aws-sdk-core 3.203.0 → 3.209.1

data/lib/aws-sdk-sts/client.rb

@@ -37,8 +37,6 @@ require 'aws-sdk-core/plugins/sign.rb'
 require 'aws-sdk-core/plugins/protocols/query.rb'
 require 'aws-sdk-sts/plugins/sts_regional_endpoints.rb'
 
-Aws::Plugins::GlobalConfiguration.add_identifier(:sts)
-
 module Aws::STS
   # An API client for STS.  To construct a client, you need to configure a `:region` and `:credentials`.
   #
@@ -132,13 +130,15 @@ module Aws::STS
     #     locations will be searched for credentials:
     #
     #     * `Aws.config[:credentials]`
-    #     * The `:access_key_id`, `:secret_access_key`, and `:session_token` options.
-    #     * ENV['AWS_ACCESS_KEY_ID'], ENV['AWS_SECRET_ACCESS_KEY']
+    #     * The `:access_key_id`, `:secret_access_key`, `:session_token`, and
+    #       `:account_id` options.
+    #     * ENV['AWS_ACCESS_KEY_ID'], ENV['AWS_SECRET_ACCESS_KEY'],
+    #       ENV['AWS_SESSION_TOKEN'], and ENV['AWS_ACCOUNT_ID']
     #     * `~/.aws/credentials`
     #     * `~/.aws/config`
     #     * EC2/ECS IMDS instance profile - When used by default, the timeouts
     #       are very aggressive. Construct and pass an instance of
-    #       `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
+    #       `Aws::InstanceProfileCredentials` or `Aws::ECSCredentials` to
     #       enable retries and extended timeouts. Instance profile credential
     #       fetching can be disabled by setting ENV['AWS_EC2_METADATA_DISABLED']
     #       to true.
@@ -157,6 +157,8 @@ module Aws::STS
     #
     #   @option options [String] :access_key_id
     #
+    #   @option options [String] :account_id
+    #
     #   @option options [Boolean] :active_endpoint_cache (false)
     #     When set to `true`, a thread polling for endpoints will be running in
     #     the background every 60 secs (default). Defaults to `false`.
@@ -376,7 +378,9 @@ module Aws::STS
     #     sending the request.
     #
     #   @option options [Aws::STS::EndpointProvider] :endpoint_provider
-    #     The endpoint provider used to resolve endpoints. Any object that responds to `#resolve_endpoint(parameters)` where `parameters` is a Struct similar to `Aws::STS::EndpointParameters`
+    #     The endpoint provider used to resolve endpoints. Any object that responds to
+    #     `#resolve_endpoint(parameters)` where `parameters` is a Struct similar to
+    #     `Aws::STS::EndpointParameters`.
     #
     #   @option options [Float] :http_continue_timeout (1)
     #     The number of seconds to wait for a 100-continue response before sending the
@@ -432,6 +436,12 @@ module Aws::STS
     #   @option options [String] :ssl_ca_store
     #     Sets the X509::Store to verify peer certificate.
     #
+    #   @option options [OpenSSL::X509::Certificate] :ssl_cert
+    #     Sets a client certificate when creating http connections.
+    #
+    #   @option options [OpenSSL::PKey] :ssl_key
+    #     Sets a client key when creating http connections.
+    #
     #   @option options [Float] :ssl_timeout
     #     Sets the SSL timeout in seconds
     #
@@ -2406,7 +2416,7 @@ module Aws::STS
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-core'
-      context[:gem_version] = '3.203.0'
+      context[:gem_version] = '3.209.1'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-sts/client_api.rb

