aws-sdk-core 3.236.0 → 3.237.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4746a66fed696d3512fe8de04f7d43e263552ba566b4b36ae72a3c7217334d60
-  data.tar.gz: 50f56239c61442bfc56656e59214550c55c2ac6705f195e134c305df79573006
+  metadata.gz: 95d07e9b7ee04171f8d93e7d0616d89c8d7e738372b772d6f66a67fac0710c41
+  data.tar.gz: 00b8b6b00d2e61dee0054b198e73f76f27d2af1e282e01374126522e67991d98
 SHA512:
-  metadata.gz: b2f502d02270ebe5f1e26a29ee8915e242e7b034222a2470ca7900d9334411b1c01fd014620b5c9eb9b0778064c96c09d07b238842d5e2a46f6c256dfca60487
-  data.tar.gz: 6314b9a271ad6494e5cabfc701d21b40fdda32d56ad7dc65dba6017993969352c03a15af48eee0f02371e8a692eff7a042c6df047764c0b1f1fe104321ed489e
+  metadata.gz: b77063dba0c37595b4096dd4a022a5446dc3fcb850bf24fff5546c025ce0dfb9fa96570e3259591708836a40c591df299879ebfb7b8648a4cbd736101fad30be
+  data.tar.gz: 05b16dade46a24d7c53d4dc4fa48226f18deaa2ebb410b9bf42a63305cdac965b888bc5b11d283d1ff6c8c5b73ee107135bc8b6dd861386eaea44a02148341cb

data/CHANGELOG.md

@@ -1,6 +1,13 @@
 Unreleased Changes
 ------------------
 
+3.237.0 (2025-11-10)
+------------------
+
+* Feature - Updated Aws::STS::Client with the latest API changes.
+
+* Feature - Added GetDelegatedAccessToken API, which is not available for general use at this time.
+
 3.236.0 (2025-10-30)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-3.236.0
+3.237.0

data/lib/aws-sdk-core/instance_profile_credentials.rb

@@ -57,6 +57,9 @@ module Aws
 
     # @param [Hash] options
     # @option options [Integer] :retries (1) Number of times to retry when retrieving credentials.
+    # @option options [Numeric, Proc] :backoff By default, failures are retried with exponential back-off, i.e.
+    #   `lambda { |num_failures| sleep(1.2 ** num_failures) }`. You can pass a number of seconds to sleep
+    #   between failed attempts, or a Proc that accepts the number of failures.
     # @option options [String] :endpoint ('http://169.254.169.254') The IMDS endpoint. This option has precedence
     #    over the `:endpoint_mode`.
     # @option options [String] :endpoint_mode ('IPv4') The endpoint mode for the instance metadata service. This is
@@ -67,14 +70,11 @@ module Aws
     # @option options [Integer] :port (80)
     # @option options [Float] :http_open_timeout (1)
     # @option options [Float] :http_read_timeout (1)
-    # @option options [Numeric, Proc] :delay By default, failures are retried with exponential back-off, i.e.
-    #   `sleep(1.2 ** num_failures)`. You can pass a number of seconds to sleep between failed attempts, or a Proc
-    #   that accepts the number of failures.
     # @option options [IO] :http_debug_output (nil) HTTP wire traces are sent to this object.
     #   You can specify something like `$stdout`.
-    # @option options [Integer] :token_ttl Time-to-Live in seconds for EC2 Metadata Token used for fetching
-    #   Metadata Profile Credentials, defaults to 21600 seconds.
-    # @option options [Callable] :before_refresh Proc called before credentials are refreshed. `before_refresh`
+    # @option options [Integer] :token_ttl (21600) Time-to-Live in seconds for EC2 Metadata Token used for fetching
+    #   Metadata Profile Credentials.
+    # @option options [Proc] :before_refresh A Proc called before credentials are refreshed. `:before_refresh`
     #   is called with an instance of this object when AWS credentials are required and need to be refreshed.
     def initialize(options = {})
       @backoff = resolve_backoff(options[:backoff])
@@ -95,7 +95,7 @@ module Aws
       super
     end
 
