
|
195
215
|
"serviceFullName" => "AWS SSO OIDC",
|
196
216
|
"serviceId" => "SSO OIDC",
|
@@ -250,6 +270,8 @@ module Aws::SSOOIDC
|
|
250
270
|
o.errors << Shapes::ShapeRef.new(shape: InvalidScopeException)
|
251
271
|
o.errors << Shapes::ShapeRef.new(shape: InvalidClientMetadataException)
|
252
272
|
o.errors << Shapes::ShapeRef.new(shape: InternalServerException)
|
273
|
+
o.errors << Shapes::ShapeRef.new(shape: InvalidRedirectUriException)
|
274
|
+
o.errors << Shapes::ShapeRef.new(shape: UnsupportedGrantTypeException)
|
253
275
|
end)
|
254
276
|
|
255
277
|
api.add_operation(:start_device_authorization, Seahorse::Model::Operation.new.tap do |o|
|
@@ -34,6 +34,7 @@ module Aws::SSOOIDC
|
|
34
34
|
# * {InvalidClientException}
|
35
35
|
# * {InvalidClientMetadataException}
|
36
36
|
# * {InvalidGrantException}
|
37
|
+
# * {InvalidRedirectUriException}
|
37
38
|
# * {InvalidRequestException}
|
38
39
|
# * {InvalidRequestRegionException}
|
39
40
|
# * {InvalidScopeException}
|
@@ -187,6 +188,26 @@ module Aws::SSOOIDC
|
|
187
188
|
end
|
188
189
|
end
|
189
190
|
|
191
|
+
class InvalidRedirectUriException < ServiceError
|
192
|
+
|
193
|
+
# @param [Seahorse::Client::RequestContext] context
|
194
|
+
# @param [String] message
|
195
|
+
# @param [Aws::SSOOIDC::Types::InvalidRedirectUriException] data
|
196
|
+
def initialize(context, message, data = Aws::EmptyStructure.new)
|
197
|
+
super(context, message, data)
|
198
|
+
end
|
199
|
+
|
200
|
+
# @return [String]
|
201
|
+
def error
|
202
|
+
@data[:error]
|
203
|
+
end
|
204
|
+
|
205
|
+
# @return [String]
|
206
|
+
def error_description
|
207
|
+
@data[:error_description]
|
208
|
+
end
|
209
|
+
end
|
210
|
+
|
190
211
|
class InvalidRequestException < ServiceError
|
191
212
|
|
192
213
|
# @param [Seahorse::Client::RequestContext] context
|
@@ -118,6 +118,13 @@ module Aws::SSOOIDC
|
|
118
118
|
# that has registered to receive the authorization code.
|
119
119
|
# @return [String]
|
120
120
|
#
|
121
|
+
# @!attribute [rw] code_verifier
|
122
|
+
# Used only when calling this API for the Authorization Code grant
|
123
|
+
# type. This value is generated by the client and presented to
|
124
|
+
# validate the original code challenge value the client passed at
|
125
|
+
# authorization time.
|
126
|
+
# @return [String]
|
127
|
+
#
|
121
128
|
# @see http://docs.aws.amazon.com/goto/WebAPI/sso-oidc-2019-06-10/CreateTokenRequest AWS API Documentation
|
122
129
|
#
|
123
130
|
class CreateTokenRequest < Struct.new(
|
@@ -128,14 +135,15 @@ module Aws::SSOOIDC
|
|
128
135
|
:code,
|
129
136
|
:refresh_token,
|
130
137
|
:scope,
|
131
|
-
:redirect_uri
|
132
|
-
|
138
|
+
:redirect_uri,
|
139
|
+
:code_verifier)
|
140
|
+
SENSITIVE = [:client_secret, :refresh_token, :code_verifier]
|
133
141
|
include Aws::Structure
|
134
142
|
end
|
135
143
|
|
136
144
|
# @!attribute [rw] access_token
|
137
|
-
# A bearer token to access
|
138
|
-
# user.
|
145
|
+
# A bearer token to access Amazon Web Services accounts and
|
146
|
+
# applications assigned to a user.
|
139
147
|
# @return [String]
|
140
148
|
#
|
141
149
|
# @!attribute [rw] token_type
|
@@ -278,6 +286,13 @@ module Aws::SSOOIDC
|
|
278
286
|
# * Refresh Token - `urn:ietf:params:oauth:token-type:refresh_token`
|
279
287
|
# @return [String]
|
280
288
|
#
|
289
|
+
# @!attribute [rw] code_verifier
|
290
|
+
# Used only when calling this API for the Authorization Code grant
|
291
|
+
# type. This value is generated by the client and presented to
|
292
|
+
# validate the original code challenge value the client passed at
|
293
|
+
# authorization time.
|
294
|
+
# @return [String]
|
295
|
+
#
|
281
296
|
# @see http://docs.aws.amazon.com/goto/WebAPI/sso-oidc-2019-06-10/CreateTokenWithIAMRequest AWS API Documentation
|
282
297
|
#
|
283
298
|
class CreateTokenWithIAMRequest < Struct.new(
|
@@ -290,14 +305,15 @@ module Aws::SSOOIDC
|
|
290
305
|
:redirect_uri,
|
291
306
|
:subject_token,
|
292
307
|
:subject_token_type,
|
293
|
-
:requested_token_type
|
294
|
-
|
308
|
+
:requested_token_type,
|
309
|
+
:code_verifier)
|
310
|
+
SENSITIVE = [:refresh_token, :assertion, :subject_token, :code_verifier]
