aws-sdk-core 3.201.2 → 3.226.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 0cced353e3a401bc05f3b8c5bc6175ecb5ea916a1d5c7bc4e172eec5c6021dd1
-  data.tar.gz: eb40ea2b0a789f38ec9118a74416fdf0a13aec3c8fe1c6fbbce7c107893e2a5d
+  metadata.gz: e2ca0fbdedab1c093c716160e76303794d1546fb910732e7399158149393379d
+  data.tar.gz: 80287b842e9382353bb5c5093495299d8bfefaa4c1ca41227e34eeb2cb0ee592
 SHA512:
-  metadata.gz: 7dba87fc96142f251dae476748deed876a944c935a7a925db33dd0400d8518823224e92ed5f785a6b098f06cb06a8fc45e41b2f608b82dacd687717787191f55
-  data.tar.gz: 2e7da3ef2c1dc2c99f9fc002c673e909d6befe24c98061a76bbc0bec85c8274156b34da34e0832260c1b2d55e3db92f307206f80180162058f0896a91a2c7f8e
+  metadata.gz: 95520dcd178c17ffee6588d5c840dcab71184746d1b3b9262de70a43a9fb2fb43ba0e773c6d4dcf08cdc0fc7639b407a644050e002edf34dc288077577e2577a
+  data.tar.gz: 963666144b4c5f8f9826a667060e371b73772fa3fae57066cbcac775bc8a56a6e12350984bce5241a90e53d8e29f95e6be78b472c53a319af6b56b15a51f3bc3