-    # @return [Boolean0
+    # @return [Boolean]
     attr_reader :disable_imds_v1
 
     # @return [Integer]

data/lib/aws-sdk-sso/client.rb

@@ -698,7 +698,7 @@ module Aws::SSO
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-core'
-      context[:gem_version] = '3.236.0'
+      context[:gem_version] = '3.237.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-sso.rb

@@ -56,7 +56,7 @@ module Aws::SSO
   autoload :EndpointProvider, 'aws-sdk-sso/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-sso/endpoints'
 
-  GEM_VERSION = '3.236.0'
+  GEM_VERSION = '3.237.0'
 
 end
 

data/lib/aws-sdk-ssooidc/client.rb

@@ -1081,7 +1081,7 @@ module Aws::SSOOIDC
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-core'
-      context[:gem_version] = '3.236.0'
+      context[:gem_version] = '3.237.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-ssooidc.rb

@@ -56,7 +56,7 @@ module Aws::SSOOIDC
   autoload :EndpointProvider, 'aws-sdk-ssooidc/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-ssooidc/endpoints'
 
-  GEM_VERSION = '3.236.0'
+  GEM_VERSION = '3.237.0'
 
 end
 

data/lib/aws-sdk-sts/client.rb

@@ -619,7 +619,7 @@ module Aws::STS
     #   The regex used to validate this parameter is a string of characters
     #   consisting of upper- and lower-case alphanumeric characters with no
     #   spaces. You can also include underscores or any of the following
-    #   characters: =,.@-
+    #   characters: +=,.@-
     #
     #
     #
@@ -813,7 +813,7 @@ module Aws::STS
     #   The regex used to validate this parameter is a string of characters
     #   consisting of upper- and lower-case alphanumeric characters with no
     #   spaces. You can also include underscores or any of the following
-    #   characters: =,.@:/-
+    #   characters: +=,.@:\\/-
     #
     #
     #
@@ -831,7 +831,7 @@ module Aws::STS
     #   The regex used to validate this parameter is a string of characters
     #   consisting of upper- and lower-case alphanumeric characters with no
     #   spaces. You can also include underscores or any of the following
-    #   characters: =,.@-
+    #   characters: +=/:,.@-
     #
     # @option params [String] :token_code
     #   The value provided by the MFA device, if the trust policy of the role
@@ -892,7 +892,7 @@ module Aws::STS
     #
     #   resp = client.assume_role({
     #     external_id: "123ABC", 
-    #     policy: "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Sid\":\"Stmt1\",\"Effect\":\"Allow\",\"Action\":\"s3:ListAllMyBuckets\",\"Resource\":\"*\"}]}", 
+    #     policy: "escaped-JSON-IAM-POLICY", 
     #     role_arn: "arn:aws:iam::123456789012:role/demo", 
     #     role_session_name: "testAssumeRoleSession", 
     #     tags: [
@@ -996,6 +996,11 @@ module Aws::STS
     # Applications can use these temporary security credentials to sign
     # calls to Amazon Web Services services.
     #
+    # <note markdown="1"> AssumeRoleWithSAML will not work on IAM Identity Center managed roles.
+    # These roles' names start with `AWSReservedSSO_`.
+    #
+    #  </note>
+    #
     # **Session Duration**
     #
     # By default, the temporary security credentials created by
@@ -1414,7 +1419,8 @@ module Aws::STS
     # (Optional) You can configure your IdP to pass attributes into your web
     # identity token as session tags. Each session tag consists of a key
     # name and an associated value. For more information about session tags,
-    # see [Passing Session Tags in STS][9] in the *IAM User Guide*.
+    # see [Passing session tags using AssumeRoleWithWebIdentity][9] in the
+    # *IAM User Guide*.
     #
     # You can pass up to 50 session tags. The plaintext session tag keys
     # can’t exceed 128 characters and the values can’t exceed 256
@@ -1482,7 +1488,7 @@ module Aws::STS
     # [6]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_update-role-settings.html#id_roles_update-session-duration
     # [7]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use.html
     # [8]: https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies.html#policies_session
-    # [9]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_session-tags.html
+    # [9]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_session-tags.html#id_session-tags_adding-assume-role-idp
     # [10]: https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-limits.html#reference_iam-limits-entity-length
     # [11]: https://docs.aws.amazon.com/IAM/latest/UserGuide/tutorial_attribute-based-access-control.html
     # [12]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_session-tags.html#id_session-tags_role-chaining
@@ -1673,7 +1679,7 @@ module Aws::STS
     #
     #   resp = client.assume_role_with_web_identity({
     #     duration_seconds: 3600, 
-    #     policy: "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Sid\":\"Stmt1\",\"Effect\":\"Allow\",\"Action\":\"s3:ListAllMyBuckets\",\"Resource\":\"*\"}]}", 
+    #     policy: "escaped-JSON-IAM-POLICY", 
     #     provider_id: "www.amazon.com", 
     #     role_arn: "arn:aws:iam::123456789012:role/FederatedWebIdentityRole", 
     #     role_session_name: "app1", 
@@ -1738,7 +1744,10 @@ module Aws::STS
     end
 