@@ -7,6 +7,7 @@
 #
 # WARNING ABOUT GENERATED CODE
 
+
 module Aws::STS
   # @api private
   module ClientApi

data/lib/aws-sdk-sts/customizations.rb

@@ -1,4 +1,8 @@
 # frozen_string_literal: true
 
 # utility classes
-require 'aws-sdk-sts/presigner'
+module Aws
+  module STS
+    autoload :Presigner, 'aws-sdk-sts/presigner'
+  end
+end

data/lib/aws-sdk-sts/endpoints.rb

@@ -14,14 +14,11 @@ module Aws::STS
 
     class AssumeRole
       def self.build(context)
-        unless context.config.regional_endpoint
-          endpoint = context.config.endpoint.to_s
-        end
         Aws::STS::EndpointParameters.new(
           region: context.config.region,
           use_dual_stack: context.config.use_dualstack_endpoint,
           use_fips: context.config.use_fips_endpoint,
-          endpoint: endpoint,
+          endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
           use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
         )
       end
@@ -29,14 +26,11 @@ module Aws::STS
 
     class AssumeRoleWithSAML
       def self.build(context)
-        unless context.config.regional_endpoint
-          endpoint = context.config.endpoint.to_s
-        end
         Aws::STS::EndpointParameters.new(
           region: context.config.region,
           use_dual_stack: context.config.use_dualstack_endpoint,
           use_fips: context.config.use_fips_endpoint,
-          endpoint: endpoint,
+          endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
           use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
         )
       end
@@ -44,14 +38,11 @@ module Aws::STS
 
     class AssumeRoleWithWebIdentity
       def self.build(context)
-        unless context.config.regional_endpoint
-          endpoint = context.config.endpoint.to_s
-        end
         Aws::STS::EndpointParameters.new(
           region: context.config.region,
           use_dual_stack: context.config.use_dualstack_endpoint,
           use_fips: context.config.use_fips_endpoint,
-          endpoint: endpoint,
+          endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
           use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
         )
       end
@@ -59,14 +50,11 @@ module Aws::STS
 
     class DecodeAuthorizationMessage
       def self.build(context)
-        unless context.config.regional_endpoint
-          endpoint = context.config.endpoint.to_s
-        end
         Aws::STS::EndpointParameters.new(
           region: context.config.region,
           use_dual_stack: context.config.use_dualstack_endpoint,
           use_fips: context.config.use_fips_endpoint,
-          endpoint: endpoint,
+          endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
           use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
         )
       end
@@ -74,14 +62,11 @@ module Aws::STS
 
     class GetAccessKeyInfo
       def self.build(context)
-        unless context.config.regional_endpoint
-          endpoint = context.config.endpoint.to_s
-        end
         Aws::STS::EndpointParameters.new(
           region: context.config.region,
           use_dual_stack: context.config.use_dualstack_endpoint,
           use_fips: context.config.use_fips_endpoint,
-          endpoint: endpoint,
+          endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
           use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
         )
       end
@@ -89,14 +74,11 @@ module Aws::STS
 
     class GetCallerIdentity
       def self.build(context)
-        unless context.config.regional_endpoint
-          endpoint = context.config.endpoint.to_s
-        end
         Aws::STS::EndpointParameters.new(
           region: context.config.region,
           use_dual_stack: context.config.use_dualstack_endpoint,
           use_fips: context.config.use_fips_endpoint,
-          endpoint: endpoint,
+          endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
           use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
         )
       end
@@ -104,14 +86,11 @@ module Aws::STS
 
     class GetFederationToken
       def self.build(context)
-        unless context.config.regional_endpoint
-          endpoint = context.config.endpoint.to_s
-        end
         Aws::STS::EndpointParameters.new(
           region: context.config.region,
           use_dual_stack: context.config.use_dualstack_endpoint,
           use_fips: context.config.use_fips_endpoint,
-          endpoint: endpoint,
+          endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
           use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
         )
       end
@@ -119,14 +98,11 @@ module Aws::STS
 
     class GetSessionToken
       def self.build(context)
-        unless context.config.regional_endpoint
-          endpoint = context.config.endpoint.to_s
-        end
         Aws::STS::EndpointParameters.new(
           region: context.config.region,
           use_dual_stack: context.config.use_dualstack_endpoint,
           use_fips: context.config.use_fips_endpoint,
-          endpoint: endpoint,
+          endpoint: context.config.regional_endpoint ? nil : context.config.endpoint.to_s,
           use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
         )
       end

