aws-sdk-ec2 1.160.0 → 1.161.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 33ba28fcedc17f09b60fdbcbac9ab2e2ac683b00ed79da8d48a8ec1aeb6b45f2
-  data.tar.gz: 5c1e2776f579bb61fbf3b894608c7f882fc0f787cf32ddd149316989198ac8de
+  metadata.gz: 9248308cfa008b1b76db12239302241c4bb102daca28411bb8cf9d61bd219b1c
+  data.tar.gz: 37a03a10678349978c24224f6d13ae10109f2545b62c69116217f1a98288b998
 SHA512:
-  metadata.gz: d6b61c7010cc5961006c1fc7368ff6de7995e0817f42b3b2fea73ceba391cd0a0bcbe588b54571c03b16bc4a1d7da1a49a5ec134ac4c20b991b5553879ee35ad
-  data.tar.gz: c874239e575146b90afdac4018ba166ff77ca71806dd929ac10c4f81cc1851eda31ef16e94140e12135b909fd0bfab8148f4cce2aab585f0db3cc2d7528e92a2
+  metadata.gz: 065a7f693956c1edb11bee5880ffddc6696ccd34ba0c619d5ee52cdf922f32323266b78e03f8b25af46b6ad31c3d27264fa9bedf7c71fd5dcdb5c6d03a201da1
+  data.tar.gz: a2719f8541e300d129ee8416def0c53be13d6b65ed7db825df46e3d92966dcb4dd45d1b4b04e888836ab80becfb18dfcca8a4a25f9dd6124f905c504b03f049e

data/lib/aws-sdk-ec2.rb

@@ -69,6 +69,6 @@ require_relative 'aws-sdk-ec2/customizations'
 # @service
 module Aws::EC2
 
-  GEM_VERSION = '1.160.0'
+  GEM_VERSION = '1.161.0'
 
 end

data/lib/aws-sdk-ec2/client.rb

@@ -2076,7 +2076,8 @@ module Aws::EC2
     #   access is being authorized.
     #
     # @option params [String] :access_group_id
-    #   The ID of the Active Directory group to grant access.
+    #   The ID of the group to grant access to, for example, the Active
+    #   Directory group or identity provider (IdP) group.
     #
     # @option params [Boolean] :authorize_all_groups
     #   Indicates whether to grant access to all clients. Use `true` to grant
@@ -3805,13 +3806,16 @@ module Aws::EC2
     #     server_certificate_arn: "String", # required
     #     authentication_options: [ # required
     #       {
-    #         type: "certificate-authentication", # accepts certificate-authentication, directory-service-authentication
+    #         type: "certificate-authentication", # accepts certificate-authentication, directory-service-authentication, federated-authentication
     #         active_directory: {
     #           directory_id: "String",
     #         },
     #         mutual_authentication: {
     #           client_root_certificate_chain_arn: "String",
     #         },
+    #         federated_authentication: {
+    #           saml_provider_arn: "String",
+    #         },
     #       },
     #     ],
     #     connection_log_options: { # required
@@ -11632,8 +11636,12 @@ module Aws::EC2
     # you can delete the VPN connection and create a new one that has new
     # keys, without needing to delete the VPC or virtual private gateway. If
     # you create a new VPN connection, you must reconfigure the customer
-    # gateway using the new configuration information returned with the new
-    # VPN connection ID.
+    # gateway device using the new configuration information returned with
+    # the new VPN connection ID.
+    #
+    # For certificate-based authentication, delete all AWS Certificate
+    # Manager (ACM) private certificates used for the AWS-side tunnel
+    # endpoints for the VPN connection before deleting the VPN connection.
     #
     # @option params [required, String] :vpn_connection_id
     #   The ID of the VPN connection.
@@ -13104,9 +13112,10 @@ module Aws::EC2
     #   resp.client_vpn_endpoints[0].associated_target_networks[0].network_type #=> String, one of "vpc"
     #   resp.client_vpn_endpoints[0].server_certificate_arn #=> String
     #   resp.client_vpn_endpoints[0].authentication_options #=> Array
-    #   resp.client_vpn_endpoints[0].authentication_options[0].type #=> String, one of "certificate-authentication", "directory-service-authentication"
+    #   resp.client_vpn_endpoints[0].authentication_options[0].type #=> String, one of "certificate-authentication", "directory-service-authentication", "federated-authentication"
     #   resp.client_vpn_endpoints[0].authentication_options[0].active_directory.directory_id #=> String
     #   resp.client_vpn_endpoints[0].authentication_options[0].mutual_authentication.client_root_certificate_chain #=> String
+    #   resp.client_vpn_endpoints[0].authentication_options[0].federated_authentication.saml_provider_arn #=> String
     #   resp.client_vpn_endpoints[0].connection_log_options.enabled #=> Boolean
     #   resp.client_vpn_endpoints[0].connection_log_options.cloudwatch_log_group #=> String
     #   resp.client_vpn_endpoints[0].connection_log_options.cloudwatch_log_stream #=> String
@@ -31475,7 +31484,8 @@ module Aws::EC2
       req.send_request(options)
     end
 