     # Returns a set of short term credentials you can use to perform
-    # privileged tasks on a member account in your organization.
+    # privileged tasks on a member account in your organization. You must
+    # use credentials from an Organizations management account or a
+    # delegated administrator account for IAM to call `AssumeRoot`. You
+    # cannot use root user credentials to make this call.
     #
     # Before you can launch a privileged session, you must have centralized
     # root access in your organization. For steps to enable this feature,
@@ -1755,19 +1764,29 @@ module Aws::STS
     # were performed in a session. For more information, see [Track
     # privileged tasks in CloudTrail][3] in the *IAM User Guide*.
     #
+    # When granting access to privileged tasks you should only grant the
+    # necessary permissions required to perform that task. For more
+    # information, see [Security best practices in IAM][4]. In addition, you
+    # can use [service control policies][5] (SCPs) to manage and limit
+    # permissions in your organization. See [General examples][6] in the
+    # *Organizations User Guide* for more information on SCPs.
+    #
     #
     #
     # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_root-enable-root-access.html
     # [2]: https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html#sts-endpoints
     # [3]: https://docs.aws.amazon.com/IAM/latest/UserGuide/cloudtrail-track-privileged-tasks.html
+    # [4]: https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html
+    # [5]: https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps.html
+    # [6]: https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps_examples_general.html
     #
     # @option params [required, String] :target_principal
     #   The member account principal ARN or account ID.
     #
     # @option params [required, Types::PolicyDescriptorType] :task_policy_arn
     #   The identity based policy that scopes the session to the privileged
-    #   tasks that can be performed. You can use one of following Amazon Web
-    #   Services managed policies to scope root session actions.
+    #   tasks that can be performed. You must use one of following Amazon Web
+    #   Services managed policies to scope root session actions:
     #
     #   * [IAMAuditRootUserCredentials][1]
     #
@@ -2078,6 +2097,40 @@ module Aws::STS
       req.send_request(options)
     end
 