data/CHANGELOG.md

@@ -1,6 +1,325 @@
 Unreleased Changes
 ------------------
 
+3.226.1 (2025-06-24)
+------------------
+
+* Issue - Fixed spelling in the `Aws::Errors::SignalEventError` error message.
+
+3.226.0 (2025-06-17)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - The AWS Security Token Service APIs AssumeRoleWithSAML and AssumeRoleWithWebIdentity can now be invoked without pre-configured AWS credentials in the SDK configuration.
+
+3.225.2 (2025-06-10)
+------------------
+
+* Issue - Only load required `cgi` modules for Ruby 3.5.
+
+3.225.1 (2025-06-05)
+------------------
+
+* Issue - Fix RPCv2 parser to handle flattened list and flattened map members correctly for `AwsQueryCompatible` services.
+
+3.225.0 (2025-06-02)
+------------------
+
+* Feature - AWS SDK for Ruby no longer supports Ruby runtime versions 2.5 and 2.6.
+
+3.224.1 (2025-05-28)
+------------------
+
+* Issue - Signal data in http response listeners prior to writing, so that data can be inspected or verified before potential mutation.
+
+3.224.0 (2025-05-12)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+* Feature - Support `ENV['AWS_DISABLE_HOST_PREFIX_INJECTION']` and `disable_host_prefix_injection` shared config to disable host prefix injection for all services.
+
+3.223.0 (2025-05-01)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+3.222.3 (2025-04-28)
+------------------
+
+* Issue - Do not dynamically create operation methods from the API. (#3234)
+
+3.222.2 (2025-04-16)
+------------------
+
+* Issue - Additional metrics collection for credentials in the User-Agent plugin.
+
+3.222.1 (2025-03-28)
+------------------
+
+* Issue - Allow explicit modeled headers to override prefixed headers for `rest` protocols. 
+
+3.222.0 (2025-03-27)
+------------------
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - This release adds AwsAdditionalDetails in the CreateTokenWithIAM API response.
+
+3.221.0 (2025-03-24)
+------------------
+
+* Feature - Add `logger` as an explicit dependency for Ruby 3.5.
+* Issue - Enable ALPN over TLS for H2 Connection by default.
+* Issue - Fix HTTP-2 connections to properly use config values configured on the client.
+
+3.220.2 (2025-03-20)
+------------------
+
+* Issue - Enable ALPN over TLS for H2 by default.
+
+3.220.1 (2025-03-06)
+------------------
+
+* Issue - Convert stubs at request time.
+
+3.220.0 (2025-03-04)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+3.219.0 (2025-02-18)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+3.218.1 (2025-02-07)
+------------------
+
+* Issue - Add handling of block in ExtendedSession delegation (#3178).
+
+3.218.0 (2025-02-06)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+3.217.1 (2025-01-30)
+------------------
+
+* Issue - Add `transfer-encoding` and `connection` to list of unsigned sigv4 headers.
+
+3.217.0 (2025-01-24)
+------------------
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Fixed typos in the descriptions.
+
+3.216.1 (2025-01-22)
+------------------
+
+* Issue - Use epoch seconds instead of milliseconds in cbor encode/decode.
+
+* Issue - Add handling of block in response delegation (#3169). 
+
+3.216.0 (2025-01-15)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+* Feature - Always calculate request checksums for operations that support or require it. Supported config options are `when_supported` and `when_required`. The default value is `when_supported`. This option is configured in code with `:request_checksum_calculation`, in the shared config file as `request_checksum_calculation`, and in the ENV as `ENV['AWS_REQUEST_CHECKSUM_CALCULATION']`.
+
+* Feature - Always validate response checksums for operations that support or require it. Supported config options are `when_supported` and `when_required`. The default value is `when_supported`. This option is configured in code with `:response_checksum_validation`, in the shared config file as `response_checksum_validation`, and in the ENV as `ENV['AWS_RESPONSE_CHECKSUM_VALIDATION']`.
+
+* Feature - Support CRC64NVME checksums through the `aws-crt` gem.
+
+3.215.1 (2025-01-14)
+------------------
+
+* Issue - Fixed error when attempting to log an unlinked tempfile.
+
+3.215.0 (2025-01-10)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Fixed typos in the descriptions.
+
+3.214.1 (2024-12-28)
+------------------
+
+* Issue - Fix documentation that references a non-existent method.
+
+3.214.0 (2024-11-25)
+------------------
+
+* Feature - Updated configuration values for `defaults_mode`.
+
+3.213.0 (2024-11-14)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - This release introduces the new API 'AssumeRoot', which returns short-term credentials that you can use to perform privileged tasks.
+
+3.212.0 (2024-11-06)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+3.211.0 (2024-10-21)
+------------------
+
+* Feature - Support functionality for services that migrate from AWS Query to AWS JSON or CBOR.
+
+* Issue - Fix RPCv2 protocol to always send an Accept header for CBOR.
+
+3.210.0 (2024-10-18)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+* Feature - reduce memory usage by not using legacy endpoint data unless required.
+
+3.209.1 (2024-09-25)
+------------------
+
+* Issue - Add all core plugins to autoloads.
+
+3.209.0 (2024-09-24)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+* Issue - Add service identifiers to GlobalConfig's list of identifiers outside of autoload (#3113).
+
+* Issue - Ignore invalid ARNs when trying to parse accountId in assume role credentials.
+
+3.208.0 (2024-09-23)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+* Feature - Use autoloading at the service level to load service clients and resources.
+
+3.207.0 (2024-09-20)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+* Feature - Support Account ID credentials using `ENV['AWS_ACCOUNT_ID']`, `aws_account_id` shared config, or the `account_id` Client configuration option.
+
+* Feature - Support Account ID endpoint mode using `ENV['AWS_ACCOUNT_ID_ENDPOINT_MODE']`, `aws_account_id_endpoint_mode` shared config, or the `account_id_endpoint_mode` Client configuration option. Defaults to `preferred`, which will use the account id endpoint if available. Set to `disabled` to disable account id endpoints. Set to `required` to require account id endpoint usage; an error is raised if credentials do not have an account id.
+
+3.206.0 (2024-09-17)
+------------------
+
+* Feature - Support `sigv4a` endpoint auth without CRT.
+
+3.205.0 (2024-09-11)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+* Issue - Additional metrics collection in the User-Agent plugin.
+
+3.204.0 (2024-09-10)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+* Issue - Add support for `ssl_cert` and `ssl_key` configuration options to support mTLS.
+
+3.203.0 (2024-09-03)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+* Feature - Add support for Observability which includes a configuration, `telemetry_provider` and an OpenTelemetry-based telemetry provider.
+
+3.202.2 (2024-08-30)
+------------------
+
+* Issue - revert auto-loading of bundled gems.
+
+3.202.1 (2024-08-29)
+------------------
+
+* Issue - require default plugins when loading aws-sdk-core.
+
+3.202.0 (2024-08-27)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Updated Aws::SSOOIDC::Client with the latest API changes.
+
+* Feature - Updated Aws::SSO::Client with the latest API changes.
+
+* Issue - Reduce initial memory usage by auto-loading bundled gems (STS, SSO, SSOOIDC).
+
+3.201.5 (2024-08-15)
+------------------
+
+* Issue - Allow legacy/undocumented `sigv4_signer` configuration to override resolved signer.
+
+* Issue - Consider sigv4a supported without crt check.
+
+3.201.4 (2024-08-08)
+------------------
+
+* Issue - Update waiters to handle expected boolean values when matching errors.
+
+3.201.3 (2024-07-23)
+------------------
+
+* Issue - Add `disableNormalizePath` when resolving auth_scheme for S3.
+
 3.201.2 (2024-07-18)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-3.201.2
+3.226.1