data/lib/aws-sdk-sts/plugins/endpoints.rb

@@ -15,11 +15,11 @@ module Aws::STS
         :endpoint_provider,
         doc_type: 'Aws::STS::EndpointProvider',
         rbs_type: 'untyped',
-        docstring: 'The endpoint provider used to resolve endpoints. Any '\
-                   'object that responds to `#resolve_endpoint(parameters)` '\
-                   'where `parameters` is a Struct similar to '\
-                   '`Aws::STS::EndpointParameters`'
-      ) do |cfg|
+        docstring: <<~DOCS) do |_cfg|
+The endpoint provider used to resolve endpoints. Any object that responds to
+`#resolve_endpoint(parameters)` where `parameters` is a Struct similar to
+`Aws::STS::EndpointParameters`.
+        DOCS
         Aws::STS::EndpointProvider.new
       end
 
@@ -40,11 +40,23 @@ module Aws::STS
           context[:auth_scheme] =
             Aws::Endpoints.resolve_auth_scheme(context, endpoint)
 
-          @handler.call(context)
+          with_metrics(context) { @handler.call(context) }
         end
 
         private
 
+        def with_metrics(context, &block)
+          metrics = []
+          metrics << 'ENDPOINT_OVERRIDE' unless context.config.regional_endpoint
+          if context[:auth_scheme] && context[:auth_scheme]['name'] == 'sigv4a'
+            metrics << 'SIGV4A_SIGNING'
+          end
+          if context.config.credentials&.credentials&.account_id
+            metrics << 'RESOLVED_ACCOUNT_ID'
+          end
+          Aws::Plugins::UserAgent.metric(*metrics, &block)
+        end
+
         def apply_endpoint_headers(context, headers)
           headers.each do |key, values|
             value = values

data/lib/aws-sdk-sts/types.rb

@@ -1602,3 +1602,4 @@ module Aws::STS
 
   end
 end
+

data/lib/aws-sdk-sts.rb

@@ -13,16 +13,7 @@ unless Module.const_defined?(:Aws)
   require 'aws-sigv4'
 end
 
-require_relative 'aws-sdk-sts/types'
-require_relative 'aws-sdk-sts/client_api'
-require_relative 'aws-sdk-sts/plugins/endpoints.rb'
-require_relative 'aws-sdk-sts/client'
-require_relative 'aws-sdk-sts/errors'
-require_relative 'aws-sdk-sts/resource'
-require_relative 'aws-sdk-sts/endpoint_parameters'
-require_relative 'aws-sdk-sts/endpoint_provider'
-require_relative 'aws-sdk-sts/endpoints'
-require_relative 'aws-sdk-sts/customizations'
+Aws::Plugins::GlobalConfiguration.add_identifier(:sts)
 
 # This module provides support for AWS Security Token Service. This module is available in the
 # `aws-sdk-core` gem.
@@ -53,7 +44,20 @@ require_relative 'aws-sdk-sts/customizations'
 #
 # @!group service
 module Aws::STS
+  autoload :Types, 'aws-sdk-sts/types'
+  autoload :ClientApi, 'aws-sdk-sts/client_api'
+  module Plugins
+    autoload :Endpoints, 'aws-sdk-sts/plugins/endpoints.rb'
+  end
+  autoload :Client, 'aws-sdk-sts/client'
+  autoload :Errors, 'aws-sdk-sts/errors'
+  autoload :Resource, 'aws-sdk-sts/resource'
+  autoload :EndpointParameters, 'aws-sdk-sts/endpoint_parameters'
+  autoload :EndpointProvider, 'aws-sdk-sts/endpoint_provider'
+  autoload :Endpoints, 'aws-sdk-sts/endpoints'
 
-  GEM_VERSION = '3.203.0'
+  GEM_VERSION = '3.209.1'
 
 end
+
+require_relative 'aws-sdk-sts/customizations'

data/lib/seahorse/client/net_http/connection_pool.rb

@@ -34,7 +34,9 @@ module Seahorse
           ssl_ca_bundle: nil,
           ssl_ca_directory: nil,
           ssl_ca_store: nil,
-          ssl_timeout: nil
+          ssl_timeout: nil,
+          ssl_cert: nil,
+          ssl_key: nil
         }
 