+    # This API is currently unavailable for general use.
+    #
+    # @option params [required, String] :trade_in_token
+    #
+    # @return [Types::GetDelegatedAccessTokenResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::GetDelegatedAccessTokenResponse#credentials #credentials} => Types::Credentials
+    #   * {Types::GetDelegatedAccessTokenResponse#packed_policy_size #packed_policy_size} => Integer
+    #   * {Types::GetDelegatedAccessTokenResponse#assumed_principal #assumed_principal} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.get_delegated_access_token({
+    #     trade_in_token: "tradeInTokenType", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.credentials.access_key_id #=> String
+    #   resp.credentials.secret_access_key #=> String
+    #   resp.credentials.session_token #=> String
+    #   resp.credentials.expiration #=> Time
+    #   resp.packed_policy_size #=> Integer
+    #   resp.assumed_principal #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sts-2011-06-15/GetDelegatedAccessToken AWS API Documentation
+    #
+    # @overload get_delegated_access_token(params = {})
+    # @param [Hash] params ({})
+    def get_delegated_access_token(params = {}, options = {})
+      req = build_request(:get_delegated_access_token, params)
+      req.send_request(options)
+    end
+
     # Returns a set of temporary security credentials (consisting of an
     # access key ID, a secret access key, and a security token) for a user.
     # A typical use is in a proxy application that gets temporary security
@@ -2360,7 +2413,7 @@ module Aws::STS
     #   resp = client.get_federation_token({
     #     duration_seconds: 3600, 
     #     name: "testFedUserSession", 
-    #     policy: "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Sid\":\"Stmt1\",\"Effect\":\"Allow\",\"Action\":\"s3:ListAllMyBuckets\",\"Resource\":\"*\"}]}", 
+    #     policy: "escaped-JSON-IAM-POLICY", 
     #     tags: [
     #       {
     #         key: "Project", 
@@ -2601,7 +2654,7 @@ module Aws::STS
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-core'
-      context[:gem_version] = '3.236.0'
+      context[:gem_version] = '3.237.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-sts/client_api.rb

@@ -28,11 +28,14 @@ module Aws::STS
     DecodeAuthorizationMessageRequest = Shapes::StructureShape.new(name: 'DecodeAuthorizationMessageRequest')
     DecodeAuthorizationMessageResponse = Shapes::StructureShape.new(name: 'DecodeAuthorizationMessageResponse')
     ExpiredTokenException = Shapes::StructureShape.new(name: 'ExpiredTokenException', error: {"code" => "ExpiredTokenException", "httpStatusCode" => 400, "senderFault" => true})
+    ExpiredTradeInTokenException = Shapes::StructureShape.new(name: 'ExpiredTradeInTokenException', error: {"code" => "ExpiredTradeInTokenException", "httpStatusCode" => 400, "senderFault" => true})
     FederatedUser = Shapes::StructureShape.new(name: 'FederatedUser')
     GetAccessKeyInfoRequest = Shapes::StructureShape.new(name: 'GetAccessKeyInfoRequest')
     GetAccessKeyInfoResponse = Shapes::StructureShape.new(name: 'GetAccessKeyInfoResponse')
     GetCallerIdentityRequest = Shapes::StructureShape.new(name: 'GetCallerIdentityRequest')
     GetCallerIdentityResponse = Shapes::StructureShape.new(name: 'GetCallerIdentityResponse')
+    GetDelegatedAccessTokenRequest = Shapes::StructureShape.new(name: 'GetDelegatedAccessTokenRequest')
+    GetDelegatedAccessTokenResponse = Shapes::StructureShape.new(name: 'GetDelegatedAccessTokenResponse')
     GetFederationTokenRequest = Shapes::StructureShape.new(name: 'GetFederationTokenRequest')
     GetFederationTokenResponse = Shapes::StructureShape.new(name: 'GetFederationTokenResponse')
     GetSessionTokenRequest = Shapes::StructureShape.new(name: 'GetSessionTokenRequest')
@@ -67,6 +70,7 @@ module Aws::STS
     durationSecondsType = Shapes::IntegerShape.new(name: 'durationSecondsType')
     encodedMessageType = Shapes::StringShape.new(name: 'encodedMessageType')
     expiredIdentityTokenMessage = Shapes::StringShape.new(name: 'expiredIdentityTokenMessage')
+    expiredTradeInTokenExceptionMessage = Shapes::StringShape.new(name: 'expiredTradeInTokenExceptionMessage')
     externalIdType = Shapes::StringShape.new(name: 'externalIdType')
     federatedIdType = Shapes::StringShape.new(name: 'federatedIdType')
     idpCommunicationErrorMessage = Shapes::StringShape.new(name: 'idpCommunicationErrorMessage')
@@ -89,6 +93,7 @@ module Aws::STS
     tagValueType = Shapes::StringShape.new(name: 'tagValueType')
     tokenCodeType = Shapes::StringShape.new(name: 'tokenCodeType')
     tokenType = Shapes::StringShape.new(name: 'tokenType')
+    tradeInTokenType = Shapes::StringShape.new(name: 'tradeInTokenType')
     unrestrictedSessionPolicyDocumentType = Shapes::StringShape.new(name: 'unrestrictedSessionPolicyDocumentType')
     urlType = Shapes::StringShape.new(name: 'urlType')
     userIdType = Shapes::StringShape.new(name: 'userIdType')
@@ -180,6 +185,9 @@ module Aws::STS
     ExpiredTokenException.add_member(:message, Shapes::ShapeRef.new(shape: expiredIdentityTokenMessage, location_name: "message"))
     ExpiredTokenException.struct_class = Types::ExpiredTokenException
 