data/lib/aws-defaults/default_configuration.rb

@@ -128,8 +128,7 @@ module Aws
             "override" => 3100
           }
         },
-        "in-region" => {
-        },
+        "in-region" => {},
         "cross-region" => {
           "connectTimeoutInMillis" => {
             "override" => 3100

data/lib/aws-defaults.rb

@@ -1,3 +1,6 @@
 # frozen_string_literal: true
 
-require_relative 'aws-defaults/default_configuration'
+module Aws
+  autoload :DefaultsModeConfiguration, 'aws-defaults/default_configuration'
+  autoload :DefaultsModeConfigResolver, 'aws-defaults/defaults_mode_config_resolver'
+end

data/lib/aws-sdk-core/arn.rb

@@ -24,9 +24,7 @@ module Aws
   #   arn.resource
   #   # => foo/bar
   #
-  #   # Note: parser available for parsing resource details
-  #   @see Aws::ARNParser#parse_resource
-  #
+  # @see ARNParser
   # @see https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html#genref-arns
   class ARN
 

data/lib/aws-sdk-core/assume_role_credentials.rb

@@ -50,6 +50,7 @@ module Aws
       end
       @client = client_opts[:client] || STS::Client.new(client_opts)
       @async_refresh = true
+      @metrics = ['CREDENTIALS_STS_ASSUME_ROLE']
       super
     end
 
@@ -62,13 +63,20 @@ module Aws
     private
 
     def refresh
-      c = @client.assume_role(@assume_role_params).credentials
+      resp = @client.assume_role(@assume_role_params)
+      creds = resp.credentials
       @credentials = Credentials.new(
-        c.access_key_id,
-        c.secret_access_key,
-        c.session_token
+        creds.access_key_id,
+        creds.secret_access_key,
+        creds.session_token,
+        account_id: parse_account_id(resp)
       )
-      @expiration = c.expiration
+      @expiration = creds.expiration
+    end
+
+    def parse_account_id(resp)
+      arn = resp.assumed_role_user&.arn
+      ARNParser.parse(arn).account_id if ARNParser.arn?(arn)
     end
 
     class << self

data/lib/aws-sdk-core/assume_role_web_identity_credentials.rb

@@ -60,7 +60,8 @@ module Aws
         # not provided, generate encoded UUID as session name
         @assume_role_web_identity_params[:role_session_name] = _session_name
       end
-      @client = client_opts[:client] || STS::Client.new(client_opts.merge(credentials: false))
+      @client = client_opts[:client] || STS::Client.new(client_opts.merge(credentials: nil))
+      @metrics = ['CREDENTIALS_STS_ASSUME_ROLE_WEB_ID']
       super
     end
 