-    # Modifies the target gateway of an AWS Site-to-Site VPN connection. The
+    # Modifies the customer gateway or the target gateway of an AWS
+    # Site-to-Site VPN connection. To modify the target gateway, the
     # following migration options are available:
     #
     # * An existing virtual private gateway to a new virtual private gateway
@@ -36951,7 +36961,7 @@ module Aws::EC2
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-ec2'
-      context[:gem_version] = '1.160.0'
+      context[:gem_version] = '1.161.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-ec2/client_api.rb

@@ -877,6 +877,8 @@ module Aws::EC2
     FailedQueuedPurchaseDeletion = Shapes::StructureShape.new(name: 'FailedQueuedPurchaseDeletion')
     FailedQueuedPurchaseDeletionSet = Shapes::ListShape.new(name: 'FailedQueuedPurchaseDeletionSet')
     FastSnapshotRestoreStateCode = Shapes::StringShape.new(name: 'FastSnapshotRestoreStateCode')
+    FederatedAuthentication = Shapes::StructureShape.new(name: 'FederatedAuthentication')
+    FederatedAuthenticationRequest = Shapes::StructureShape.new(name: 'FederatedAuthenticationRequest')
     Filter = Shapes::StructureShape.new(name: 'Filter')
     FilterList = Shapes::ListShape.new(name: 'FilterList')
     FleetActivityStatus = Shapes::StringShape.new(name: 'FleetActivityStatus')
@@ -2599,6 +2601,7 @@ module Aws::EC2
     ClientVpnAuthentication.add_member(:type, Shapes::ShapeRef.new(shape: ClientVpnAuthenticationType, location_name: "type"))
     ClientVpnAuthentication.add_member(:active_directory, Shapes::ShapeRef.new(shape: DirectoryServiceAuthentication, location_name: "activeDirectory"))
     ClientVpnAuthentication.add_member(:mutual_authentication, Shapes::ShapeRef.new(shape: CertificateAuthentication, location_name: "mutualAuthentication"))
+    ClientVpnAuthentication.add_member(:federated_authentication, Shapes::ShapeRef.new(shape: FederatedAuthentication, location_name: "federatedAuthentication"))
     ClientVpnAuthentication.struct_class = Types::ClientVpnAuthentication
 
     ClientVpnAuthenticationList.member = Shapes::ShapeRef.new(shape: ClientVpnAuthentication, location_name: "item")
@@ -2606,6 +2609,7 @@ module Aws::EC2
     ClientVpnAuthenticationRequest.add_member(:type, Shapes::ShapeRef.new(shape: ClientVpnAuthenticationType, location_name: "Type"))
     ClientVpnAuthenticationRequest.add_member(:active_directory, Shapes::ShapeRef.new(shape: DirectoryServiceAuthenticationRequest, location_name: "ActiveDirectory"))
     ClientVpnAuthenticationRequest.add_member(:mutual_authentication, Shapes::ShapeRef.new(shape: CertificateAuthenticationRequest, location_name: "MutualAuthentication"))
+    ClientVpnAuthenticationRequest.add_member(:federated_authentication, Shapes::ShapeRef.new(shape: FederatedAuthenticationRequest, location_name: "FederatedAuthentication"))
     ClientVpnAuthenticationRequest.struct_class = Types::ClientVpnAuthenticationRequest
 
     ClientVpnAuthenticationRequestList.member = Shapes::ShapeRef.new(shape: ClientVpnAuthenticationRequest)
@@ -5483,6 +5487,12 @@ module Aws::EC2
 
     FailedQueuedPurchaseDeletionSet.member = Shapes::ShapeRef.new(shape: FailedQueuedPurchaseDeletion, location_name: "item")
 
+    FederatedAuthentication.add_member(:saml_provider_arn, Shapes::ShapeRef.new(shape: String, location_name: "samlProviderArn"))
+    FederatedAuthentication.struct_class = Types::FederatedAuthentication
+
+    FederatedAuthenticationRequest.add_member(:saml_provider_arn, Shapes::ShapeRef.new(shape: String, location_name: "SAMLProviderArn"))
+    FederatedAuthenticationRequest.struct_class = Types::FederatedAuthenticationRequest
+
     Filter.add_member(:name, Shapes::ShapeRef.new(shape: String, location_name: "Name"))
     Filter.add_member(:values, Shapes::ShapeRef.new(shape: ValueStringList, location_name: "Value"))
     Filter.struct_class = Types::Filter

data/lib/aws-sdk-ec2/types.rb

@@ -1716,7 +1716,8 @@ module Aws::EC2
     #   @return [String]
     #
     # @!attribute [rw] access_group_id
-    #   The ID of the Active Directory group to grant access.
+    #   The ID of the group to grant access to, for example, the Active
+    #   Directory group or identity provider (IdP) group.
     #   @return [String]
     #
     # @!attribute [rw] authorize_all_groups
@@ -3358,8 +3359,7 @@ module Aws::EC2
     end
 