+    ExpiredTradeInTokenException.add_member(:message, Shapes::ShapeRef.new(shape: expiredTradeInTokenExceptionMessage, location_name: "message"))
+    ExpiredTradeInTokenException.struct_class = Types::ExpiredTradeInTokenException
+
     FederatedUser.add_member(:federated_user_id, Shapes::ShapeRef.new(shape: federatedIdType, required: true, location_name: "FederatedUserId"))
     FederatedUser.add_member(:arn, Shapes::ShapeRef.new(shape: arnType, required: true, location_name: "Arn"))
     FederatedUser.struct_class = Types::FederatedUser
@@ -197,6 +205,14 @@ module Aws::STS
     GetCallerIdentityResponse.add_member(:arn, Shapes::ShapeRef.new(shape: arnType, location_name: "Arn"))
     GetCallerIdentityResponse.struct_class = Types::GetCallerIdentityResponse
 
+    GetDelegatedAccessTokenRequest.add_member(:trade_in_token, Shapes::ShapeRef.new(shape: tradeInTokenType, required: true, location_name: "TradeInToken"))
+    GetDelegatedAccessTokenRequest.struct_class = Types::GetDelegatedAccessTokenRequest
+
+    GetDelegatedAccessTokenResponse.add_member(:credentials, Shapes::ShapeRef.new(shape: Credentials, location_name: "Credentials"))
+    GetDelegatedAccessTokenResponse.add_member(:packed_policy_size, Shapes::ShapeRef.new(shape: nonNegativeIntegerType, location_name: "PackedPolicySize"))
+    GetDelegatedAccessTokenResponse.add_member(:assumed_principal, Shapes::ShapeRef.new(shape: arnType, location_name: "AssumedPrincipal"))
+    GetDelegatedAccessTokenResponse.struct_class = Types::GetDelegatedAccessTokenResponse
+
     GetFederationTokenRequest.add_member(:name, Shapes::ShapeRef.new(shape: userNameType, required: true, location_name: "Name"))
     GetFederationTokenRequest.add_member(:policy, Shapes::ShapeRef.new(shape: sessionPolicyDocumentType, location_name: "Policy"))
     GetFederationTokenRequest.add_member(:policy_arns, Shapes::ShapeRef.new(shape: policyDescriptorListType, location_name: "PolicyArns"))
@@ -358,6 +374,16 @@ module Aws::STS
         o.output = Shapes::ShapeRef.new(shape: GetCallerIdentityResponse)
       end)
 
+      api.add_operation(:get_delegated_access_token, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "GetDelegatedAccessToken"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: GetDelegatedAccessTokenRequest)
+        o.output = Shapes::ShapeRef.new(shape: GetDelegatedAccessTokenResponse)
+        o.errors << Shapes::ShapeRef.new(shape: ExpiredTradeInTokenException)
+        o.errors << Shapes::ShapeRef.new(shape: RegionDisabledException)
+      end)
+
       api.add_operation(:get_federation_token, Seahorse::Model::Operation.new.tap do |o|
         o.name = "GetFederationToken"
         o.http_method = "POST"

data/lib/aws-sdk-sts/errors.rb

@@ -28,6 +28,7 @@ module Aws::STS
   #
   # ## Error Classes
   # * {ExpiredTokenException}
+  # * {ExpiredTradeInTokenException}
   # * {IDPCommunicationErrorException}
   #    * This error class is not used. `IDPCommunicationError` is used during parsing instead.
   # * {IDPRejectedClaimException}
@@ -62,6 +63,21 @@ module Aws::STS
       end
     end
 