|
295
311
|
include Aws::Structure
|
296
312
|
end
|
297
313
|
|
298
314
|
# @!attribute [rw] access_token
|
299
|
-
# A bearer token to access
|
300
|
-
# user.
|
315
|
+
# A bearer token to access Amazon Web Services accounts and
|
316
|
+
# applications assigned to a user.
|
301
317
|
# @return [String]
|
302
318
|
#
|
303
319
|
# @!attribute [rw] token_type
|
@@ -467,6 +483,28 @@ module Aws::SSOOIDC
|
|
467
483
|
include Aws::Structure
|
468
484
|
end
|
469
485
|
|
486
|
+
# Indicates that one or more redirect URI in the request is not
|
487
|
+
# supported for this operation.
|
488
|
+
#
|
489
|
+
# @!attribute [rw] error
|
490
|
+
# Single error code. For this exception the value will be
|
491
|
+
# `invalid_redirect_uri`.
|
492
|
+
# @return [String]
|
493
|
+
#
|
494
|
+
# @!attribute [rw] error_description
|
495
|
+
# Human-readable text providing additional information, used to assist
|
496
|
+
# the client developer in understanding the error that occurred.
|
497
|
+
# @return [String]
|
498
|
+
#
|
499
|
+
# @see http://docs.aws.amazon.com/goto/WebAPI/sso-oidc-2019-06-10/InvalidRedirectUriException AWS API Documentation
|
500
|
+
#
|
501
|
+
class InvalidRedirectUriException < Struct.new(
|
502
|
+
:error,
|
503
|
+
:error_description)
|
504
|
+
SENSITIVE = []
|
505
|
+
include Aws::Structure
|
506
|
+
end
|
507
|
+
|
470
508
|
# Indicates that something is wrong with the input to the request. For
|
471
509
|
# example, a required parameter might be missing or out of range.
|
472
510
|
#
|
@@ -559,12 +597,42 @@ module Aws::SSOOIDC
|
|
559
597
|
# granting an access token.
|
560
598
|
# @return [Array<String>]
|
561
599
|
#
|
600
|
+
# @!attribute [rw] redirect_uris
|
601
|
+
# The list of redirect URI that are defined by the client. At
|
602
|
+
# completion of authorization, this list is used to restrict what
|
603
|
+
# locations the user agent can be redirected back to.
|
604
|
+
# @return [Array<String>]
|
605
|
+
#
|
606
|
+
# @!attribute [rw] grant_types
|
607
|
+
# The list of OAuth 2.0 grant types that are defined by the client.
|
608
|
+
# This list is used to restrict the token granting flows available to
|
609
|
+
# the client.
|
610
|
+
# @return [Array<String>]
|
611
|
+
#
|
612
|
+
# @!attribute [rw] issuer_url
|
613
|
+
# The IAM Identity Center Issuer URL associated with an instance of
|
614
|
+
# IAM Identity Center. This value is needed for user access to
|
615
|
+
# resources through the client.
|
616
|
+
# @return [String]
|
617
|
+
#
|
618
|
+
# @!attribute [rw] entitled_application_arn
|
619
|
+
# This IAM Identity Center application ARN is used to define
|
620
|
+
# administrator-managed configuration for public client access to
|
621
|
+
# resources. At authorization, the scopes, grants, and redirect URI
|
622
|
+
# available to this client will be restricted by this application
|
623
|
+
# resource.
|
624
|
+
# @return [String]
|
625
|
+
#
|
562
626
|
# @see http://docs.aws.amazon.com/goto/WebAPI/sso-oidc-2019-06-10/RegisterClientRequest AWS API Documentation
|
563
627
|
#
|
564
628
|
class RegisterClientRequest < Struct.new(
|
565
629
|
:client_name,
|
566
630
|
:client_type,
|
567
|
-
:scopes
|
631
|
+
:scopes,
|
632
|
+
:redirect_uris,
|
633
|
+
:grant_types,
|
634
|
+
:issuer_url,
|
635
|
+
:entitled_application_arn)
|
568
636
|
SENSITIVE = []
|
569
637
|
include Aws::Structure
|
570
638
|
end
|
data/lib/aws-sdk-ssooidc.rb
CHANGED
data/lib/aws-sdk-sts/client.rb
CHANGED
@@ -303,8 +303,9 @@ module Aws::STS
|
|
303
303
|
#
|
304
304
|
# @option options [String] :sdk_ua_app_id
|
305
305
|
# A unique and opaque application ID that is appended to the
|
306
|
-
# User-Agent header as app
|
307
|
-
# maximum length of 50.
|
306
|
+
# User-Agent header as app/sdk_ua_app_id. It should have a
|
307
|
+
# maximum length of 50. This variable is sourced from environment
|
308
|
+
# variable AWS_SDK_UA_APP_ID or the shared config profile attribute sdk_ua_app_id.
|
308
309
|
#
|
309
310
|
# @option options [String] :secret_access_key
|
310
311
|
#
|
@@ -2376,7 +2377,7 @@ module Aws::STS
|
|
2376
2377
|
params: params,
|
2377
2378
|
config: config)
|
2378
2379
|
context[:gem_name] = 'aws-sdk-core'
|
2379
|
-
context[:gem_version] = '3.
|
2380
|
+
context[:gem_version] = '3.196.0'
|
2380
2381
|
Seahorse::Client::Request.new(handlers, context)
|
2381
2382
|
end
|
2382
2383
|
|
data/lib/aws-sdk-sts.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-core
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 3.
|
4
|
+
version: 3.196.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2024-05-
|
11
|
+
date: 2024-05-13 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: jmespath
|