@@ -73,14 +74,15 @@ module Aws
       # read from token file everytime it refreshes
       @assume_role_web_identity_params[:web_identity_token] = _token_from_file(@token_file)
 
-      c = @client.assume_role_with_web_identity(
-        @assume_role_web_identity_params).credentials
+      resp = @client.assume_role_with_web_identity(@assume_role_web_identity_params)
+      creds = resp.credentials
       @credentials = Credentials.new(
-        c.access_key_id,
-        c.secret_access_key,
-        c.session_token
+        creds.access_key_id,
+        creds.secret_access_key,
+        creds.session_token,
+        account_id: parse_account_id(resp)
       )
-      @expiration = c.expiration
+      @expiration = creds.expiration
     end
 
     def _token_from_file(path)
@@ -94,6 +96,11 @@ module Aws
       Base64.strict_encode64(SecureRandom.uuid)
     end
 
+    def parse_account_id(resp)
+      arn = resp.assumed_role_user&.arn
+      ARNParser.parse(arn).account_id if ARNParser.arn?(arn)
+    end
+
     class << self
 
       # @api private

data/lib/aws-sdk-core/cbor/decoder.rb

@@ -61,9 +61,7 @@ module Aws
         when :tag
           case (tag = read_tag)
           when TAG_TYPE_EPOCH
-            type = peek_type
             item = decode_item
-            item /= 1000.0 if type == :integer
             Time.at(item)
           when TAG_TYPE_BIGNUM, TAG_TYPE_NEG_BIGNUM
             read_bignum(tag)

data/lib/aws-sdk-core/cbor/encoder.rb

@@ -226,8 +226,8 @@ module Aws
 
       def add_time(value)
         head(MAJOR_TYPE_TAG, TAG_TYPE_EPOCH)
-        epoch_ms = (value.to_f * 1000).to_i
-        add_integer(epoch_ms)
+        epoch = value.to_f
+        add_double(epoch)
       end
 
       def bignum_to_bytes(value)

data/lib/aws-sdk-core/cbor.rb

@@ -1,5 +1,8 @@
 # frozen_string_literal: true
 
+require_relative 'cbor/encoder'
+require_relative 'cbor/decoder'
+
 module Aws
   # @api private
   module Cbor
@@ -46,61 +49,5 @@ module Aws
         super("Unexpected additional information: #{add_info}")
       end
     end
-
-    class << self
-      # @param [Symbol,Class] engine
-      #   Must be one of the following values:
-      #
-      #   * :cbor
-      #
-      def engine=(engine)
-        @engine = Class === engine ? engine : load_engine(engine)
-      end
-
-      # @return [Class] Returns the default engine.
-      #   One of:
-      #
-      #   * {CborEngine}
-      #
-      def engine
-        set_default_engine unless @engine
-        @engine
-      end
-
-      def encode(data)
-        @engine.encode(data)
-      end
-
-      def decode(bytes)
-        bytes.force_encoding(Encoding::BINARY)
-        @engine.decode(bytes)
-      end
-
-      def set_default_engine
-        [:cbor].each do |name|
-          @engine ||= try_load_engine(name)
-        end
-
-        unless @engine
-          raise 'Unable to find a compatible cbor library.'
-        end
-      end
-
-      private
-
-      def load_engine(name)
-        require "aws-sdk-core/cbor/#{name}_engine"
-        const_name = name[0].upcase + name[1..-1] + 'Engine'
-        const_get(const_name)
-      end
-
-      def try_load_engine(name)
-        load_engine(name)
-      rescue LoadError
-        false
-      end
-    end
-
-    set_default_engine
   end
 end

data/lib/aws-sdk-core/client_side_monitoring.rb

@@ -0,0 +1,9 @@
+# frozen_string_literal: true
+
+module Aws
+  # setup autoloading for ClientSideMonitoring module
+  module ClientSideMonitoring
+    autoload :RequestMetrics, 'aws-sdk-core/client_side_monitoring/request_metrics'
+    autoload :Publisher, 'aws-sdk-core/client_side_monitoring/publisher'
+  end
+end