+    class ExpiredTradeInTokenException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::STS::Types::ExpiredTradeInTokenException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+    end
+
     # @deprecated This error class is not used during parsing.
     #   Please use `IDPCommunicationError` instead.
     class IDPCommunicationErrorException < ServiceError

data/lib/aws-sdk-sts/types.rb

@@ -35,7 +35,7 @@ module Aws::STS
     #   The regex used to validate this parameter is a string of characters
     #   consisting of upper- and lower-case alphanumeric characters with no
     #   spaces. You can also include underscores or any of the following
-    #   characters: =,.@-
+    #   characters: +=,.@-
     #
     #
     #
@@ -240,7 +240,7 @@ module Aws::STS
     #   The regex used to validate this parameter is a string of characters
     #   consisting of upper- and lower-case alphanumeric characters with no
     #   spaces. You can also include underscores or any of the following
-    #   characters: =,.@:/-
+    #   characters: +=,.@:\\/-
     #
     #
     #
@@ -259,7 +259,7 @@ module Aws::STS
     #   The regex used to validate this parameter is a string of characters
     #   consisting of upper- and lower-case alphanumeric characters with no
     #   spaces. You can also include underscores or any of the following
-    #   characters: =,.@-
+    #   characters: +=/:,.@-
     #   @return [String]
     #
     # @!attribute [rw] token_code
@@ -961,8 +961,8 @@ module Aws::STS
     #
     # @!attribute [rw] task_policy_arn
     #   The identity based policy that scopes the session to the privileged
-    #   tasks that can be performed. You can use one of following Amazon Web
-    #   Services managed policies to scope root session actions.
+    #   tasks that can be performed. You must use one of following Amazon
+    #   Web Services managed policies to scope root session actions:
     #
     #   * [IAMAuditRootUserCredentials][1]
     #
@@ -1144,6 +1144,17 @@ module Aws::STS
       include Aws::Structure
     end
 
+    # @!attribute [rw] message
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sts-2011-06-15/ExpiredTradeInTokenException AWS API Documentation
+    #
+    class ExpiredTradeInTokenException < Struct.new(
+      :message)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # Identifiers for the federated user that is associated with the
     # credentials.
     #
@@ -1239,6 +1250,37 @@ module Aws::STS
       include Aws::Structure
     end
 
+    # @!attribute [rw] trade_in_token
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sts-2011-06-15/GetDelegatedAccessTokenRequest AWS API Documentation
+    #
+    class GetDelegatedAccessTokenRequest < Struct.new(
+      :trade_in_token)
+      SENSITIVE = [:trade_in_token]
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] credentials
+    #   Amazon Web Services credentials for API authentication.
+    #   @return [Types::Credentials]
+    #
+    # @!attribute [rw] packed_policy_size
+    #   @return [Integer]
+    #
+    # @!attribute [rw] assumed_principal
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/sts-2011-06-15/GetDelegatedAccessTokenResponse AWS API Documentation
+    #
+    class GetDelegatedAccessTokenResponse < Struct.new(
+      :credentials,
+      :packed_policy_size,
+      :assumed_principal)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] name
     #   The name of the federated user. The name is used as an identifier
     #   for the temporary security credentials (such as `Bob`). For example,
@@ -1686,7 +1728,7 @@ module Aws::STS
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_enable-regions.html
+    # [1]: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_enable-regions.html#sts-regions-activate-deactivate
     #
     # @!attribute [rw] message
     #   @return [String]

data/lib/aws-sdk-sts.rb

@@ -56,7 +56,7 @@ module Aws::STS
   autoload :EndpointProvider, 'aws-sdk-sts/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-sts/endpoints'
 
-  GEM_VERSION = '3.236.0'
+  GEM_VERSION = '3.237.0'
 
 end
 

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-core
 version: !ruby/object:Gem::Version
-  version: 3.236.0
+  version: 3.237.0
 platform: ruby
 authors:
 - Amazon Web Services