         # @api private
@@ -246,7 +248,9 @@ module Seahorse
               :ssl_ca_bundle => options[:ssl_ca_bundle],
               :ssl_ca_directory => options[:ssl_ca_directory],
               :ssl_ca_store => options[:ssl_ca_store],
-              :ssl_timeout => options[:ssl_timeout]
+              :ssl_timeout => options[:ssl_timeout],
+              :ssl_cert => options[:ssl_cert],
+              :ssl_key => options[:ssl_key]
             }
           end
 
@@ -291,6 +295,8 @@ module Seahorse
               http.ca_file = ssl_ca_bundle if ssl_ca_bundle
               http.ca_path = ssl_ca_directory if ssl_ca_directory
               http.cert_store = ssl_ca_store if ssl_ca_store
+              http.cert = ssl_cert if ssl_cert
+              http.key = ssl_key if ssl_key
             else
               http.verify_mode = OpenSSL::SSL::VERIFY_NONE
             end

data/lib/seahorse/client/plugins/net_http.rb

@@ -70,6 +70,15 @@ Sets the X509::Store to verify peer certificate.
           resolve_ssl_timeout(cfg)
         end
 
+        option(:ssl_cert, default: nil, doc_type: OpenSSL::X509::Certificate, docstring: <<-DOCS)
+Sets a client certificate when creating http connections.
+        DOCS
+
+
+        option(:ssl_key, default: nil, doc_type: OpenSSL::PKey, docstring: <<-DOCS)
+Sets a client key when creating http connections.
+        DOCS
+
         option(:logger) # for backwards compat
 
         handler(Client::NetHttp::Handler, step: :send)

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-core
 version: !ruby/object:Gem::Version
-  version: 3.203.0
+  version: 3.209.1
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-09-03 00:00:00.000000000 Z
+date: 2024-09-25 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: jmespath
@@ -115,6 +115,7 @@ files:
 - lib/aws-sdk-core/cbor/cbor_engine.rb
 - lib/aws-sdk-core/cbor/decoder.rb
 - lib/aws-sdk-core/cbor/encoder.rb
+- lib/aws-sdk-core/client_side_monitoring.rb
 - lib/aws-sdk-core/client_side_monitoring/publisher.rb
 - lib/aws-sdk-core/client_side_monitoring/request_metrics.rb
 - lib/aws-sdk-core/client_stubs.rb
@@ -152,6 +153,7 @@ files:
 - lib/aws-sdk-core/json/json_engine.rb
 - lib/aws-sdk-core/json/oj_engine.rb
 - lib/aws-sdk-core/json/parser.rb
+- lib/aws-sdk-core/log.rb
 - lib/aws-sdk-core/log/formatter.rb
 - lib/aws-sdk-core/log/handler.rb
 - lib/aws-sdk-core/log/param_filter.rb
@@ -161,6 +163,7 @@ files:
 - lib/aws-sdk-core/pager.rb
 - lib/aws-sdk-core/param_converter.rb
 - lib/aws-sdk-core/param_validator.rb
+- lib/aws-sdk-core/plugins.rb
 - lib/aws-sdk-core/plugins/api_key.rb
 - lib/aws-sdk-core/plugins/apig_authorizer_token.rb
 - lib/aws-sdk-core/plugins/apig_credentials_configuration.rb
@@ -216,6 +219,7 @@ files:
 - lib/aws-sdk-core/query/param_list.rb
 - lib/aws-sdk-core/refreshing_credentials.rb
 - lib/aws-sdk-core/refreshing_token.rb
+- lib/aws-sdk-core/resources.rb
 - lib/aws-sdk-core/resources/collection.rb
 - lib/aws-sdk-core/rest.rb
 - lib/aws-sdk-core/rest/content_type_handler.rb
@@ -242,6 +246,7 @@ files:
 - lib/aws-sdk-core/sso_token_provider.rb
 - lib/aws-sdk-core/static_token_provider.rb
 - lib/aws-sdk-core/structure.rb
+- lib/aws-sdk-core/stubbing.rb
 - lib/aws-sdk-core/stubbing/data_applicator.rb
 - lib/aws-sdk-core/stubbing/empty_stub.rb
 - lib/aws-sdk-core/stubbing/protocols/api_gateway.rb