     # Describes the authentication methods used by a Client VPN endpoint.
-    # Client VPN supports Active Directory and mutual authentication. For
-    # more information, see [Authentication][1] in the *AWS Client VPN
+    # For more information, see [Authentication][1] in the *AWS Client VPN
     # Administrator Guide*.
     #
     #
@@ -3378,19 +3378,23 @@ module Aws::EC2
     #   Information about the authentication certificates, if applicable.
     #   @return [Types::CertificateAuthentication]
     #
+    # @!attribute [rw] federated_authentication
+    #   Information about the IAM SAML identity provider, if applicable.
+    #   @return [Types::FederatedAuthentication]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ClientVpnAuthentication AWS API Documentation
     #
     class ClientVpnAuthentication < Struct.new(
       :type,
       :active_directory,
-      :mutual_authentication)
+      :mutual_authentication,
+      :federated_authentication)
       include Aws::Structure
     end
 
     # Describes the authentication method to be used by a Client VPN
-    # endpoint. Client VPN supports Active Directory and mutual
-    # authentication. For more information, see [Authentication][1] in the
-    # *AWS Client VPN Administrator Guide*.
+    # endpoint. For more information, see [Authentication][1] in the *AWS
+    # Client VPN Administrator Guide*.
     #
     #
     #
@@ -3400,20 +3404,20 @@ module Aws::EC2
     #   data as a hash:
     #
     #       {
-    #         type: "certificate-authentication", # accepts certificate-authentication, directory-service-authentication
+    #         type: "certificate-authentication", # accepts certificate-authentication, directory-service-authentication, federated-authentication
     #         active_directory: {
     #           directory_id: "String",
     #         },
     #         mutual_authentication: {
     #           client_root_certificate_chain_arn: "String",
     #         },
+    #         federated_authentication: {
+    #           saml_provider_arn: "String",
+    #         },
     #       }
     #
     # @!attribute [rw] type
-    #   The type of client authentication to be used. Specify
-    #   `certificate-authentication` to use certificate-based
-    #   authentication, or `directory-service-authentication` to use Active
-    #   Directory authentication.
+    #   The type of client authentication to be used.
     #   @return [String]
     #
     # @!attribute [rw] active_directory
@@ -3428,12 +3432,19 @@ module Aws::EC2
     #   `certificate-authentication`.
     #   @return [Types::CertificateAuthenticationRequest]
     #
+    # @!attribute [rw] federated_authentication
+    #   Information about the IAM SAML identity provider to be used, if
+    #   applicable. You must provide this information if **Type** is
+    #   `federated-authentication`.
+    #   @return [Types::FederatedAuthenticationRequest]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ClientVpnAuthenticationRequest AWS API Documentation
     #
     class ClientVpnAuthenticationRequest < Struct.new(
       :type,
       :active_directory,
-      :mutual_authentication)
+      :mutual_authentication,
+      :federated_authentication)
       include Aws::Structure
     end
 
@@ -4606,13 +4617,16 @@ module Aws::EC2
     #         server_certificate_arn: "String", # required
     #         authentication_options: [ # required
     #           {
-    #             type: "certificate-authentication", # accepts certificate-authentication, directory-service-authentication
+    #             type: "certificate-authentication", # accepts certificate-authentication, directory-service-authentication, federated-authentication
     #             active_directory: {
     #               directory_id: "String",
     #             },
     #             mutual_authentication: {
     #               client_root_certificate_chain_arn: "String",
     #             },
+    #             federated_authentication: {
+    #               saml_provider_arn: "String",
+    #             },
     #           },
     #         ],
     #         connection_log_options: { # required
@@ -24142,6 +24156,40 @@ module Aws::EC2
       include Aws::Structure
     end
 
+    # Describes the IAM SAML identity provider used for federated
+    # authentication.
+    #
+    # @!attribute [rw] saml_provider_arn
+    #   The Amazon Resource Name (ARN) of the IAM SAML identity provider.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/FederatedAuthentication AWS API Documentation
+    #
+    class FederatedAuthentication < Struct.new(
+      :saml_provider_arn)
+      include Aws::Structure
+    end
+
+    # The IAM SAML identity provider used for federated authentication.
+    #
+    # @note When making an API call, you may pass FederatedAuthenticationRequest
+    #   data as a hash:
+    #
+    #       {
+    #         saml_provider_arn: "String",
+    #       }
+    #
+    # @!attribute [rw] saml_provider_arn
+    #   The Amazon Resource Name (ARN) of the IAM SAML identity provider.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/FederatedAuthenticationRequest AWS API Documentation
+    #
+    class FederatedAuthenticationRequest < Struct.new(
+      :saml_provider_arn)
+      include Aws::Structure
+    end
+
     # A filter name and value pair that is used to return a more specific
     # list of results from a describe operation. Filters can be used to
     # match a set of resources by specific criteria, such as tags,

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-ec2
 version: !ruby/object:Gem::Version
-  version: 1.160.0
+  version: 1.161.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2020-05-18 00:00:00.000000000 Z
+date: 2020-05-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sigv4